Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

redirect virus and much more


  • Please log in to reply
38 replies to this topic

#1 keikei

keikei

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 27 November 2012 - 12:10 AM

so my pc has gotten the worst infection i think i have ever seen in my life,this is like worst than full blown AIDS..

the issue is that no matter what link i click on i always get redirect but also i tried running kapersky,malwarebytes and windows defender..and they all get stuck in window/TEMP folder..this current scan has been running for the past 18hrs.the last one ran for 15hrs when i decided to ended..i get files like .js .xml and .tmp files

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:11 AM

Posted 27 November 2012 - 12:37 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 27 November 2012 - 04:14 PM

thnx narenxp here is the log for TDSSKILLER

06:50:36.0422 3908 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
06:50:37.0193 3908 ============================================================
06:50:37.0193 3908 Current date / time: 2012/11/27 06:50:37.0193
06:50:37.0193 3908 SystemInfo:
06:50:37.0193 3908
06:50:37.0193 3908 OS Version: 6.1.7601 ServicePack: 1.0
06:50:37.0193 3908 Product type: Workstation
06:50:37.0193 3908 ComputerName: KEINGRID-PC
06:50:37.0193 3908 UserName: keingrid
06:50:37.0193 3908 Windows directory: C:\Windows
06:50:37.0193 3908 System windows directory: C:\Windows
06:50:37.0193 3908 Processor architecture: Intel x86
06:50:37.0193 3908 Number of processors: 2
06:50:37.0193 3908 Page size: 0x1000
06:50:37.0193 3908 Boot type: Normal boot
06:50:37.0193 3908 ============================================================
06:51:37.0231 3908 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
06:51:37.0261 3908 Drive \Device\Harddisk1\DR1 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
06:51:37.0281 3908 ============================================================
06:51:37.0281 3908 \Device\Harddisk0\DR0:
06:51:37.0281 3908 MBR partitions:
06:51:37.0281 3908 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18000, BlocksNum 0x1400000
06:51:37.0281 3908 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1418000, BlocksNum 0x1BD90800
06:51:37.0281 3908 \Device\Harddisk1\DR1:
06:51:37.0281 3908 MBR partitions:
06:51:37.0281 3908 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xAEA86702
06:51:37.0281 3908 ============================================================
06:51:37.0721 3908 C: <-> \Device\Harddisk0\DR0\Partition2
06:51:37.0831 3908 D: <-> \Device\Harddisk0\DR0\Partition1
06:51:37.0871 3908 I: <-> \Device\Harddisk1\DR1\Partition1
06:51:37.0871 3908 ============================================================
06:51:37.0871 3908 Initialize success
06:51:37.0871 3908 ============================================================
06:52:15.0254 2908 ============================================================
06:52:15.0254 2908 Scan started
06:52:15.0254 2908 Mode: Manual; TDLFS;
06:52:15.0254 2908 ============================================================
06:52:17.0315 2908 ================ Scan system memory ========================
06:52:17.0315 2908 System memory - ok
06:52:17.0315 2908 ================ Scan services =============================
06:52:17.0405 2908 .cdrom - ok
06:52:18.0885 2908 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
06:52:18.0905 2908 1394ohci - ok
06:52:19.0345 2908 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
06:52:19.0445 2908 ACDaemon - ok
06:52:19.0665 2908 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
06:52:19.0675 2908 ACPI - ok
06:52:19.0715 2908 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
06:52:19.0745 2908 AcpiPmi - ok
06:52:19.0955 2908 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
06:52:20.0075 2908 AdobeFlashPlayerUpdateSvc - ok
06:52:20.0255 2908 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
06:52:20.0345 2908 adp94xx - ok
06:52:20.0375 2908 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
06:52:20.0405 2908 adpahci - ok
06:52:20.0465 2908 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
06:52:20.0505 2908 adpu320 - ok
06:52:21.0015 2908 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
06:52:21.0135 2908 AdvancedSystemCareService5 - ok
06:52:21.0235 2908 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
06:52:21.0235 2908 AeLookupSvc - ok
06:52:21.0335 2908 [ 330A1E4DF07C2E29949ED8631CD8828E ] AERTFilters C:\Windows\system32\AERTSrv.exe
06:52:21.0355 2908 AERTFilters - ok
06:52:21.0455 2908 [ A7B8A3A79D35215D798A300DF49ED23F ] Afc C:\Windows\system32\drivers\Afc.sys
06:52:21.0495 2908 Afc - ok
06:52:21.0675 2908 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
06:52:22.0035 2908 AFD - ok
06:52:22.0155 2908 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
06:52:22.0185 2908 agp440 - ok
06:52:22.0255 2908 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
06:52:22.0335 2908 aic78xx - ok
06:52:22.0535 2908 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
06:52:22.0575 2908 ALG - ok
06:52:22.0665 2908 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
06:52:22.0685 2908 aliide - ok
06:52:22.0725 2908 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
06:52:22.0755 2908 amdagp - ok
06:52:22.0775 2908 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
06:52:22.0815 2908 amdide - ok
06:52:22.0865 2908 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
06:52:22.0875 2908 AmdK8 - ok
06:52:22.0925 2908 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
06:52:22.0945 2908 AmdPPM - ok
06:52:22.0985 2908 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
06:52:23.0015 2908 amdsata - ok
06:52:23.0065 2908 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
06:52:23.0135 2908 amdsbs - ok
06:52:23.0165 2908 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
06:52:23.0205 2908 amdxata - ok
06:52:23.0275 2908 [ 90FBA08BF4CC75A7F8FFA84E8DDE0FA1 ] AMP C:\Windows\system32\Drivers\amp.sys
06:52:23.0325 2908 AMP - ok
06:52:23.0665 2908 [ 572B6C45D358C2E7D0135FF46485A240 ] AMPSE C:\Windows\system32\Drivers\ampse.sys
06:52:23.0815 2908 AMPSE - ok
06:52:23.0895 2908 [ 950CC1E6AE3A6CD23E0945CDE089B02C ] androidusb C:\Windows\system32\Drivers\androidusb.sys
06:52:23.0935 2908 androidusb - ok
06:52:23.0985 2908 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
06:52:24.0015 2908 AppID - ok
06:52:24.0085 2908 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
06:52:24.0115 2908 AppIDSvc - ok
06:52:24.0215 2908 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
06:52:24.0215 2908 Appinfo - ok
06:52:24.0285 2908 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
06:52:24.0285 2908 Apple Mobile Device - ok
06:52:24.0545 2908 [ 70968A726D9DE0F0259D4AEB965FAD61 ] Application Updater C:\Program Files\Application Updater\ApplicationUpdater.exe
06:52:24.0555 2908 Application Updater - ok
06:52:24.0695 2908 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
06:52:24.0795 2908 AppMgmt - ok
06:52:24.0875 2908 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
06:52:24.0935 2908 arc - ok
06:52:24.0995 2908 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
06:52:25.0105 2908 arcsas - ok
06:52:25.0165 2908 [ B979979AB8027F7F53FB16EC4229B7DB ] ASPI32 C:\Windows\system32\drivers\ASPI32.sys
06:52:25.0245 2908 ASPI32 - ok
06:52:25.0295 2908 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
06:52:25.0305 2908 AsyncMac - ok
06:52:25.0405 2908 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
06:52:25.0405 2908 atapi - ok
06:52:25.0605 2908 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
06:52:25.0625 2908 AudioEndpointBuilder - ok
06:52:25.0665 2908 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
06:52:25.0675 2908 Audiosrv - ok
06:52:25.0785 2908 [ 91AE926364BFCF947FBDDDAD920D4ADE ] AutoSyncService C:\Program Files\Memeo\AutoSync\MemeoService.exe
06:52:25.0825 2908 AutoSyncService - ok
06:52:26.0356 2908 [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
06:52:26.0366 2908 AVP - ok
06:52:26.0426 2908 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
06:52:26.0456 2908 AxInstSV - ok
06:52:26.0616 2908 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
06:52:26.0636 2908 b06bdrv - ok
06:52:26.0726 2908 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
06:52:26.0806 2908 b57nd60x - ok
06:52:26.0846 2908 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
06:52:26.0876 2908 BDESVC - ok
06:52:26.0906 2908 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
06:52:26.0926 2908 Beep - ok
06:52:27.0086 2908 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
06:52:27.0136 2908 BFE - ok
06:52:27.0176 2908 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
06:52:27.0206 2908 blbdrive - ok
06:52:27.0406 2908 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
06:52:27.0466 2908 Bonjour Service - ok
06:52:27.0556 2908 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
06:52:27.0626 2908 bowser - ok
06:52:27.0686 2908 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
06:52:27.0786 2908 BrFiltLo - ok
06:52:27.0836 2908 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
06:52:27.0886 2908 BrFiltUp - ok
06:52:27.0926 2908 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
06:52:27.0996 2908 BridgeMP - ok
06:52:28.0096 2908 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
06:52:28.0106 2908 Browser - ok
06:52:28.0256 2908 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
06:52:28.0896 2908 Brserid - ok
06:52:28.0996 2908 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
06:52:29.0096 2908 BrSerWdm - ok
06:52:29.0136 2908 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
06:52:29.0196 2908 BrUsbMdm - ok
06:52:29.0266 2908 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
06:52:29.0346 2908 BrUsbSer - ok
06:52:29.0366 2908 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
06:52:29.0476 2908 BTHMODEM - ok
06:52:29.0566 2908 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
06:52:29.0626 2908 bthserv - ok
06:52:30.0006 2908 catchme - ok
06:52:30.0056 2908 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
06:52:30.0106 2908 cdfs - ok
06:52:30.0166 2908 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
06:52:30.0196 2908 cdrom - ok
06:52:30.0266 2908 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
06:52:30.0296 2908 CertPropSvc - ok
06:52:30.0376 2908 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
06:52:30.0416 2908 circlass - ok
06:52:30.0566 2908 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
06:52:30.0596 2908 CLFS - ok
06:52:30.0796 2908 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:52:30.0846 2908 clr_optimization_v2.0.50727_32 - ok
06:52:31.0096 2908 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:52:31.0166 2908 clr_optimization_v4.0.30319_32 - ok
06:52:31.0236 2908 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
06:52:31.0276 2908 CmBatt - ok
06:52:31.0336 2908 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
06:52:31.0356 2908 cmdide - ok
06:52:31.0466 2908 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
06:52:31.0486 2908 CNG - ok
06:52:31.0546 2908 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
06:52:31.0596 2908 Compbatt - ok
06:52:31.0626 2908 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
06:52:31.0716 2908 CompositeBus - ok
06:52:31.0726 2908 COMSysApp - ok
06:52:31.0776 2908 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
06:52:31.0796 2908 crcdisk - ok
06:52:32.0376 2908 [ 97558F429F8F09446AE51C1AA88C9B9B ] CrossLoopService C:\Users\keingrid\AppData\Local\CrossLoop\CrossLoopService.exe
06:52:32.0376 2908 CrossLoopService - ok
06:52:32.0536 2908 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
06:52:32.0546 2908 CryptSvc - ok
06:52:32.0736 2908 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
06:52:32.0916 2908 CSC - ok
06:52:33.0046 2908 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
06:52:33.0056 2908 CscService - ok
06:52:33.0216 2908 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
06:52:33.0396 2908 DcomLaunch - ok
06:52:33.0456 2908 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
06:52:33.0526 2908 defragsvc - ok
06:52:33.0566 2908 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
06:52:33.0596 2908 DfsC - ok
06:52:33.0666 2908 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
06:52:33.0696 2908 Dhcp - ok
06:52:33.0776 2908 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
06:52:33.0996 2908 discache - ok
06:52:34.0026 2908 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
06:52:34.0036 2908 Disk - ok
06:52:34.0136 2908 [ A53723176D0002FEB486EFF8E17812F2 ] DLABMFSM C:\Windows\system32\DLA\DLABMFSM.SYS
06:52:34.0156 2908 DLABMFSM - ok
06:52:34.0206 2908 [ D4587063ACEA776699251E177D719586 ] DLABOIOM C:\Windows\system32\DLA\DLABOIOM.SYS
06:52:34.0216 2908 DLABOIOM - ok
06:52:34.0256 2908 [ 5230CDB7E715F3A3B4A882E254CDD35D ] DLACDBHM C:\Windows\system32\Drivers\DLACDBHM.SYS
06:52:34.0286 2908 DLACDBHM - ok
06:52:34.0316 2908 [ C950C2E7B9ED1A4FC4A2AC7EC044F1D6 ] DLADResM C:\Windows\system32\DLA\DLADResM.SYS
06:52:34.0346 2908 DLADResM - ok
06:52:34.0366 2908 [ 24400137E387A24410C52A591F3CFB4D ] DLAIFS_M C:\Windows\system32\DLA\DLAIFS_M.SYS
06:52:34.0396 2908 DLAIFS_M - ok
06:52:34.0446 2908 [ 29A303FECEB28641ECEBDAE89EB71C63 ] DLAOPIOM C:\Windows\system32\DLA\DLAOPIOM.SYS
06:52:34.0506 2908 DLAOPIOM - ok
06:52:34.0526 2908 [ C93E33A22A1AE0C5508F3FB1F6D0A50C ] DLAPoolM C:\Windows\system32\DLA\DLAPoolM.SYS
06:52:34.0556 2908 DLAPoolM - ok
06:52:34.0646 2908 [ 77FE51F0F8D86804CB81F6EF6BFB86DD ] DLARTL_M C:\Windows\system32\Drivers\DLARTL_M.SYS
06:52:34.0716 2908 DLARTL_M - ok
06:52:34.0746 2908 [ B953498C35A31E5AC98F49ADBCF3E627 ] DLAUDFAM C:\Windows\system32\DLA\DLAUDFAM.SYS
06:52:34.0776 2908 DLAUDFAM - ok
06:52:34.0796 2908 [ 4897704C093C1F59CE58FC65E1E1EF1E ] DLAUDF_M C:\Windows\system32\DLA\DLAUDF_M.SYS
06:52:34.0826 2908 DLAUDF_M - ok
06:52:34.0886 2908 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
06:52:34.0946 2908 Dnscache - ok
06:52:35.0076 2908 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
06:52:35.0176 2908 dot3svc - ok
06:52:35.0276 2908 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
06:52:35.0276 2908 DPS - ok
06:52:35.0356 2908 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
06:52:35.0446 2908 drmkaud - ok
06:52:35.0526 2908 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\Windows\system32\Drivers\DRVMCDB.SYS
06:52:35.0556 2908 DRVMCDB - ok
06:52:35.0596 2908 [ FFC371525AA55D1BAE18715EBCB8797C ] DRVNDDM C:\Windows\system32\Drivers\DRVNDDM.SYS
06:52:35.0666 2908 DRVNDDM - ok
06:52:35.0986 2908 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
06:52:36.0166 2908 DXGKrnl - ok
06:52:36.0226 2908 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
06:52:36.0296 2908 EapHost - ok
06:52:37.0566 2908 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
06:52:38.0416 2908 ebdrv - ok
06:52:38.0456 2908 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
06:52:38.0486 2908 EFS - ok
06:52:38.0706 2908 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
06:52:38.0816 2908 ehRecvr - ok
06:52:38.0876 2908 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
06:52:38.0956 2908 ehSched - ok
06:52:38.0996 2908 [ 9C64C2A950195F9BC3A09A499648B01C ] ElRawDisk C:\Windows\system32\drivers\ElRawDsk.sys
06:52:39.0036 2908 ElRawDisk - ok
06:52:39.0086 2908 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
06:52:39.0136 2908 elxstor - ok
06:52:39.0196 2908 [ 539CA34FBC74EC366A0D751028C32A08 ] epmntdrv C:\Windows\system32\epmntdrv.sys
06:52:39.0236 2908 epmntdrv - ok
06:52:39.0426 2908 [ 8FE6AB59CAB8F2C038FEA9522A5EEBA7 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
06:52:39.0436 2908 EPSON_PM_RPCV4_01 - ok
06:52:39.0466 2908 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
06:52:39.0476 2908 ErrDev - ok
06:52:39.0596 2908 [ 1F2F4AB15CE03ECC257FEB2F6DC5A013 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
06:52:39.0656 2908 EuGdiDrv - ok
06:52:39.0796 2908 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
06:52:39.0806 2908 EventSystem - ok
06:52:39.0856 2908 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
06:52:39.0906 2908 exfat - ok
06:52:40.0026 2908 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
06:52:40.0036 2908 fastfat - ok
06:52:40.0237 2908 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
06:52:40.0357 2908 Fax - ok
06:52:40.0417 2908 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
06:52:40.0527 2908 fdc - ok
06:52:40.0617 2908 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
06:52:40.0617 2908 fdPHost - ok
06:52:40.0747 2908 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
06:52:40.0757 2908 FDResPub - ok
06:52:40.0767 2908 FileDisk - ok
06:52:40.0877 2908 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
06:52:40.0907 2908 FileInfo - ok
06:52:40.0967 2908 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
06:52:41.0047 2908 Filetrace - ok
06:52:41.0067 2908 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
06:52:41.0087 2908 flpydisk - ok
06:52:41.0187 2908 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
06:52:41.0307 2908 FltMgr - ok
06:52:41.0697 2908 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
06:52:41.0787 2908 FontCache - ok
06:52:41.0967 2908 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
06:52:41.0987 2908 FontCache3.0.0.0 - ok
06:52:42.0137 2908 [ C96C52D0D80666AF585516FFA97B7C00 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
06:52:42.0167 2908 ForceWare Intelligent Application Manager (IAM) - ok
06:52:42.0197 2908 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
06:52:42.0217 2908 FsDepends - ok
06:52:42.0247 2908 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
06:52:42.0247 2908 Fs_Rec - ok
06:52:42.0277 2908 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
06:52:42.0307 2908 fvevol - ok
06:52:42.0387 2908 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
06:52:42.0457 2908 gagp30kx - ok
06:52:42.0507 2908 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
06:52:42.0547 2908 GEARAspiWDM - ok
06:52:43.0057 2908 [ 1C23CA2BEB4FA0A92B87164C35212B11 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
06:52:43.0397 2908 GoogleDesktopManager - ok
06:52:43.0597 2908 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
06:52:43.0907 2908 gpsvc - ok
06:52:44.0107 2908 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
06:52:44.0107 2908 gupdate - ok
06:52:44.0267 2908 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
06:52:44.0277 2908 gupdatem - ok
06:52:44.0427 2908 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
06:52:44.0557 2908 hcw85cir - ok
06:52:44.0797 2908 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
06:52:44.0807 2908 HDAudBus - ok
06:52:44.0937 2908 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
06:52:45.0037 2908 HidBatt - ok
06:52:45.0137 2908 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
06:52:45.0278 2908 HidBth - ok
06:52:45.0348 2908 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
06:52:45.0458 2908 HidIr - ok
06:52:45.0588 2908 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
06:52:45.0608 2908 hidserv - ok
06:52:45.0698 2908 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
06:52:45.0818 2908 HidUsb - ok
06:52:45.0898 2908 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
06:52:45.0908 2908 hkmsvc - ok
06:52:46.0038 2908 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
06:52:46.0148 2908 HomeGroupListener - ok
06:52:46.0328 2908 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
06:52:46.0358 2908 HomeGroupProvider - ok
06:52:46.0458 2908 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
06:52:46.0498 2908 HpSAMD - ok
06:52:46.0578 2908 [ 950CC1E6AE3A6CD23E0945CDE089B02C ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys
06:52:46.0578 2908 HTCAND32 - ok
06:52:46.0938 2908 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
06:52:47.0288 2908 HTTP - ok
06:52:47.0418 2908 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
06:52:47.0428 2908 hwpolicy - ok
06:52:47.0528 2908 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
06:52:47.0578 2908 i8042prt - ok
06:52:47.0768 2908 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
06:52:47.0928 2908 iaStorV - ok
06:52:48.0378 2908 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
06:52:48.0558 2908 IDriverT - ok
06:52:48.0938 2908 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
06:52:49.0068 2908 idsvc - ok
06:52:49.0148 2908 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
06:52:49.0178 2908 iirsp - ok
06:52:49.0268 2908 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
06:52:49.0388 2908 IKEEXT - ok
06:52:50.0138 2908 [ F8F53C5449F15B23D4C61D51D2701DA8 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
06:52:52.0038 2908 IntcAzAudAddService - ok
06:52:52.0078 2908 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
06:52:52.0148 2908 intelide - ok
06:52:52.0228 2908 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
06:52:52.0328 2908 intelppm - ok
06:52:53.0028 2908 [ B5A662956977407C6B9B88A846FEF9BD ] ioloSystemService C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
06:52:54.0689 2908 ioloSystemService - ok
06:52:54.0749 2908 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
06:52:54.0769 2908 IPBusEnum - ok
06:52:54.0849 2908 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:52:54.0889 2908 IpFilterDriver - ok
06:52:54.0999 2908 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
06:52:55.0059 2908 IPMIDRV - ok
06:52:55.0089 2908 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
06:52:55.0129 2908 IPNAT - ok
06:52:55.0189 2908 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
06:52:55.0259 2908 iPod Service - ok
06:52:55.0329 2908 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
06:52:55.0369 2908 IRENUM - ok
06:52:55.0449 2908 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
06:52:55.0489 2908 isapnp - ok
06:52:55.0549 2908 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
06:52:55.0589 2908 iScsiPrt - ok
06:52:55.0799 2908 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
06:52:55.0939 2908 kbdclass - ok
06:52:55.0969 2908 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
06:52:56.0079 2908 kbdhid - ok
06:52:56.0109 2908 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
06:52:56.0119 2908 KeyIso - ok
06:52:56.0239 2908 [ EA26CB00F83686856F2C79673C00C686 ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
06:52:56.0339 2908 kl1 - ok
06:52:56.0619 2908 [ FBC7F840F1118D358D2AFB8C1714B384 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
06:52:56.0849 2908 KLIF - ok
06:52:56.0949 2908 [ AF127FE7DD5ED2BBC9049FD8A00DEFC2 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
06:52:56.0989 2908 KLIM6 - ok
06:52:57.0059 2908 [ 24AEBAD59D1DE8A7CC36E8F09F999362 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
06:52:57.0099 2908 klkbdflt - ok
06:52:57.0139 2908 [ A58507C2827C3AE1D4CCB2746AAB349F ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
06:52:57.0169 2908 klmouflt - ok
06:52:57.0209 2908 [ 53C0DF6C5139CB78A631E7AFCD893730 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
06:52:57.0299 2908 kltdi - ok
06:52:57.0369 2908 [ 71A38C123600172511C26BFABD0EF579 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
06:52:57.0429 2908 kneps - ok
06:52:57.0509 2908 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
06:52:57.0549 2908 KSecDD - ok
06:52:57.0609 2908 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
06:52:57.0609 2908 KSecPkg - ok
06:52:57.0689 2908 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
06:52:57.0719 2908 KtmRm - ok
06:52:58.0019 2908 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
06:52:58.0089 2908 LanmanServer - ok
06:52:58.0259 2908 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
06:52:58.0329 2908 LanmanWorkstation - ok
06:53:00.0929 2908 [ 3C879D04BB6466E2853C3155B635CC45 ] LeapFrog Connect Device Service C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
06:53:01.0470 2908 LeapFrog Connect Device Service - ok
06:53:01.0550 2908 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
06:53:01.0600 2908 lltdio - ok
06:53:01.0750 2908 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
06:53:01.0820 2908 lltdsvc - ok
06:53:01.0870 2908 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
06:53:01.0890 2908 lmhosts - ok
06:53:01.0950 2908 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
06:53:01.0980 2908 LSI_FC - ok
06:53:02.0050 2908 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
06:53:02.0190 2908 LSI_SAS - ok
06:53:02.0230 2908 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
06:53:02.0290 2908 LSI_SAS2 - ok
06:53:02.0360 2908 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
06:53:02.0390 2908 LSI_SCSI - ok
06:53:02.0430 2908 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
06:53:02.0510 2908 luafv - ok
06:53:02.0600 2908 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
06:53:02.0640 2908 Mcx2Svc - ok
06:53:02.0720 2908 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
06:53:02.0790 2908 megasas - ok
06:53:03.0030 2908 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
06:53:03.0060 2908 MegaSR - ok
06:53:03.0190 2908 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
06:53:03.0230 2908 Microsoft Office Groove Audit Service - ok
06:53:03.0300 2908 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
06:53:03.0310 2908 MMCSS - ok
06:53:03.0380 2908 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
06:53:03.0410 2908 Modem - ok
06:53:03.0440 2908 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
06:53:03.0440 2908 monitor - ok
06:53:03.0480 2908 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
06:53:03.0500 2908 mouclass - ok
06:53:03.0540 2908 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
06:53:03.0570 2908 mouhid - ok
06:53:03.0610 2908 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
06:53:03.0640 2908 mountmgr - ok
06:53:03.0720 2908 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
06:53:03.0850 2908 mpio - ok
06:53:03.0980 2908 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
06:53:04.0060 2908 mpsdrv - ok
06:53:04.0280 2908 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
06:53:04.0410 2908 MpsSvc - ok
06:53:04.0460 2908 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
06:53:04.0530 2908 MRxDAV - ok
06:53:04.0570 2908 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
06:53:04.0720 2908 mrxsmb - ok
06:53:05.0200 2908 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
06:53:05.0560 2908 mrxsmb10 - ok
06:53:05.0710 2908 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
06:53:05.0850 2908 mrxsmb20 - ok
06:53:05.0990 2908 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
06:53:06.0040 2908 msahci - ok
06:53:06.0090 2908 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
06:53:06.0120 2908 msdsm - ok
06:53:06.0240 2908 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
06:53:06.0350 2908 MSDTC - ok
06:53:06.0420 2908 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
06:53:06.0450 2908 Msfs - ok
06:53:06.0530 2908 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
06:53:06.0545 2908 mshidkmdf - ok
06:53:06.0601 2908 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
06:53:06.0621 2908 msisadrv - ok
06:53:06.0683 2908 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
06:53:06.0726 2908 MSiSCSI - ok
06:53:06.0746 2908 msiserver - ok
06:53:06.0817 2908 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
06:53:06.0887 2908 MSKSSRV - ok
06:53:06.0930 2908 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
06:53:06.0995 2908 MSPCLOCK - ok
06:53:07.0036 2908 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
06:53:07.0088 2908 MSPQM - ok
06:53:07.0182 2908 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
06:53:07.0207 2908 MsRPC - ok
06:53:07.0316 2908 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
06:53:07.0318 2908 mssmbios - ok
06:53:07.0398 2908 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
06:53:07.0448 2908 MSTEE - ok
06:53:07.0521 2908 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
06:53:07.0545 2908 MTConfig - ok
06:53:07.0560 2908 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
06:53:07.0578 2908 Mup - ok
06:53:07.0787 2908 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
06:53:07.0983 2908 napagent - ok
06:53:08.0223 2908 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
06:53:08.0301 2908 NativeWifiP - ok
06:53:08.0620 2908 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
06:53:08.0647 2908 NDIS - ok
06:53:08.0792 2908 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
06:53:08.0823 2908 NdisCap - ok
06:53:08.0876 2908 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
06:53:08.0922 2908 NdisTapi - ok
06:53:09.0035 2908 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
06:53:09.0185 2908 Ndisuio - ok
06:53:09.0315 2908 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
06:53:09.0392 2908 NdisWan - ok
06:53:09.0462 2908 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
06:53:09.0520 2908 NDProxy - ok
06:53:09.0611 2908 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
06:53:09.0737 2908 NetBIOS - ok
06:53:10.0073 2908 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
06:53:10.0240 2908 NetBT - ok
06:53:10.0301 2908 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
06:53:10.0303 2908 Netlogon - ok
06:53:10.0483 2908 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
06:53:10.0585 2908 Netman - ok
06:53:10.0725 2908 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
06:53:10.0776 2908 netprofm - ok
06:53:10.0891 2908 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
06:53:10.0955 2908 NetTcpPortSharing - ok
06:53:11.0023 2908 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
06:53:11.0070 2908 nfrd960 - ok
06:53:11.0202 2908 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
06:53:11.0234 2908 NlaSvc - ok
06:53:11.0344 2908 [ AB6869A7AB574173FC47F583E959E0CE ] NovacomD C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe
06:53:11.0374 2908 NovacomD - ok
06:53:11.0409 2908 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
06:53:11.0849 2908 Npfs - ok
06:53:11.0971 2908 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
06:53:12.0017 2908 nsi - ok
06:53:12.0102 2908 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
06:53:12.0164 2908 nsiproxy - ok
06:53:12.0314 2908 [ B6C48D01147EC020DE7F1856734127F8 ] nSvcIp C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
06:53:12.0544 2908 nSvcIp - ok
06:53:13.0083 2908 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
06:53:13.0147 2908 Ntfs - ok
06:53:13.0232 2908 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
06:53:13.0329 2908 Null - ok
06:53:13.0459 2908 [ B5E37E31C053BC9950455A257526514B ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x32.sys
06:53:13.0524 2908 NVENETFD - ok
06:53:17.0123 2908 [ 377140A534D013BD661C69F1741DE43C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
06:53:18.0514 2908 nvlddmkm - ok
06:53:18.0827 2908 [ 1DE923088878B495CD4219E47BA34EB8 ] NVNET C:\Windows\system32\DRIVERS\nvmf6232.sys
06:53:19.0347 2908 NVNET - ok
06:53:19.0432 2908 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
06:53:19.0492 2908 nvraid - ok
06:53:19.0552 2908 [ 4A5FCAB82D9BF6AF8A023A66802FE9E9 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
06:53:19.0603 2908 nvstor - ok
06:53:19.0797 2908 [ 3FF57A9A657C9690ECBC8B1E3B6E3979 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
06:53:19.0803 2908 nvstor32 - ok
06:53:19.0973 2908 [ 4ED813EFD77A9B7E57E341CDC1C5CBC4 ] nvsvc C:\Windows\system32\nvvsvc.exe
06:53:20.0024 2908 nvsvc - ok
06:53:20.0169 2908 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
06:53:20.0264 2908 nv_agp - ok
06:53:20.0618 2908 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
06:53:20.0713 2908 odserv - ok
06:53:20.0795 2908 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
06:53:20.0870 2908 ohci1394 - ok
06:53:20.0945 2908 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:53:21.0812 2908 ose - ok
06:53:21.0923 2908 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
06:53:22.0009 2908 p2pimsvc - ok
06:53:22.0173 2908 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
06:53:22.0268 2908 p2psvc - ok
06:53:22.0325 2908 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
06:53:22.0371 2908 Parport - ok
06:53:22.0440 2908 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
06:53:22.0489 2908 partmgr - ok
06:53:22.0530 2908 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
06:53:22.0591 2908 Parvdm - ok
06:53:22.0724 2908 [ 2F6E885C432927A186C2E352C8A1CBF4 ] pbfilter C:\Program Files\PeerBlock\pbfilter.sys
06:53:22.0750 2908 pbfilter - ok
06:53:22.0849 2908 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
06:53:22.0854 2908 PcaSvc - ok
06:53:22.0875 2908 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
06:53:22.0896 2908 pci - ok
06:53:22.0945 2908 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
06:53:22.0984 2908 pciide - ok
06:53:23.0116 2908 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
06:53:23.0144 2908 pcmcia - ok
06:53:23.0180 2908 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
06:53:23.0184 2908 pcw - ok
06:53:23.0233 2908 [ 40C611622882C3FCAFEB845C1E12A10F ] PDFsFilter C:\Windows\system32\DRIVERS\PDFsFilter.sys
06:53:23.0261 2908 PDFsFilter - ok
06:53:23.0445 2908 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
06:53:23.0471 2908 PEAUTH - ok
06:53:23.0751 2908 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
06:53:23.0840 2908 PeerDistSvc - ok
06:53:23.0931 2908 pgfilter - ok
06:53:24.0372 2908 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
06:53:24.0631 2908 pla - ok
06:53:24.0826 2908 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
06:53:24.0940 2908 PlugPlay - ok
06:53:24.0999 2908 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
06:53:25.0041 2908 PNRPAutoReg - ok
06:53:25.0162 2908 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
06:53:25.0169 2908 PNRPsvc - ok
06:53:25.0315 2908 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
06:53:25.0345 2908 PolicyAgent - ok
06:53:25.0392 2908 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
06:53:25.0399 2908 Power - ok
06:53:25.0446 2908 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
06:53:25.0490 2908 PptpMiniport - ok
06:53:25.0541 2908 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
06:53:25.0564 2908 Processor - ok
06:53:25.0677 2908 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
06:53:25.0741 2908 ProfSvc - ok
06:53:25.0769 2908 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
06:53:25.0772 2908 ProtectedStorage - ok
06:53:25.0816 2908 [ F115AF58ABE5605D7D709CBFBD83F418 ] ProtexisLicensing C:\Windows\system32\PSIService.exe
06:53:25.0941 2908 ProtexisLicensing - ok
06:53:26.0020 2908 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
06:53:26.0022 2908 Psched - ok
06:53:26.0067 2908 [ 324C27635E516184C811339A75CEFD4A ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
06:53:26.0099 2908 PxHelp20 - ok
06:53:26.0316 2908 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
06:53:26.0445 2908 ql2300 - ok
06:53:26.0489 2908 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
06:53:26.0539 2908 ql40xx - ok
06:53:26.0649 2908 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
06:53:26.0714 2908 QWAVE - ok
06:53:26.0751 2908 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
06:53:26.0794 2908 QWAVEdrv - ok
06:53:26.0865 2908 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
06:53:26.0989 2908 RasAcd - ok
06:53:27.0045 2908 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
06:53:27.0091 2908 RasAgileVpn - ok
06:53:27.0174 2908 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
06:53:27.0227 2908 RasAuto - ok
06:53:27.0256 2908 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
06:53:27.0281 2908 Rasl2tp - ok
06:53:27.0411 2908 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
06:53:27.0466 2908 RasMan - ok
06:53:27.0501 2908 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
06:53:27.0554 2908 RasPppoe - ok
06:53:27.0651 2908 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
06:53:27.0691 2908 RasSstp - ok
06:53:27.0745 2908 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
06:53:27.0777 2908 rdbss - ok
06:53:27.0812 2908 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
06:53:27.0861 2908 rdpbus - ok
06:53:27.0914 2908 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
06:53:27.0942 2908 RDPCDD - ok
06:53:27.0989 2908 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
06:53:28.0039 2908 RDPDR - ok
06:53:28.0067 2908 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
06:53:28.0101 2908 RDPENCDD - ok
06:53:28.0202 2908 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
06:53:28.0241 2908 RDPREFMP - ok
06:53:28.0332 2908 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
06:53:28.0375 2908 RdpVideoMiniport - ok
06:53:28.0469 2908 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
06:53:28.0475 2908 RDPWD - ok
06:53:28.0565 2908 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
06:53:28.0692 2908 rdyboost - ok
06:53:28.0809 2908 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
06:53:28.0844 2908 RemoteAccess - ok
06:53:28.0960 2908 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
06:53:28.0992 2908 RemoteRegistry - ok
06:53:29.0059 2908 [ 92D33F76769A028DDC54A863EB7DE4A2 ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys
06:53:29.0088 2908 RimUsb - ok
06:53:29.0139 2908 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
06:53:29.0161 2908 RimVSerPort - ok
06:53:29.0210 2908 [ 564297827D213F52C7A3A2FF749568CA ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
06:53:29.0227 2908 ROOTMODEM - ok
06:53:29.0441 2908 [ EBCDE8B48FADC6479D96A56D0A432160 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
06:53:29.0872 2908 RoxMediaDB9 - ok
06:53:29.0930 2908 [ AB2B1DE1C8F31EFCE2384B14B3DC4260 ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
06:53:29.0941 2908 RoxWatch9 - ok
06:53:30.0024 2908 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
06:53:30.0061 2908 RpcEptMapper - ok
06:53:30.0132 2908 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
06:53:30.0191 2908 RpcLocator - ok
06:53:30.0311 2908 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
06:53:30.0318 2908 RpcSs - ok
06:53:30.0386 2908 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
06:53:30.0481 2908 rspndr - ok
06:53:30.0549 2908 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
06:53:30.0619 2908 s3cap - ok
06:53:30.0691 2908 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
06:53:30.0694 2908 SamSs - ok
06:53:30.0751 2908 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
06:53:30.0831 2908 sbp2port - ok
06:53:30.0909 2908 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
06:53:30.0995 2908 SCardSvr - ok
06:53:31.0039 2908 [ 8F78192C7129FC8EDBF0184C30AD4E30 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
06:53:31.0109 2908 Suspicious file (Forged): C:\Windows\system32\drivers\SCDEmu.sys. Real md5: 8F78192C7129FC8EDBF0184C30AD4E30, Fake md5: C23DBD9BFBA8B1170706E0896B3CF7DA
06:53:31.0110 2908 SCDEmu ( Virus.Win32.ZAccess.k ) - infected
06:53:31.0110 2908 SCDEmu - detected Virus.Win32.ZAccess.k (0)
06:53:31.0193 2908 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
06:53:31.0238 2908 scfilter - ok
06:53:31.0503 2908 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
06:53:31.0741 2908 Schedule - ok
06:53:31.0787 2908 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
06:53:31.0803 2908 SCPolicySvc - ok
06:53:31.0856 2908 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
06:53:31.0880 2908 SDRSVC - ok
06:53:31.0964 2908 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
06:53:31.0997 2908 secdrv - ok
06:53:32.0055 2908 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
06:53:32.0101 2908 seclogon - ok
06:53:32.0141 2908 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
06:53:32.0166 2908 SENS - ok
06:53:32.0199 2908 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
06:53:32.0251 2908 SensrSvc - ok
06:53:32.0309 2908 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
06:53:32.0326 2908 Serenum - ok
06:53:32.0410 2908 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
06:53:32.0428 2908 Serial - ok
06:53:32.0460 2908 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
06:53:32.0485 2908 sermouse - ok
06:53:32.0589 2908 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
06:53:32.0606 2908 SessionEnv - ok
06:53:32.0670 2908 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
06:53:32.0759 2908 sffdisk - ok
06:53:32.0788 2908 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
06:53:32.0820 2908 sffp_mmc - ok
06:53:32.0867 2908 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
06:53:32.0883 2908 sffp_sd - ok
06:53:32.0932 2908 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
06:53:32.0974 2908 sfloppy - ok
06:53:33.0095 2908 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
06:53:33.0135 2908 ShellHWDetection - ok
06:53:33.0172 2908 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
06:53:33.0188 2908 sisagp - ok
06:53:33.0280 2908 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
06:53:33.0311 2908 SiSRaid2 - ok
06:53:33.0347 2908 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
06:53:33.0372 2908 SiSRaid4 - ok
06:53:33.0423 2908 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
06:53:33.0465 2908 Smb - ok
06:53:33.0535 2908 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
06:53:33.0711 2908 SNMPTRAP - ok
06:53:33.0789 2908 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
06:53:33.0847 2908 spldr - ok
06:53:33.0889 2908 Spooler - ok
06:53:34.0469 2908 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
06:53:34.0497 2908 sppsvc - ok
06:53:34.0564 2908 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
06:53:34.0594 2908 sppuinotify - ok
06:53:34.0604 2908 SqlCSS - ok
06:53:34.0752 2908 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
06:53:34.0897 2908 srv - ok
06:53:35.0027 2908 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
06:53:35.0119 2908 srv2 - ok
06:53:35.0177 2908 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
06:53:35.0223 2908 srvnet - ok
06:53:35.0313 2908 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
06:53:35.0331 2908 SSDPSRV - ok
06:53:35.0380 2908 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
06:53:35.0410 2908 ssmdrv - ok
06:53:35.0439 2908 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
06:53:35.0504 2908 SstpSvc - ok
06:53:35.0568 2908 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
06:53:35.0636 2908 stexstor - ok
06:53:35.0713 2908 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
06:53:35.0834 2908 StiSvc - ok
06:53:35.0941 2908 [ 51778FD315C9882F1CBD932743E62A72 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
06:53:35.0969 2908 stllssvr - ok
06:53:36.0034 2908 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
06:53:36.0059 2908 storflt - ok
06:53:36.0154 2908 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
06:53:36.0219 2908 storvsc - ok
06:53:36.0283 2908 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
06:53:36.0319 2908 swenum - ok
06:53:36.0612 2908 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
06:53:36.0747 2908 SwitchBoard - ok
06:53:36.0862 2908 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
06:53:36.0915 2908 swprv - ok
06:53:36.0947 2908 Synth3dVsc - ok
06:53:37.0286 2908 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
06:53:37.0454 2908 SysMain - ok
06:53:37.0576 2908 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
06:53:37.0616 2908 TabletInputService - ok
06:53:37.0731 2908 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
06:53:37.0810 2908 TapiSrv - ok
06:53:37.0895 2908 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
06:53:37.0912 2908 TBS - ok
06:53:38.0368 2908 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
06:53:38.0474 2908 Tcpip - ok
06:53:38.0704 2908 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
06:53:38.0734 2908 TCPIP6 - ok
06:53:38.0841 2908 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
06:53:38.0860 2908 tcpipreg - ok
06:53:38.0948 2908 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
06:53:38.0983 2908 TDPIPE - ok
06:53:39.0075 2908 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
06:53:39.0097 2908 TDTCP - ok
06:53:39.0181 2908 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
06:53:39.0260 2908 tdx - ok
06:53:39.0337 2908 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
06:53:39.0382 2908 TermDD - ok
06:53:39.0511 2908 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
06:53:39.0595 2908 TermService - ok
06:53:39.0660 2908 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
06:53:39.0713 2908 Themes - ok
06:53:39.0769 2908 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
06:53:39.0790 2908 THREADORDER - ok
06:53:39.0836 2908 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
06:53:39.0877 2908 TrkWks - ok
06:53:39.0995 2908 [ 113384367C3999E084FE156B18C7625E ] TrojanKillerDriver C:\Windows\system32\DRIVERS\gtkdrv.sys
06:53:40.0009 2908 TrojanKillerDriver - ok
06:53:40.0129 2908 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
06:53:40.0508 2908 TrustedInstaller - ok
06:53:40.0603 2908 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
06:53:40.0631 2908 tssecsrv - ok
06:53:40.0707 2908 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
06:53:40.0753 2908 TsUsbFlt - ok
06:53:40.0770 2908 tsusbhub - ok
06:53:40.0893 2908 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
06:53:40.0919 2908 TuneUpUtilitiesDrv - ok
06:53:40.0989 2908 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
06:53:41.0029 2908 tunnel - ok
06:53:41.0948 2908 [ 7694DCA064D0B7E0D1A6972BB9C71B39 ] tvnserver C:\Users\keingrid\AppData\Local\CrossLoop\tvnserver.exe
06:53:42.0126 2908 tvnserver - ok
06:53:42.0187 2908 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
06:53:42.0205 2908 uagp35 - ok
06:53:42.0312 2908 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
06:53:42.0346 2908 udfs - ok
06:53:42.0426 2908 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
06:53:42.0455 2908 UI0Detect - ok
06:53:42.0544 2908 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
06:53:42.0567 2908 uliagpkx - ok
06:53:42.0647 2908 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
06:53:42.0677 2908 umbus - ok
06:53:42.0782 2908 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
06:53:42.0867 2908 UmPass - ok
06:53:42.0987 2908 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
06:53:43.0042 2908 UmRdpService - ok
06:53:43.0129 2908 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
06:53:43.0194 2908 upnphost - ok
06:53:43.0336 2908 [ D4FB6ECC60A428564BA8768B0E23C0FC ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
06:53:43.0389 2908 USBAAPL - ok
06:53:43.0469 2908 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
06:53:43.0489 2908 usbccgp - ok
06:53:43.0530 2908 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
06:53:43.0562 2908 usbcir - ok
06:53:43.0616 2908 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
06:53:43.0635 2908 usbehci - ok
06:53:43.0802 2908 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
06:53:43.0860 2908 usbhub - ok
06:53:43.0922 2908 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
06:53:43.0943 2908 usbohci - ok
06:53:44.0009 2908 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
06:53:44.0074 2908 usbprint - ok
06:53:44.0132 2908 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
06:53:44.0237 2908 usbscan - ok
06:53:44.0262 2908 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
06:53:44.0307 2908 USBSTOR - ok
06:53:44.0379 2908 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
06:53:44.0394 2908 usbuhci - ok
06:53:44.0482 2908 [ D82F43D15FDAA666856C0190CB73E7C9 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
06:53:44.0529 2908 usb_rndisx - ok
06:53:44.0584 2908 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
06:53:44.0592 2908 UxSms - ok
06:53:44.0614 2908 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
06:53:44.0619 2908 VaultSvc - ok
06:53:44.0687 2908 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
06:53:44.0702 2908 vdrvroot - ok
06:53:44.0997 2908 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
06:53:45.0149 2908 vds - ok
06:53:45.0282 2908 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
06:53:45.0312 2908 vga - ok
06:53:45.0342 2908 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
06:53:45.0432 2908 VgaSave - ok
06:53:45.0442 2908 VGPU - ok
06:53:45.0522 2908 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
06:53:45.0592 2908 vhdmp - ok
06:53:45.0642 2908 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
06:53:45.0802 2908 viaagp - ok
06:53:45.0902 2908 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
06:53:45.0942 2908 ViaC7 - ok
06:53:46.0062 2908 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
06:53:46.0082 2908 viaide - ok
06:53:46.0162 2908 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
06:53:46.0332 2908 vmbus - ok
06:53:46.0372 2908 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
06:53:46.0412 2908 VMBusHID - ok
06:53:46.0442 2908 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
06:53:46.0462 2908 volmgr - ok
06:53:46.0592 2908 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
06:53:46.0752 2908 volmgrx - ok
06:53:46.0802 2908 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
06:53:46.0852 2908 volsnap - ok
06:53:47.0002 2908 [ ED2EC8ED03D02A63BB6A5620BC8499D3 ] vseamps C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
06:53:47.0032 2908 vseamps - ok
06:53:47.0082 2908 [ 1E620565DC689C2496E1CD1DC7FF5BC5 ] vsedsps C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
06:53:47.0102 2908 vsedsps - ok
06:53:47.0192 2908 [ 8B36785201617CD4A1335A68946C92FD ] vseqrts C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
06:53:48.0122 2908 vseqrts - ok
06:53:48.0232 2908 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
06:53:48.0262 2908 vsmraid - ok
06:53:48.0393 2908 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
06:53:48.0523 2908 VSS - ok
06:53:48.0613 2908 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
06:53:48.0643 2908 vwifibus - ok
06:53:48.0753 2908 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
06:53:48.0763 2908 W32Time - ok
06:53:48.0863 2908 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
06:53:48.0913 2908 WacomPen - ok
06:53:48.0973 2908 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
06:53:48.0993 2908 WANARP - ok
06:53:49.0013 2908 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
06:53:49.0013 2908 Wanarpv6 - ok
06:53:49.0123 2908 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
06:53:49.0333 2908 WatAdminSvc - ok
06:53:49.0693 2908 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
06:53:49.0973 2908 wbengine - ok
06:53:50.0083 2908 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
06:53:50.0113 2908 WbioSrvc - ok
06:53:50.0193 2908 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
06:53:50.0303 2908 wcncsvc - ok
06:53:50.0333 2908 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
06:53:50.0383 2908 WcsPlugInService - ok
06:53:50.0493 2908 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
06:53:50.0523 2908 Wd - ok
06:53:50.0563 2908 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
06:53:50.0593 2908 Wdf01000 - ok
06:53:50.0663 2908 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
06:53:50.0673 2908 WdiServiceHost - ok
06:53:50.0703 2908 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
06:53:50.0713 2908 WdiSystemHost - ok
06:53:50.0853 2908 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
06:53:51.0183 2908 WebClient - ok
06:53:51.0313 2908 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
06:53:51.0363 2908 Wecsvc - ok
06:53:51.0493 2908 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
06:53:51.0613 2908 wercplsupport - ok
06:53:51.0843 2908 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
06:53:51.0843 2908 WerSvc - ok
06:53:51.0973 2908 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
06:53:52.0023 2908 WfpLwf - ok
06:53:52.0143 2908 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
06:53:52.0183 2908 WIMMount - ok
06:53:52.0413 2908 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
06:53:52.0443 2908 WinDefend - ok
06:53:52.0463 2908 WinHttpAutoProxySvc - ok
06:53:52.0593 2908 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
06:53:52.0653 2908 Winmgmt - ok
06:53:53.0003 2908 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
06:53:53.0153 2908 WinRM - ok
06:53:53.0293 2908 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUSB C:\Windows\system32\DRIVERS\WinUsb.sys
06:53:53.0383 2908 WinUSB - ok
06:53:53.0453 2908 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
06:53:53.0493 2908 Wlansvc - ok
06:53:53.0553 2908 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
06:53:53.0613 2908 WmiAcpi - ok
06:53:53.0793 2908 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
06:53:53.0833 2908 wmiApSrv - ok
06:53:53.0993 2908 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
06:53:54.0283 2908 WMPNetworkSvc - ok
06:53:54.0333 2908 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
06:53:54.0353 2908 WPCSvc - ok
06:53:54.0393 2908 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
06:53:54.0413 2908 WPDBusEnum - ok
06:53:54.0493 2908 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
06:53:54.0513 2908 ws2ifsl - ok
06:53:54.0653 2908 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
06:53:54.0653 2908 wscsvc - ok
06:53:54.0663 2908 WSearch - ok
06:53:54.0733 2908 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
06:53:54.0783 2908 WudfPf - ok
06:53:54.0883 2908 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
06:53:54.0943 2908 WUDFRd - ok
06:53:54.0983 2908 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
06:53:55.0023 2908 wudfsvc - ok
06:53:55.0113 2908 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
06:53:55.0143 2908 WwanSvc - ok
06:53:55.0494 2908 [ 04EE3181FA5B8C808E9DFEFEDE78DD6E ] ZuneNetworkSvc c:\Program Files\Zune\ZuneNss.exe
06:53:56.0024 2908 ZuneNetworkSvc - ok
06:53:56.0184 2908 [ 9DE7FAD6BB49931488CE8F5F48590E7E ] ZuneWlanCfgSvc c:\Windows\system32\ZuneWlanCfgSvc.exe
06:53:57.0905 2908 ZuneWlanCfgSvc - ok
06:53:57.0965 2908 ================ Scan global ===============================
06:53:58.0015 2908 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
06:53:58.0155 2908 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
06:53:59.0805 2908 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
06:53:59.0875 2908 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
06:53:59.0955 2908 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
06:54:00.0015 2908 [Global] - ok
06:54:00.0015 2908 ================ Scan MBR ==================================
06:54:00.0045 2908 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
06:54:04.0406 2908 \Device\Harddisk0\DR0 - ok
06:54:04.0406 2908 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
06:54:04.0556 2908 \Device\Harddisk1\DR1 - ok
06:54:04.0556 2908 ================ Scan VBR ==================================
06:54:04.0576 2908 [ B33D48B75229F8ED69A78452FBE1E96A ] \Device\Harddisk0\DR0\Partition1
06:54:04.0656 2908 \Device\Harddisk0\DR0\Partition1 - ok
06:54:04.0676 2908 [ CEC308A70B9B648CBF7F92DDDB2853EF ] \Device\Harddisk0\DR0\Partition2
06:54:04.0696 2908 \Device\Harddisk0\DR0\Partition2 - ok
06:54:04.0706 2908 [ F45509C78127E5587E2BB31B1EE1D07D ] \Device\Harddisk1\DR1\Partition1
06:54:04.0706 2908 \Device\Harddisk1\DR1\Partition1 - ok
06:54:04.0716 2908 ============================================================
06:54:04.0716 2908 Scan finished
06:54:04.0716 2908 ============================================================
06:54:04.0746 1984 Detected object count: 1
06:54:04.0746 1984 Actual detected object count: 1
06:54:59.0805 1984 SCDEmu ( Virus.Win32.ZAccess.k ) - skipped by user
06:54:59.0805 1984 SCDEmu ( Virus.Win32.ZAccess.k ) - User select action: Skip

#4 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 27 November 2012 - 04:18 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-27 06:59:00
-----------------------------
06:59:00.545 OS Version: Windows 6.1.7601 Service Pack 1
06:59:00.545 Number of processors: 2 586 0x6B01
06:59:00.545 ComputerName: KEINGRI-PC UserName: keingri
07:00:39.762 Initialize success
07:02:41.308 AVAST engine defs: 12112700
07:06:57.077 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006c
07:06:57.081 Disk 0 Vendor: ST325031 3.AD Size: 238418MB BusType: 3
07:06:57.116 Disk 0 MBR read successfully
07:06:57.120 Disk 0 MBR scan
07:06:57.148 Disk 0 Windows 7 default MBR code
07:06:57.154 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
07:06:57.178 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10240 MB offset 98304
07:06:57.239 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 228129 MB offset 21069824
07:06:57.265 Disk 0 scanning sectors +488278016
07:06:57.359 Disk 0 scanning C:\Windows\system32\drivers
07:07:21.373 File: C:\Windows\system32\drivers\scdemu.sys **INFECTED** Win32:Sirefef-ANL [Rtk]
07:07:27.702 Disk 0 trace - called modules:
07:07:27.726 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86f06698]<<
07:07:27.734 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86c38200]
07:07:27.743 3 CLASSPNP.SYS[847a559e] -> nt!IofCallDriver -> [0x86f1a270]
07:07:27.755 \Driver\00000968[0x86f1a3a8] -> IRP_MJ_CREATE -> 0x86f06698
07:07:29.033 AVAST engine scan C:\Windows
07:07:57.933 AVAST engine scan C:\Windows\system32
07:17:23.792 File: C:\Windows\assembly\GAC\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
07:20:24.188 AVAST engine scan C:\Windows\system32\drivers
07:20:58.959 File: C:\Windows\system32\drivers\scdemu.sys **INFECTED** Win32:Sirefef-ANL [Rtk]
07:21:15.438 AVAST engine scan C:\Users\keingrid
08:30:40.213 AVAST engine scan C:\ProgramData
08:46:38.387 File: C:\ProgramData\Microsoft\Windows\DRM\85E.tmp **INFECTED** Win32:Alureon-AYM [Trj]
08:51:20.692 Scan finished successfully
09:03:44.105 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
09:03:44.121 The log file has been saved successfully to "C:\aswMBR.txt"

#5 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 27 November 2012 - 04:19 PM

running the ESET scanner right now,it has been scanning for 8hrs so far.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:11 AM

Posted 27 November 2012 - 09:27 PM

Run TDSSkiller again and select CURE and do not SKIP

06:54:59.0805 1984 SCDEmu ( Virus.Win32.ZAccess.k ) - skipped by user

Post the new TDSSkiller log along with ESET

#7 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 28 November 2012 - 09:27 AM

here it is tdss..


22:58:07.0920 3696 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:58:08.0617 3696 ============================================================
22:58:08.0617 3696 Current date / time: 2012/11/27 22:58:08.0617
22:58:08.0617 3696 SystemInfo:
22:58:08.0617 3696
22:58:08.0617 3696 OS Version: 6.1.7601 ServicePack: 1.0
22:58:08.0617 3696 Product type: Workstation
22:58:08.0617 3696 ComputerName: KEINGRID-PC
22:58:08.0617 3696 UserName: keingrid
22:58:08.0617 3696 Windows directory: C:\Windows
22:58:08.0617 3696 System windows directory: C:\Windows
22:58:08.0617 3696 Processor architecture: Intel x86
22:58:08.0617 3696 Number of processors: 2
22:58:08.0617 3696 Page size: 0x1000
22:58:08.0617 3696 Boot type: Normal boot
22:58:08.0617 3696 ============================================================
22:58:14.0226 3696 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:58:14.0446 3696 ============================================================
22:58:14.0446 3696 \Device\Harddisk0\DR0:
22:58:14.0466 3696 MBR partitions:
22:58:14.0466 3696 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18000, BlocksNum 0x1400000
22:58:14.0466 3696 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1418000, BlocksNum 0x1BD90800
22:58:14.0466 3696 ============================================================
22:58:14.0516 3696 C: <-> \Device\Harddisk0\DR0\Partition2
22:58:14.0616 3696 D: <-> \Device\Harddisk0\DR0\Partition1
22:58:14.0666 3696 ============================================================
22:58:14.0666 3696 Initialize success
22:58:14.0666 3696 ============================================================
22:58:33.0063 5076 ============================================================
22:58:33.0063 5076 Scan started
22:58:33.0063 5076 Mode: Manual; TDLFS;
22:58:33.0063 5076 ============================================================
22:58:36.0261 5076 ================ Scan system memory ========================
22:58:36.0261 5076 System memory - ok
22:58:36.0261 5076 ================ Scan services =============================
22:58:36.0271 5076 .cdrom - ok
22:58:36.0471 5076 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:58:36.0491 5076 1394ohci - ok
22:58:36.0591 5076 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:58:36.0621 5076 ACDaemon - ok
22:58:36.0661 5076 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:58:36.0681 5076 ACPI - ok
22:58:36.0711 5076 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:58:36.0721 5076 AcpiPmi - ok
22:58:36.0781 5076 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:58:36.0821 5076 AdobeFlashPlayerUpdateSvc - ok
22:58:36.0871 5076 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:58:36.0911 5076 adp94xx - ok
22:58:36.0941 5076 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:58:36.0961 5076 adpahci - ok
22:58:36.0981 5076 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:58:37.0031 5076 adpu320 - ok
22:58:37.0141 5076 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
22:58:37.0191 5076 AdvancedSystemCareService5 - ok
22:58:37.0241 5076 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:58:37.0241 5076 AeLookupSvc - ok
22:58:37.0281 5076 [ 330A1E4DF07C2E29949ED8631CD8828E ] AERTFilters C:\Windows\system32\AERTSrv.exe
22:58:38.0041 5076 AERTFilters - ok
22:58:38.0081 5076 [ A7B8A3A79D35215D798A300DF49ED23F ] Afc C:\Windows\system32\drivers\Afc.sys
22:58:38.0091 5076 Afc - ok
22:58:38.0141 5076 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
22:58:38.0241 5076 AFD - ok
22:58:38.0261 5076 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
22:58:38.0301 5076 agp440 - ok
22:58:38.0341 5076 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
22:58:38.0391 5076 aic78xx - ok
22:58:38.0442 5076 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
22:58:38.0462 5076 ALG - ok
22:58:38.0502 5076 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
22:58:38.0512 5076 aliide - ok
22:58:38.0532 5076 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
22:58:38.0542 5076 amdagp - ok
22:58:38.0572 5076 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
22:58:38.0582 5076 amdide - ok
22:58:38.0622 5076 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:58:38.0642 5076 AmdK8 - ok
22:58:38.0662 5076 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:58:38.0682 5076 AmdPPM - ok
22:58:38.0712 5076 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:58:38.0732 5076 amdsata - ok
22:58:38.0752 5076 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:58:38.0792 5076 amdsbs - ok
22:58:38.0812 5076 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:58:38.0832 5076 amdxata - ok
22:58:38.0862 5076 [ 90FBA08BF4CC75A7F8FFA84E8DDE0FA1 ] AMP C:\Windows\system32\Drivers\amp.sys
22:58:38.0882 5076 AMP - ok
22:58:38.0932 5076 [ 572B6C45D358C2E7D0135FF46485A240 ] AMPSE C:\Windows\system32\Drivers\ampse.sys
22:58:39.0039 5076 AMPSE - ok
22:58:39.0070 5076 [ 950CC1E6AE3A6CD23E0945CDE089B02C ] androidusb C:\Windows\system32\Drivers\androidusb.sys
22:58:39.0086 5076 androidusb - ok
22:58:39.0132 5076 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
22:58:39.0148 5076 AppID - ok
22:58:39.0195 5076 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:58:39.0210 5076 AppIDSvc - ok
22:58:39.0226 5076 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
22:58:39.0242 5076 Appinfo - ok
22:58:39.0320 5076 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:58:39.0351 5076 Apple Mobile Device - ok
22:58:39.0413 5076 [ 70968A726D9DE0F0259D4AEB965FAD61 ] Application Updater C:\Program Files\Application Updater\ApplicationUpdater.exe
22:58:39.0522 5076 Application Updater - ok
22:58:39.0585 5076 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
22:58:39.0616 5076 AppMgmt - ok
22:58:39.0678 5076 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
22:58:39.0694 5076 arc - ok
22:58:39.0756 5076 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:58:39.0772 5076 arcsas - ok
22:58:39.0788 5076 [ B979979AB8027F7F53FB16EC4229B7DB ] ASPI32 C:\Windows\system32\drivers\ASPI32.sys
22:58:39.0834 5076 ASPI32 - ok
22:58:39.0866 5076 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:58:39.0881 5076 AsyncMac - ok
22:58:39.0928 5076 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
22:58:39.0944 5076 atapi - ok
22:58:39.0975 5076 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:58:39.0990 5076 AudioEndpointBuilder - ok
22:58:40.0022 5076 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
22:58:40.0022 5076 Audiosrv - ok
22:58:40.0084 5076 [ 91AE926364BFCF947FBDDDAD920D4ADE ] AutoSyncService C:\Program Files\Memeo\AutoSync\MemeoService.exe
22:58:40.0100 5076 AutoSyncService - ok
22:58:40.0271 5076 [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
22:58:40.0349 5076 AVP - ok
22:58:40.0380 5076 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:58:40.0396 5076 AxInstSV - ok
22:58:40.0458 5076 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
22:58:40.0474 5076 b06bdrv - ok
22:58:40.0505 5076 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
22:58:40.0552 5076 b57nd60x - ok
22:58:40.0614 5076 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
22:58:40.0630 5076 BDESVC - ok
22:58:40.0646 5076 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
22:58:40.0661 5076 Beep - ok
22:58:40.0724 5076 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
22:58:40.0786 5076 BFE - ok
22:58:40.0833 5076 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:58:40.0880 5076 blbdrive - ok
22:58:40.0942 5076 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:58:41.0004 5076 Bonjour Service - ok
22:58:41.0046 5076 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:58:41.0056 5076 bowser - ok
22:58:41.0096 5076 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:58:41.0116 5076 BrFiltLo - ok
22:58:41.0136 5076 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:58:41.0156 5076 BrFiltUp - ok
22:58:41.0186 5076 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:58:41.0206 5076 BridgeMP - ok
22:58:41.0236 5076 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
22:58:41.0236 5076 Browser - ok
22:58:41.0286 5076 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:58:41.0336 5076 Brserid - ok
22:58:41.0356 5076 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:58:41.0396 5076 BrSerWdm - ok
22:58:41.0416 5076 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:58:41.0436 5076 BrUsbMdm - ok
22:58:41.0446 5076 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:58:41.0466 5076 BrUsbSer - ok
22:58:41.0486 5076 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:58:41.0506 5076 BTHMODEM - ok
22:58:41.0556 5076 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
22:58:41.0586 5076 bthserv - ok
22:58:41.0816 5076 catchme - ok
22:58:41.0876 5076 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:58:41.0896 5076 cdfs - ok
22:58:41.0926 5076 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:58:41.0936 5076 cdrom - ok
22:58:41.0966 5076 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
22:58:41.0986 5076 CertPropSvc - ok
22:58:42.0026 5076 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:58:42.0066 5076 circlass - ok
22:58:42.0136 5076 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
22:58:42.0166 5076 CLFS - ok
22:58:42.0236 5076 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:58:42.0266 5076 clr_optimization_v2.0.50727_32 - ok
22:58:42.0326 5076 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:58:42.0346 5076 clr_optimization_v4.0.30319_32 - ok
22:58:42.0386 5076 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:58:42.0426 5076 CmBatt - ok
22:58:42.0456 5076 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:58:42.0466 5076 cmdide - ok
22:58:42.0496 5076 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
22:58:42.0526 5076 CNG - ok
22:58:42.0566 5076 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:58:42.0606 5076 Compbatt - ok
22:58:42.0636 5076 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:58:42.0656 5076 CompositeBus - ok
22:58:42.0666 5076 COMSysApp - ok
22:58:42.0676 5076 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:58:42.0696 5076 crcdisk - ok
22:58:42.0776 5076 [ 97558F429F8F09446AE51C1AA88C9B9B ] CrossLoopService C:\Users\keingrid\AppData\Local\CrossLoop\CrossLoopService.exe
22:58:43.0856 5076 CrossLoopService - ok
22:58:43.0902 5076 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:58:43.0918 5076 CryptSvc - ok
22:58:43.0965 5076 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
22:58:43.0996 5076 CSC - ok
22:58:44.0037 5076 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
22:58:44.0097 5076 CscService - ok
22:58:44.0137 5076 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
22:58:44.0157 5076 DcomLaunch - ok
22:58:44.0207 5076 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
22:58:44.0237 5076 defragsvc - ok
22:58:44.0267 5076 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:58:44.0287 5076 DfsC - ok
22:58:44.0327 5076 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
22:58:44.0337 5076 Dhcp - ok
22:58:44.0367 5076 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
22:58:44.0387 5076 discache - ok
22:58:44.0407 5076 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:58:44.0427 5076 Disk - ok
22:58:44.0487 5076 [ A53723176D0002FEB486EFF8E17812F2 ] DLABMFSM C:\Windows\system32\DLA\DLABMFSM.SYS
22:58:44.0517 5076 DLABMFSM - ok
22:58:44.0547 5076 [ D4587063ACEA776699251E177D719586 ] DLABOIOM C:\Windows\system32\DLA\DLABOIOM.SYS
22:58:44.0567 5076 DLABOIOM - ok
22:58:44.0587 5076 [ 5230CDB7E715F3A3B4A882E254CDD35D ] DLACDBHM C:\Windows\system32\Drivers\DLACDBHM.SYS
22:58:44.0607 5076 DLACDBHM - ok
22:58:44.0617 5076 [ C950C2E7B9ED1A4FC4A2AC7EC044F1D6 ] DLADResM C:\Windows\system32\DLA\DLADResM.SYS
22:58:44.0657 5076 DLADResM - ok
22:58:44.0687 5076 [ 24400137E387A24410C52A591F3CFB4D ] DLAIFS_M C:\Windows\system32\DLA\DLAIFS_M.SYS
22:58:44.0707 5076 DLAIFS_M - ok
22:58:44.0727 5076 [ 29A303FECEB28641ECEBDAE89EB71C63 ] DLAOPIOM C:\Windows\system32\DLA\DLAOPIOM.SYS
22:58:44.0747 5076 DLAOPIOM - ok
22:58:44.0767 5076 [ C93E33A22A1AE0C5508F3FB1F6D0A50C ] DLAPoolM C:\Windows\system32\DLA\DLAPoolM.SYS
22:58:44.0777 5076 DLAPoolM - ok
22:58:44.0797 5076 [ 77FE51F0F8D86804CB81F6EF6BFB86DD ] DLARTL_M C:\Windows\system32\Drivers\DLARTL_M.SYS
22:58:44.0817 5076 DLARTL_M - ok
22:58:44.0847 5076 [ B953498C35A31E5AC98F49ADBCF3E627 ] DLAUDFAM C:\Windows\system32\DLA\DLAUDFAM.SYS
22:58:44.0867 5076 DLAUDFAM - ok
22:58:44.0877 5076 [ 4897704C093C1F59CE58FC65E1E1EF1E ] DLAUDF_M C:\Windows\system32\DLA\DLAUDF_M.SYS
22:58:44.0897 5076 DLAUDF_M - ok
22:58:44.0927 5076 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:58:44.0927 5076 Dnscache - ok
22:58:44.0957 5076 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
22:58:44.0997 5076 dot3svc - ok
22:58:45.0027 5076 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
22:58:45.0027 5076 DPS - ok
22:58:45.0077 5076 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:58:45.0107 5076 drmkaud - ok
22:58:45.0147 5076 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\Windows\system32\Drivers\DRVMCDB.SYS
22:58:45.0167 5076 DRVMCDB - ok
22:58:45.0187 5076 [ FFC371525AA55D1BAE18715EBCB8797C ] DRVNDDM C:\Windows\system32\Drivers\DRVNDDM.SYS
22:58:45.0217 5076 DRVNDDM - ok
22:58:45.0267 5076 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:58:45.0327 5076 DXGKrnl - ok
22:58:45.0367 5076 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
22:58:45.0377 5076 EapHost - ok
22:58:45.0477 5076 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
22:58:45.0637 5076 ebdrv - ok
22:58:45.0687 5076 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
22:58:45.0707 5076 EFS - ok
22:58:45.0757 5076 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:58:45.0877 5076 ehRecvr - ok
22:58:45.0917 5076 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
22:58:45.0937 5076 ehSched - ok
22:58:45.0987 5076 [ 9C64C2A950195F9BC3A09A499648B01C ] ElRawDisk C:\Windows\system32\drivers\ElRawDsk.sys
22:58:46.0037 5076 ElRawDisk - ok
22:58:46.0084 5076 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:58:46.0146 5076 elxstor - ok
22:58:46.0178 5076 [ 539CA34FBC74EC366A0D751028C32A08 ] epmntdrv C:\Windows\system32\epmntdrv.sys
22:58:46.0193 5076 epmntdrv - ok
22:58:46.0302 5076 [ 8FE6AB59CAB8F2C038FEA9522A5EEBA7 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
22:58:46.0989 5076 EPSON_PM_RPCV4_01 - ok
22:58:47.0004 5076 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:58:47.0020 5076 ErrDev - ok
22:58:47.0051 5076 [ 1F2F4AB15CE03ECC257FEB2F6DC5A013 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
22:58:47.0067 5076 EuGdiDrv - ok
22:58:47.0129 5076 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
22:58:47.0176 5076 EventSystem - ok
22:58:47.0207 5076 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
22:58:47.0254 5076 exfat - ok
22:58:47.0301 5076 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:58:47.0348 5076 fastfat - ok
22:58:47.0394 5076 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
22:58:47.0410 5076 Fax - ok
22:58:47.0441 5076 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:58:47.0472 5076 fdc - ok
22:58:47.0535 5076 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
22:58:47.0550 5076 fdPHost - ok
22:58:47.0566 5076 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
22:58:47.0582 5076 FDResPub - ok
22:58:47.0582 5076 FileDisk - ok
22:58:47.0644 5076 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:58:47.0660 5076 FileInfo - ok
22:58:47.0675 5076 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:58:47.0691 5076 Filetrace - ok
22:58:47.0706 5076 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:58:47.0738 5076 flpydisk - ok
22:58:47.0753 5076 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:58:47.0784 5076 FltMgr - ok
22:58:47.0831 5076 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
22:58:47.0909 5076 FontCache - ok
22:58:47.0972 5076 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:58:48.0018 5076 FontCache3.0.0.0 - ok
22:58:48.0091 5076 [ C96C52D0D80666AF585516FFA97B7C00 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
22:58:48.0851 5076 ForceWare Intelligent Application Manager (IAM) - ok
22:58:48.0861 5076 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:58:48.0881 5076 FsDepends - ok
22:58:48.0911 5076 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:58:48.0921 5076 Fs_Rec - ok
22:58:48.0961 5076 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:58:48.0981 5076 fvevol - ok
22:58:49.0021 5076 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:58:49.0041 5076 gagp30kx - ok
22:58:49.0081 5076 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
22:58:49.0101 5076 GEARAspiWDM - ok
22:58:49.0211 5076 [ 1C23CA2BEB4FA0A92B87164C35212B11 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
22:58:49.0401 5076 GoogleDesktopManager - ok
22:58:49.0441 5076 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
22:58:49.0511 5076 gpsvc - ok
22:58:49.0531 5076 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:58:49.0541 5076 gupdate - ok
22:58:49.0551 5076 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:58:49.0551 5076 gupdatem - ok
22:58:49.0591 5076 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:58:49.0611 5076 hcw85cir - ok
22:58:49.0661 5076 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:58:49.0681 5076 HDAudBus - ok
22:58:49.0701 5076 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:58:49.0721 5076 HidBatt - ok
22:58:49.0741 5076 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:58:49.0771 5076 HidBth - ok
22:58:49.0791 5076 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:58:49.0801 5076 HidIr - ok
22:58:49.0841 5076 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
22:58:49.0851 5076 hidserv - ok
22:58:49.0871 5076 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:58:49.0891 5076 HidUsb - ok
22:58:49.0921 5076 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:58:49.0921 5076 hkmsvc - ok
22:58:49.0951 5076 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:58:50.0001 5076 HomeGroupListener - ok
22:58:50.0041 5076 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:58:50.0051 5076 HomeGroupProvider - ok
22:58:50.0071 5076 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:58:50.0091 5076 HpSAMD - ok
22:58:50.0121 5076 [ 950CC1E6AE3A6CD23E0945CDE089B02C ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys
22:58:50.0121 5076 HTCAND32 - ok
22:58:50.0161 5076 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:58:50.0211 5076 HTTP - ok
22:58:50.0231 5076 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:58:50.0271 5076 hwpolicy - ok
22:58:50.0321 5076 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:58:50.0331 5076 i8042prt - ok
22:58:50.0371 5076 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:58:50.0401 5076 iaStorV - ok
22:58:50.0501 5076 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:58:50.0562 5076 IDriverT - ok
22:58:50.0642 5076 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:58:50.0712 5076 idsvc - ok
22:58:50.0752 5076 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:58:50.0792 5076 iirsp - ok
22:58:50.0832 5076 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
22:58:50.0922 5076 IKEEXT - ok
22:58:51.0002 5076 [ F8F53C5449F15B23D4C61D51D2701DA8 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
22:58:51.0143 5076 IntcAzAudAddService - ok
22:58:51.0159 5076 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
22:58:51.0174 5076 intelide - ok
22:58:51.0221 5076 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:58:51.0237 5076 intelppm - ok
22:58:51.0315 5076 [ B5A662956977407C6B9B88A846FEF9BD ] ioloSystemService C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
22:58:52.0893 5076 ioloSystemService - ok
22:58:52.0953 5076 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:58:52.0973 5076 IPBusEnum - ok
22:58:52.0993 5076 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:58:53.0013 5076 IpFilterDriver - ok
22:58:53.0053 5076 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:58:53.0073 5076 IPMIDRV - ok
22:58:53.0113 5076 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:58:53.0153 5076 IPNAT - ok
22:58:53.0203 5076 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:58:53.0283 5076 iPod Service - ok
22:58:53.0293 5076 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:58:53.0313 5076 IRENUM - ok
22:58:53.0343 5076 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:58:53.0353 5076 isapnp - ok
22:58:53.0383 5076 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:58:53.0403 5076 iScsiPrt - ok
22:58:53.0413 5076 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:58:53.0433 5076 kbdclass - ok
22:58:53.0453 5076 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:58:53.0473 5076 kbdhid - ok
22:58:53.0483 5076 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
22:58:53.0483 5076 KeyIso - ok
22:58:53.0533 5076 [ EA26CB00F83686856F2C79673C00C686 ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
22:58:53.0553 5076 kl1 - ok
22:58:53.0623 5076 [ FBC7F840F1118D358D2AFB8C1714B384 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
22:58:53.0693 5076 KLIF - ok
22:58:53.0733 5076 [ AF127FE7DD5ED2BBC9049FD8A00DEFC2 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
22:58:53.0743 5076 KLIM6 - ok
22:58:53.0793 5076 [ 24AEBAD59D1DE8A7CC36E8F09F999362 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
22:58:53.0823 5076 klkbdflt - ok
22:58:53.0863 5076 [ A58507C2827C3AE1D4CCB2746AAB349F ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
22:58:53.0883 5076 klmouflt - ok
22:58:53.0913 5076 [ 53C0DF6C5139CB78A631E7AFCD893730 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
22:58:53.0933 5076 kltdi - ok
22:58:54.0003 5076 [ 71A38C123600172511C26BFABD0EF579 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
22:58:54.0023 5076 kneps - ok
22:58:54.0053 5076 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:58:54.0063 5076 KSecDD - ok
22:58:54.0093 5076 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:58:54.0103 5076 KSecPkg - ok
22:58:54.0163 5076 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
22:58:54.0203 5076 KtmRm - ok
22:58:54.0223 5076 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
22:58:54.0233 5076 LanmanServer - ok
22:58:54.0253 5076 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:58:54.0283 5076 LanmanWorkstation - ok
22:58:54.0453 5076 [ 3C879D04BB6466E2853C3155B635CC45 ] LeapFrog Connect Device Service C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
22:58:54.0923 5076 LeapFrog Connect Device Service - ok
22:58:54.0973 5076 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:58:54.0983 5076 lltdio - ok
22:58:55.0033 5076 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:58:55.0053 5076 lltdsvc - ok
22:58:55.0073 5076 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
22:58:55.0103 5076 lmhosts - ok
22:58:55.0123 5076 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:58:55.0143 5076 LSI_FC - ok
22:58:55.0183 5076 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:58:55.0203 5076 LSI_SAS - ok
22:58:55.0223 5076 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:58:55.0263 5076 LSI_SAS2 - ok
22:58:55.0293 5076 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:58:55.0313 5076 LSI_SCSI - ok
22:58:55.0333 5076 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
22:58:55.0353 5076 luafv - ok
22:58:55.0383 5076 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:58:55.0393 5076 Mcx2Svc - ok
22:58:55.0413 5076 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:58:55.0433 5076 megasas - ok
22:58:55.0453 5076 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:58:55.0483 5076 MegaSR - ok
22:58:55.0553 5076 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
22:58:55.0583 5076 Microsoft Office Groove Audit Service - ok
22:58:55.0623 5076 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
22:58:55.0623 5076 MMCSS - ok
22:58:55.0693 5076 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
22:58:55.0703 5076 Modem - ok
22:58:55.0723 5076 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:58:55.0733 5076 monitor - ok
22:58:55.0763 5076 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:58:55.0773 5076 mouclass - ok
22:58:55.0823 5076 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:58:55.0843 5076 mouhid - ok
22:58:55.0863 5076 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:58:55.0903 5076 mountmgr - ok
22:58:55.0953 5076 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
22:58:55.0973 5076 mpio - ok
22:58:56.0013 5076 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:58:56.0033 5076 mpsdrv - ok
22:58:56.0073 5076 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:58:56.0093 5076 MpsSvc - ok
22:58:56.0123 5076 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:58:56.0143 5076 MRxDAV - ok
22:58:56.0173 5076 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:58:56.0213 5076 mrxsmb - ok
22:58:56.0253 5076 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:58:56.0273 5076 mrxsmb10 - ok
22:58:56.0303 5076 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:58:56.0323 5076 mrxsmb20 - ok
22:58:56.0353 5076 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
22:58:56.0363 5076 msahci - ok
22:58:56.0383 5076 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:58:56.0403 5076 msdsm - ok
22:58:56.0443 5076 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
22:58:56.0473 5076 MSDTC - ok
22:58:56.0533 5076 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:58:56.0543 5076 Msfs - ok
22:58:56.0573 5076 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:58:56.0583 5076 mshidkmdf - ok
22:58:56.0613 5076 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:58:56.0653 5076 msisadrv - ok
22:58:56.0713 5076 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:58:56.0733 5076 MSiSCSI - ok
22:58:56.0743 5076 msiserver - ok
22:58:56.0793 5076 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:58:56.0823 5076 MSKSSRV - ok
22:58:56.0843 5076 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:58:56.0863 5076 MSPCLOCK - ok
22:58:56.0873 5076 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:58:56.0893 5076 MSPQM - ok
22:58:56.0913 5076 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:58:56.0933 5076 MsRPC - ok
22:58:56.0983 5076 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:58:56.0993 5076 mssmbios - ok
22:58:57.0043 5076 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:58:57.0063 5076 MSTEE - ok
22:58:57.0073 5076 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:58:57.0113 5076 MTConfig - ok
22:58:57.0143 5076 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
22:58:57.0153 5076 Mup - ok
22:58:57.0193 5076 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
22:58:57.0234 5076 napagent - ok
22:58:57.0281 5076 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:58:57.0312 5076 NativeWifiP - ok
22:58:57.0343 5076 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:58:57.0390 5076 NDIS - ok
22:58:57.0437 5076 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:58:57.0452 5076 NdisCap - ok
22:58:57.0483 5076 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:58:57.0499 5076 NdisTapi - ok
22:58:57.0515 5076 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:58:57.0530 5076 Ndisuio - ok
22:58:57.0561 5076 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:58:57.0577 5076 NdisWan - ok
22:58:57.0608 5076 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:58:57.0624 5076 NDProxy - ok
22:58:57.0686 5076 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:58:57.0702 5076 NetBIOS - ok
22:58:57.0733 5076 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:58:57.0749 5076 NetBT - ok
22:58:57.0764 5076 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
22:58:57.0780 5076 Netlogon - ok
22:58:57.0827 5076 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
22:58:57.0858 5076 Netman - ok
22:58:57.0889 5076 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
22:58:57.0936 5076 netprofm - ok
22:58:57.0967 5076 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:58:57.0983 5076 NetTcpPortSharing - ok
22:58:58.0029 5076 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:58:58.0045 5076 nfrd960 - ok
22:58:58.0092 5076 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:58:58.0107 5076 NlaSvc - ok
22:58:58.0154 5076 [ AB6869A7AB574173FC47F583E959E0CE ] NovacomD C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe
22:58:58.0170 5076 NovacomD - ok
22:58:58.0217 5076 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:58:58.0575 5076 Npfs - ok
22:58:58.0622 5076 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
22:58:58.0669 5076 nsi - ok
22:58:58.0685 5076 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:58:58.0700 5076 nsiproxy - ok
22:58:58.0747 5076 [ B6C48D01147EC020DE7F1856734127F8 ] nSvcIp C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
22:58:58.0778 5076 nSvcIp - ok
22:58:58.0856 5076 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:58:58.0934 5076 Ntfs - ok
22:58:58.0981 5076 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
22:58:59.0012 5076 Null - ok
22:58:59.0075 5076 [ B5E37E31C053BC9950455A257526514B ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x32.sys
22:58:59.0106 5076 NVENETFD - ok
22:58:59.0371 5076 [ 377140A534D013BD661C69F1741DE43C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:59:00.0276 5076 nvlddmkm - ok
22:59:00.0354 5076 [ 1DE923088878B495CD4219E47BA34EB8 ] NVNET C:\Windows\system32\DRIVERS\nvmf6232.sys
22:59:00.0401 5076 NVNET - ok
22:59:00.0447 5076 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:59:00.0494 5076 nvraid - ok
22:59:00.0557 5076 [ 4A5FCAB82D9BF6AF8A023A66802FE9E9 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
22:59:00.0697 5076 nvstor - ok
22:59:00.0744 5076 [ 3FF57A9A657C9690ECBC8B1E3B6E3979 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
22:59:00.0744 5076 nvstor32 - ok
22:59:00.0806 5076 [ 4ED813EFD77A9B7E57E341CDC1C5CBC4 ] nvsvc C:\Windows\system32\nvvsvc.exe
22:59:00.0869 5076 nvsvc - ok
22:59:00.0915 5076 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:59:00.0978 5076 nv_agp - ok
22:59:01.0071 5076 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:59:01.0118 5076 odserv - ok
22:59:01.0165 5076 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:59:01.0212 5076 ohci1394 - ok
22:59:01.0259 5076 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:59:02.0070 5076 ose - ok
22:59:02.0163 5076 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:59:02.0226 5076 p2pimsvc - ok
22:59:02.0351 5076 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
22:59:02.0444 5076 p2psvc - ok
22:59:02.0491 5076 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:59:02.0507 5076 Parport - ok
22:59:02.0553 5076 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:59:02.0585 5076 partmgr - ok
22:59:02.0616 5076 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
22:59:02.0647 5076 Parvdm - ok
22:59:02.0694 5076 [ 2F6E885C432927A186C2E352C8A1CBF4 ] pbfilter C:\Program Files\PeerBlock\pbfilter.sys
22:59:02.0709 5076 pbfilter - ok
22:59:02.0756 5076 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:59:02.0834 5076 PcaSvc - ok
22:59:02.0865 5076 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
22:59:02.0881 5076 pci - ok
22:59:02.0897 5076 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
22:59:02.0912 5076 pciide - ok
22:59:02.0975 5076 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:59:03.0006 5076 pcmcia - ok
22:59:03.0021 5076 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
22:59:03.0068 5076 pcw - ok
22:59:03.0099 5076 [ 40C611622882C3FCAFEB845C1E12A10F ] PDFsFilter C:\Windows\system32\DRIVERS\PDFsFilter.sys
22:59:03.0131 5076 PDFsFilter - ok
22:59:03.0224 5076 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:59:03.0287 5076 PEAUTH - ok
22:59:03.0365 5076 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
22:59:03.0380 5076 PeerDistSvc - ok
22:59:03.0458 5076 pgfilter - ok
22:59:03.0521 5076 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
22:59:03.0677 5076 pla - ok
22:59:03.0708 5076 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:59:03.0739 5076 PlugPlay - ok
22:59:03.0770 5076 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:59:03.0786 5076 PNRPAutoReg - ok
22:59:03.0817 5076 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:59:03.0817 5076 PNRPsvc - ok
22:59:03.0848 5076 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:59:03.0895 5076 PolicyAgent - ok
22:59:03.0942 5076 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
22:59:03.0942 5076 Power - ok
22:59:04.0004 5076 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:59:04.0035 5076 PptpMiniport - ok
22:59:04.0067 5076 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:59:04.0082 5076 Processor - ok
22:59:04.0113 5076 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
22:59:04.0129 5076 ProfSvc - ok
22:59:04.0145 5076 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:59:04.0160 5076 ProtectedStorage - ok
22:59:04.0191 5076 [ F115AF58ABE5605D7D709CBFBD83F418 ] ProtexisLicensing C:\Windows\system32\PSIService.exe
22:59:04.0238 5076 ProtexisLicensing - ok
22:59:04.0285 5076 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:59:04.0301 5076 Psched - ok
22:59:04.0332 5076 [ 324C27635E516184C811339A75CEFD4A ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
22:59:04.0347 5076 PxHelp20 - ok
22:59:04.0410 5076 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:59:04.0503 5076 ql2300 - ok
22:59:04.0519 5076 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:59:04.0535 5076 ql40xx - ok
22:59:04.0597 5076 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
22:59:04.0613 5076 QWAVE - ok
22:59:04.0628 5076 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:59:04.0659 5076 QWAVEdrv - ok
22:59:04.0691 5076 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:59:04.0737 5076 RasAcd - ok
22:59:04.0784 5076 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:59:04.0800 5076 RasAgileVpn - ok
22:59:04.0847 5076 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
22:59:04.0862 5076 RasAuto - ok
22:59:04.0878 5076 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:59:04.0925 5076 Rasl2tp - ok
22:59:04.0956 5076 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
22:59:05.0003 5076 RasMan - ok
22:59:05.0049 5076 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:59:05.0096 5076 RasPppoe - ok
22:59:05.0159 5076 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:59:05.0237 5076 RasSstp - ok
22:59:05.0268 5076 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:59:05.0283 5076 rdbss - ok
22:59:05.0299 5076 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:59:05.0315 5076 rdpbus - ok
22:59:05.0346 5076 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:59:05.0361 5076 RDPCDD - ok
22:59:05.0408 5076 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
22:59:05.0424 5076 RDPDR - ok
22:59:05.0439 5076 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:59:05.0455 5076 RDPENCDD - ok
22:59:05.0502 5076 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:59:05.0517 5076 RDPREFMP - ok
22:59:05.0564 5076 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:59:05.0580 5076 RdpVideoMiniport - ok
22:59:05.0611 5076 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:59:05.0627 5076 RDPWD - ok
22:59:05.0673 5076 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:59:05.0705 5076 rdyboost - ok
22:59:05.0751 5076 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
22:59:05.0783 5076 RemoteAccess - ok
22:59:05.0814 5076 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:59:05.0845 5076 RemoteRegistry - ok
22:59:05.0876 5076 [ 92D33F76769A028DDC54A863EB7DE4A2 ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys
22:59:05.0892 5076 RimUsb - ok
22:59:05.0923 5076 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
22:59:05.0939 5076 RimVSerPort - ok
22:59:05.0985 5076 [ 564297827D213F52C7A3A2FF749568CA ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
22:59:06.0001 5076 ROOTMODEM - ok
22:59:06.0126 5076 [ EBCDE8B48FADC6479D96A56D0A432160 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
22:59:06.0438 5076 RoxMediaDB9 - ok
22:59:06.0469 5076 [ AB2B1DE1C8F31EFCE2384B14B3DC4260 ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
22:59:06.0500 5076 RoxWatch9 - ok
22:59:06.0547 5076 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:59:06.0547 5076 RpcEptMapper - ok
22:59:06.0578 5076 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
22:59:06.0625 5076 RpcLocator - ok
22:59:06.0672 5076 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
22:59:06.0687 5076 RpcSs - ok
22:59:06.0734 5076 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:59:06.0750 5076 rspndr - ok
22:59:06.0781 5076 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
22:59:06.0797 5076 s3cap - ok
22:59:06.0812 5076 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
22:59:06.0812 5076 SamSs - ok
22:59:06.0843 5076 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:59:06.0875 5076 sbp2port - ok
22:59:06.0921 5076 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:59:06.0937 5076 SCardSvr - ok
22:59:06.0968 5076 [ 8F78192C7129FC8EDBF0184C30AD4E30 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
22:59:06.0984 5076 Suspicious file (Forged): C:\Windows\system32\drivers\SCDEmu.sys. Real md5: 8F78192C7129FC8EDBF0184C30AD4E30, Fake md5: C23DBD9BFBA8B1170706E0896B3CF7DA
22:59:06.0984 5076 SCDEmu ( Virus.Win32.ZAccess.k ) - infected
22:59:06.0984 5076 SCDEmu - detected Virus.Win32.ZAccess.k (0)
22:59:07.0015 5076 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:59:07.0031 5076 scfilter - ok
22:59:07.0077 5076 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
22:59:07.0140 5076 Schedule - ok
22:59:07.0171 5076 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:59:07.0171 5076 SCPolicySvc - ok
22:59:07.0202 5076 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:59:07.0233 5076 SDRSVC - ok
22:59:07.0280 5076 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:59:07.0296 5076 secdrv - ok
22:59:07.0343 5076 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
22:59:07.0358 5076 seclogon - ok
22:59:07.0374 5076 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
22:59:07.0405 5076 SENS - ok
22:59:07.0421 5076 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:59:07.0467 5076 SensrSvc - ok
22:59:07.0499 5076 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:59:07.0514 5076 Serenum - ok
22:59:07.0561 5076 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:59:07.0577 5076 Serial - ok
22:59:07.0608 5076 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:59:07.0623 5076 sermouse - ok
22:59:07.0670 5076 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
22:59:07.0686 5076 SessionEnv - ok
22:59:07.0717 5076 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:59:07.0748 5076 sffdisk - ok
22:59:07.0779 5076 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:59:07.0795 5076 sffp_mmc - ok
22:59:07.0826 5076 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:59:07.0826 5076 sffp_sd - ok
22:59:07.0873 5076 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:59:07.0889 5076 sfloppy - ok
22:59:07.0935 5076 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:59:07.0967 5076 ShellHWDetection - ok
22:59:07.0998 5076 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
22:59:08.0013 5076 sisagp - ok
22:59:08.0060 5076 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:59:08.0076 5076 SiSRaid2 - ok
22:59:08.0091 5076 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:59:08.0123 5076 SiSRaid4 - ok
22:59:08.0138 5076 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:59:08.0185 5076 Smb - ok
22:59:08.0247 5076 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:59:08.0419 5076 SNMPTRAP - ok
22:59:08.0466 5076 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
22:59:08.0481 5076 spldr - ok
22:59:08.0497 5076 Spooler - ok
22:59:08.0606 5076 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
22:59:08.0965 5076 sppsvc - ok
22:59:08.0996 5076 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:59:09.0027 5076 sppuinotify - ok
22:59:09.0043 5076 SqlCSS - ok
22:59:09.0074 5076 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:59:09.0090 5076 srv - ok
22:59:09.0121 5076 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:59:09.0137 5076 srv2 - ok
22:59:09.0168 5076 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:59:09.0183 5076 srvnet - ok
22:59:09.0246 5076 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:59:09.0277 5076 SSDPSRV - ok
22:59:09.0293 5076 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
22:59:09.0308 5076 ssmdrv - ok
22:59:09.0339 5076 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:59:09.0386 5076 SstpSvc - ok
22:59:09.0433 5076 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:59:09.0449 5076 stexstor - ok
22:59:09.0480 5076 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
22:59:09.0527 5076 StiSvc - ok
22:59:09.0605 5076 [ 51778FD315C9882F1CBD932743E62A72 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
22:59:09.0620 5076 stllssvr - ok
22:59:09.0683 5076 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
22:59:09.0698 5076 storflt - ok
22:59:09.0729 5076 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
22:59:09.0745 5076 storvsc - ok
22:59:09.0761 5076 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
22:59:09.0792 5076 swenum - ok
22:59:09.0870 5076 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:59:09.0932 5076 SwitchBoard - ok
22:59:09.0995 5076 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
22:59:10.0041 5076 swprv - ok
22:59:10.0057 5076 Synth3dVsc - ok
22:59:10.0119 5076 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
22:59:10.0213 5076 SysMain - ok
22:59:10.0244 5076 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:59:10.0275 5076 TabletInputService - ok
22:59:10.0307 5076 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
22:59:10.0353 5076 TapiSrv - ok
22:59:10.0400 5076 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
22:59:10.0447 5076 TBS - ok
22:59:10.0509 5076 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:59:10.0572 5076 Tcpip - ok
22:59:10.0619 5076 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:59:10.0634 5076 TCPIP6 - ok
22:59:10.0665 5076 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:59:10.0681 5076 tcpipreg - ok
22:59:10.0728 5076 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:59:10.0744 5076 TDPIPE - ok
22:59:10.0776 5076 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:59:10.0791 5076 TDTCP - ok
22:59:10.0822 5076 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:59:10.0838 5076 tdx - ok
22:59:10.0869 5076 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:59:10.0885 5076 TermDD - ok
22:59:10.0916 5076 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
22:59:10.0932 5076 TermService - ok
22:59:10.0978 5076 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
22:59:10.0978 5076 Themes - ok
22:59:11.0010 5076 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
22:59:11.0010 5076 THREADORDER - ok
22:59:11.0025 5076 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
22:59:11.0041 5076 TrkWks - ok
22:59:11.0056 5076 [ 113384367C3999E084FE156B18C7625E ] TrojanKillerDriver C:\Windows\system32\DRIVERS\gtkdrv.sys
22:59:11.0072 5076 TrojanKillerDriver - ok
22:59:11.0134 5076 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:59:11.0446 5076 TrustedInstaller - ok
22:59:11.0493 5076 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:59:11.0509 5076 tssecsrv - ok
22:59:11.0540 5076 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:59:11.0556 5076 TsUsbFlt - ok
22:59:11.0571 5076 tsusbhub - ok
22:59:11.0634 5076 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
22:59:11.0665 5076 TuneUpUtilitiesDrv - ok
22:59:11.0712 5076 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:59:11.0727 5076 tunnel - ok
22:59:11.0852 5076 [ 7694DCA064D0B7E0D1A6972BB9C71B39 ] tvnserver C:\Users\keingrid\AppData\Local\CrossLoop\tvnserver.exe
22:59:11.0961 5076 tvnserver - ok
22:59:12.0024 5076 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:59:12.0039 5076 uagp35 - ok
22:59:12.0070 5076 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:59:12.0102 5076 udfs - ok
22:59:12.0164 5076 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:59:12.0195 5076 UI0Detect - ok
22:59:12.0226 5076 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:59:12.0242 5076 uliagpkx - ok
22:59:12.0273 5076 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
22:59:12.0289 5076 umbus - ok
22:59:12.0320 5076 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:59:12.0336 5076 UmPass - ok
22:59:12.0382 5076 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
22:59:12.0429 5076 UmRdpService - ok
22:59:12.0476 5076 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
22:59:12.0538 5076 upnphost - ok
22:59:12.0585 5076 [ D4FB6ECC60A428564BA8768B0E23C0FC ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
22:59:12.0601 5076 USBAAPL - ok
22:59:12.0632 5076 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:59:12.0679 5076 usbccgp - ok
22:59:12.0710 5076 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:59:12.0726 5076 usbcir - ok
22:59:12.0741 5076 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:59:12.0757 5076 usbehci - ok
22:59:12.0788 5076 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:59:12.0804 5076 usbhub - ok
22:59:12.0819 5076 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:59:12.0835 5076 usbohci - ok
22:59:12.0882 5076 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:59:12.0897 5076 usbprint - ok
22:59:12.0944 5076 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:59:12.0960 5076 usbscan - ok
22:59:12.0991 5076 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:59:13.0006 5076 USBSTOR - ok
22:59:13.0038 5076 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:59:13.0053 5076 usbuhci - ok
22:59:13.0084 5076 [ D82F43D15FDAA666856C0190CB73E7C9 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
22:59:13.0084 5076 usb_rndisx - ok
22:59:13.0131 5076 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
22:59:13.0147 5076 UxSms - ok
22:59:13.0162 5076 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
22:59:13.0162 5076 VaultSvc - ok
22:59:13.0194 5076 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:59:13.0209 5076 vdrvroot - ok
22:59:13.0256 5076 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
22:59:13.0381 5076 vds - ok
22:59:13.0428 5076 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:59:13.0443 5076 vga - ok
22:59:13.0474 5076 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:59:13.0490 5076 VgaSave - ok
22:59:13.0490 5076 VGPU - ok
22:59:13.0537 5076 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:59:13.0552 5076 vhdmp - ok
22:59:13.0584 5076 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
22:59:13.0599 5076 viaagp - ok
22:59:13.0646 5076 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
22:59:13.0662 5076 ViaC7 - ok
22:59:13.0693 5076 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
22:59:13.0708 5076 viaide - ok
22:59:13.0740 5076 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
22:59:13.0771 5076 vmbus - ok
22:59:13.0786 5076 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
22:59:13.0818 5076 VMBusHID - ok
22:59:13.0833 5076 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:59:13.0849 5076 volmgr - ok
22:59:13.0896 5076 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:59:13.0911 5076 volmgrx - ok
22:59:13.0958 5076 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:59:13.0974 5076 volsnap - ok
22:59:14.0036 5076 [ ED2EC8ED03D02A63BB6A5620BC8499D3 ] vseamps C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
22:59:14.0722 5076 vseamps - ok
22:59:14.0738 5076 [ 1E620565DC689C2496E1CD1DC7FF5BC5 ] vsedsps C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
22:59:15.0456 5076 vsedsps - ok
22:59:15.0471 5076 [ 8B36785201617CD4A1335A68946C92FD ] vseqrts C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
22:59:16.0189 5076 vseqrts - ok
22:59:16.0236 5076 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:59:16.0251 5076 vsmraid - ok
22:59:16.0298 5076 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
22:59:16.0407 5076 VSS - ok
22:59:16.0438 5076 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:59:16.0454 5076 vwifibus - ok
22:59:16.0501 5076 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
22:59:16.0516 5076 W32Time - ok
22:59:16.0563 5076 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:59:16.0594 5076 WacomPen - ok
22:59:16.0626 5076 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:59:16.0641 5076 WANARP - ok
22:59:16.0657 5076 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:59:16.0657 5076 Wanarpv6 - ok
22:59:16.0719 5076 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:59:16.0891 5076 WatAdminSvc - ok
22:59:16.0938 5076 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
22:59:17.0078 5076 wbengine - ok
22:59:17.0140 5076 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:59:17.0172 5076 WbioSrvc - ok
22:59:17.0203 5076 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:59:17.0234 5076 wcncsvc - ok
22:59:17.0281 5076 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:59:17.0328 5076 WcsPlugInService - ok
22:59:17.0374 5076 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:59:17.0390 5076 Wd - ok
22:59:17.0421 5076 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:59:17.0452 5076 Wdf01000 - ok
22:59:17.0499 5076 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:59:17.0499 5076 WdiServiceHost - ok
22:59:17.0515 5076 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:59:17.0530 5076 WdiSystemHost - ok
22:59:17.0562 5076 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
22:59:17.0624 5076 WebClient - ok
22:59:17.0671 5076 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:59:17.0733 5076 Wecsvc - ok
22:59:17.0764 5076 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:59:17.0764 5076 wercplsupport - ok
22:59:17.0796 5076 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
22:59:17.0811 5076 WerSvc - ok
22:59:17.0858 5076 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:59:17.0874 5076 WfpLwf - ok
22:59:17.0920 5076 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:59:17.0936 5076 WIMMount - ok
22:59:18.0014 5076 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
22:59:18.0108 5076 WinDefend - ok
22:59:18.0123 5076 WinHttpAutoProxySvc - ok
22:59:18.0217 5076 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:59:18.0248 5076 Winmgmt - ok
22:59:18.0310 5076 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
22:59:18.0435 5076 WinRM - ok
22:59:18.0498 5076 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUSB C:\Windows\system32\DRIVERS\WinUsb.sys
22:59:18.0513 5076 WinUSB - ok
22:59:18.0576 5076 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:59:18.0716 5076 Wlansvc - ok
22:59:18.0747 5076 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:59:18.0778 5076 WmiAcpi - ok
22:59:18.0841 5076 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:59:18.0872 5076 wmiApSrv - ok
22:59:18.0966 5076 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
22:59:19.0168 5076 WMPNetworkSvc - ok
22:59:19.0215 5076 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:59:19.0231 5076 WPCSvc - ok
22:59:19.0262 5076 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:59:19.0293 5076 WPDBusEnum - ok
22:59:19.0340 5076 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:59:19.0356 5076 ws2ifsl - ok
22:59:19.0434 5076 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
22:59:19.0449 5076 wscsvc - ok
22:59:19.0449 5076 WSearch - ok
22:59:19.0496 5076 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:59:19.0558 5076 WudfPf - ok
22:59:19.0605 5076 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:59:19.0621 5076 WUDFRd - ok
22:59:19.0668 5076 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:59:19.0683 5076 wudfsvc - ok
22:59:19.0746 5076 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
22:59:19.0792 5076 WwanSvc - ok
22:59:19.0902 5076 [ 04EE3181FA5B8C808E9DFEFEDE78DD6E ] ZuneNetworkSvc c:\Program Files\Zune\ZuneNss.exe
22:59:20.0260 5076 ZuneNetworkSvc - ok
22:59:20.0307 5076 [ 9DE7FAD6BB49931488CE8F5F48590E7E ] ZuneWlanCfgSvc c:\Windows\system32\ZuneWlanCfgSvc.exe
22:59:21.0618 5076 ZuneWlanCfgSvc - ok
22:59:21.0633 5076 ================ Scan global ===============================
22:59:21.0696 5076 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
22:59:21.0742 5076 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
22:59:21.0758 5076 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
22:59:21.0805 5076 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
22:59:21.0836 5076 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
22:59:21.0867 5076 [Global] - ok
22:59:21.0867 5076 ================ Scan MBR ==================================
22:59:21.0898 5076 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:59:22.0429 5076 \Device\Harddisk0\DR0 - ok
22:59:22.0429 5076 ================ Scan VBR ==================================
22:59:22.0460 5076 [ B33D48B75229F8ED69A78452FBE1E96A ] \Device\Harddisk0\DR0\Partition1
22:59:22.0460 5076 \Device\Harddisk0\DR0\Partition1 - ok
22:59:22.0476 5076 [ CEC308A70B9B648CBF7F92DDDB2853EF ] \Device\Harddisk0\DR0\Partition2
22:59:22.0476 5076 \Device\Harddisk0\DR0\Partition2 - ok
22:59:22.0476 5076 ============================================================
22:59:22.0476 5076 Scan finished
22:59:22.0476 5076 ============================================================
22:59:22.0507 2796 Detected object count: 1
22:59:22.0507 2796 Actual detected object count: 1
22:59:36.0032 2796 C:\Windows\system32\drivers\SCDEmu.sys - copied to quarantine
22:59:37.0374 2796 C:\Windows\$NtUninstallKB54730$\1784659861\@ - copied to quarantine
22:59:37.0405 2796 C:\Windows\$NtUninstallKB54730$\1784659861\Desktop.ini - copied to quarantine
22:59:37.0483 2796 C:\Windows\$NtUninstallKB54730$\1784659861\L\00000004.@ - copied to quarantine
22:59:37.0514 2796 C:\Windows\$NtUninstallKB54730$\1784659861\L\201d3dde - copied to quarantine
22:59:37.0561 2796 C:\Windows\$NtUninstallKB54730$\1784659861\L\jloyjfto - copied to quarantine
22:59:37.0592 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\00000004.@ - copied to quarantine
22:59:37.0748 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\00000008.@ - copied to quarantine
22:59:38.0076 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\000000cb.@ - copied to quarantine
22:59:38.0185 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\80000000.@ - copied to quarantine
22:59:38.0200 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\80000032.@ - copied to quarantine
22:59:38.0310 2796 C:\Windows\assembly\GAC\desktop.ini - copied to quarantine
22:59:39.0043 2796 C:\Users\keingrid\AppData\Local\{0903d57d-58cc-5a02-3a0d-ea831e3fb4ba}\@ - copied to quarantine
22:59:39.0074 2796 C:\Users\keingrid\AppData\Local\{0903d57d-58cc-5a02-3a0d-ea831e3fb4ba}\L\00000004.@ - copied to quarantine
22:59:39.0105 2796 C:\Users\keingrid\AppData\Local\{0903d57d-58cc-5a02-3a0d-ea831e3fb4ba}\L\55490ac4 - copied to quarantine
23:00:24.0206 2796 Backup copy not found, trying to cure infected file..
23:00:24.0206 2796 Cure success, using it..
23:00:24.0221 2796 C:\Windows\system32\drivers\SCDEmu.sys - will be cured on reboot
23:00:24.0487 2796 C:\Windows\$NtUninstallKB54730$\1784659861\@ - will be deleted on reboot
23:00:24.0487 2796 C:\Windows\$NtUninstallKB54730$\1784659861\Desktop.ini - will be deleted on reboot
23:00:24.0502 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\00000004.@ - will be deleted on reboot
23:00:24.0502 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\00000008.@ - will be deleted on reboot
23:00:24.0502 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\000000cb.@ - will be deleted on reboot
23:00:24.0502 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\80000000.@ - will be deleted on reboot
23:00:24.0502 2796 C:\Windows\$NtUninstallKB54730$\1784659861\U\80000032.@ - will be deleted on reboot
23:00:24.0502 2796 C:\Windows\$NtUninstallKB54730$\635774162 - will be deleted on reboot
23:00:24.0502 2796 C:\Windows\assembly\GAC\desktop.ini - will be deleted on reboot
23:00:24.0580 2796 C:\Users\keingrid\AppData\Local\{0903d57d-58cc-5a02-3a0d-ea831e3fb4ba}\@ - will be deleted on reboot
23:00:24.0580 2796 SCDEmu ( Virus.Win32.ZAccess.k ) - User select action: Cure
23:00:42.0754 4628 Deinitialize success

#8 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 28 November 2012 - 09:37 AM

should i stop eset is been running forever and it seems like is just rechecking the same files over and over ..is like what ever my pc has it is tricking any scan to stay there rechecking..so far is been running for another 10hrs while still checking c:\windows\Temp\temporary internet files\content.IE5\wu2sldnu\arjca15yc8764


so far it says it has found 42 infected files.

#9 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 28 November 2012 - 09:46 AM

take a look at this...i noticed that the two that i have circled keep jumping to diffrent #'s every 2 seconds or so..and i think thats why the scan can proceed and it keeps scanning what seems to be the same files ove and over.

Posted Image

#10 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 28 November 2012 - 10:33 AM

question?:should i stop the scan and delete what ever 42 threats it did find?

Posted Image

Edited by keikei, 28 November 2012 - 02:37 PM.


#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:11 AM

Posted 28 November 2012 - 05:07 PM

Try running it in safemode with networking

#12 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 28 November 2012 - 08:54 PM

k did it on safe mode and this time only found one threat but it did do it all the way this time.

C:\Documents and Settings\keingrid\AppData\Local\Mozilla\Firefox\Profiles\2jjslvgf.default\Cache\F\EC\A219Fd01 JS/Exploit.Pdfka.PWM trojan cleaned by deleting - quarantined

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:11 AM

Posted 29 November 2012 - 05:35 AM

Reboot to normal mode,run TDSSkiller again and post the new log

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#14 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 29 November 2012 - 07:29 PM

ok malwarebytes has been running for 8hrs almost 9...it keeps running those files in the temp folder over and over...can i just delete the .Temp files?

#15 keikei

keikei
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:11 AM

Posted 29 November 2012 - 07:54 PM

i aborted ..


Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.29.08

Windows 7 Service Pack 1 x86 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
keingrid :: KEINGRID-PC [administrator]

11/29/2012 10:39:33 AM
mbam-log-2012-11-29 (10-39-33).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 485709
Time elapsed: 9 hour(s), 13 minute(s), 9 second(s) [aborted]

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 6
C:\$RECYCLE.BIN\S-1-5-21-2323757741-166591465-126879654-1000\$0903d57d58cc5a023a0dea831e3fb4ba\n (Trojan.0Access) -> Delete on reboot.
C:\$RECYCLE.BIN\S-1-5-21-2323757741-166591465-126879654-1000\$0903d57d58cc5a023a0dea831e3fb4ba\U\00000004.@ (Trojan.0Access) -> Quarantined and deleted successfully.
C:\$RECYCLE.BIN\S-1-5-21-2323757741-166591465-126879654-1000\$0903d57d58cc5a023a0dea831e3fb4ba\U\00000008.@ (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\$RECYCLE.BIN\S-1-5-21-2323757741-166591465-126879654-1000\$0903d57d58cc5a023a0dea831e3fb4ba\U\000000cb.@ (Trojan.0Access) -> Quarantined and deleted successfully.
C:\$RECYCLE.BIN\S-1-5-21-2323757741-166591465-126879654-1000\$0903d57d58cc5a023a0dea831e3fb4ba\U\80000000.@ (Trojan.0Access) -> Quarantined and deleted successfully.
C:\$RECYCLE.BIN\S-1-5-21-2323757741-166591465-126879654-1000\$0903d57d58cc5a023a0dea831e3fb4ba\U\80000032.@ (Rootkit.0Access) -> Quarantined and deleted successfully.

(end)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users