Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Getting BSOD - kdcom.dll


  • Please log in to reply
10 replies to this topic

#1 rc17

rc17

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:21 AM

Posted 14 September 2012 - 06:39 PM

Hello, I am new here. My friend told me someone can help me here. I am getting the BSOD, running Windows 7 Home Premium 64-bit and getting the kdcom.dll. Can someone help me.

Edited by hamluis, 17 September 2012 - 11:15 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:21 PM

Posted 14 September 2012 - 07:07 PM

Hello and Welcome -

To start with, please follow these directions >>
Please download BlueScreenView (in zip file) to your Desktop
  • Extract (right-click > Extract all) the contents of bluescreenview.zip.
  • Double-click on the Extracted Folder
  • Double-click on the BlueScreenView.exe file, to run the program. (No installation is required.)
  • When scanning is done (usually complete by the time the interface appears), go ...
  • Edit > Select All
  • File > Save Selected Items, and save the report to your Desktop as BSOD.txt.
  • Close the BlueScreenView window... ... ...
  • Open BSOD.txt using Notepad and go ... .... ..
  • Edit > Select All
  • Edit > Copy, and then paste the entire contents of the text file into your next reply.

You could list the Make and Model of computer and post a snapshot with Speccy as this may give us a bit more to look at -
Publish a Snapshot using Speccy <<Follow These Directions

Thank You -

#3 rc17

rc17
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:21 AM

Posted 15 September 2012 - 01:10 PM

==================================================
Dump File : 091412-19156-01.dmp
Crash Time : 9/14/2012 8:03:02 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`99d68697
Parameter 2 : b3b7465e`ec54bf41
Parameter 3 : fffff800`00b9982c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091412-19156-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091412-18954-01.dmp
Crash Time : 9/14/2012 7:19:35 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95e30515
Parameter 2 : b3b7465e`e8613dcf
Parameter 3 : fffff800`00bca82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091412-18954-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091412-18096-01.dmp
Crash Time : 9/14/2012 6:36:49 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95edf917
Parameter 2 : b3b7465e`e86c31c1
Parameter 3 : fffff800`00ba682c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091412-18096-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091412-18423-01.dmp
Crash Time : 9/14/2012 3:25:03 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`959a89b8
Parameter 2 : b3b7465e`e818c262
Parameter 3 : fffff800`00ba082c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091412-18423-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-19422-01.dmp
Crash Time : 9/13/2012 11:17:24 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95b43658
Parameter 2 : b3b7465e`e8326f12
Parameter 3 : fffff800`00bb682c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-19422-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-17503-01.dmp
Crash Time : 9/13/2012 11:02:17 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95f22784
Parameter 2 : b3b7465e`e870602e
Parameter 3 : fffff800`00baa82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-17503-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-17768-01.dmp
Crash Time : 9/13/2012 6:37:41 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`9594c683
Parameter 2 : b3b7465e`e812ff2d
Parameter 3 : fffff800`00bd482c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-17768-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-18954-01.dmp
Crash Time : 9/13/2012 4:23:49 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95bb259b
Parameter 2 : b3b7465e`e8395e45
Parameter 3 : fffff800`00bbe82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-18954-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-17596-01.dmp
Crash Time : 9/13/2012 3:36:19 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95a6f54b
Parameter 2 : b3b7465e`e8252df5
Parameter 3 : fffff800`00bbf82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-17596-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-20810-01.dmp
Crash Time : 9/13/2012 6:00:28 AM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`9a7af99e
Parameter 2 : b3b7465e`ecf93258
Parameter 3 : fffff800`00bb382c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-20810-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-19765-01.dmp
Crash Time : 9/13/2012 5:19:12 AM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95781a17
Parameter 2 : b3b7465e`e7f652c1
Parameter 3 : fffff800`00ba582c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-19765-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-18376-01.dmp
Crash Time : 9/13/2012 1:13:50 AM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`959b3b11
Parameter 2 : b3b7465e`e81973bb
Parameter 3 : fffff800`00ba782c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-18376-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091312-18392-01.dmp
Crash Time : 9/13/2012 12:59:04 AM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95a0155e
Parameter 2 : b3b7465e`e81e4e08
Parameter 3 : fffff800`00bcd82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091312-18392-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-19983-01.dmp
Crash Time : 9/12/2012 10:59:08 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95bed912
Parameter 2 : b3b7465e`e83d11bc
Parameter 3 : fffff800`00b9d82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-19983-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-18236-01.dmp
Crash Time : 9/12/2012 10:17:52 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95efb64f
Parameter 2 : b3b7465e`e86deef9
Parameter 3 : fffff800`00b9d82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-18236-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-18735-01.dmp
Crash Time : 9/12/2012 9:36:42 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`958d16b1
Parameter 2 : b3b7465e`e80b4f5b
Parameter 3 : fffff800`00ba582c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-18735-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-17752-01.dmp
Crash Time : 9/12/2012 9:21:29 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`959b652c
Parameter 2 : b3b7465e`e8199de6
Parameter 3 : fffff800`00bb282c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-17752-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-18174-01.dmp
Crash Time : 9/12/2012 8:33:23 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`958d4697
Parameter 2 : b3b7465e`e80b7f41
Parameter 3 : fffff800`00ba682c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-18174-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-19936-01.dmp
Crash Time : 9/12/2012 7:50:08 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95d7056a
Parameter 2 : b3b7465e`e8553e14
Parameter 3 : fffff800`00bbc82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-19936-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-18595-01.dmp
Crash Time : 9/12/2012 7:09:18 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`98b9684e
Parameter 2 : b3b7465e`eb37a0f8
Parameter 3 : fffff800`00bc982c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-18595-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-17893-01.dmp
Crash Time : 9/12/2012 5:45:05 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`9599a5fb
Parameter 2 : b3b7465e`e817dea5
Parameter 3 : fffff800`00bb082c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-17893-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 091212-19952-01.dmp
Crash Time : 9/12/2012 10:48:52 AM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`9a9b7937
Parameter 2 : b3b7465e`ed19b255
Parameter 3 : fffff800`00ba482c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\091212-19952-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090912-17721-01.dmp
Crash Time : 9/9/2012 2:52:46 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95b3c733
Parameter 2 : b3b7465e`e8320061
Parameter 3 : fffff800`00b9f82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090912-17721-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090912-18517-01.dmp
Crash Time : 9/9/2012 2:37:15 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95b114f4
Parameter 2 : b3b7465e`e82f4e12
Parameter 3 : fffff800`00bc782c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090912-18517-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090912-18610-01.dmp
Crash Time : 9/9/2012 1:55:44 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95b7e740
Parameter 2 : b3b7465e`e836205e
Parameter 3 : fffff800`00bd582c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090912-18610-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090912-18813-01.dmp
Crash Time : 9/9/2012 12:56:48 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95d93557
Parameter 2 : b3b7465e`e8576e75
Parameter 3 : fffff800`00baf82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090912-18813-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090912-18361-01.dmp
Crash Time : 9/9/2012 12:20:58 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95c2e583
Parameter 2 : b3b7465e`e8411eb1
Parameter 3 : fffff800`00bbd82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090912-18361-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090912-18938-01.dmp
Crash Time : 9/9/2012 12:05:29 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95d26561
Parameter 2 : b3b7465e`e8509e8f
Parameter 3 : fffff800`00ba582c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090912-18938-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090912-19047-01.dmp
Crash Time : 9/9/2012 10:23:28 AM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`962f6589
Parameter 2 : b3b7465e`e8ad9eb7
Parameter 3 : fffff800`00bc782c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090912-19047-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090912-17784-01.dmp
Crash Time : 9/9/2012 10:04:09 AM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`9a0c05c1
Parameter 2 : b3b7465e`ec8a3eef
Parameter 3 : fffff800`00bd582c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090912-17784-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090812-17456-01.dmp
Crash Time : 9/8/2012 11:31:46 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`959a15d4
Parameter 2 : b3b7465e`e8184ef2
Parameter 3 : fffff800`00bb782c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090812-17456-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090812-17690-01.dmp
Crash Time : 9/8/2012 4:35:27 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`958a85a2
Parameter 2 : b3b7465e`e808bec0
Parameter 3 : fffff800`00bca82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090812-17690-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090812-17986-01.dmp
Crash Time : 9/8/2012 3:43:52 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95ab3772
Parameter 2 : b3b7465e`e8297090
Parameter 3 : fffff800`00b9e82c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090812-17986-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090812-17924-01.dmp
Crash Time : 9/8/2012 11:05:13 AM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`9b08b8aa
Parameter 2 : b3b7465e`ed86f1d8
Parameter 3 : fffff800`00bb582c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090812-17924-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090512-18033-01.dmp
Crash Time : 9/5/2012 11:09:05 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95d50755
Parameter 2 : b3b7465e`e8534073
Parameter 3 : fffff800`00bb582c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090512-18033-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090512-18704-01.dmp
Crash Time : 9/5/2012 10:22:31 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`95862a0c
Parameter 2 : b3b7465e`e804632a
Parameter 3 : fffff800`00bb682c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090512-18704-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================

==================================================
Dump File : 090512-22261-01.dmp
Crash Time : 9/5/2012 9:53:45 PM
Bug Check String :
Bug Check Code : 0x00000109
Parameter 1 : a3a039d8`970e8ab0
Parameter 2 : b3b7465e`e98cc3ce
Parameter 3 : fffff800`00ba882c
Parameter 4 : 00000000`00000001
Caused By Driver : kdcom.dll
Caused By Address : kdcom.dll+182c
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+7f1c0
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\090512-22261-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 275,064
==================================================
http://speccy.piriform.com/results/GlY1kpIsopcntWuhEX2bYMB

#4 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:21 PM

Posted 15 September 2012 - 09:57 PM

Run a memtest for your memory stick first or use another available RAM module.

Tekken
 


#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:21 AM

Posted 16 September 2012 - 08:20 AM

KDCOM.DLL crashes are mostly probably caused by rootkits.

When did this issue start?

#6 rc17

rc17
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:21 AM

Posted 16 September 2012 - 09:08 AM

The issue started about a mont ago. It varies from day to day. Sometimes its none, 2, 3, 4, 5, or 6 times a day.

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:21 AM

Posted 16 September 2012 - 09:27 AM

Lets see if TDSSkiller detects infection

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

#8 rc17

rc17
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:21 AM

Posted 17 September 2012 - 06:42 PM

19:38:14.0845 4904 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
19:38:22.0958 4904 ============================================================
19:38:22.0958 4904 Current date / time: 2012/09/17 19:38:22.0958
19:38:22.0958 4904 SystemInfo:
19:38:22.0958 4904
19:38:22.0958 4904 OS Version: 6.1.7601 ServicePack: 1.0
19:38:22.0958 4904 Product type: Workstation
19:38:22.0958 4904 ComputerName: RAGHAVCHAWLA-PC
19:38:22.0959 4904 UserName: Raghav Chawla
19:38:22.0959 4904 Windows directory: C:\Windows
19:38:22.0959 4904 System windows directory: C:\Windows
19:38:22.0959 4904 Running under WOW64
19:38:22.0959 4904 Processor architecture: Intel x64
19:38:22.0959 4904 Number of processors: 4
19:38:22.0959 4904 Page size: 0x1000
19:38:22.0959 4904 Boot type: Normal boot
19:38:22.0959 4904 ============================================================
19:38:26.0238 4904 Drive \Device\Harddisk0\DR0 - Size: 0xE8DCDB0000 (931.45 Gb), SectorSize: 0x200, Cylinders: 0x1DAF9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:38:26.0272 4904 Drive \Device\Harddisk3\DR3 - Size: 0xF1400000 (3.77 Gb), SectorSize: 0x200, Cylinders: 0x1EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:38:26.0297 4904 ============================================================
19:38:26.0297 4904 \Device\Harddisk0\DR0:
19:38:26.0297 4904 MBR partitions:
19:38:26.0297 4904 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
19:38:26.0297 4904 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A32800, BlocksNum 0x72CB3800
19:38:26.0297 4904 \Device\Harddisk3\DR3:
19:38:26.0299 4904 MBR partitions:
19:38:26.0299 4904 \Device\Harddisk3\DR3\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x788000
19:38:26.0299 4904 ============================================================
19:38:26.0315 4904 C: <-> \Device\Harddisk0\DR0\Partition2
19:38:26.0315 4904 ============================================================
19:38:26.0315 4904 Initialize success
19:38:26.0315 4904 ============================================================
19:38:28.0069 1228 ============================================================
19:38:28.0069 1228 Scan started
19:38:28.0069 1228 Mode: Manual;
19:38:28.0069 1228 ============================================================
19:38:28.0784 1228 ================ Scan system memory ========================
19:38:28.0784 1228 System memory - ok
19:38:28.0785 1228 ================ Scan services =============================
19:38:29.0007 1228 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:38:29.0020 1228 1394ohci - ok
19:38:29.0063 1228 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:38:29.0070 1228 ACPI - ok
19:38:29.0090 1228 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:38:29.0092 1228 AcpiPmi - ok
19:38:29.0187 1228 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:38:29.0191 1228 AdobeARMservice - ok
19:38:29.0228 1228 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:38:29.0238 1228 adp94xx - ok
19:38:29.0257 1228 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:38:29.0267 1228 adpahci - ok
19:38:29.0287 1228 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:38:29.0290 1228 adpu320 - ok
19:38:29.0312 1228 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:38:29.0315 1228 AeLookupSvc - ok
19:38:29.0342 1228 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:38:29.0348 1228 AFD - ok
19:38:29.0358 1228 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:38:29.0360 1228 agp440 - ok
19:38:29.0382 1228 [ 37FA0F874BA8ECD5851D44A7F1C9700E ] ahcix64s C:\Windows\system32\drivers\ahcix64s.sys
19:38:29.0385 1228 ahcix64s - ok
19:38:29.0400 1228 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:38:29.0403 1228 ALG - ok
19:38:29.0412 1228 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:38:29.0414 1228 aliide - ok
19:38:29.0438 1228 [ E0FD88EAD5D8B1FAE64A500D1D825C6D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
19:38:29.0441 1228 AMD External Events Utility - ok
19:38:29.0451 1228 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:38:29.0454 1228 amdide - ok
19:38:29.0459 1228 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:38:29.0460 1228 AmdK8 - ok
19:38:29.0585 1228 [ 9337B5FABC03CA44CD355F700DA9B25B ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
19:38:29.0705 1228 amdkmdag - ok
19:38:29.0717 1228 [ 560688A447E7A87F43774A2FF23A3E52 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
19:38:29.0719 1228 amdkmdap - ok
19:38:29.0741 1228 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:38:29.0742 1228 AmdPPM - ok
19:38:29.0759 1228 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:38:29.0762 1228 amdsata - ok
19:38:29.0777 1228 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
19:38:29.0783 1228 amdsbs - ok
19:38:29.0796 1228 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:38:29.0797 1228 amdxata - ok
19:38:29.0832 1228 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:38:29.0834 1228 AppID - ok
19:38:29.0849 1228 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:38:29.0851 1228 AppIDSvc - ok
19:38:29.0855 1228 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:38:29.0857 1228 Appinfo - ok
19:38:29.0923 1228 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:38:29.0926 1228 Apple Mobile Device - ok
19:38:29.0944 1228 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
19:38:29.0948 1228 arc - ok
19:38:29.0965 1228 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:38:29.0968 1228 arcsas - ok
19:38:29.0994 1228 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:38:29.0996 1228 AsyncMac - ok
19:38:30.0007 1228 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:38:30.0010 1228 atapi - ok
19:38:30.0045 1228 [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
19:38:30.0048 1228 AtiHdmiService - ok
19:38:30.0078 1228 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
19:38:30.0079 1228 AtiPcie - ok
19:38:30.0098 1228 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:38:30.0106 1228 AudioEndpointBuilder - ok
19:38:30.0117 1228 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:38:30.0122 1228 AudioSrv - ok
19:38:30.0139 1228 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:38:30.0146 1228 AxInstSV - ok
19:38:30.0173 1228 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
19:38:30.0179 1228 b06bdrv - ok
19:38:30.0194 1228 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:38:30.0197 1228 b57nd60a - ok
19:38:30.0229 1228 [ B9B123DD438E0FA190BE10A77ADCF38E ] bckd C:\Windows\system32\drivers\bckd.sys
19:38:30.0248 1228 bckd - ok
19:38:30.0423 1228 [ 00BF725BFD0FE84EB196E9F45DAC091B ] bckwfs C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
19:38:30.0740 1228 bckwfs - ok
19:38:30.0761 1228 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:38:30.0764 1228 BDESVC - ok
19:38:30.0804 1228 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:38:30.0806 1228 Beep - ok
19:38:30.0855 1228 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:38:30.0870 1228 BFE - ok
19:38:30.0917 1228 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
19:38:30.0936 1228 BITS - ok
19:38:30.0951 1228 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
19:38:30.0954 1228 blbdrive - ok
19:38:30.0990 1228 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:38:30.0996 1228 Bonjour Service - ok
19:38:31.0021 1228 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:38:31.0024 1228 bowser - ok
19:38:31.0050 1228 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
19:38:31.0052 1228 BrFiltLo - ok
19:38:31.0062 1228 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
19:38:31.0064 1228 BrFiltUp - ok
19:38:31.0094 1228 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:38:31.0097 1228 BridgeMP - ok
19:38:31.0115 1228 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:38:31.0144 1228 Browser - ok
19:38:31.0159 1228 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:38:31.0163 1228 Brserid - ok
19:38:31.0178 1228 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:38:31.0181 1228 BrSerWdm - ok
19:38:31.0192 1228 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:38:31.0194 1228 BrUsbMdm - ok
19:38:31.0201 1228 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:38:31.0202 1228 BrUsbSer - ok
19:38:31.0218 1228 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:38:31.0220 1228 BTHMODEM - ok
19:38:31.0239 1228 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:38:31.0242 1228 bthserv - ok
19:38:31.0252 1228 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:38:31.0255 1228 cdfs - ok
19:38:31.0275 1228 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:38:31.0278 1228 cdrom - ok
19:38:31.0297 1228 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:38:31.0300 1228 CertPropSvc - ok
19:38:31.0312 1228 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
19:38:31.0315 1228 circlass - ok
19:38:31.0334 1228 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:38:31.0338 1228 CLFS - ok
19:38:31.0521 1228 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:38:31.0527 1228 clr_optimization_v2.0.50727_32 - ok
19:38:31.0565 1228 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:38:31.0585 1228 clr_optimization_v2.0.50727_64 - ok
19:38:31.0646 1228 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:38:31.0651 1228 clr_optimization_v4.0.30319_32 - ok
19:38:31.0693 1228 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:38:31.0697 1228 clr_optimization_v4.0.30319_64 - ok
19:38:31.0720 1228 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
19:38:31.0722 1228 CmBatt - ok
19:38:31.0738 1228 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:38:31.0741 1228 cmdide - ok
19:38:31.0763 1228 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:38:31.0769 1228 CNG - ok
19:38:31.0777 1228 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
19:38:31.0779 1228 Compbatt - ok
19:38:31.0793 1228 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:38:31.0795 1228 CompositeBus - ok
19:38:31.0804 1228 COMSysApp - ok
19:38:31.0820 1228 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:38:31.0822 1228 crcdisk - ok
19:38:31.0850 1228 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:38:31.0852 1228 CryptSvc - ok
19:38:31.0875 1228 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:38:31.0881 1228 DcomLaunch - ok
19:38:31.0903 1228 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:38:31.0907 1228 defragsvc - ok
19:38:31.0914 1228 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:38:31.0916 1228 DfsC - ok
19:38:31.0939 1228 DhaHelper - ok
19:38:31.0963 1228 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:38:31.0967 1228 Dhcp - ok
19:38:31.0975 1228 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:38:31.0976 1228 discache - ok
19:38:31.0991 1228 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
19:38:31.0993 1228 Disk - ok
19:38:32.0021 1228 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:38:32.0023 1228 Dnscache - ok
19:38:32.0047 1228 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:38:32.0055 1228 dot3svc - ok
19:38:32.0071 1228 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:38:32.0076 1228 DPS - ok
19:38:32.0092 1228 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:38:32.0094 1228 drmkaud - ok
19:38:32.0119 1228 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:38:32.0126 1228 DXGKrnl - ok
19:38:32.0138 1228 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:38:32.0140 1228 EapHost - ok
19:38:32.0213 1228 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
19:38:32.0275 1228 ebdrv - ok
19:38:32.0299 1228 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:38:32.0301 1228 EFS - ok
19:38:32.0349 1228 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:38:32.0358 1228 ehRecvr - ok
19:38:32.0371 1228 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:38:32.0374 1228 ehSched - ok
19:38:32.0395 1228 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:38:32.0401 1228 elxstor - ok
19:38:32.0415 1228 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:38:32.0416 1228 ErrDev - ok
19:38:32.0439 1228 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:38:32.0444 1228 EventSystem - ok
19:38:32.0460 1228 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:38:32.0463 1228 exfat - ok
19:38:32.0470 1228 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:38:32.0473 1228 fastfat - ok
19:38:32.0504 1228 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:38:32.0513 1228 Fax - ok
19:38:32.0528 1228 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
19:38:32.0530 1228 fdc - ok
19:38:32.0540 1228 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:38:32.0543 1228 fdPHost - ok
19:38:32.0556 1228 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:38:32.0558 1228 FDResPub - ok
19:38:32.0568 1228 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:38:32.0570 1228 FileInfo - ok
19:38:32.0579 1228 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:38:32.0581 1228 Filetrace - ok
19:38:32.0590 1228 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
19:38:32.0592 1228 flpydisk - ok
19:38:32.0599 1228 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:38:32.0602 1228 FltMgr - ok
19:38:32.0630 1228 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:38:32.0647 1228 FontCache - ok
19:38:32.0685 1228 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:38:32.0688 1228 FontCache3.0.0.0 - ok
19:38:32.0707 1228 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:38:32.0711 1228 FsDepends - ok
19:38:32.0735 1228 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:38:32.0736 1228 Fs_Rec - ok
19:38:32.0750 1228 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:38:32.0755 1228 fvevol - ok
19:38:32.0772 1228 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:38:32.0776 1228 gagp30kx - ok
19:38:32.0806 1228 [ AF4DEE5531395DEE72B35B36C9671FD0 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:38:32.0808 1228 GEARAspiWDM - ok
19:38:32.0841 1228 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:38:32.0851 1228 gpsvc - ok
19:38:32.0908 1228 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
19:38:32.0915 1228 GREGService - ok
19:38:32.0979 1228 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:38:32.0983 1228 gupdate - ok
19:38:33.0003 1228 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:38:33.0006 1228 gupdatem - ok
19:38:33.0024 1228 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:38:33.0026 1228 hcw85cir - ok
19:38:33.0045 1228 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:38:33.0049 1228 HdAudAddService - ok
19:38:33.0075 1228 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:38:33.0077 1228 HDAudBus - ok
19:38:33.0081 1228 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
19:38:33.0082 1228 HidBatt - ok
19:38:33.0096 1228 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:38:33.0099 1228 HidBth - ok
19:38:33.0109 1228 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
19:38:33.0111 1228 HidIr - ok
19:38:33.0119 1228 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
19:38:33.0121 1228 hidserv - ok
19:38:33.0137 1228 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:38:33.0139 1228 HidUsb - ok
19:38:33.0146 1228 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:38:33.0149 1228 hkmsvc - ok
19:38:33.0165 1228 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:38:33.0168 1228 HomeGroupListener - ok
19:38:33.0191 1228 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:38:33.0193 1228 HomeGroupProvider - ok
19:38:33.0201 1228 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:38:33.0204 1228 HpSAMD - ok
19:38:33.0275 1228 [ BEF7D9760E0B00973E0F7EFCE68875C1 ] hshld C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe
19:38:33.0286 1228 hshld - ok
19:38:33.0314 1228 [ BBC89DA4065BDCE34257BE95B2F636EE ] HssDRV6 C:\Windows\system32\DRIVERS\hssdrv6.sys
19:38:33.0316 1228 HssDRV6 - ok
19:38:33.0355 1228 [ 01947D3CBAFCFEF066E1EB45DADC182D ] HssSrv C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
19:38:33.0361 1228 HssSrv - ok
19:38:33.0379 1228 [ 5527CF1FF457E819112EAC7DC0AA69CB ] HssTrayService C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
19:38:33.0382 1228 HssTrayService - ok
19:38:33.0410 1228 [ F4C1B3C4847BBA031ACFDCE5A3F0CFCB ] HssWd C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
19:38:33.0414 1228 HssWd - ok
19:38:33.0450 1228 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:38:33.0458 1228 HTTP - ok
19:38:33.0472 1228 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:38:33.0472 1228 hwpolicy - ok
19:38:33.0503 1228 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:38:33.0506 1228 i8042prt - ok
19:38:33.0542 1228 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:38:33.0547 1228 iaStorV - ok
19:38:33.0582 1228 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:38:33.0593 1228 idsvc - ok
19:38:33.0611 1228 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:38:33.0613 1228 iirsp - ok
19:38:33.0662 1228 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:38:33.0679 1228 IKEEXT - ok
19:38:33.0769 1228 [ 2E3B99E8C23BE2BF32EBE1DB5261F275 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:38:33.0784 1228 IntcAzAudAddService - ok
19:38:33.0795 1228 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:38:33.0797 1228 intelide - ok
19:38:33.0816 1228 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
19:38:33.0819 1228 intelppm - ok
19:38:33.0834 1228 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:38:33.0837 1228 IPBusEnum - ok
19:38:33.0847 1228 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:38:33.0850 1228 IpFilterDriver - ok
19:38:33.0873 1228 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:38:33.0878 1228 iphlpsvc - ok
19:38:33.0889 1228 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:38:33.0891 1228 IPMIDRV - ok
19:38:33.0898 1228 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:38:33.0900 1228 IPNAT - ok
19:38:33.0962 1228 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:38:33.0979 1228 iPod Service - ok
19:38:33.0994 1228 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:38:33.0996 1228 IRENUM - ok
19:38:34.0004 1228 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:38:34.0006 1228 isapnp - ok
19:38:34.0028 1228 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:38:34.0032 1228 iScsiPrt - ok
19:38:34.0055 1228 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:38:34.0056 1228 kbdclass - ok
19:38:34.0071 1228 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:38:34.0074 1228 kbdhid - ok
19:38:34.0088 1228 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:38:34.0089 1228 KeyIso - ok
19:38:34.0118 1228 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:38:34.0120 1228 KSecDD - ok
19:38:34.0134 1228 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:38:34.0136 1228 KSecPkg - ok
19:38:34.0147 1228 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:38:34.0149 1228 ksthunk - ok
19:38:34.0178 1228 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:38:34.0184 1228 KtmRm - ok
19:38:34.0217 1228 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
19:38:34.0225 1228 LanmanServer - ok
19:38:34.0241 1228 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:38:34.0248 1228 LanmanWorkstation - ok
19:38:34.0303 1228 [ 6BCEE9C766815BFFF89DE7D81AF34CE1 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
19:38:34.0306 1228 Live Updater Service - ok
19:38:34.0326 1228 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:38:34.0330 1228 lltdio - ok
19:38:34.0354 1228 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:38:34.0359 1228 lltdsvc - ok
19:38:34.0370 1228 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:38:34.0373 1228 lmhosts - ok
19:38:34.0377 1228 lmimirr - ok
19:38:34.0397 1228 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:38:34.0400 1228 LSI_FC - ok
19:38:34.0410 1228 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:38:34.0413 1228 LSI_SAS - ok
19:38:34.0428 1228 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
19:38:34.0430 1228 LSI_SAS2 - ok
19:38:34.0440 1228 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:38:34.0443 1228 LSI_SCSI - ok
19:38:34.0459 1228 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:38:34.0462 1228 luafv - ok
19:38:34.0479 1228 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:38:34.0483 1228 Mcx2Svc - ok
19:38:34.0499 1228 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
19:38:34.0501 1228 megasas - ok
19:38:34.0519 1228 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
19:38:34.0523 1228 MegaSR - ok
19:38:34.0565 1228 Microsoft SharePoint Workspace Audit Service - ok
19:38:34.0582 1228 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:38:34.0591 1228 MMCSS - ok
19:38:34.0603 1228 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:38:34.0605 1228 Modem - ok
19:38:34.0618 1228 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:38:34.0618 1228 monitor - ok
19:38:34.0639 1228 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:38:34.0640 1228 mouclass - ok
19:38:34.0667 1228 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:38:34.0669 1228 mouhid - ok
19:38:34.0674 1228 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:38:34.0676 1228 mountmgr - ok
19:38:34.0727 1228 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:38:34.0732 1228 MozillaMaintenance - ok
19:38:34.0777 1228 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:38:34.0781 1228 MpFilter - ok
19:38:34.0799 1228 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:38:34.0803 1228 mpio - ok
19:38:34.0822 1228 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:38:34.0824 1228 mpsdrv - ok
19:38:34.0862 1228 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:38:34.0872 1228 MpsSvc - ok
19:38:34.0887 1228 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:38:34.0889 1228 MRxDAV - ok
19:38:34.0915 1228 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:38:34.0918 1228 mrxsmb - ok
19:38:34.0952 1228 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:38:34.0956 1228 mrxsmb10 - ok
19:38:34.0971 1228 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:38:34.0973 1228 mrxsmb20 - ok
19:38:34.0986 1228 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:38:34.0988 1228 msahci - ok
19:38:35.0001 1228 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:38:35.0004 1228 msdsm - ok
19:38:35.0019 1228 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:38:35.0022 1228 MSDTC - ok
19:38:35.0045 1228 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:38:35.0047 1228 Msfs - ok
19:38:35.0055 1228 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:38:35.0057 1228 mshidkmdf - ok
19:38:35.0070 1228 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:38:35.0071 1228 msisadrv - ok
19:38:35.0095 1228 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:38:35.0099 1228 MSiSCSI - ok
19:38:35.0104 1228 msiserver - ok
19:38:35.0129 1228 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:38:35.0131 1228 MSKSSRV - ok
19:38:35.0180 1228 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:38:35.0181 1228 MsMpSvc - ok
19:38:35.0198 1228 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:38:35.0201 1228 MSPCLOCK - ok
19:38:35.0218 1228 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:38:35.0220 1228 MSPQM - ok
19:38:35.0239 1228 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:38:35.0244 1228 MsRPC - ok
19:38:35.0255 1228 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:38:35.0256 1228 mssmbios - ok
19:38:35.0271 1228 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:38:35.0273 1228 MSTEE - ok
19:38:35.0287 1228 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
19:38:35.0289 1228 MTConfig - ok
19:38:35.0301 1228 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:38:35.0302 1228 Mup - ok
19:38:35.0338 1228 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:38:35.0345 1228 napagent - ok
19:38:35.0372 1228 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:38:35.0376 1228 NativeWifiP - ok
19:38:35.0416 1228 [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
19:38:35.0426 1228 NAUpdate - ok
19:38:35.0478 1228 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:38:35.0493 1228 NDIS - ok
19:38:35.0513 1228 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:38:35.0515 1228 NdisCap - ok
19:38:35.0534 1228 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:38:35.0536 1228 NdisTapi - ok
19:38:35.0552 1228 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:38:35.0555 1228 Ndisuio - ok
19:38:35.0572 1228 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:38:35.0575 1228 NdisWan - ok
19:38:35.0587 1228 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:38:35.0590 1228 NDProxy - ok
19:38:35.0597 1228 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:38:35.0600 1228 NetBIOS - ok
19:38:35.0607 1228 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:38:35.0610 1228 NetBT - ok
19:38:35.0620 1228 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:38:35.0621 1228 Netlogon - ok
19:38:35.0630 1228 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:38:35.0635 1228 Netman - ok
19:38:35.0659 1228 [ 3E5A36127E201DDF663176B66828FAFE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:38:35.0663 1228 NetMsmqActivator - ok
19:38:35.0668 1228 [ 3E5A36127E201DDF663176B66828FAFE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:38:35.0669 1228 NetPipeActivator - ok
19:38:35.0692 1228 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:38:35.0698 1228 netprofm - ok
19:38:35.0731 1228 [ AF5F224A600F50B7D2B77F4AE59C1ABE ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
19:38:35.0738 1228 netr28x - ok
19:38:35.0755 1228 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:38:35.0757 1228 NetTcpActivator - ok
19:38:35.0762 1228 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:38:35.0763 1228 NetTcpPortSharing - ok
19:38:35.0780 1228 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:38:35.0783 1228 nfrd960 - ok
19:38:35.0808 1228 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:38:35.0810 1228 NisDrv - ok
19:38:35.0825 1228 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
19:38:35.0829 1228 NisSrv - ok
19:38:35.0846 1228 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:38:35.0849 1228 NlaSvc - ok
19:38:35.0853 1228 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:38:35.0855 1228 Npfs - ok
19:38:35.0863 1228 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:38:35.0865 1228 nsi - ok
19:38:35.0873 1228 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:38:35.0873 1228 nsiproxy - ok
19:38:35.0916 1228 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:38:35.0932 1228 Ntfs - ok
19:38:35.0951 1228 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:38:35.0953 1228 Null - ok
19:38:35.0969 1228 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:38:35.0971 1228 nvraid - ok
19:38:35.0991 1228 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:38:35.0993 1228 nvstor - ok
19:38:36.0004 1228 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:38:36.0007 1228 nv_agp - ok
19:38:36.0014 1228 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:38:36.0016 1228 ohci1394 - ok
19:38:36.0085 1228 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:38:36.0091 1228 ose - ok
19:38:36.0244 1228 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:38:36.0339 1228 osppsvc - ok
19:38:36.0375 1228 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:38:36.0379 1228 p2pimsvc - ok
19:38:36.0399 1228 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:38:36.0405 1228 p2psvc - ok
19:38:36.0421 1228 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
19:38:36.0424 1228 Parport - ok
19:38:36.0443 1228 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:38:36.0445 1228 partmgr - ok
19:38:36.0459 1228 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:38:36.0462 1228 PcaSvc - ok
19:38:36.0474 1228 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:38:36.0475 1228 pci - ok
19:38:36.0482 1228 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:38:36.0483 1228 pciide - ok
19:38:36.0493 1228 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:38:36.0496 1228 pcmcia - ok
19:38:36.0508 1228 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:38:36.0509 1228 pcw - ok
19:38:36.0518 1228 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:38:36.0524 1228 PEAUTH - ok
19:38:36.0587 1228 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:38:36.0590 1228 PerfHost - ok
19:38:36.0627 1228 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:38:36.0653 1228 pla - ok
19:38:36.0679 1228 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:38:36.0683 1228 PlugPlay - ok
19:38:36.0693 1228 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:38:36.0696 1228 PNRPAutoReg - ok
19:38:36.0702 1228 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:38:36.0705 1228 PNRPsvc - ok
19:38:36.0727 1228 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:38:36.0732 1228 PolicyAgent - ok
19:38:36.0755 1228 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:38:36.0757 1228 Power - ok
19:38:36.0780 1228 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:38:36.0783 1228 PptpMiniport - ok
19:38:36.0795 1228 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
19:38:36.0797 1228 Processor - ok
19:38:36.0813 1228 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:38:36.0816 1228 ProfSvc - ok
19:38:36.0827 1228 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:38:36.0828 1228 ProtectedStorage - ok
19:38:36.0845 1228 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:38:36.0847 1228 Psched - ok
19:38:36.0874 1228 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:38:36.0900 1228 ql2300 - ok
19:38:36.0908 1228 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:38:36.0911 1228 ql40xx - ok
19:38:36.0928 1228 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:38:36.0931 1228 QWAVE - ok
19:38:36.0939 1228 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:38:36.0941 1228 QWAVEdrv - ok
19:38:36.0952 1228 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:38:36.0954 1228 RasAcd - ok
19:38:36.0970 1228 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:38:36.0972 1228 RasAgileVpn - ok
19:38:36.0981 1228 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:38:36.0984 1228 RasAuto - ok
19:38:36.0995 1228 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:38:36.0998 1228 Rasl2tp - ok
19:38:37.0008 1228 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:38:37.0012 1228 RasMan - ok
19:38:37.0021 1228 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:38:37.0024 1228 RasPppoe - ok
19:38:37.0034 1228 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:38:37.0036 1228 RasSstp - ok
19:38:37.0051 1228 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:38:37.0054 1228 rdbss - ok
19:38:37.0068 1228 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
19:38:37.0070 1228 rdpbus - ok
19:38:37.0081 1228 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:38:37.0082 1228 RDPCDD - ok
19:38:37.0104 1228 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:38:37.0105 1228 RDPENCDD - ok
19:38:37.0134 1228 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:38:37.0134 1228 RDPREFMP - ok
19:38:37.0156 1228 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:38:37.0159 1228 RDPWD - ok
19:38:37.0164 1228 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:38:37.0167 1228 rdyboost - ok
19:38:37.0180 1228 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:38:37.0188 1228 RemoteAccess - ok
19:38:37.0205 1228 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:38:37.0208 1228 RemoteRegistry - ok
19:38:37.0212 1228 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:38:37.0214 1228 RpcEptMapper - ok
19:38:37.0231 1228 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:38:37.0233 1228 RpcLocator - ok
19:38:37.0244 1228 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:38:37.0248 1228 RpcSs - ok
19:38:37.0252 1228 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:38:37.0254 1228 rspndr - ok
19:38:37.0289 1228 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:38:37.0291 1228 RTL8167 - ok
19:38:37.0301 1228 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:38:37.0302 1228 SamSs - ok
19:38:37.0315 1228 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:38:37.0317 1228 sbp2port - ok
19:38:37.0333 1228 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:38:37.0336 1228 SCardSvr - ok
19:38:37.0375 1228 [ EFD61BD67E5CE72CA5CE8BB6AD3E1FDB ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
19:38:37.0421 1228 SCDEmu - ok
19:38:37.0438 1228 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:38:37.0443 1228 scfilter - ok
19:38:37.0469 1228 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:38:37.0487 1228 Schedule - ok
19:38:37.0508 1228 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:38:37.0508 1228 SCPolicySvc - ok
19:38:37.0518 1228 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:38:37.0526 1228 SDRSVC - ok
19:38:37.0541 1228 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:38:37.0543 1228 secdrv - ok
19:38:37.0554 1228 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:38:37.0557 1228 seclogon - ok
19:38:37.0570 1228 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
19:38:37.0573 1228 SENS - ok
19:38:37.0591 1228 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:38:37.0594 1228 SensrSvc - ok
19:38:37.0604 1228 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
19:38:37.0606 1228 Serenum - ok
19:38:37.0615 1228 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
19:38:37.0617 1228 Serial - ok
19:38:37.0637 1228 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:38:37.0639 1228 sermouse - ok
19:38:37.0652 1228 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:38:37.0655 1228 SessionEnv - ok
19:38:37.0666 1228 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:38:37.0668 1228 sffdisk - ok
19:38:37.0678 1228 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:38:37.0680 1228 sffp_mmc - ok
19:38:37.0693 1228 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:38:37.0695 1228 sffp_sd - ok
19:38:37.0700 1228 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:38:37.0702 1228 sfloppy - ok
19:38:37.0729 1228 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:38:37.0733 1228 SharedAccess - ok
19:38:37.0749 1228 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:38:37.0753 1228 ShellHWDetection - ok
19:38:37.0759 1228 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
19:38:37.0761 1228 SiSRaid2 - ok
19:38:37.0774 1228 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:38:37.0776 1228 SiSRaid4 - ok
19:38:37.0792 1228 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:38:37.0794 1228 Smb - ok
19:38:37.0827 1228 [ 03573DA7C4ABCF5591AD4D8C96736B00 ] SMR210 C:\Windows\system32\drivers\SMR210.SYS
19:38:37.0829 1228 SMR210 - ok
19:38:37.0851 1228 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:38:37.0853 1228 SNMPTRAP - ok
19:38:37.0857 1228 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:38:37.0857 1228 spldr - ok
19:38:37.0884 1228 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:38:37.0908 1228 Spooler - ok
19:38:37.0956 1228 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:38:38.0032 1228 sppsvc - ok
19:38:38.0047 1228 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:38:38.0050 1228 sppuinotify - ok
19:38:38.0078 1228 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:38:38.0083 1228 srv - ok
19:38:38.0100 1228 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:38:38.0104 1228 srv2 - ok
19:38:38.0120 1228 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:38:38.0123 1228 srvnet - ok
19:38:38.0137 1228 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:38:38.0140 1228 SSDPSRV - ok
19:38:38.0150 1228 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:38:38.0153 1228 SstpSvc - ok
19:38:38.0163 1228 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
19:38:38.0165 1228 stexstor - ok
19:38:38.0193 1228 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:38:38.0200 1228 stisvc - ok
19:38:38.0209 1228 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:38:38.0210 1228 swenum - ok
19:38:38.0278 1228 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
19:38:38.0462 1228 SwitchBoard - ok
19:38:38.0480 1228 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:38:38.0485 1228 swprv - ok
19:38:38.0519 1228 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:38:38.0553 1228 SysMain - ok
19:38:38.0575 1228 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:38:38.0581 1228 TabletInputService - ok
19:38:38.0604 1228 [ B70DF208E97536CA9F29289E609F5B16 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
19:38:38.0605 1228 taphss - ok
19:38:38.0619 1228 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:38:38.0623 1228 TapiSrv - ok
19:38:38.0635 1228 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:38:38.0637 1228 TBS - ok
19:38:38.0705 1228 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:38:38.0724 1228 Tcpip - ok
19:38:38.0790 1228 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:38:38.0813 1228 TCPIP6 - ok
19:38:38.0835 1228 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:38:38.0845 1228 tcpipreg - ok
19:38:38.0856 1228 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:38:38.0857 1228 TDPIPE - ok
19:38:38.0881 1228 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:38:38.0882 1228 TDTCP - ok
19:38:38.0895 1228 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:38:38.0898 1228 tdx - ok
19:38:39.0019 1228 [ 74FC70AE64A7B7DABEC9697CE0A1F4FA ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
19:38:39.0035 1228 TeamViewer7 - ok
19:38:39.0055 1228 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:38:39.0056 1228 TermDD - ok
19:38:39.0155 1228 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:38:39.0186 1228 TermService - ok
19:38:39.0201 1228 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:38:39.0207 1228 Themes - ok
19:38:39.0220 1228 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:38:39.0223 1228 THREADORDER - ok
19:38:39.0251 1228 [ 199C2E87D9A5EC58D0BCD94E893BF629 ] TIEHDUSB C:\Windows\system32\DRIVERS\tiehdusb.sys
19:38:39.0254 1228 TIEHDUSB - ok
19:38:39.0267 1228 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:38:39.0271 1228 TrkWks - ok
19:38:39.0315 1228 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:38:39.0321 1228 TrustedInstaller - ok
19:38:39.0353 1228 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:38:39.0355 1228 tssecsrv - ok
19:38:39.0375 1228 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:38:39.0377 1228 TsUsbFlt - ok
19:38:39.0386 1228 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
19:38:39.0388 1228 TsUsbGD - ok
19:38:39.0410 1228 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:38:39.0413 1228 tunnel - ok
19:38:39.0422 1228 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:38:39.0424 1228 uagp35 - ok
19:38:39.0442 1228 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:38:39.0447 1228 udfs - ok
19:38:39.0467 1228 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:38:39.0470 1228 UI0Detect - ok
19:38:39.0485 1228 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:38:39.0487 1228 uliagpkx - ok
19:38:39.0504 1228 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:38:39.0506 1228 umbus - ok
19:38:39.0517 1228 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
19:38:39.0519 1228 UmPass - ok
19:38:39.0535 1228 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:38:39.0541 1228 upnphost - ok
19:38:39.0577 1228 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:38:39.0597 1228 USBAAPL64 - ok
19:38:39.0640 1228 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:38:39.0643 1228 usbaudio - ok
19:38:39.0657 1228 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:38:39.0660 1228 usbccgp - ok
19:38:39.0678 1228 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:38:39.0681 1228 usbcir - ok
19:38:39.0691 1228 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:38:39.0694 1228 usbehci - ok
19:38:39.0712 1228 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:38:39.0717 1228 usbhub - ok
19:38:39.0731 1228 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:38:39.0733 1228 usbohci - ok
19:38:39.0740 1228 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:38:39.0741 1228 usbprint - ok
19:38:39.0758 1228 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:38:39.0774 1228 usbscan - ok
19:38:39.0794 1228 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:38:39.0802 1228 USBSTOR - ok
19:38:39.0829 1228 [ C44D96B1CDDE705B23F55AB423CCA73D ] USBTINSP C:\Windows\system32\DRIVERS\tinspusb.sys
19:38:39.0832 1228 USBTINSP - ok
19:38:39.0845 1228 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:38:39.0847 1228 usbuhci - ok
19:38:39.0869 1228 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:38:39.0872 1228 UxSms - ok
19:38:39.0877 1228 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:38:39.0878 1228 VaultSvc - ok
19:38:39.0893 1228 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:38:39.0894 1228 vdrvroot - ok
19:38:39.0917 1228 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:38:39.0925 1228 vds - ok
19:38:39.0934 1228 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:38:39.0936 1228 vga - ok
19:38:39.0946 1228 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:38:39.0948 1228 VgaSave - ok
19:38:39.0962 1228 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:38:39.0965 1228 vhdmp - ok
19:38:39.0977 1228 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:38:39.0979 1228 viaide - ok
19:38:39.0988 1228 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:38:39.0990 1228 volmgr - ok
19:38:40.0010 1228 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:38:40.0015 1228 volmgrx - ok
19:38:40.0023 1228 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:38:40.0027 1228 volsnap - ok
19:38:40.0038 1228 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:38:40.0040 1228 vsmraid - ok
19:38:40.0073 1228 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:38:40.0108 1228 VSS - ok
19:38:40.0129 1228 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:38:40.0131 1228 vwifibus - ok
19:38:40.0157 1228 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:38:40.0159 1228 vwififlt - ok
19:38:40.0181 1228 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:38:40.0183 1228 vwifimp - ok
19:38:40.0200 1228 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:38:40.0207 1228 W32Time - ok
19:38:40.0215 1228 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:38:40.0216 1228 WacomPen - ok
19:38:40.0229 1228 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:38:40.0231 1228 WANARP - ok
19:38:40.0244 1228 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:38:40.0245 1228 Wanarpv6 - ok
19:38:40.0332 1228 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:38:40.0368 1228 WatAdminSvc - ok
19:38:40.0435 1228 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:38:40.0480 1228 wbengine - ok
19:38:40.0518 1228 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:38:40.0528 1228 WbioSrvc - ok
19:38:40.0571 1228 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:38:40.0583 1228 wcncsvc - ok
19:38:40.0596 1228 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:38:40.0603 1228 WcsPlugInService - ok
19:38:40.0612 1228 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
19:38:40.0614 1228 Wd - ok
19:38:40.0635 1228 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:38:40.0642 1228 Wdf01000 - ok
19:38:40.0650 1228 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:38:40.0653 1228 WdiServiceHost - ok
19:38:40.0657 1228 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:38:40.0658 1228 WdiSystemHost - ok
19:38:40.0669 1228 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:38:40.0673 1228 WebClient - ok
19:38:40.0685 1228 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:38:40.0689 1228 Wecsvc - ok
19:38:40.0706 1228 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:38:40.0708 1228 wercplsupport - ok
19:38:40.0726 1228 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:38:40.0729 1228 WerSvc - ok
19:38:40.0737 1228 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:38:40.0739 1228 WfpLwf - ok
19:38:40.0748 1228 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:38:40.0749 1228 WIMMount - ok
19:38:40.0786 1228 WinDefend - ok
19:38:40.0791 1228 WinHttpAutoProxySvc - ok
19:38:40.0841 1228 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:38:40.0854 1228 Winmgmt - ok
19:38:40.0917 1228 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:38:40.0972 1228 WinRM - ok
19:38:41.0022 1228 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:38:41.0048 1228 WinUsb - ok
19:38:41.0101 1228 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:38:41.0112 1228 Wlansvc - ok
19:38:41.0147 1228 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:38:41.0152 1228 wlcrasvc - ok
19:38:41.0242 1228 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:38:41.0284 1228 wlidsvc - ok
19:38:41.0306 1228 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:38:41.0307 1228 WmiAcpi - ok
19:38:41.0332 1228 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:38:41.0335 1228 wmiApSrv - ok
19:38:41.0364 1228 WMPNetworkSvc - ok
19:38:41.0372 1228 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:38:41.0375 1228 WPCSvc - ok
19:38:41.0387 1228 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:38:41.0390 1228 WPDBusEnum - ok
19:38:41.0395 1228 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:38:41.0395 1228 ws2ifsl - ok
19:38:41.0410 1228 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
19:38:41.0413 1228 wscsvc - ok
19:38:41.0434 1228 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
19:38:41.0435 1228 WSDPrintDevice - ok
19:38:41.0455 1228 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
19:38:41.0457 1228 WSDScan - ok
19:38:41.0460 1228 WSearch - ok
19:38:41.0518 1228 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:38:41.0553 1228 wuauserv - ok
19:38:41.0567 1228 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:38:41.0569 1228 WudfPf - ok
19:38:41.0591 1228 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:38:41.0594 1228 WUDFRd - ok
19:38:41.0602 1228 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:38:41.0605 1228 wudfsvc - ok
19:38:41.0613 1228 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:38:41.0616 1228 WwanSvc - ok
19:38:41.0640 1228 ================ Scan global ===============================
19:38:41.0653 1228 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:38:41.0677 1228 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:38:41.0684 1228 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:38:41.0700 1228 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:38:41.0727 1228 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:38:41.0731 1228 [Global] - ok
19:38:41.0732 1228 ================ Scan MBR ==================================
19:38:41.0747 1228 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:38:41.0813 1228 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
19:38:41.0813 1228 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
19:38:41.0824 1228 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk3\DR3
19:38:41.0872 1228 \Device\Harddisk3\DR3 - ok
19:38:41.0873 1228 ================ Scan VBR ==================================
19:38:41.0875 1228 [ 261B0462998C26826C4C00D74F3F481C ] \Device\Harddisk0\DR0\Partition1
19:38:41.0876 1228 \Device\Harddisk0\DR0\Partition1 - ok
19:38:41.0892 1228 [ 8817225AC7DA884E2D09CB3E99D3921A ] \Device\Harddisk0\DR0\Partition2
19:38:41.0894 1228 \Device\Harddisk0\DR0\Partition2 - ok
19:38:41.0898 1228 [ CE8C6ACDABAB0BFC8A32E7DA324D6795 ] \Device\Harddisk3\DR3\Partition1
19:38:41.0899 1228 \Device\Harddisk3\DR3\Partition1 - ok
19:38:41.0899 1228 ============================================================
19:38:41.0899 1228 Scan finished
19:38:41.0900 1228 ============================================================
19:38:41.0911 1384 Detected object count: 1
19:38:41.0911 1384 Actual detected object count: 1
19:38:55.0519 1384 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - skipped by user
19:38:55.0520 1384 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:21 AM

Posted 17 September 2012 - 10:46 PM

19:38:55.0519 1384 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - skipped by user
19:38:55.0520 1384 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip


Run TDSSkiller again and select CURE,do not skip

Restart the PC ,run TDSSkiller again and post the new log


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#10 rc17

rc17
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:21 AM

Posted 18 September 2012 - 02:22 PM

15:21:08.0086 3596 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
15:21:09.0630 3596 ============================================================
15:21:09.0630 3596 Current date / time: 2012/09/18 15:21:09.0630
15:21:09.0630 3596 SystemInfo:
15:21:09.0630 3596
15:21:09.0630 3596 OS Version: 6.1.7601 ServicePack: 1.0
15:21:09.0630 3596 Product type: Workstation
15:21:09.0630 3596 ComputerName: RAGHAVCHAWLA-PC
15:21:09.0630 3596 UserName: Raghav Chawla
15:21:09.0630 3596 Windows directory: C:\Windows
15:21:09.0630 3596 System windows directory: C:\Windows
15:21:09.0630 3596 Running under WOW64
15:21:09.0630 3596 Processor architecture: Intel x64
15:21:09.0630 3596 Number of processors: 4
15:21:09.0630 3596 Page size: 0x1000
15:21:09.0630 3596 Boot type: Normal boot
15:21:09.0630 3596 ============================================================
15:21:11.0315 3596 Drive \Device\Harddisk0\DR0 - Size: 0xE8DCDB0000 (931.45 Gb), SectorSize: 0x200, Cylinders: 0x1DAF9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:21:11.0346 3596 Drive \Device\Harddisk3\DR3 - Size: 0xF1400000 (3.77 Gb), SectorSize: 0x200, Cylinders: 0x1EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:21:11.0362 3596 ============================================================
15:21:11.0362 3596 \Device\Harddisk0\DR0:
15:21:11.0362 3596 MBR partitions:
15:21:11.0362 3596 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
15:21:11.0362 3596 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A32800, BlocksNum 0x72CB3800
15:21:11.0362 3596 \Device\Harddisk3\DR3:
15:21:11.0362 3596 MBR partitions:
15:21:11.0362 3596 \Device\Harddisk3\DR3\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x788000
15:21:11.0362 3596 ============================================================
15:21:11.0378 3596 C: <-> \Device\Harddisk0\DR0\Partition2
15:21:11.0378 3596 ============================================================
15:21:11.0378 3596 Initialize success
15:21:11.0378 3596 ============================================================
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-18 10:39:20
-----------------------------
10:39:20.078 OS Version: Windows x64 6.1.7601 Service Pack 1
10:39:20.078 Number of processors: 4 586 0x503
10:39:20.078 ComputerName: RAGHAVCHAWLA-PC UserName: Raghav Chawla
10:39:23.151 Initialize success
10:43:52.392 AVAST engine defs: 12091400
10:44:08.019 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000064
10:44:08.025 Disk 0 Vendor: Seagate_ JC45 Size: 953805MB BusType: 8
10:44:08.030 Disk 3 \Device\Harddisk3\DR3 -> \Device\00000082
10:44:08.036 Disk 3 Vendor: Size: 953805MB BusType: 0
10:44:08.054 Disk 0 MBR read successfully
10:44:08.061 Disk 0 MBR scan
10:44:08.073 Disk 0 Windows 7 default MBR code
10:44:08.085 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13312 MB offset 2048
10:44:08.152 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 27265024
10:44:08.182 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 940391 MB offset 27469824
10:44:08.234 Disk 0 scanning C:\Windows\system32\drivers
10:44:21.281 Service scanning
10:44:47.142 Modules scanning
10:44:47.505 Disk 0 trace - called modules:
10:44:47.529 ntoskrnl.exe CLASSPNP.SYS disk.sys storport.sys hal.dll ahcix64s.sys
10:44:47.541 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80046e7060]
10:44:47.553 3 CLASSPNP.SYS[fffff8800181c43f] -> nt!IofCallDriver -> \Device\00000064[0xfffffa80045ca9c0]
10:45:00.546 AVAST engine scan C:\Windows
10:45:05.765 AVAST engine scan C:\Windows\system32
10:49:14.329 AVAST engine scan C:\Windows\system32\drivers
10:49:37.967 Disk 0 MBR has been saved successfully to "C:\Users\Raghav Chawla\Desktop\MBR.dat"
10:49:38.027 The log file has been saved successfully to "C:\Users\Raghav Chawla\Desktop\aswMBR.txt"

C:\TDSSKiller_Quarantine\18.09.2012_10.33.17\mbr0000\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.09.2012_10.33.17\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.09.2012_10.33.17\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.09.2012_10.33.17\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\Users\Raghav Chawla\AppData\Roaming\Mozilla\Firefox\Profiles\rlvuiv2a.default\extensions\cczqktjpgu@cczqktjpgu.org.xpi JS/Redirector.NCA trojan deleted - quarantined

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:21 AM

Posted 18 September 2012 - 03:01 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users