Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Receiving "Hard drive controller failure" popups


  • Please log in to reply
17 replies to this topic

#1 dds98248

dds98248

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 13 September 2012 - 09:26 PM

I think I have a virus. My desktop icons and start menu are only half there. Windows displays a whole bunch of error messages indicating that there was a write error. Then a system tray icon pops up and says my hard drive controller failed.

I have Windows Vista Home Premium Edition (very similar to this thread:
http://www.bleepingcomputer.com/forums/topic460144.html

When I restart in safe mode, I don't get these errors, but I also don't get any desktop icons, programs, files, etc.

can you help?

After seeing the other thread, I took similar steps: restarted in safe mode with networking and ran TDSSKiller. Here is the log:
18:43:12.0393 1952 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
18:43:12.0752 1952 ============================================================
18:43:12.0752 1952 Current date / time: 2012/09/13 18:43:12.0752
18:43:12.0752 1952 SystemInfo:
18:43:12.0752 1952
18:43:12.0752 1952 OS Version: 6.0.6002 ServicePack: 2.0
18:43:12.0752 1952 Product type: Workstation
18:43:12.0752 1952 ComputerName: STENVERS
18:43:12.0752 1952 UserName: Danielle
18:43:12.0752 1952 Windows directory: C:\Windows
18:43:12.0752 1952 System windows directory: C:\Windows
18:43:12.0752 1952 Processor architecture: Intel x86
18:43:12.0752 1952 Number of processors: 2
18:43:12.0752 1952 Page size: 0x1000
18:43:12.0752 1952 Boot type: Safe boot with network
18:43:12.0752 1952 ============================================================
18:43:13.0157 1952 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
18:43:13.0173 1952 Drive \Device\Harddisk6\DR6 - Size: 0x77800000 (1.87 Gb), SectorSize: 0x200, Cylinders: 0xF3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:43:13.0173 1952 ============================================================
18:43:13.0173 1952 \Device\Harddisk0\DR0:
18:43:13.0173 1952 MBR partitions:
18:43:13.0173 1952 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C543A61
18:43:13.0173 1952 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C543AA0, BlocksNum 0xC80730
18:43:13.0173 1952 \Device\Harddisk6\DR6:
18:43:13.0173 1952 MBR partitions:
18:43:13.0173 1952 \Device\Harddisk6\DR6\Partition1: MBR, Type 0xE, StartLBA 0x1F80, BlocksNum 0x3BA080
18:43:13.0173 1952 ============================================================
18:43:13.0204 1952 C: <-> \Device\Harddisk0\DR0\Partition1
18:43:13.0267 1952 D: <-> \Device\Harddisk0\DR0\Partition2
18:43:13.0267 1952 ============================================================
18:43:13.0267 1952 Initialize success
18:43:13.0267 1952 ============================================================
18:43:21.0051 1604 ============================================================
18:43:21.0051 1604 Scan started
18:43:21.0051 1604 Mode: Manual;
18:43:21.0051 1604 ============================================================
18:43:21.0269 1604 ================ Scan system memory ========================
18:43:21.0269 1604 System memory - ok
18:43:21.0269 1604 ================ Scan services =============================
18:43:21.0503 1604 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
18:43:21.0503 1604 ACPI - ok
18:43:21.0581 1604 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:43:21.0581 1604 AdobeARMservice - ok
18:43:21.0659 1604 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:43:21.0659 1604 AdobeFlashPlayerUpdateSvc - ok
18:43:21.0737 1604 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:43:21.0753 1604 adp94xx - ok
18:43:21.0784 1604 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:43:21.0784 1604 adpahci - ok
18:43:21.0815 1604 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
18:43:21.0815 1604 adpu160m - ok
18:43:21.0847 1604 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:43:21.0862 1604 adpu320 - ok
18:43:21.0925 1604 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:43:21.0940 1604 AeLookupSvc - ok
18:43:21.0987 1604 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
18:43:21.0987 1604 AFD - ok
18:43:22.0034 1604 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:43:22.0049 1604 agp440 - ok
18:43:22.0112 1604 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
18:43:22.0112 1604 aic78xx - ok
18:43:22.0159 1604 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
18:43:22.0159 1604 ALG - ok
18:43:22.0205 1604 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
18:43:22.0205 1604 aliide - ok
18:43:22.0268 1604 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
18:43:22.0268 1604 amdagp - ok
18:43:22.0299 1604 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
18:43:22.0299 1604 amdide - ok
18:43:22.0346 1604 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
18:43:22.0346 1604 AmdK7 - ok
18:43:22.0408 1604 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:43:22.0408 1604 AmdK8 - ok
18:43:22.0471 1604 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
18:43:22.0471 1604 Appinfo - ok
18:43:22.0533 1604 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:43:22.0549 1604 Apple Mobile Device - ok
18:43:22.0580 1604 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
18:43:22.0580 1604 arc - ok
18:43:22.0627 1604 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:43:22.0627 1604 arcsas - ok
18:43:22.0658 1604 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:43:22.0673 1604 AsyncMac - ok
18:43:22.0705 1604 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
18:43:22.0720 1604 atapi - ok
18:43:22.0814 1604 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:43:22.0814 1604 AudioEndpointBuilder - ok
18:43:22.0829 1604 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
18:43:22.0829 1604 Audiosrv - ok
18:43:22.0892 1604 [ 14196079DDDD871D8BA6C406C15C3F4A ] bcm C:\Windows\system32\DRIVERS\drxvi314.sys
18:43:22.0907 1604 bcm - ok
18:43:22.0970 1604 [ 360C731BD6537C635C8D15B2F0D49669 ] bcmbusctr C:\Windows\system32\DRIVERS\BcmBusCtr.sys
18:43:22.0970 1604 bcmbusctr - ok
18:43:23.0048 1604 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
18:43:23.0048 1604 Beep - ok
18:43:23.0095 1604 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
18:43:23.0095 1604 BFE - ok
18:43:23.0188 1604 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
18:43:23.0251 1604 BITS - ok
18:43:23.0266 1604 blbdrive - ok
18:43:23.0391 1604 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:43:23.0407 1604 Bonjour Service - ok
18:43:23.0453 1604 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:43:23.0453 1604 bowser - ok
18:43:23.0500 1604 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
18:43:23.0500 1604 BrFiltLo - ok
18:43:23.0516 1604 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
18:43:23.0516 1604 BrFiltUp - ok
18:43:23.0563 1604 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
18:43:23.0578 1604 Browser - ok
18:43:23.0594 1604 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
18:43:23.0594 1604 Brserid - ok
18:43:23.0625 1604 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
18:43:23.0625 1604 BrSerWdm - ok
18:43:23.0641 1604 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
18:43:23.0641 1604 BrUsbMdm - ok
18:43:23.0656 1604 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
18:43:23.0656 1604 BrUsbSer - ok
18:43:23.0687 1604 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:43:23.0687 1604 BTHMODEM - ok
18:43:23.0734 1604 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:43:23.0734 1604 cdfs - ok
18:43:23.0765 1604 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:43:23.0765 1604 cdrom - ok
18:43:23.0812 1604 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
18:43:23.0812 1604 CertPropSvc - ok
18:43:23.0843 1604 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
18:43:23.0843 1604 circlass - ok
18:43:23.0906 1604 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
18:43:23.0921 1604 CLFS - ok
18:43:23.0953 1604 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:43:23.0968 1604 clr_optimization_v2.0.50727_32 - ok
18:43:24.0046 1604 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:43:24.0077 1604 clr_optimization_v4.0.30319_32 - ok
18:43:24.0109 1604 CLTNetCnService - ok
18:43:24.0140 1604 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:43:24.0140 1604 cmdide - ok
18:43:24.0187 1604 [ 33F77F7CB2C2EFE34B3BC9CC716F73F3 ] cm_ser C:\Windows\system32\DRIVERS\cm_ser.sys
18:43:24.0187 1604 cm_ser - ok
18:43:24.0218 1604 [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
18:43:24.0218 1604 Compbatt - ok
18:43:24.0233 1604 COMSysApp - ok
18:43:24.0296 1604 cpuz132 - ok
18:43:24.0311 1604 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:43:24.0311 1604 crcdisk - ok
18:43:24.0343 1604 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
18:43:24.0343 1604 Crusoe - ok
18:43:24.0389 1604 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:43:24.0389 1604 CryptSvc - ok
18:43:24.0467 1604 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:43:24.0483 1604 DcomLaunch - ok
18:43:24.0514 1604 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:43:24.0514 1604 DfsC - ok
18:43:24.0608 1604 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
18:43:24.0655 1604 DFSR - ok
18:43:24.0701 1604 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
18:43:24.0717 1604 Dhcp - ok
18:43:24.0748 1604 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
18:43:24.0764 1604 disk - ok
18:43:24.0779 1604 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:43:24.0795 1604 Dnscache - ok
18:43:24.0811 1604 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:43:24.0811 1604 dot3svc - ok
18:43:24.0842 1604 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
18:43:24.0842 1604 DPS - ok
18:43:24.0889 1604 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:43:24.0889 1604 drmkaud - ok
18:43:24.0935 1604 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:43:24.0935 1604 DXGKrnl - ok
18:43:24.0982 1604 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
18:43:24.0982 1604 E1G60 - ok
18:43:25.0029 1604 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
18:43:25.0029 1604 EapHost - ok
18:43:25.0076 1604 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
18:43:25.0076 1604 Ecache - ok
18:43:25.0154 1604 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:43:25.0154 1604 ehRecvr - ok
18:43:25.0201 1604 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
18:43:25.0201 1604 ehSched - ok
18:43:25.0216 1604 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
18:43:25.0216 1604 ehstart - ok
18:43:25.0247 1604 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:43:25.0247 1604 elxstor - ok
18:43:25.0294 1604 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
18:43:25.0310 1604 EMDMgmt - ok
18:43:25.0357 1604 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
18:43:25.0357 1604 EventSystem - ok
18:43:25.0403 1604 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
18:43:25.0419 1604 exfat - ok
18:43:25.0450 1604 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:43:25.0450 1604 fastfat - ok
18:43:25.0481 1604 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:43:25.0481 1604 fdc - ok
18:43:25.0513 1604 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
18:43:25.0513 1604 fdPHost - ok
18:43:25.0544 1604 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
18:43:25.0544 1604 FDResPub - ok
18:43:25.0575 1604 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:43:25.0575 1604 FileInfo - ok
18:43:25.0622 1604 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:43:25.0622 1604 Filetrace - ok
18:43:25.0637 1604 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:43:25.0637 1604 flpydisk - ok
18:43:25.0669 1604 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:43:25.0684 1604 FltMgr - ok
18:43:25.0715 1604 [ 85E5AD3A9D56FD6F92DB5FC9CA62E2E4 ] FlyUsb C:\Windows\system32\DRIVERS\FlyUsb.sys
18:43:25.0715 1604 FlyUsb - ok
18:43:25.0793 1604 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
18:43:25.0809 1604 FontCache - ok
18:43:25.0856 1604 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:43:25.0856 1604 FontCache3.0.0.0 - ok
18:43:25.0903 1604 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:43:25.0903 1604 Fs_Rec - ok
18:43:25.0934 1604 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:43:25.0934 1604 gagp30kx - ok
18:43:25.0981 1604 [ 5AE3A887ECE5BBB72CFAB273C2FD1CFA ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:43:25.0981 1604 GEARAspiWDM - ok
18:43:26.0027 1604 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
18:43:26.0027 1604 gpsvc - ok
18:43:26.0090 1604 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:43:26.0090 1604 HdAudAddService - ok
18:43:26.0137 1604 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:43:26.0152 1604 HDAudBus - ok
18:43:26.0183 1604 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:43:26.0199 1604 HidBth - ok
18:43:26.0215 1604 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
18:43:26.0215 1604 HidIr - ok
18:43:26.0246 1604 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
18:43:26.0246 1604 hidserv - ok
18:43:26.0277 1604 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:43:26.0277 1604 HidUsb - ok
18:43:26.0324 1604 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:43:26.0324 1604 hkmsvc - ok
18:43:26.0355 1604 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
18:43:26.0355 1604 HpCISSs - ok
18:43:26.0433 1604 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
18:43:26.0449 1604 hpqcxs08 - ok
18:43:26.0495 1604 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] hpsunidr C:\Windows\system32\DRIVERS\hpsunidr.sys
18:43:26.0495 1604 hpsunidr - ok
18:43:26.0558 1604 [ 88749FBF8BEB18C90E7D6626C8C1910B ] HSF_DP C:\Windows\system32\DRIVERS\HSX_DP.sys
18:43:26.0573 1604 HSF_DP - ok
18:43:26.0620 1604 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
18:43:26.0620 1604 HSXHWBS2 - ok
18:43:26.0683 1604 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:43:26.0698 1604 HTTP - ok
18:43:26.0729 1604 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
18:43:26.0729 1604 i2omp - ok
18:43:26.0792 1604 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:43:26.0807 1604 i8042prt - ok
18:43:26.0839 1604 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
18:43:26.0839 1604 iaStorV - ok
18:43:26.0932 1604 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:43:26.0948 1604 idsvc - ok
18:43:26.0979 1604 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:43:26.0979 1604 iirsp - ok
18:43:27.0041 1604 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
18:43:27.0057 1604 IKEEXT - ok
18:43:27.0151 1604 [ 84ED2154239F9D013BBD3220755ADA8B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
18:43:27.0197 1604 IntcAzAudAddService - ok
18:43:27.0197 1604 Scan interrupted by user!
18:43:27.0197 1604 ================ Scan global ===============================
18:43:27.0197 1604 Scan interrupted by user!
18:43:27.0197 1604 ================ Scan MBR ==================================
18:43:27.0197 1604 Scan interrupted by user!
18:43:27.0197 1604 ================ Scan VBR ==================================
18:43:27.0197 1604 Scan interrupted by user!
18:43:27.0197 1604 ============================================================
18:43:27.0197 1604 Scan finished
18:43:27.0197 1604 ============================================================
18:43:27.0213 1908 Detected object count: 0
18:43:27.0213 1908 Actual detected object count: 0
18:43:38.0648 1616 ============================================================
18:43:38.0648 1616 Scan started
18:43:38.0648 1616 Mode: Manual; TDLFS;
18:43:38.0648 1616 ============================================================
18:43:38.0757 1616 ================ Scan system memory ========================
18:43:38.0757 1616 System memory - ok
18:43:38.0757 1616 ================ Scan services =============================
18:43:38.0944 1616 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
18:43:38.0944 1616 ACPI - ok
18:43:39.0022 1616 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:43:39.0022 1616 AdobeARMservice - ok
18:43:39.0069 1616 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:43:39.0069 1616 AdobeFlashPlayerUpdateSvc - ok
18:43:39.0131 1616 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:43:39.0147 1616 adp94xx - ok
18:43:39.0163 1616 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:43:39.0178 1616 adpahci - ok
18:43:39.0209 1616 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
18:43:39.0209 1616 adpu160m - ok
18:43:39.0225 1616 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:43:39.0241 1616 adpu320 - ok
18:43:39.0287 1616 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:43:39.0303 1616 AeLookupSvc - ok
18:43:39.0350 1616 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
18:43:39.0350 1616 AFD - ok
18:43:39.0381 1616 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:43:39.0381 1616 agp440 - ok
18:43:39.0428 1616 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
18:43:39.0428 1616 aic78xx - ok
18:43:39.0475 1616 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
18:43:39.0475 1616 ALG - ok
18:43:39.0506 1616 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
18:43:39.0506 1616 aliide - ok
18:43:39.0537 1616 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
18:43:39.0537 1616 amdagp - ok
18:43:39.0568 1616 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
18:43:39.0568 1616 amdide - ok
18:43:39.0584 1616 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
18:43:39.0584 1616 AmdK7 - ok
18:43:39.0631 1616 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:43:39.0631 1616 AmdK8 - ok
18:43:39.0646 1616 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
18:43:39.0646 1616 Appinfo - ok
18:43:39.0709 1616 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:43:39.0709 1616 Apple Mobile Device - ok
18:43:39.0724 1616 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
18:43:39.0724 1616 arc - ok
18:43:39.0771 1616 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:43:39.0771 1616 arcsas - ok
18:43:39.0802 1616 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:43:39.0802 1616 AsyncMac - ok
18:43:39.0849 1616 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
18:43:39.0849 1616 atapi - ok
18:43:39.0880 1616 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:43:39.0880 1616 AudioEndpointBuilder - ok
18:43:39.0896 1616 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
18:43:39.0896 1616 Audiosrv - ok
18:43:39.0943 1616 [ 14196079DDDD871D8BA6C406C15C3F4A ] bcm C:\Windows\system32\DRIVERS\drxvi314.sys
18:43:39.0958 1616 bcm - ok
18:43:39.0989 1616 [ 360C731BD6537C635C8D15B2F0D49669 ] bcmbusctr C:\Windows\system32\DRIVERS\BcmBusCtr.sys
18:43:39.0989 1616 bcmbusctr - ok
18:43:40.0036 1616 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
18:43:40.0036 1616 Beep - ok
18:43:40.0067 1616 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
18:43:40.0067 1616 BFE - ok
18:43:40.0114 1616 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
18:43:40.0130 1616 BITS - ok
18:43:40.0130 1616 blbdrive - ok
18:43:40.0192 1616 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:43:40.0192 1616 Bonjour Service - ok
18:43:40.0223 1616 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:43:40.0223 1616 bowser - ok
18:43:40.0239 1616 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
18:43:40.0255 1616 BrFiltLo - ok
18:43:40.0270 1616 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
18:43:40.0270 1616 BrFiltUp - ok
18:43:40.0301 1616 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
18:43:40.0301 1616 Browser - ok
18:43:40.0333 1616 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
18:43:40.0333 1616 Brserid - ok
18:43:40.0364 1616 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
18:43:40.0364 1616 BrSerWdm - ok
18:43:40.0395 1616 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
18:43:40.0395 1616 BrUsbMdm - ok
18:43:40.0411 1616 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
18:43:40.0411 1616 BrUsbSer - ok
18:43:40.0426 1616 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:43:40.0426 1616 BTHMODEM - ok
18:43:40.0473 1616 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:43:40.0473 1616 cdfs - ok
18:43:40.0504 1616 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:43:40.0504 1616 cdrom - ok
18:43:40.0535 1616 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
18:43:40.0535 1616 CertPropSvc - ok
18:43:40.0567 1616 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
18:43:40.0567 1616 circlass - ok
18:43:40.0613 1616 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
18:43:40.0613 1616 CLFS - ok
18:43:40.0660 1616 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:43:40.0660 1616 clr_optimization_v2.0.50727_32 - ok
18:43:40.0723 1616 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:43:40.0723 1616 clr_optimization_v4.0.30319_32 - ok
18:43:40.0738 1616 CLTNetCnService - ok
18:43:40.0769 1616 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:43:40.0769 1616 cmdide - ok
18:43:40.0816 1616 [ 33F77F7CB2C2EFE34B3BC9CC716F73F3 ] cm_ser C:\Windows\system32\DRIVERS\cm_ser.sys
18:43:40.0816 1616 cm_ser - ok
18:43:40.0832 1616 [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
18:43:40.0832 1616 Compbatt - ok
18:43:40.0847 1616 COMSysApp - ok
18:43:40.0910 1616 cpuz132 - ok
18:43:40.0910 1616 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:43:40.0925 1616 crcdisk - ok
18:43:40.0941 1616 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
18:43:40.0941 1616 Crusoe - ok
18:43:41.0003 1616 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:43:41.0003 1616 CryptSvc - ok
18:43:41.0050 1616 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:43:41.0050 1616 DcomLaunch - ok
18:43:41.0097 1616 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:43:41.0097 1616 DfsC - ok
18:43:41.0175 1616 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
18:43:41.0191 1616 DFSR - ok
18:43:41.0237 1616 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
18:43:41.0237 1616 Dhcp - ok
18:43:41.0269 1616 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
18:43:41.0269 1616 disk - ok
18:43:41.0300 1616 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:43:41.0300 1616 Dnscache - ok
18:43:41.0331 1616 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:43:41.0331 1616 dot3svc - ok
18:43:41.0362 1616 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
18:43:41.0362 1616 DPS - ok
18:43:41.0409 1616 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:43:41.0409 1616 drmkaud - ok
18:43:41.0440 1616 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:43:41.0456 1616 DXGKrnl - ok
18:43:41.0471 1616 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
18:43:41.0471 1616 E1G60 - ok
18:43:41.0534 1616 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
18:43:41.0534 1616 EapHost - ok
18:43:41.0565 1616 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
18:43:41.0565 1616 Ecache - ok
18:43:41.0627 1616 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:43:41.0627 1616 ehRecvr - ok
18:43:41.0659 1616 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
18:43:41.0659 1616 ehSched - ok
18:43:41.0674 1616 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
18:43:41.0674 1616 ehstart - ok
18:43:41.0705 1616 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:43:41.0705 1616 elxstor - ok
18:43:41.0768 1616 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
18:43:41.0768 1616 EMDMgmt - ok
18:43:41.0815 1616 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
18:43:41.0815 1616 EventSystem - ok
18:43:41.0861 1616 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
18:43:41.0861 1616 exfat - ok
18:43:41.0893 1616 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:43:41.0893 1616 fastfat - ok
18:43:41.0924 1616 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:43:41.0924 1616 fdc - ok
18:43:41.0971 1616 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
18:43:41.0971 1616 fdPHost - ok
18:43:41.0986 1616 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
18:43:41.0986 1616 FDResPub - ok
18:43:42.0017 1616 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:43:42.0017 1616 FileInfo - ok
18:43:42.0064 1616 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:43:42.0064 1616 Filetrace - ok
18:43:42.0080 1616 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:43:42.0080 1616 flpydisk - ok
18:43:42.0142 1616 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:43:42.0142 1616 FltMgr - ok
18:43:42.0173 1616 [ 85E5AD3A9D56FD6F92DB5FC9CA62E2E4 ] FlyUsb C:\Windows\system32\DRIVERS\FlyUsb.sys
18:43:42.0173 1616 FlyUsb - ok
18:43:42.0236 1616 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
18:43:42.0236 1616 FontCache - ok
18:43:42.0298 1616 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:43:42.0298 1616 FontCache3.0.0.0 - ok
18:43:42.0329 1616 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:43:42.0329 1616 Fs_Rec - ok
18:43:42.0361 1616 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:43:42.0361 1616 gagp30kx - ok
18:43:42.0407 1616 [ 5AE3A887ECE5BBB72CFAB273C2FD1CFA ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:43:42.0407 1616 GEARAspiWDM - ok
18:43:42.0470 1616 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
18:43:42.0470 1616 gpsvc - ok
18:43:42.0517 1616 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:43:42.0532 1616 HdAudAddService - ok
18:43:42.0595 1616 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:43:42.0595 1616 HDAudBus - ok
18:43:42.0626 1616 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:43:42.0626 1616 HidBth - ok
18:43:42.0641 1616 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
18:43:42.0641 1616 HidIr - ok
18:43:42.0673 1616 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
18:43:42.0673 1616 hidserv - ok
18:43:42.0719 1616 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:43:42.0719 1616 HidUsb - ok
18:43:42.0766 1616 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:43:42.0766 1616 hkmsvc - ok
18:43:42.0782 1616 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
18:43:42.0782 1616 HpCISSs - ok
18:43:42.0860 1616 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
18:43:42.0860 1616 hpqcxs08 - ok
18:43:42.0907 1616 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] hpsunidr C:\Windows\system32\DRIVERS\hpsunidr.sys
18:43:42.0907 1616 hpsunidr - ok
18:43:42.0953 1616 [ 88749FBF8BEB18C90E7D6626C8C1910B ] HSF_DP C:\Windows\system32\DRIVERS\HSX_DP.sys
18:43:42.0969 1616 HSF_DP - ok
18:43:42.0985 1616 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
18:43:42.0985 1616 HSXHWBS2 - ok
18:43:43.0047 1616 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:43:43.0047 1616 HTTP - ok
18:43:43.0078 1616 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
18:43:43.0078 1616 i2omp - ok
18:43:43.0109 1616 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:43:43.0109 1616 i8042prt - ok
18:43:43.0156 1616 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
18:43:43.0156 1616 iaStorV - ok
18:43:43.0250 1616 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:43:43.0250 1616 idsvc - ok
18:43:43.0281 1616 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:43:43.0281 1616 iirsp - ok
18:43:43.0312 1616 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
18:43:43.0328 1616 IKEEXT - ok
18:43:43.0421 1616 [ 84ED2154239F9D013BBD3220755ADA8B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
18:43:43.0437 1616 IntcAzAudAddService - ok
18:43:43.0453 1616 [ 97469037714070E45194ED318D636401 ] intelide C:\Windows\system32\drivers\intelide.sys
18:43:43.0453 1616 intelide - ok
18:43:43.0499 1616 [ CE44CC04262F28216DD4341E9E36A16F ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:43:43.0499 1616 intelppm - ok
18:43:43.0531 1616 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:43:43.0531 1616 IPBusEnum - ok
18:43:43.0562 1616 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:43:43.0562 1616 IpFilterDriver - ok
18:43:43.0624 1616 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:43:43.0624 1616 iphlpsvc - ok
18:43:43.0655 1616 IpInIp - ok
18:43:43.0671 1616 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
18:43:43.0687 1616 IPMIDRV - ok
18:43:43.0733 1616 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
18:43:43.0733 1616 IPNAT - ok
18:43:43.0827 1616 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:43:43.0843 1616 iPod Service - ok
18:43:43.0874 1616 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:43:43.0874 1616 IRENUM - ok
18:43:43.0905 1616 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:43:43.0905 1616 isapnp - ok
18:43:43.0952 1616 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
18:43:43.0952 1616 iScsiPrt - ok
18:43:43.0999 1616 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
18:43:43.0999 1616 iteatapi - ok
18:43:44.0030 1616 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
18:43:44.0030 1616 iteraid - ok
18:43:44.0077 1616 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:43:44.0077 1616 kbdclass - ok
18:43:44.0108 1616 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:43:44.0108 1616 kbdhid - ok
18:43:44.0170 1616 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
18:43:44.0170 1616 KeyIso - ok
18:43:44.0217 1616 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:43:44.0233 1616 KSecDD - ok
18:43:44.0279 1616 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
18:43:44.0279 1616 KtmRm - ok
18:43:44.0326 1616 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
18:43:44.0342 1616 LanmanServer - ok
18:43:44.0389 1616 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:43:44.0404 1616 LanmanWorkstation - ok
18:43:44.0623 1616 [ 3C879D04BB6466E2853C3155B635CC45 ] LeapFrog Connect Device Service C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
18:43:44.0779 1616 LeapFrog Connect Device Service - ok
18:43:44.0810 1616 [ 5CFFDA921FE0C9E9EBDE3150D3C81594 ] Leapfrog-USBLAN C:\Windows\system32\DRIVERS\btblan.sys
18:43:44.0825 1616 Leapfrog-USBLAN - ok
18:43:44.0872 1616 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:43:44.0872 1616 lltdio - ok
18:43:44.0903 1616 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:43:44.0919 1616 lltdsvc - ok
18:43:44.0950 1616 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:43:44.0950 1616 lmhosts - ok
18:43:44.0997 1616 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:43:44.0997 1616 LSI_FC - ok
18:43:45.0028 1616 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:43:45.0028 1616 LSI_SAS - ok
18:43:45.0059 1616 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:43:45.0059 1616 LSI_SCSI - ok
18:43:45.0106 1616 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
18:43:45.0106 1616 luafv - ok
18:43:45.0137 1616 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:43:45.0137 1616 Mcx2Svc - ok
18:43:45.0200 1616 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:43:45.0200 1616 mdmxsdk - ok
18:43:45.0231 1616 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
18:43:45.0231 1616 megasas - ok
18:43:45.0278 1616 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
18:43:45.0278 1616 MMCSS - ok
18:43:45.0309 1616 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
18:43:45.0309 1616 Modem - ok
18:43:45.0356 1616 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:43:45.0356 1616 monitor - ok
18:43:45.0371 1616 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:43:45.0371 1616 mouclass - ok
18:43:45.0403 1616 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:43:45.0403 1616 mouhid - ok
18:43:45.0434 1616 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
18:43:45.0434 1616 MountMgr - ok
18:43:45.0496 1616 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:43:45.0496 1616 MozillaMaintenance - ok
18:43:45.0559 1616 [ C98301AD8173A2235A9AB828955C32BB ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
18:43:45.0559 1616 MpFilter - ok
18:43:45.0590 1616 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
18:43:45.0590 1616 mpio - ok
18:43:45.0621 1616 [ AEB186AFFF5D9CFED823C15D846AAC3B ] MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys
18:43:45.0621 1616 MpNWMon - ok
18:43:45.0652 1616 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:43:45.0652 1616 mpsdrv - ok
18:43:45.0699 1616 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
18:43:45.0715 1616 MpsSvc - ok
18:43:45.0730 1616 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
18:43:45.0730 1616 Mraid35x - ok
18:43:45.0761 1616 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:43:45.0777 1616 MRxDAV - ok
18:43:45.0808 1616 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:43:45.0808 1616 mrxsmb - ok
18:43:45.0839 1616 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:43:45.0855 1616 mrxsmb10 - ok
18:43:45.0871 1616 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:43:45.0871 1616 mrxsmb20 - ok
18:43:45.0902 1616 [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci C:\Windows\system32\drivers\msahci.sys
18:43:45.0902 1616 msahci - ok
18:43:45.0933 1616 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:43:45.0933 1616 msdsm - ok
18:43:45.0964 1616 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
18:43:45.0964 1616 MSDTC - ok
18:43:46.0011 1616 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:43:46.0011 1616 Msfs - ok
18:43:46.0042 1616 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:43:46.0042 1616 msisadrv - ok
18:43:46.0073 1616 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:43:46.0073 1616 MSiSCSI - ok
18:43:46.0089 1616 msiserver - ok
18:43:46.0120 1616 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:43:46.0120 1616 MSKSSRV - ok
18:43:46.0167 1616 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:43:46.0167 1616 MSPCLOCK - ok
18:43:46.0214 1616 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:43:46.0214 1616 MSPQM - ok
18:43:46.0261 1616 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:43:46.0261 1616 MsRPC - ok
18:43:46.0307 1616 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:43:46.0307 1616 mssmbios - ok
18:43:46.0323 1616 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:43:46.0323 1616 MSTEE - ok
18:43:46.0354 1616 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
18:43:46.0354 1616 Mup - ok
18:43:46.0401 1616 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
18:43:46.0401 1616 napagent - ok
18:43:46.0448 1616 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:43:46.0448 1616 NativeWifiP - ok
18:43:46.0495 1616 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:43:46.0495 1616 NDIS - ok
18:43:46.0526 1616 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:43:46.0526 1616 NdisTapi - ok
18:43:46.0557 1616 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:43:46.0557 1616 Ndisuio - ok
18:43:46.0588 1616 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:43:46.0588 1616 NdisWan - ok
18:43:46.0635 1616 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:43:46.0635 1616 NDProxy - ok
18:43:46.0682 1616 [ 1352E1648213551923A0A822E441553C ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
18:43:46.0682 1616 Netaapl - ok
18:43:46.0697 1616 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:43:46.0697 1616 NetBIOS - ok
18:43:46.0729 1616 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
18:43:46.0744 1616 netbt - ok
18:43:46.0760 1616 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
18:43:46.0760 1616 Netlogon - ok
18:43:46.0791 1616 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
18:43:46.0807 1616 Netman - ok
18:43:46.0838 1616 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
18:43:46.0838 1616 netprofm - ok
18:43:46.0900 1616 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:43:46.0900 1616 NetTcpPortSharing - ok
18:43:46.0947 1616 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:43:46.0947 1616 nfrd960 - ok
18:43:46.0994 1616 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:43:46.0994 1616 NlaSvc - ok
18:43:47.0009 1616 Nmea - ok
18:43:47.0041 1616 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:43:47.0041 1616 Npfs - ok
18:43:47.0087 1616 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
18:43:47.0087 1616 nsi - ok
18:43:47.0134 1616 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:43:47.0134 1616 nsiproxy - ok
18:43:47.0197 1616 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:43:47.0212 1616 Ntfs - ok
18:43:47.0275 1616 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
18:43:47.0275 1616 ntrigdigi - ok
18:43:47.0306 1616 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
18:43:47.0306 1616 Null - ok
18:43:47.0368 1616 [ D958A2B5F6AD5C3B8CCDC4D7DA62466C ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
18:43:47.0368 1616 NVENETFD - ok
18:43:47.0571 1616 [ FBBA09782F2FAC5A57619DF378BA9372 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:43:47.0758 1616 nvlddmkm - ok
18:43:47.0789 1616 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:43:47.0789 1616 nvraid - ok
18:43:47.0821 1616 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:43:47.0821 1616 nvstor - ok
18:43:47.0852 1616 [ 7EBA6C9A0A295B1559EFB9062E701218 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
18:43:47.0867 1616 nvstor32 - ok
18:43:47.0899 1616 [ CF7769F13B3ECC5E2BF1B3D1C5831AE8 ] nvsvc C:\Windows\system32\nvvsvc.exe
18:43:47.0899 1616 nvsvc - ok
18:43:47.0945 1616 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:43:47.0945 1616 nv_agp - ok
18:43:47.0992 1616 [ 93213C7EC08E01E37A935BF144E75DF6 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
18:43:47.0992 1616 NWADI - ok
18:43:48.0008 1616 NwlnkFlt - ok
18:43:48.0023 1616 NwlnkFwd - ok
18:43:48.0055 1616 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
18:43:48.0055 1616 ohci1394 - ok
18:43:48.0117 1616 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
18:43:48.0133 1616 p2pimsvc - ok
18:43:48.0148 1616 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
18:43:48.0148 1616 p2psvc - ok
18:43:48.0179 1616 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
18:43:48.0179 1616 Parport - ok
18:43:48.0226 1616 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:43:48.0226 1616 partmgr - ok
18:43:48.0257 1616 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
18:43:48.0273 1616 Parvdm - ok
18:43:48.0289 1616 PCASp50 - ok
18:43:48.0335 1616 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
18:43:48.0335 1616 PcaSvc - ok
18:43:48.0367 1616 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
18:43:48.0382 1616 pci - ok
18:43:48.0398 1616 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
18:43:48.0398 1616 pciide - ok
18:43:48.0429 1616 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:43:48.0445 1616 pcmcia - ok
18:43:48.0460 1616 PCTINDIS5 - ok
18:43:48.0507 1616 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:43:48.0523 1616 PEAUTH - ok
18:43:48.0616 1616 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
18:43:48.0632 1616 pla - ok
18:43:48.0679 1616 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:43:48.0679 1616 PlugPlay - ok
18:43:48.0725 1616 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
18:43:48.0741 1616 PNRPAutoReg - ok
18:43:48.0757 1616 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
18:43:48.0757 1616 PNRPsvc - ok
18:43:48.0788 1616 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:43:48.0788 1616 PolicyAgent - ok
18:43:48.0835 1616 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:43:48.0835 1616 PptpMiniport - ok
18:43:48.0866 1616 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
18:43:48.0866 1616 Processor - ok
18:43:48.0897 1616 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
18:43:48.0897 1616 ProfSvc - ok
18:43:48.0913 1616 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
18:43:48.0913 1616 ProtectedStorage - ok
18:43:48.0944 1616 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\Windows\system32\DRIVERS\PS2.sys
18:43:48.0944 1616 Ps2 - ok
18:43:48.0991 1616 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
18:43:48.0991 1616 PSched - ok
18:43:49.0006 1616 [ FEFFCFDC528764A04C8ED63D5FA6E711 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
18:43:49.0006 1616 PxHelp20 - ok
18:43:49.0069 1616 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:43:49.0100 1616 ql2300 - ok
18:43:49.0147 1616 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:43:49.0147 1616 ql40xx - ok
18:43:49.0178 1616 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
18:43:49.0193 1616 QWAVE - ok
18:43:49.0256 1616 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:43:49.0256 1616 QWAVEdrv - ok
18:43:49.0287 1616 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:43:49.0287 1616 RasAcd - ok
18:43:49.0334 1616 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
18:43:49.0334 1616 RasAuto - ok
18:43:49.0365 1616 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:43:49.0365 1616 Rasl2tp - ok
18:43:49.0412 1616 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
18:43:49.0427 1616 RasMan - ok
18:43:49.0459 1616 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:43:49.0459 1616 RasPppoe - ok
18:43:49.0521 1616 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:43:49.0521 1616 RasSstp - ok
18:43:49.0552 1616 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:43:49.0568 1616 rdbss - ok
18:43:49.0583 1616 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:43:49.0599 1616 RDPCDD - ok
18:43:49.0630 1616 [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
18:43:49.0646 1616 rdpdr - ok
18:43:49.0646 1616 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:43:49.0646 1616 RDPENCDD - ok
18:43:49.0693 1616 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:43:49.0708 1616 RDPWD - ok
18:43:49.0755 1616 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:43:49.0755 1616 RemoteAccess - ok
18:43:49.0771 1616 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:43:49.0786 1616 RemoteRegistry - ok
18:43:49.0833 1616 [ D9B34325EE5DF78B8F28A3DE9F577C7D ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
18:43:49.0849 1616 RimVSerPort - ok
18:43:49.0895 1616 [ 75E8A6BFA7374ABA833AE92BF41AE4E6 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
18:43:49.0895 1616 ROOTMODEM - ok
18:43:49.0927 1616 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
18:43:49.0927 1616 RpcLocator - ok
18:43:49.0958 1616 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
18:43:49.0958 1616 RpcSs - ok
18:43:49.0989 1616 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:43:49.0989 1616 rspndr - ok
18:43:50.0020 1616 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
18:43:50.0020 1616 SamSs - ok
18:43:50.0051 1616 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:43:50.0051 1616 sbp2port - ok
18:43:50.0098 1616 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:43:50.0114 1616 SCardSvr - ok
18:43:50.0161 1616 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
18:43:50.0176 1616 Schedule - ok
18:43:50.0192 1616 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:43:50.0192 1616 SCPolicySvc - ok
18:43:50.0254 1616 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:43:50.0270 1616 SDRSVC - ok
18:43:50.0285 1616 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:43:50.0285 1616 secdrv - ok
18:43:50.0332 1616 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
18:43:50.0332 1616 seclogon - ok
18:43:50.0348 1616 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
18:43:50.0348 1616 SENS - ok
18:43:50.0395 1616 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
18:43:50.0395 1616 Serenum - ok
18:43:50.0426 1616 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
18:43:50.0426 1616 Serial - ok
18:43:50.0473 1616 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:43:50.0473 1616 sermouse - ok
18:43:50.0535 1616 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
18:43:50.0551 1616 SessionEnv - ok
18:43:50.0582 1616 [ 103B79418DA647736EE95645F305F68A ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:43:50.0582 1616 sffdisk - ok
18:43:50.0597 1616 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:43:50.0597 1616 sffp_mmc - ok
18:43:50.0644 1616 [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:43:50.0644 1616 sffp_sd - ok
18:43:50.0660 1616 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:43:50.0660 1616 sfloppy - ok
18:43:50.0707 1616 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:43:50.0707 1616 SharedAccess - ok
18:43:50.0753 1616 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:43:50.0753 1616 ShellHWDetection - ok
18:43:50.0785 1616 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
18:43:50.0800 1616 sisagp - ok
18:43:50.0831 1616 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
18:43:50.0831 1616 SiSRaid2 - ok
18:43:50.0847 1616 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:43:50.0847 1616 SiSRaid4 - ok
18:43:51.0003 1616 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
18:43:51.0065 1616 slsvc - ok
18:43:51.0112 1616 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
18:43:51.0112 1616 SLUINotify - ok
18:43:51.0159 1616 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:43:51.0159 1616 Smb - ok
18:43:51.0206 1616 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:43:51.0206 1616 SNMPTRAP - ok
18:43:51.0268 1616 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
18:43:51.0268 1616 spldr - ok
18:43:51.0299 1616 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
18:43:51.0315 1616 Spooler - ok
18:43:51.0346 1616 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:43:51.0362 1616 srv - ok
18:43:51.0377 1616 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:43:51.0393 1616 srv2 - ok
18:43:51.0409 1616 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:43:51.0409 1616 srvnet - ok
18:43:51.0424 1616 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:43:51.0424 1616 SSDPSRV - ok
18:43:51.0471 1616 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:43:51.0487 1616 SstpSvc - ok
18:43:51.0533 1616 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
18:43:51.0533 1616 stisvc - ok
18:43:51.0596 1616 [ D4CE4D370A26AE1BF41BE9F69D24D049 ] stllssvr c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
18:43:51.0596 1616 stllssvr - ok
18:43:51.0611 1616 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:43:51.0611 1616 swenum - ok
18:43:51.0658 1616 [ EDA7336CD2E334B4DB321BC60B7DA11E ] swmsflt C:\Windows\System32\drivers\swmsflt.sys
18:43:51.0674 1616 swmsflt - ok
18:43:51.0705 1616 [ 903A5E596A3910CEBFA33F3BD7D9C174 ] SWMX00 C:\Windows\system32\DRIVERS\swmx00.sys
18:43:51.0705 1616 SWMX00 - ok
18:43:51.0752 1616 [ 2F6F8B7F821C994DE3D1CAF399BF9CD3 ] SWNC5E00 C:\Windows\system32\DRIVERS\SWNC5E00.sys
18:43:51.0752 1616 SWNC5E00 - ok
18:43:51.0799 1616 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
18:43:51.0799 1616 swprv - ok
18:43:51.0845 1616 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
18:43:51.0845 1616 Symc8xx - ok
18:43:51.0861 1616 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
18:43:51.0861 1616 Sym_hi - ok
18:43:51.0877 1616 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
18:43:51.0892 1616 Sym_u3 - ok
18:43:51.0939 1616 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
18:43:51.0955 1616 SysMain - ok
18:43:51.0986 1616 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:43:51.0986 1616 TabletInputService - ok
18:43:52.0033 1616 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:43:52.0033 1616 TapiSrv - ok
18:43:52.0064 1616 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
18:43:52.0079 1616 TBS - ok
18:43:52.0142 1616 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:43:52.0157 1616 Tcpip - ok
18:43:52.0173 1616 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
18:43:52.0189 1616 Tcpip6 - ok
18:43:52.0220 1616 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:43:52.0220 1616 tcpipreg - ok
18:43:52.0282 1616 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:43:52.0282 1616 TDPIPE - ok
18:43:52.0313 1616 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:43:52.0313 1616 TDTCP - ok
18:43:52.0345 1616 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:43:52.0345 1616 tdx - ok
18:43:52.0360 1616 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:43:52.0376 1616 TermDD - ok
18:43:52.0407 1616 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
18:43:52.0423 1616 TermService - ok
18:43:52.0438 1616 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
18:43:52.0438 1616 Themes - ok
18:43:52.0454 1616 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
18:43:52.0454 1616 THREADORDER - ok
18:43:52.0501 1616 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
18:43:52.0516 1616 TrkWks - ok
18:43:52.0563 1616 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:43:52.0563 1616 TrustedInstaller - ok
18:43:52.0610 1616 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:43:52.0610 1616 tssecsrv - ok
18:43:52.0641 1616 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
18:43:52.0641 1616 tunmp - ok
18:43:52.0688 1616 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:43:52.0688 1616 tunnel - ok
18:43:52.0719 1616 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:43:52.0719 1616 uagp35 - ok
18:43:52.0766 1616 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:43:52.0766 1616 udfs - ok
18:43:52.0813 1616 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:43:52.0813 1616 UI0Detect - ok
18:43:52.0828 1616 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:43:52.0844 1616 uliagpkx - ok
18:43:52.0859 1616 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
18:43:52.0875 1616 uliahci - ok
18:43:52.0891 1616 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
18:43:52.0891 1616 UlSata - ok
18:43:52.0906 1616 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
18:43:52.0922 1616 ulsata2 - ok
18:43:52.0953 1616 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:43:52.0953 1616 umbus - ok
18:43:53.0000 1616 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
18:43:53.0000 1616 upnphost - ok
18:43:53.0031 1616 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
18:43:53.0047 1616 USBAAPL - ok
18:43:53.0093 1616 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:43:53.0093 1616 usbaudio - ok
18:43:53.0156 1616 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:43:53.0156 1616 usbccgp - ok
18:43:53.0171 1616 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:43:53.0187 1616 usbcir - ok
18:43:53.0218 1616 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:43:53.0218 1616 usbehci - ok
18:43:53.0296 1616 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:43:53.0312 1616 usbhub - ok
18:43:53.0327 1616 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:43:53.0327 1616 usbohci - ok
18:43:53.0359 1616 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:43:53.0374 1616 usbprint - ok
18:43:53.0421 1616 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:43:53.0421 1616 usbscan - ok
18:43:53.0452 1616 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:43:53.0452 1616 USBSTOR - ok
18:43:53.0483 1616 [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
18:43:53.0483 1616 usbuhci - ok
18:43:53.0530 1616 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
18:43:53.0530 1616 usbvideo - ok
18:43:53.0561 1616 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
18:43:53.0561 1616 UxSms - ok
18:43:53.0608 1616 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
18:43:53.0608 1616 vds - ok
18:43:53.0639 1616 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:43:53.0655 1616 vga - ok
18:43:53.0686 1616 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
18:43:53.0686 1616 VgaSave - ok
18:43:53.0717 1616 [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp C:\Windows\system32\drivers\viaagp.sys
18:43:53.0717 1616 viaagp - ok
18:43:53.0733 1616 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
18:43:53.0733 1616 ViaC7 - ok
18:43:53.0764 1616 [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide C:\Windows\system32\drivers\viaide.sys
18:43:53.0764 1616 viaide - ok
18:43:53.0780 1616 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:43:53.0780 1616 volmgr - ok
18:43:53.0811 1616 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:43:53.0827 1616 volmgrx - ok
18:43:53.0842 1616 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:43:53.0842 1616 volsnap - ok
18:43:53.0873 1616 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:43:53.0889 1616 vsmraid - ok
18:43:53.0920 1616 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
18:43:53.0951 1616 VSS - ok
18:43:53.0983 1616 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
18:43:53.0998 1616 W32Time - ok
18:43:54.0014 1616 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:43:54.0014 1616 WacomPen - ok
18:43:54.0061 1616 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
18:43:54.0061 1616 Wanarp - ok
18:43:54.0061 1616 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:43:54.0061 1616 Wanarpv6 - ok
18:43:54.0107 1616 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:43:54.0123 1616 wcncsvc - ok
18:43:54.0154 1616 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:43:54.0154 1616 WcsPlugInService - ok
18:43:54.0170 1616 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
18:43:54.0170 1616 Wd - ok
18:43:54.0217 1616 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:43:54.0263 1616 Wdf01000 - ok
18:43:54.0310 1616 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:43:54.0310 1616 WdiServiceHost - ok
18:43:54.0341 1616 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:43:54.0341 1616 WdiSystemHost - ok
18:43:54.0373 1616 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
18:43:54.0388 1616 WebClient - ok
18:43:54.0419 1616 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:43:54.0435 1616 Wecsvc - ok
18:43:54.0466 1616 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:43:54.0466 1616 wercplsupport - ok
18:43:54.0513 1616 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
18:43:54.0513 1616 WerSvc - ok
18:43:54.0560 1616 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:43:54.0560 1616 winachsf - ok
18:43:54.0638 1616 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
18:43:54.0653 1616 WinDefend - ok
18:43:54.0653 1616 WinHttpAutoProxySvc - ok
18:43:54.0716 1616 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:43:54.0716 1616 Winmgmt - ok
18:43:54.0778 1616 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
18:43:54.0794 1616 WinRM - ok
18:43:54.0856 1616 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:43:54.0872 1616 Wlansvc - ok
18:43:54.0887 1616 [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:43:54.0887 1616 WmiAcpi - ok
18:43:54.0934 1616 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:43:54.0934 1616 wmiApSrv - ok
18:43:55.0028 1616 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
18:43:55.0043 1616 WMPNetworkSvc - ok
18:43:55.0059 1616 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:43:55.0059 1616 WPCSvc - ok
18:43:55.0121 1616 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:43:55.0121 1616 WPDBusEnum - ok
18:43:55.0168 1616 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
18:43:55.0168 1616 WpdUsb - ok
18:43:55.0277 1616 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:43:55.0293 1616 WPFFontCache_v0400 - ok
18:43:55.0340 1616 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:43:55.0340 1616 ws2ifsl - ok
18:43:55.0371 1616 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
18:43:55.0371 1616 wscsvc - ok
18:43:55.0387 1616 WSearch - ok
18:43:55.0480 1616 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
18:43:55.0511 1616 wuauserv - ok
18:43:55.0558 1616 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:43:55.0558 1616 WUDFRd - ok
18:43:55.0621 1616 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:43:55.0621 1616 wudfsvc - ok
18:43:55.0667 1616 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
18:43:55.0667 1616 XAudio - ok
18:43:55.0699 1616 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
18:43:55.0714 1616 XAudioService - ok
18:43:55.0745 1616 ================ Scan global ===============================
18:43:55.0777 1616 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
18:43:55.0808 1616 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
18:43:55.0823 1616 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
18:43:55.0870 1616 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
18:43:55.0870 1616 [Global] - ok
18:43:55.0870 1616 ================ Scan MBR ==================================
18:43:55.0886 1616 [ 8913823FF508CCF109DB74B636C301DA ] \Device\Harddisk0\DR0
18:43:56.0135 1616 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:43:56.0135 1616 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:43:56.0151 1616 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk6\DR6
18:43:56.0822 1616 \Device\Harddisk6\DR6 - ok
18:43:56.0822 1616 ================ Scan VBR ==================================
18:43:56.0822 1616 [ D19B95B8E46BB2D522E0905D8B99DBA2 ] \Device\Harddisk0\DR0\Partition1
18:43:56.0822 1616 \Device\Harddisk0\DR0\Partition1 - ok
18:43:56.0837 1616 [ 4E52A849B8B3F93B60F8FFA8C94A2293 ] \Device\Harddisk0\DR0\Partition2
18:43:56.0837 1616 \Device\Harddisk0\DR0\Partition2 - ok
18:43:56.0869 1616 [ 644C6A3F3E4AD649C688B9180AB92B4E ] \Device\Harddisk6\DR6\Partition1
18:43:56.0869 1616 \Device\Harddisk6\DR6\Partition1 - ok
18:43:56.0869 1616 ============================================================
18:43:56.0869 1616 Scan finished
18:43:56.0869 1616 ============================================================
18:43:56.0884 1860 Detected object count: 1
18:43:56.0884 1860 Actual detected object count: 1
18:45:59.0032 1860 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\vbr - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\bid - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\affid - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\boot - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\cmd32 - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\cmd64 - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\dbg32 - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\dbg64 - copied to quarantine
18:45:59.0048 1860 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
18:45:59.0110 1860 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
18:45:59.0110 1860 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
18:45:59.0110 1860 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
18:45:59.0110 1860 \Device\Harddisk0\DR0\TDLFS\main - copied to quarantine
18:45:59.0110 1860 \Device\Harddisk0\DR0\TDLFS\subid - copied to quarantine
18:45:59.0126 1860 \Device\Harddisk0\DR0\TDLFS\tdi32 - copied to quarantine
18:45:59.0126 1860 \Device\Harddisk0\DR0\TDLFS\tdi64 - copied to quarantine
18:45:59.0126 1860 \Device\Harddisk0\DR0\TDLFS\main1 - copied to quarantine
18:45:59.0126 1860 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
18:46:10.0405 2028 Deinitialize success

And the aswMbr result:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-13 18:54:21
-----------------------------
18:54:21.870 OS Version: Windows 6.0.6002 Service Pack 2
18:54:21.870 Number of processors: 2 586 0x4B02
18:54:21.886 ComputerName: STENVERS UserName: Danielle
18:54:23.618 Initialize success
18:54:36.035 AVAST engine defs: 12091301
18:54:41.620 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000057
18:54:41.620 Disk 0 Vendor: HDT72252 V44O Size: 238475MB BusType: 6
18:54:41.636 Disk 0 MBR read successfully
18:54:41.651 Disk 0 MBR scan
18:54:41.651 Disk 0 unknown MBR code
18:54:41.667 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 232071 MB offset 63
18:54:41.698 Disk 0 Partition 2 00 17 Hidd HPFS/NTFS NTFS 2 MB offset 488391120
18:54:41.698 Disk 0 Partition 2 **INFECTED** MBR:SST [Rtk]
18:54:41.729 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 6400 MB offset 475282080
18:54:41.745 Disk 0 Partition 4 00 17 Hidd HPFS/NTFS NTFS 0 MB offset 488397152
18:54:41.760 Disk 0 Partition 4 **INFECTED** MBR:SST [Rtk]
18:54:41.760 Disk 0 scanning sectors +488397168
18:54:41.807 Disk 0 scanning C:\Windows\system32\drivers
18:54:52.790 Service scanning
18:55:22.289 Modules scanning
18:55:27.047 Disk 0 trace - called modules:
18:55:27.078 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys
18:55:27.078 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85d5f030]
18:55:27.110 3 CLASSPNP.SYS[8839d8b3] -> nt!IofCallDriver -> [0x85401d60]
18:55:27.110 5 acpi.sys[830166bc] -> nt!IofCallDriver -> \Device\00000057[0x84a0b720]
18:55:28.248 AVAST engine scan C:\Windows
18:55:32.258 AVAST engine scan C:\Windows\system32
18:59:13.341 AVAST engine scan C:\Windows\system32\drivers
18:59:29.144 AVAST engine scan C:\Users\Danielle
19:00:17.675 Disk 0 MBR has been saved successfully to "C:\Users\Danielle\Documents\MBR.dat"
19:00:17.675 The log file has been saved successfully to "C:\Users\Danielle\Documents\aswMBR.txt"

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 13 September 2012 - 09:37 PM

Run TDSSkiller and ASWMBR again and post the new logs

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 dds98248

dds98248
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 13 September 2012 - 09:57 PM

19:53:56.0072 1780 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
19:53:56.0585 1780 ============================================================
19:53:56.0585 1780 Current date / time: 2012/09/13 19:53:56.0585
19:53:56.0585 1780 SystemInfo:
19:53:56.0585 1780
19:53:56.0586 1780 OS Version: 6.0.6002 ServicePack: 2.0
19:53:56.0586 1780 Product type: Workstation
19:53:56.0586 1780 ComputerName: STENVERS
19:53:56.0586 1780 UserName: Danielle
19:53:56.0586 1780 Windows directory: C:\Windows
19:53:56.0586 1780 System windows directory: C:\Windows
19:53:56.0586 1780 Processor architecture: Intel x86
19:53:56.0586 1780 Number of processors: 2
19:53:56.0586 1780 Page size: 0x1000
19:53:56.0586 1780 Boot type: Safe boot with network
19:53:56.0586 1780 ============================================================
19:53:57.0612 1780 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
19:53:57.0638 1780 ============================================================
19:53:57.0638 1780 \Device\Harddisk0\DR0:
19:53:57.0650 1780 MBR partitions:
19:53:57.0650 1780 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C543A61
19:53:57.0650 1780 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C543AA0, BlocksNum 0xC80730
19:53:57.0650 1780 ============================================================
19:53:57.0778 1780 C: <-> \Device\Harddisk0\DR0\Partition1
19:53:57.0912 1780 D: <-> \Device\Harddisk0\DR0\Partition2
19:53:57.0912 1780 ============================================================
19:53:57.0912 1780 Initialize success
19:53:57.0912 1780 ============================================================
19:54:02.0914 0848 ============================================================
19:54:02.0914 0848 Scan started
19:54:02.0914 0848 Mode: Manual; TDLFS;
19:54:02.0914 0848 ============================================================
19:54:05.0259 0848 ================ Scan system memory ========================
19:54:05.0259 0848 System memory - ok
19:54:05.0259 0848 ================ Scan services =============================
19:54:05.0876 0848 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
19:54:05.0902 0848 ACPI - ok
19:54:06.0096 0848 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:54:06.0098 0848 AdobeARMservice - ok
19:54:06.0248 0848 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:54:06.0285 0848 AdobeFlashPlayerUpdateSvc - ok
19:54:06.0469 0848 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:54:06.0529 0848 adp94xx - ok
19:54:06.0650 0848 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:54:06.0695 0848 adpahci - ok
19:54:06.0723 0848 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
19:54:06.0751 0848 adpu160m - ok
19:54:06.0829 0848 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:54:06.0876 0848 adpu320 - ok
19:54:06.0925 0848 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:54:06.0962 0848 AeLookupSvc - ok
19:54:07.0060 0848 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
19:54:07.0094 0848 AFD - ok
19:54:07.0161 0848 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:54:07.0184 0848 agp440 - ok
19:54:07.0250 0848 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
19:54:07.0274 0848 aic78xx - ok
19:54:07.0315 0848 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
19:54:07.0342 0848 ALG - ok
19:54:07.0393 0848 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
19:54:07.0395 0848 aliide - ok
19:54:07.0468 0848 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
19:54:07.0487 0848 amdagp - ok
19:54:07.0538 0848 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
19:54:07.0590 0848 amdide - ok
19:54:07.0636 0848 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
19:54:07.0651 0848 AmdK7 - ok
19:54:07.0704 0848 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:54:07.0715 0848 AmdK8 - ok
19:54:07.0787 0848 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
19:54:07.0789 0848 Appinfo - ok
19:54:07.0967 0848 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:54:08.0016 0848 Apple Mobile Device - ok
19:54:08.0086 0848 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
19:54:08.0098 0848 arc - ok
19:54:08.0140 0848 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:54:08.0149 0848 arcsas - ok
19:54:08.0234 0848 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:54:08.0284 0848 AsyncMac - ok
19:54:08.0322 0848 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
19:54:08.0337 0848 atapi - ok
19:54:08.0436 0848 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:54:08.0465 0848 AudioEndpointBuilder - ok
19:54:08.0497 0848 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
19:54:08.0500 0848 Audiosrv - ok
19:54:08.0655 0848 [ 14196079DDDD871D8BA6C406C15C3F4A ] bcm C:\Windows\system32\DRIVERS\drxvi314.sys
19:54:08.0699 0848 bcm - ok
19:54:08.0788 0848 [ 360C731BD6537C635C8D15B2F0D49669 ] bcmbusctr C:\Windows\system32\DRIVERS\BcmBusCtr.sys
19:54:08.0803 0848 bcmbusctr - ok
19:54:08.0898 0848 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
19:54:08.0916 0848 Beep - ok
19:54:09.0037 0848 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
19:54:09.0072 0848 BFE - ok
19:54:09.0214 0848 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
19:54:09.0405 0848 BITS - ok
19:54:09.0414 0848 blbdrive - ok
19:54:09.0612 0848 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:54:09.0654 0848 Bonjour Service - ok
19:54:09.0702 0848 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:54:09.0743 0848 bowser - ok
19:54:09.0810 0848 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
19:54:09.0828 0848 BrFiltLo - ok
19:54:09.0855 0848 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
19:54:09.0869 0848 BrFiltUp - ok
19:54:09.0914 0848 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
19:54:09.0948 0848 Browser - ok
19:54:09.0992 0848 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
19:54:10.0010 0848 Brserid - ok
19:54:10.0057 0848 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
19:54:10.0070 0848 BrSerWdm - ok
19:54:10.0101 0848 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
19:54:10.0114 0848 BrUsbMdm - ok
19:54:10.0138 0848 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
19:54:10.0175 0848 BrUsbSer - ok
19:54:10.0227 0848 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:54:10.0229 0848 BTHMODEM - ok
19:54:10.0366 0848 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:54:10.0386 0848 cdfs - ok
19:54:10.0430 0848 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:54:10.0433 0848 cdrom - ok
19:54:10.0561 0848 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
19:54:10.0581 0848 CertPropSvc - ok
19:54:10.0624 0848 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
19:54:10.0627 0848 circlass - ok
19:54:10.0706 0848 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
19:54:10.0732 0848 CLFS - ok
19:54:10.0853 0848 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:54:10.0881 0848 clr_optimization_v2.0.50727_32 - ok
19:54:11.0187 0848 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:54:11.0320 0848 clr_optimization_v4.0.30319_32 - ok
19:54:11.0391 0848 CLTNetCnService - ok
19:54:11.0435 0848 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:54:11.0446 0848 cmdide - ok
19:54:11.0532 0848 [ 33F77F7CB2C2EFE34B3BC9CC716F73F3 ] cm_ser C:\Windows\system32\DRIVERS\cm_ser.sys
19:54:11.0564 0848 cm_ser - ok
19:54:11.0590 0848 [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
19:54:11.0627 0848 Compbatt - ok
19:54:11.0636 0848 COMSysApp - ok
19:54:11.0868 0848 cpuz132 - ok
19:54:11.0897 0848 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:54:11.0916 0848 crcdisk - ok
19:54:11.0966 0848 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
19:54:11.0978 0848 Crusoe - ok
19:54:12.0071 0848 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:54:12.0082 0848 CryptSvc - ok
19:54:12.0264 0848 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:54:12.0328 0848 DcomLaunch - ok
19:54:12.0366 0848 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:54:12.0409 0848 DfsC - ok
19:54:12.0675 0848 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
19:54:12.0990 0848 DFSR - ok
19:54:13.0149 0848 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
19:54:13.0175 0848 Dhcp - ok
19:54:13.0215 0848 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
19:54:13.0235 0848 disk - ok
19:54:13.0337 0848 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:54:13.0390 0848 Dnscache - ok
19:54:13.0513 0848 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:54:13.0552 0848 dot3svc - ok
19:54:13.0671 0848 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
19:54:13.0709 0848 DPS - ok
19:54:13.0766 0848 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:54:13.0780 0848 drmkaud - ok
19:54:13.0916 0848 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:54:13.0970 0848 DXGKrnl - ok
19:54:14.0074 0848 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
19:54:14.0098 0848 E1G60 - ok
19:54:14.0157 0848 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
19:54:14.0186 0848 EapHost - ok
19:54:14.0277 0848 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
19:54:14.0293 0848 Ecache - ok
19:54:14.0506 0848 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:54:14.0530 0848 ehRecvr - ok
19:54:14.0559 0848 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
19:54:14.0578 0848 ehSched - ok
19:54:14.0599 0848 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
19:54:14.0636 0848 ehstart - ok
19:54:14.0693 0848 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:54:14.0726 0848 elxstor - ok
19:54:14.0966 0848 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
19:54:15.0014 0848 EMDMgmt - ok
19:54:15.0102 0848 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
19:54:15.0144 0848 EventSystem - ok
19:54:15.0226 0848 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
19:54:15.0236 0848 exfat - ok
19:54:15.0311 0848 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:54:15.0337 0848 fastfat - ok
19:54:15.0381 0848 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:54:15.0394 0848 fdc - ok
19:54:15.0444 0848 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
19:54:15.0452 0848 fdPHost - ok
19:54:15.0523 0848 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
19:54:15.0565 0848 FDResPub - ok
19:54:15.0624 0848 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:54:15.0626 0848 FileInfo - ok
19:54:15.0679 0848 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:54:15.0696 0848 Filetrace - ok
19:54:15.0743 0848 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:54:15.0769 0848 flpydisk - ok
19:54:15.0918 0848 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:54:15.0933 0848 FltMgr - ok
19:54:16.0033 0848 [ 85E5AD3A9D56FD6F92DB5FC9CA62E2E4 ] FlyUsb C:\Windows\system32\DRIVERS\FlyUsb.sys
19:54:16.0049 0848 FlyUsb - ok
19:54:16.0344 0848 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
19:54:16.0516 0848 FontCache - ok
19:54:16.0746 0848 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:54:16.0773 0848 FontCache3.0.0.0 - ok
19:54:16.0833 0848 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:54:16.0834 0848 Fs_Rec - ok
19:54:16.0910 0848 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:54:16.0939 0848 gagp30kx - ok
19:54:17.0007 0848 [ 5AE3A887ECE5BBB72CFAB273C2FD1CFA ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:54:17.0024 0848 GEARAspiWDM - ok
19:54:17.0326 0848 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
19:54:17.0395 0848 gpsvc - ok
19:54:17.0535 0848 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:54:17.0588 0848 HdAudAddService - ok
19:54:17.0738 0848 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:54:17.0820 0848 HDAudBus - ok
19:54:17.0876 0848 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:54:17.0887 0848 HidBth - ok
19:54:17.0918 0848 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
19:54:17.0934 0848 HidIr - ok
19:54:17.0982 0848 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
19:54:18.0003 0848 hidserv - ok
19:54:18.0044 0848 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:54:18.0060 0848 HidUsb - ok
19:54:18.0125 0848 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:54:18.0146 0848 hkmsvc - ok
19:54:18.0192 0848 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
19:54:18.0205 0848 HpCISSs - ok
19:54:18.0490 0848 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
19:54:18.0530 0848 hpqcxs08 - ok
19:54:18.0624 0848 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] hpsunidr C:\Windows\system32\DRIVERS\hpsunidr.sys
19:54:18.0634 0848 hpsunidr - ok
19:54:18.0751 0848 [ 88749FBF8BEB18C90E7D6626C8C1910B ] HSF_DP C:\Windows\system32\DRIVERS\HSX_DP.sys
19:54:18.0878 0848 HSF_DP - ok
19:54:18.0976 0848 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
19:54:19.0014 0848 HSXHWBS2 - ok
19:54:19.0110 0848 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:54:19.0150 0848 HTTP - ok
19:54:19.0186 0848 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
19:54:19.0199 0848 i2omp - ok
19:54:19.0367 0848 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:54:19.0378 0848 i8042prt - ok
19:54:19.0413 0848 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
19:54:19.0438 0848 iaStorV - ok
19:54:19.0720 0848 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:54:19.0819 0848 idsvc - ok
19:54:19.0875 0848 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:54:19.0891 0848 iirsp - ok
19:54:19.0952 0848 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
19:54:19.0989 0848 IKEEXT - ok
19:54:20.0460 0848 [ 84ED2154239F9D013BBD3220755ADA8B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:54:21.0286 0848 IntcAzAudAddService - ok
19:54:21.0325 0848 [ 97469037714070E45194ED318D636401 ] intelide C:\Windows\system32\drivers\intelide.sys
19:54:21.0345 0848 intelide - ok
19:54:21.0396 0848 [ CE44CC04262F28216DD4341E9E36A16F ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:54:21.0407 0848 intelppm - ok
19:54:21.0467 0848 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:54:21.0509 0848 IPBusEnum - ok
19:54:21.0555 0848 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:54:21.0573 0848 IpFilterDriver - ok
19:54:21.0625 0848 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:54:21.0659 0848 iphlpsvc - ok
19:54:21.0668 0848 IpInIp - ok
19:54:21.0714 0848 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
19:54:21.0726 0848 IPMIDRV - ok
19:54:21.0757 0848 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
19:54:21.0782 0848 IPNAT - ok
19:54:22.0116 0848 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:54:22.0201 0848 iPod Service - ok
19:54:22.0238 0848 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:54:22.0253 0848 IRENUM - ok
19:54:22.0302 0848 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:54:22.0305 0848 isapnp - ok
19:54:22.0437 0848 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
19:54:22.0458 0848 iScsiPrt - ok
19:54:22.0494 0848 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
19:54:22.0524 0848 iteatapi - ok
19:54:22.0595 0848 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
19:54:22.0609 0848 iteraid - ok
19:54:22.0656 0848 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:54:22.0659 0848 kbdclass - ok
19:54:22.0690 0848 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:54:22.0701 0848 kbdhid - ok
19:54:22.0735 0848 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
19:54:22.0745 0848 KeyIso - ok
19:54:22.0847 0848 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:54:22.0887 0848 KSecDD - ok
19:54:23.0014 0848 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
19:54:23.0062 0848 KtmRm - ok
19:54:23.0107 0848 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
19:54:23.0153 0848 LanmanServer - ok
19:54:23.0233 0848 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:54:23.0251 0848 LanmanWorkstation - ok
19:54:24.0237 0848 [ 3C879D04BB6466E2853C3155B635CC45 ] LeapFrog Connect Device Service C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
19:54:25.0409 0848 LeapFrog Connect Device Service - ok
19:54:25.0496 0848 [ 5CFFDA921FE0C9E9EBDE3150D3C81594 ] Leapfrog-USBLAN C:\Windows\system32\DRIVERS\btblan.sys
19:54:25.0508 0848 Leapfrog-USBLAN - ok
19:54:25.0570 0848 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:54:25.0581 0848 lltdio - ok
19:54:25.0679 0848 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:54:25.0699 0848 lltdsvc - ok
19:54:25.0734 0848 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:54:25.0746 0848 lmhosts - ok
19:54:25.0801 0848 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:54:25.0813 0848 LSI_FC - ok
19:54:25.0840 0848 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:54:25.0852 0848 LSI_SAS - ok
19:54:25.0878 0848 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:54:25.0899 0848 LSI_SCSI - ok
19:54:25.0963 0848 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
19:54:26.0010 0848 luafv - ok
19:54:26.0044 0848 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:54:26.0046 0848 Mcx2Svc - ok
19:54:26.0135 0848 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:54:26.0159 0848 mdmxsdk - ok
19:54:26.0236 0848 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
19:54:26.0259 0848 megasas - ok
19:54:26.0337 0848 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
19:54:26.0339 0848 MMCSS - ok
19:54:26.0412 0848 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
19:54:26.0434 0848 Modem - ok
19:54:26.0494 0848 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:54:26.0496 0848 monitor - ok
19:54:26.0545 0848 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:54:26.0559 0848 mouclass - ok
19:54:26.0611 0848 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:54:26.0631 0848 mouhid - ok
19:54:26.0657 0848 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
19:54:26.0662 0848 MountMgr - ok
19:54:26.0747 0848 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:54:26.0776 0848 MozillaMaintenance - ok
19:54:26.0850 0848 [ C98301AD8173A2235A9AB828955C32BB ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:54:26.0868 0848 MpFilter - ok
19:54:26.0905 0848 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
19:54:26.0909 0848 mpio - ok
19:54:26.0936 0848 [ AEB186AFFF5D9CFED823C15D846AAC3B ] MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys
19:54:26.0946 0848 MpNWMon - ok
19:54:27.0000 0848 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:54:27.0002 0848 mpsdrv - ok
19:54:27.0063 0848 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
19:54:27.0133 0848 MpsSvc - ok
19:54:27.0169 0848 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
19:54:27.0172 0848 Mraid35x - ok
19:54:27.0263 0848 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:54:27.0283 0848 MRxDAV - ok
19:54:27.0339 0848 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:54:27.0366 0848 mrxsmb - ok
19:54:27.0409 0848 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:54:27.0433 0848 mrxsmb10 - ok
19:54:27.0463 0848 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:54:27.0466 0848 mrxsmb20 - ok
19:54:27.0569 0848 [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci C:\Windows\system32\drivers\msahci.sys
19:54:27.0606 0848 msahci - ok
19:54:27.0637 0848 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:54:27.0659 0848 msdsm - ok
19:54:27.0723 0848 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
19:54:27.0748 0848 MSDTC - ok
19:54:27.0824 0848 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:54:27.0836 0848 Msfs - ok
19:54:27.0871 0848 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:54:27.0873 0848 msisadrv - ok
19:54:27.0930 0848 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:54:27.0944 0848 MSiSCSI - ok
19:54:27.0954 0848 msiserver - ok
19:54:27.0999 0848 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:54:28.0019 0848 MSKSSRV - ok
19:54:28.0060 0848 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:54:28.0085 0848 MSPCLOCK - ok
19:54:28.0130 0848 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:54:28.0131 0848 MSPQM - ok
19:54:28.0185 0848 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:54:28.0199 0848 MsRPC - ok
19:54:28.0266 0848 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:54:28.0291 0848 mssmbios - ok
19:54:28.0331 0848 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:54:28.0353 0848 MSTEE - ok
19:54:28.0391 0848 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
19:54:28.0409 0848 Mup - ok
19:54:28.0491 0848 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
19:54:28.0540 0848 napagent - ok
19:54:28.0598 0848 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:54:28.0617 0848 NativeWifiP - ok
19:54:28.0769 0848 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:54:28.0809 0848 NDIS - ok
19:54:28.0843 0848 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:54:28.0848 0848 NdisTapi - ok
19:54:28.0891 0848 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:54:28.0917 0848 Ndisuio - ok
19:54:28.0951 0848 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:54:28.0961 0848 NdisWan - ok
19:54:29.0008 0848 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:54:29.0032 0848 NDProxy - ok
19:54:29.0203 0848 [ 1352E1648213551923A0A822E441553C ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
19:54:29.0225 0848 Netaapl - ok
19:54:29.0275 0848 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:54:29.0277 0848 NetBIOS - ok
19:54:29.0356 0848 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
19:54:29.0381 0848 netbt - ok
19:54:29.0409 0848 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
19:54:29.0411 0848 Netlogon - ok
19:54:29.0492 0848 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
19:54:29.0526 0848 Netman - ok
19:54:29.0591 0848 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
19:54:29.0639 0848 netprofm - ok
19:54:29.0699 0848 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:54:29.0727 0848 NetTcpPortSharing - ok
19:54:29.0767 0848 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:54:29.0781 0848 nfrd960 - ok
19:54:29.0920 0848 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:54:29.0942 0848 NlaSvc - ok
19:54:30.0014 0848 Nmea - ok
19:54:30.0071 0848 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:54:30.0092 0848 Npfs - ok
19:54:30.0151 0848 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
19:54:30.0154 0848 nsi - ok
19:54:30.0225 0848 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:54:30.0258 0848 nsiproxy - ok
19:54:30.0590 0848 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:54:30.0668 0848 Ntfs - ok
19:54:30.0738 0848 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
19:54:30.0767 0848 ntrigdigi - ok
19:54:30.0823 0848 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
19:54:30.0842 0848 Null - ok
19:54:31.0237 0848 [ D958A2B5F6AD5C3B8CCDC4D7DA62466C ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
19:54:31.0261 0848 NVENETFD - ok
19:54:32.0395 0848 [ FBBA09782F2FAC5A57619DF378BA9372 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:54:34.0176 0848 nvlddmkm - ok
19:54:34.0225 0848 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:54:34.0245 0848 nvraid - ok
19:54:34.0298 0848 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:54:34.0315 0848 nvstor - ok
19:54:34.0353 0848 [ 7EBA6C9A0A295B1559EFB9062E701218 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
19:54:34.0377 0848 nvstor32 - ok
19:54:34.0461 0848 [ CF7769F13B3ECC5E2BF1B3D1C5831AE8 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:54:34.0466 0848 nvsvc - ok
19:54:34.0498 0848 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:54:34.0512 0848 nv_agp - ok
19:54:34.0636 0848 [ 93213C7EC08E01E37A935BF144E75DF6 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
19:54:34.0656 0848 NWADI - ok
19:54:34.0669 0848 NwlnkFlt - ok
19:54:34.0683 0848 NwlnkFwd - ok
19:54:34.0753 0848 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
19:54:34.0756 0848 ohci1394 - ok
19:54:34.0924 0848 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
19:54:34.0973 0848 p2pimsvc - ok
19:54:35.0036 0848 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
19:54:35.0043 0848 p2psvc - ok
19:54:35.0105 0848 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
19:54:35.0120 0848 Parport - ok
19:54:35.0168 0848 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:54:35.0189 0848 partmgr - ok
19:54:35.0234 0848 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
19:54:35.0235 0848 Parvdm - ok
19:54:35.0311 0848 PCASp50 - ok
19:54:35.0340 0848 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
19:54:35.0358 0848 PcaSvc - ok
19:54:35.0458 0848 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
19:54:35.0469 0848 pci - ok
19:54:35.0540 0848 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
19:54:35.0559 0848 pciide - ok
19:54:35.0634 0848 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:54:35.0654 0848 pcmcia - ok
19:54:35.0687 0848 PCTINDIS5 - ok
19:54:35.0869 0848 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:54:35.0954 0848 PEAUTH - ok
19:54:36.0310 0848 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
19:54:36.0562 0848 pla - ok
19:54:36.0681 0848 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:54:36.0722 0848 PlugPlay - ok
19:54:36.0840 0848 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
19:54:36.0847 0848 PNRPAutoReg - ok
19:54:36.0904 0848 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
19:54:36.0910 0848 PNRPsvc - ok
19:54:37.0021 0848 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:54:37.0093 0848 PolicyAgent - ok
19:54:37.0148 0848 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:54:37.0157 0848 PptpMiniport - ok
19:54:37.0202 0848 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
19:54:37.0212 0848 Processor - ok
19:54:37.0266 0848 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
19:54:37.0273 0848 ProfSvc - ok
19:54:37.0300 0848 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
19:54:37.0301 0848 ProtectedStorage - ok
19:54:37.0406 0848 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\Windows\system32\DRIVERS\PS2.sys
19:54:37.0422 0848 Ps2 - ok
19:54:37.0464 0848 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
19:54:37.0467 0848 PSched - ok
19:54:37.0523 0848 [ FEFFCFDC528764A04C8ED63D5FA6E711 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
19:54:37.0525 0848 PxHelp20 - ok
19:54:37.0753 0848 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:54:37.0838 0848 ql2300 - ok
19:54:37.0879 0848 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:54:37.0909 0848 ql40xx - ok
19:54:37.0945 0848 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
19:54:37.0968 0848 QWAVE - ok
19:54:38.0020 0848 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:54:38.0039 0848 QWAVEdrv - ok
19:54:38.0086 0848 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:54:38.0102 0848 RasAcd - ok
19:54:38.0140 0848 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
19:54:38.0158 0848 RasAuto - ok
19:54:38.0242 0848 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:54:38.0253 0848 Rasl2tp - ok
19:54:38.0334 0848 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
19:54:38.0357 0848 RasMan - ok
19:54:38.0414 0848 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:54:38.0416 0848 RasPppoe - ok
19:54:38.0485 0848 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:54:38.0526 0848 RasSstp - ok
19:54:38.0576 0848 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:54:38.0606 0848 rdbss - ok
19:54:38.0668 0848 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:54:38.0687 0848 RDPCDD - ok
19:54:38.0787 0848 [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
19:54:38.0809 0848 rdpdr - ok
19:54:38.0837 0848 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:54:38.0856 0848 RDPENCDD - ok
19:54:38.0909 0848 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:54:38.0936 0848 RDPWD - ok
19:54:38.0992 0848 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:54:39.0004 0848 RemoteAccess - ok
19:54:39.0039 0848 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:54:39.0061 0848 RemoteRegistry - ok
19:54:39.0109 0848 [ D9B34325EE5DF78B8F28A3DE9F577C7D ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
19:54:39.0120 0848 RimVSerPort - ok
19:54:39.0177 0848 [ 75E8A6BFA7374ABA833AE92BF41AE4E6 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
19:54:39.0178 0848 ROOTMODEM - ok
19:54:39.0211 0848 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
19:54:39.0238 0848 RpcLocator - ok
19:54:39.0336 0848 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
19:54:39.0343 0848 RpcSs - ok
19:54:39.0387 0848 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:54:39.0421 0848 rspndr - ok
19:54:39.0449 0848 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
19:54:39.0451 0848 SamSs - ok
19:54:39.0531 0848 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:54:39.0547 0848 sbp2port - ok
19:54:39.0622 0848 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:54:39.0647 0848 SCardSvr - ok
19:54:39.0743 0848 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
19:54:39.0789 0848 Schedule - ok
19:54:39.0823 0848 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
19:54:39.0824 0848 SCPolicySvc - ok
19:54:39.0887 0848 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:54:39.0900 0848 SDRSVC - ok
19:54:39.0931 0848 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:54:39.0944 0848 secdrv - ok
19:54:39.0996 0848 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
19:54:40.0004 0848 seclogon - ok
19:54:40.0043 0848 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
19:54:40.0047 0848 SENS - ok
19:54:40.0085 0848 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
19:54:40.0086 0848 Serenum - ok
19:54:40.0130 0848 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
19:54:40.0149 0848 Serial - ok
19:54:40.0231 0848 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:54:40.0252 0848 sermouse - ok
19:54:40.0318 0848 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
19:54:40.0341 0848 SessionEnv - ok
19:54:40.0361 0848 [ 103B79418DA647736EE95645F305F68A ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:54:40.0376 0848 sffdisk - ok
19:54:40.0437 0848 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:54:40.0442 0848 sffp_mmc - ok
19:54:40.0475 0848 [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:54:40.0477 0848 sffp_sd - ok
19:54:40.0500 0848 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:54:40.0511 0848 sfloppy - ok
19:54:40.0599 0848 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:54:40.0644 0848 SharedAccess - ok
19:54:40.0691 0848 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:54:40.0706 0848 ShellHWDetection - ok
19:54:40.0749 0848 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
19:54:40.0779 0848 sisagp - ok
19:54:40.0808 0848 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
19:54:40.0825 0848 SiSRaid2 - ok
19:54:40.0870 0848 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:54:40.0898 0848 SiSRaid4 - ok
19:54:41.0386 0848 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
19:54:42.0246 0848 slsvc - ok
19:54:42.0307 0848 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
19:54:42.0318 0848 SLUINotify - ok
19:54:42.0366 0848 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:54:42.0392 0848 Smb - ok
19:54:42.0437 0848 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:54:42.0472 0848 SNMPTRAP - ok
19:54:42.0522 0848 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
19:54:42.0540 0848 spldr - ok
19:54:42.0600 0848 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
19:54:42.0618 0848 Spooler - ok
19:54:42.0677 0848 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:54:42.0712 0848 srv - ok
19:54:42.0761 0848 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:54:42.0785 0848 srv2 - ok
19:54:42.0811 0848 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:54:42.0829 0848 srvnet - ok
19:54:42.0910 0848 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:54:42.0929 0848 SSDPSRV - ok
19:54:42.0995 0848 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:54:43.0022 0848 SstpSvc - ok
19:54:43.0122 0848 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
19:54:43.0157 0848 stisvc - ok
19:54:43.0232 0848 [ D4CE4D370A26AE1BF41BE9F69D24D049 ] stllssvr c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
19:54:43.0252 0848 stllssvr - ok
19:54:43.0286 0848 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:54:43.0311 0848 swenum - ok
19:54:43.0401 0848 [ EDA7336CD2E334B4DB321BC60B7DA11E ] swmsflt C:\Windows\System32\drivers\swmsflt.sys
19:54:43.0424 0848 swmsflt - ok
19:54:43.0512 0848 [ 903A5E596A3910CEBFA33F3BD7D9C174 ] SWMX00 C:\Windows\system32\DRIVERS\swmx00.sys
19:54:43.0531 0848 SWMX00 - ok
19:54:43.0610 0848 [ 2F6F8B7F821C994DE3D1CAF399BF9CD3 ] SWNC5E00 C:\Windows\system32\DRIVERS\SWNC5E00.sys
19:54:43.0632 0848 SWNC5E00 - ok
19:54:43.0724 0848 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
19:54:43.0752 0848 swprv - ok
19:54:43.0807 0848 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
19:54:43.0840 0848 Symc8xx - ok
19:54:43.0876 0848 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
19:54:43.0889 0848 Sym_hi - ok
19:54:43.0919 0848 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
19:54:43.0921 0848 Sym_u3 - ok
19:54:43.0988 0848 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
19:54:44.0034 0848 SysMain - ok
19:54:44.0078 0848 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:54:44.0090 0848 TabletInputService - ok
19:54:44.0219 0848 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:54:44.0237 0848 TapiSrv - ok
19:54:44.0289 0848 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
19:54:44.0305 0848 TBS - ok
19:54:44.0441 0848 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:54:44.0514 0848 Tcpip - ok
19:54:44.0586 0848 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
19:54:44.0594 0848 Tcpip6 - ok
19:54:44.0624 0848 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:54:44.0644 0848 tcpipreg - ok
19:54:44.0687 0848 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:54:44.0707 0848 TDPIPE - ok
19:54:44.0734 0848 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:54:44.0748 0848 TDTCP - ok
19:54:44.0795 0848 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:54:44.0799 0848 tdx - ok
19:54:44.0820 0848 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:54:44.0836 0848 TermDD - ok
19:54:44.0912 0848 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
19:54:44.0942 0848 TermService - ok
19:54:44.0973 0848 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
19:54:44.0977 0848 Themes - ok
19:54:44.0992 0848 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
19:54:44.0994 0848 THREADORDER - ok
19:54:45.0050 0848 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
19:54:45.0061 0848 TrkWks - ok
19:54:45.0133 0848 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:54:45.0135 0848 TrustedInstaller - ok
19:54:45.0182 0848 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:54:45.0203 0848 tssecsrv - ok
19:54:45.0327 0848 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
19:54:45.0348 0848 tunmp - ok
19:54:45.0424 0848 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:54:45.0437 0848 tunnel - ok
19:54:45.0490 0848 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:54:45.0522 0848 uagp35 - ok
19:54:45.0572 0848 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:54:45.0614 0848 udfs - ok
19:54:45.0678 0848 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:54:45.0693 0848 UI0Detect - ok
19:54:45.0753 0848 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:54:45.0761 0848 uliagpkx - ok
19:54:45.0799 0848 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
19:54:45.0806 0848 uliahci - ok
19:54:45.0856 0848 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
19:54:45.0883 0848 UlSata - ok
19:54:45.0923 0848 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
19:54:45.0958 0848 ulsata2 - ok
19:54:46.0015 0848 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:54:46.0027 0848 umbus - ok
19:54:46.0091 0848 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
19:54:46.0135 0848 upnphost - ok
19:54:46.0197 0848 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
19:54:46.0199 0848 USBAAPL - ok
19:54:46.0241 0848 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:54:46.0252 0848 usbaudio - ok
19:54:46.0342 0848 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:54:46.0355 0848 usbccgp - ok
19:54:46.0396 0848 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:54:46.0420 0848 usbcir - ok
19:54:46.0481 0848 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:54:46.0483 0848 usbehci - ok
19:54:46.0545 0848 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:54:46.0568 0848 usbhub - ok
19:54:46.0619 0848 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:54:46.0631 0848 usbohci - ok
19:54:46.0709 0848 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:54:46.0721 0848 usbprint - ok
19:54:46.0778 0848 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:54:46.0780 0848 usbscan - ok
19:54:46.0810 0848 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:54:46.0820 0848 USBSTOR - ok
19:54:46.0897 0848 [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:54:46.0899 0848 usbuhci - ok
19:54:46.0949 0848 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:54:46.0958 0848 usbvideo - ok
19:54:47.0023 0848 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
19:54:47.0045 0848 UxSms - ok
19:54:47.0123 0848 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
19:54:47.0167 0848 vds - ok
19:54:47.0232 0848 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:54:47.0265 0848 vga - ok
19:54:47.0326 0848 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
19:54:47.0344 0848 VgaSave - ok
19:54:47.0374 0848 [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp C:\Windows\system32\drivers\viaagp.sys
19:54:47.0383 0848 viaagp - ok
19:54:47.0402 0848 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
19:54:47.0415 0848 ViaC7 - ok
19:54:47.0436 0848 [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide C:\Windows\system32\drivers\viaide.sys
19:54:47.0448 0848 viaide - ok
19:54:47.0508 0848 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:54:47.0533 0848 volmgr - ok
19:54:47.0625 0848 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:54:47.0663 0848 volmgrx - ok
19:54:47.0716 0848 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:54:47.0744 0848 volsnap - ok
19:54:47.0807 0848 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:54:47.0822 0848 vsmraid - ok
19:54:47.0968 0848 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
19:54:48.0069 0848 VSS - ok
19:54:48.0138 0848 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
19:54:48.0199 0848 W32Time - ok
19:54:48.0228 0848 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:54:48.0241 0848 WacomPen - ok
19:54:48.0288 0848 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
19:54:48.0304 0848 Wanarp - ok
19:54:48.0335 0848 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:54:48.0336 0848 Wanarpv6 - ok
19:54:48.0433 0848 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:54:48.0487 0848 wcncsvc - ok
19:54:48.0566 0848 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:54:48.0580 0848 WcsPlugInService - ok
19:54:48.0627 0848 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
19:54:48.0644 0848 Wd - ok
19:54:48.0758 0848 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:54:48.0854 0848 Wdf01000 - ok
19:54:48.0894 0848 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:54:48.0910 0848 WdiServiceHost - ok
19:54:48.0930 0848 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:54:48.0933 0848 WdiSystemHost - ok
19:54:48.0993 0848 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
19:54:49.0049 0848 WebClient - ok
19:54:49.0120 0848 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:54:49.0165 0848 Wecsvc - ok
19:54:49.0225 0848 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:54:49.0229 0848 wercplsupport - ok
19:54:49.0274 0848 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
19:54:49.0302 0848 WerSvc - ok
19:54:49.0405 0848 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
19:54:49.0449 0848 winachsf - ok
19:54:49.0606 0848 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
19:54:49.0619 0848 WinDefend - ok
19:54:49.0640 0848 WinHttpAutoProxySvc - ok
19:54:49.0893 0848 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:54:49.0921 0848 Winmgmt - ok
19:54:50.0092 0848 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
19:54:50.0178 0848 WinRM - ok
19:54:50.0297 0848 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:54:50.0330 0848 Wlansvc - ok
19:54:50.0369 0848 [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:54:50.0371 0848 WmiAcpi - ok
19:54:50.0478 0848 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:54:50.0500 0848 wmiApSrv - ok
19:54:50.0668 0848 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
19:54:50.0737 0848 WMPNetworkSvc - ok
19:54:50.0795 0848 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:54:50.0825 0848 WPCSvc - ok
19:54:50.0858 0848 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:54:50.0881 0848 WPDBusEnum - ok
19:54:50.0949 0848 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
19:54:50.0960 0848 WpdUsb - ok
19:54:51.0244 0848 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:54:51.0389 0848 WPFFontCache_v0400 - ok
19:54:51.0453 0848 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:54:51.0494 0848 ws2ifsl - ok
19:54:51.0569 0848 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
19:54:51.0593 0848 wscsvc - ok
19:54:51.0603 0848 WSearch - ok
19:54:51.0973 0848 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
19:54:52.0431 0848 wuauserv - ok
19:54:52.0497 0848 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:54:52.0547 0848 WUDFRd - ok
19:54:52.0583 0848 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:54:52.0600 0848 wudfsvc - ok
19:54:52.0661 0848 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
19:54:52.0672 0848 XAudio - ok
19:54:52.0816 0848 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
19:54:52.0847 0848 XAudioService - ok
19:54:52.0906 0848 ================ Scan global ===============================
19:54:52.0981 0848 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
19:54:53.0048 0848 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
19:54:53.0132 0848 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
19:54:53.0210 0848 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
19:54:53.0224 0848 [Global] - ok
19:54:53.0224 0848 ================ Scan MBR ==================================
19:54:53.0246 0848 [ 8913823FF508CCF109DB74B636C301DA ] \Device\Harddisk0\DR0
19:54:54.0598 0848 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:54:54.0599 0848 \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:54:54.0599 0848 ================ Scan VBR ==================================
19:54:54.0645 0848 [ D19B95B8E46BB2D522E0905D8B99DBA2 ] \Device\Harddisk0\DR0\Partition1
19:54:54.0687 0848 \Device\Harddisk0\DR0\Partition1 - ok
19:54:54.0746 0848 [ 4E52A849B8B3F93B60F8FFA8C94A2293 ] \Device\Harddisk0\DR0\Partition2
19:54:54.0783 0848 \Device\Harddisk0\DR0\Partition2 - ok
19:54:54.0783 0848 ============================================================
19:54:54.0784 0848 Scan finished
19:54:54.0784 0848 ============================================================
19:54:54.0817 1164 Detected object count: 1
19:54:54.0817 1164 Actual detected object count: 1
19:55:05.0799 1164 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
19:55:05.0826 1164 \Device\Harddisk0\DR0\TDLFS\vbr - copied to quarantine
19:55:05.0867 1164 \Device\Harddisk0\DR0\TDLFS\bid - copied to quarantine
19:55:05.0869 1164 \Device\Harddisk0\DR0\TDLFS\affid - copied to quarantine
19:55:05.0870 1164 \Device\Harddisk0\DR0\TDLFS\boot - copied to quarantine
19:55:05.0872 1164 \Device\Harddisk0\DR0\TDLFS\cmd32 - copied to quarantine
19:55:05.0930 1164 \Device\Harddisk0\DR0\TDLFS\cmd64 - copied to quarantine
19:55:05.0931 1164 \Device\Harddisk0\DR0\TDLFS\dbg32 - copied to quarantine
19:55:05.0950 1164 \Device\Harddisk0\DR0\TDLFS\dbg64 - copied to quarantine
19:55:05.0953 1164 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
19:55:05.0956 1164 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
19:55:05.0957 1164 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
19:55:05.0998 1164 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
19:55:06.0026 1164 \Device\Harddisk0\DR0\TDLFS\main - copied to quarantine
19:55:06.0056 1164 \Device\Harddisk0\DR0\TDLFS\subid - copied to quarantine
19:55:06.0059 1164 \Device\Harddisk0\DR0\TDLFS\tdi32 - copied to quarantine
19:55:06.0061 1164 \Device\Harddisk0\DR0\TDLFS\tdi64 - copied to quarantine
19:55:06.0063 1164 \Device\Harddisk0\DR0\TDLFS\main1 - copied to quarantine
19:55:06.0063 1164 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine

#4 dds98248

dds98248
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 13 September 2012 - 11:14 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-13 18:54:21
-----------------------------
18:54:21.870 OS Version: Windows 6.0.6002 Service Pack 2
18:54:21.870 Number of processors: 2 586 0x4B02
18:54:21.886 ComputerName: STENVERS UserName: Danielle
18:54:23.618 Initialize success
18:54:36.035 AVAST engine defs: 12091301
18:54:41.620 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000057
18:54:41.620 Disk 0 Vendor: HDT72252 V44O Size: 238475MB BusType: 6
18:54:41.636 Disk 0 MBR read successfully
18:54:41.651 Disk 0 MBR scan
18:54:41.651 Disk 0 unknown MBR code
18:54:41.667 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 232071 MB offset 63
18:54:41.698 Disk 0 Partition 2 00 17 Hidd HPFS/NTFS NTFS 2 MB offset 488391120
18:54:41.698 Disk 0 Partition 2 **INFECTED** MBR:SST [Rtk]
18:54:41.729 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 6400 MB offset 475282080
18:54:41.745 Disk 0 Partition 4 00 17 Hidd HPFS/NTFS NTFS 0 MB offset 488397152
18:54:41.760 Disk 0 Partition 4 **INFECTED** MBR:SST [Rtk]
18:54:41.760 Disk 0 scanning sectors +488397168
18:54:41.807 Disk 0 scanning C:\Windows\system32\drivers
18:54:52.790 Service scanning
18:55:22.289 Modules scanning
18:55:27.047 Disk 0 trace - called modules:
18:55:27.078 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys
18:55:27.078 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85d5f030]
18:55:27.110 3 CLASSPNP.SYS[8839d8b3] -> nt!IofCallDriver -> [0x85401d60]
18:55:27.110 5 acpi.sys[830166bc] -> nt!IofCallDriver -> \Device\00000057[0x84a0b720]
18:55:28.248 AVAST engine scan C:\Windows
18:55:32.258 AVAST engine scan C:\Windows\system32
18:59:13.341 AVAST engine scan C:\Windows\system32\drivers
18:59:29.144 AVAST engine scan C:\Users\Danielle
19:00:17.675 Disk 0 MBR has been saved successfully to "C:\Users\Danielle\Documents\MBR.dat"
19:00:17.675 The log file has been saved successfully to "C:\Users\Danielle\Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-13 21:05:53
-----------------------------
21:05:53.914 OS Version: Windows 6.0.6002 Service Pack 2
21:05:53.914 Number of processors: 2 586 0x4B02
21:05:53.945 ComputerName: STENVERS UserName: Danielle
21:05:55.989 Initialize success
21:06:08.313 AVAST engine defs: 12091301
21:06:13.055 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000057
21:06:13.055 Disk 0 Vendor: HDT72252 V44O Size: 238475MB BusType: 6
21:06:13.071 Disk 0 MBR read successfully
21:06:13.086 Disk 0 MBR scan
21:06:13.102 Disk 0 unknown MBR code
21:06:13.102 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 232071 MB offset 63
21:06:13.149 Disk 0 Partition 2 00 17 Hidd HPFS/NTFS NTFS 2 MB offset 488391120
21:06:13.164 Disk 0 Partition 2 **INFECTED** MBR:SST [Rtk]
21:06:13.180 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 6400 MB offset 475282080
21:06:13.195 Disk 0 Partition 4 00 17 Hidd HPFS/NTFS NTFS 0 MB offset 488397152
21:06:13.227 Disk 0 Partition 4 **INFECTED** MBR:SST [Rtk]
21:06:13.227 Disk 0 scanning sectors +488397168
21:06:13.289 Disk 0 scanning C:\Windows\system32\drivers
21:06:24.225 Service scanning
21:06:51.057 Modules scanning
21:06:55.799 Disk 0 trace - called modules:
21:06:55.815 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys
21:06:55.830 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85d5f030]
21:06:55.830 3 CLASSPNP.SYS[883a38b3] -> nt!IofCallDriver -> [0x853abf08]
21:06:55.846 5 acpi.sys[8300e6bc] -> nt!IofCallDriver -> \Device\00000057[0x853b39c0]
21:06:56.875 AVAST engine scan C:\Windows
21:07:01.009 AVAST engine scan C:\Windows\system32
21:10:51.437 AVAST engine scan C:\Windows\system32\drivers
21:11:15.991 AVAST engine scan C:\Users\Danielle
21:12:34.927 Disk 0 MBR has been saved successfully to "C:\Users\Danielle\Documents\MBR.dat"
21:12:34.959 The log file has been saved successfully to "C:\Users\Danielle\Documents\aswMBR.txt"

C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0005.dta Win32/Olmasco.O trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0006.dta Win64/Olmasco.Y trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0007.dta Win32/Olmasco.O trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0008.dta Win64/Olmasco.X trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0009.dta Win32/Olmasco.O trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0010.dta Win64/Olmasco.AA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0011.dta Win32/Olmasco.Q trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0012.dta Win64/Olmasco.X trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0015.dta Win32/Olmasco.AA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\13.09.2012_18.43.12\tdlfs0000\tsk0016.dta Win64/Olmasco.Z trojan cleaned by deleting - quarantined
C:\Users\Danielle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WBPI7BWU\branch-earth-standing[1].htm JS/Kryptik.VT trojan cleaned by deleting - quarantined
C:\Users\Danielle\Documents - Work Stuff\My Docs\autorun.inf Win32/Bflient.K worm cleaned by deleting - quarantined

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 14 September 2012 - 12:06 AM

Download

FIXTDSS

Launch it ,It may ask for restart,reboot the PC

On reboot ,click on REPAIR


Download Listparts from here

For 32 bit

List parts 32

Launch it,click on SCAN,post the log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Edited by narenxp, 14 September 2012 - 12:06 AM.


#6 dds98248

dds98248
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 14 September 2012 - 12:47 AM

Is there a way to run FIXTDSS in safe mode? When it reboots the computer I get the critcal system error messages while the FIXTDSS is trying to scan.

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 14 September 2012 - 12:54 AM

Run malwarebytes in safemode with networking and remove infections.

Run FIXTDSS again

#8 dds98248

dds98248
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 14 September 2012 - 01:04 AM

tried installing Malware and got a Setup Error "Access Denied" and installation canceled.

#9 dds98248

dds98248
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 14 September 2012 - 01:07 AM

was able to find and run the .exe manually....scanning now.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 14 September 2012 - 02:18 AM

I guess you are able to run malwarebytes now.If you still have access denied error

Download

UNHIDE

Run this tool,this should UNHIDE your files

You should be able to install malwarebytes now

I want you to run ASWMBR again after running FIXTDSS and post the log

#11 dds98248

dds98248
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 14 September 2012 - 02:07 PM

Ran FIXTDSS and got the message that file "??? was not found on the computer" (can't remember the file name).
RAn Malwarebyte and it found approx 15 infected files and it removed the infected files.
Rebooted in normal mode, reran Malwarebyte and it found 2 more files, remove those. During the reboot in normal mode, I am still getting the same black screen and the same error popups (both before and after rurunning Malware):

System Message - Write Fault Erro
Seek Error - sector not found
Critical error - hard drive failure
Serious disk error writing drive c:\

Any suggestions?

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 14 September 2012 - 02:24 PM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#13 dds98248

dds98248
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 16 September 2012 - 12:25 AM

Had someone come in and fix/remove the virus. Thanks.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 16 September 2012 - 02:12 AM

Grt but i'm not sure how technically good they are.

Can you post the LISTPARTS and RKILL log?

#15 dds98248

dds98248
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:16 AM

Posted 16 September 2012 - 07:30 PM

ListParts by Farbar Version: 15-09-2012
Ran by New Admin account (administrator) on 16-09-2012 at 17:28:24
Windows Vista (X86)
Running From: C:\Users\New Admin account\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MVXB5JQ0
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 52%
Total physical RAM: 1981.82 MB
Available physical RAM: 950.78 MB
Total Pagefile: 4208.15 MB
Available Pagefile: 2504.29 MB
Total Virtual: 2047.88 MB
Available Virtual: 1967.07 MB

======================= Partitions =========================

1 Drive c: (HP) (Fixed) (Total:226.63 GB) (Free:107.32 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
2 Drive d: (Recovery) (Fixed) (Total:6.25 GB) (Free:0.88 GB) NTFS ==>[System with boot components (obtained from reading drive)]
4 Drive f: (USB DISK) (Removable) (Total:1.86 GB) (Free:1.73 GB) FAT

Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 233 GB 0 B
Disk 1 No Media 0 B 0 B
Disk 2 Online 1912 MB 0 B
Disk 3 No Media 0 B 0 B
Disk 4 No Media 0 B 0 B
Disk 5 No Media 0 B 0 B
Disk 6 No Media 0 B 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 227 GB 32 KB
Partition 3 Primary 6401 MB 227 GB
Partition 2 Primary 3016 KB 233 GB
Partition 4 Primary 8 KB 233 GB

======================================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C HP NTFS Partition 227 GB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 D Recovery NTFS Partition 6401 MB Healthy

======================================================================================================

Disk: 0
Partition 2
Type : 17 (Suspicious Type)
Hidden: Yes
Active: No

There is no volume associated with this partition.

======================================================================================================

Disk: 0
Partition 4
Type : 17 (Suspicious Type)
Hidden: Yes
Active: No

There is no volume associated with this partition.

======================================================================================================

Partitions of Disk 2:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 1908 MB 4032 KB

======================================================================================================

Disk: 2
Partition 1
Type : 0E
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 F USB DISK FAT Removable 1908 MB Healthy

======================================================================================================

****** End Of Log ******




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users