Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

VIRUS? wpbt0.dll


  • Please log in to reply
11 replies to this topic

#1 brames1

brames1

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:00 AM

Posted 27 December 2012 - 10:27 AM

I have a question regarding this file that keeps popping up after I scan with Microsoft Security Essentials. After the scan this file appears in a separate box and asks if I want to sent to Microsoft so that they can assess whether or not this is a malicious file and I click on "send". This is not something that MSE finds during the scan though. I did a Google search on this file and everything I find says that this is malaware and should be deleted. I found the file in my hard drive and it was created on 12/25/12. I didn't know if I could just delete it there or if I need to run a program to delete the file since it seems to be malaware. This is not, to my knowledge, slowing anything down and my internet works fine. I just don't want anything on here that may be in a dormant state to come alive. What should I do?

BC AdBot (Login to Remove)

 


#2 brames1

brames1
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:00 AM

Posted 27 December 2012 - 10:28 AM

I forgot to mention that I'm running Windows Vista.

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:00 AM

Posted 27 December 2012 - 10:35 AM

Welcomebrames1

wpbt0.dll process belongs to malware

Please run these and post the logs...

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.

>>>

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

>>>


I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 brames1

brames1
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:00 AM

Posted 27 December 2012 - 10:55 AM

Thanks boopme for replying so quickly. I will get the log files as soon as the scan is completed.

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:00 AM

Posted 27 December 2012 - 11:12 AM

:thumbup2: I'll be in and out for a bit but will look back.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 brames1

brames1
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:00 AM

Posted 27 December 2012 - 12:51 PM

This is going to sound stupid but I don't know where TDDSKiller stored the file on my hard drive.

Any suggestions?

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:00 AM

Posted 27 December 2012 - 01:12 PM

Try this...
  • Please download TDSS Qlook and save it to your desktop.
  • Double-click the program and run it.
  • Type the letter A and press ENTER.
  • A logfile will open (TDSSQ.txt), please copy and paste the contents of that logfile into your next reply.


EDIT: or
A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).

Edited by boopme, 27 December 2012 - 01:24 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 brames1

brames1
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:00 AM

Posted 27 December 2012 - 09:15 PM

Here is TDDSSkiller log:

11:37:11.0800 4196 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
11:37:12.0823 4196 ============================================================
11:37:12.0823 4196 Current date / time: 2012/12/27 11:37:12.0823
11:37:12.0823 4196 SystemInfo:
11:37:12.0823 4196
11:37:12.0823 4196 OS Version: 6.0.6002 ServicePack: 2.0
11:37:12.0823 4196 Product type: Workstation
11:37:12.0823 4196 ComputerName: FAMILY-PC
11:37:12.0823 4196 UserName: Admin
11:37:12.0823 4196 Windows directory: C:\Windows
11:37:12.0823 4196 System windows directory: C:\Windows
11:37:12.0824 4196 Processor architecture: Intel x86
11:37:12.0824 4196 Number of processors: 2
11:37:12.0824 4196 Page size: 0x1000
11:37:12.0824 4196 Boot type: Normal boot
11:37:12.0824 4196 ============================================================
11:37:18.0181 4196 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0xA181, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
11:37:18.0266 4196 ============================================================
11:37:18.0266 4196 \Device\Harddisk0\DR0:
11:37:18.0266 4196 MBR partitions:
11:37:18.0266 4196 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x241D5B51
11:37:18.0266 4196 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x241D5B90, BlocksNum 0x1257780
11:37:18.0266 4196 ============================================================
11:37:18.0336 4196 C: <-> \Device\Harddisk0\DR0\Partition1
11:37:18.0514 4196 D: <-> \Device\Harddisk0\DR0\Partition2
11:37:18.0701 4196 ============================================================
11:37:18.0701 4196 Initialize success
11:37:18.0701 4196 ============================================================
11:37:44.0724 4168 ============================================================
11:37:44.0724 4168 Scan started
11:37:44.0724 4168 Mode: Manual; TDLFS;
11:37:44.0724 4168 ============================================================
11:37:45.0593 4168 ================ Scan system memory ========================
11:37:45.0593 4168 System memory - ok
11:37:45.0595 4168 ================ Scan services =============================
11:37:45.0896 4168 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:37:45.0903 4168 ACPI - ok
11:37:46.0057 4168 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:37:46.0093 4168 AdobeARMservice - ok
11:37:46.0167 4168 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:37:46.0224 4168 adp94xx - ok
11:37:46.0313 4168 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:37:46.0364 4168 adpahci - ok
11:37:46.0412 4168 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:37:46.0437 4168 adpu160m - ok
11:37:46.0481 4168 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:37:46.0485 4168 adpu320 - ok
11:37:46.0527 4168 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:37:46.0529 4168 AeLookupSvc - ok
11:37:46.0572 4168 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
11:37:46.0599 4168 AFD - ok
11:37:46.0670 4168 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:37:46.0691 4168 agp440 - ok
11:37:46.0730 4168 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:37:46.0798 4168 aic78xx - ok
11:37:46.0826 4168 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
11:37:46.0841 4168 ALG - ok
11:37:46.0868 4168 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
11:37:46.0899 4168 aliide - ok
11:37:46.0941 4168 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:37:46.0944 4168 amdagp - ok
11:37:46.0956 4168 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
11:37:46.0991 4168 amdide - ok
11:37:47.0037 4168 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:37:47.0086 4168 AmdK7 - ok
11:37:47.0139 4168 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:37:47.0190 4168 AmdK8 - ok
11:37:47.0269 4168 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
11:37:47.0271 4168 Appinfo - ok
11:37:47.0310 4168 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
11:37:47.0315 4168 arc - ok
11:37:47.0344 4168 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:37:47.0349 4168 arcsas - ok
11:37:47.0383 4168 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:37:47.0389 4168 AsyncMac - ok
11:37:47.0442 4168 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
11:37:47.0442 4168 atapi - ok
11:37:47.0521 4168 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:37:47.0531 4168 AudioEndpointBuilder - ok
11:37:47.0570 4168 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:37:47.0575 4168 Audiosrv - ok
11:37:47.0662 4168 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:37:47.0664 4168 Beep - ok
11:37:47.0714 4168 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
11:37:47.0721 4168 BFE - ok
11:37:47.0786 4168 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
11:37:47.0815 4168 BITS - ok
11:37:47.0834 4168 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
11:37:47.0836 4168 blbdrive - ok
11:37:47.0893 4168 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:37:47.0897 4168 bowser - ok
11:37:47.0936 4168 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:37:47.0938 4168 BrFiltLo - ok
11:37:47.0961 4168 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:37:47.0995 4168 BrFiltUp - ok
11:37:48.0043 4168 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
11:37:48.0045 4168 Browser - ok
11:37:48.0088 4168 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:37:48.0092 4168 Brserid - ok
11:37:48.0115 4168 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:37:48.0117 4168 BrSerWdm - ok
11:37:48.0133 4168 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:37:48.0135 4168 BrUsbMdm - ok
11:37:48.0160 4168 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:37:48.0163 4168 BrUsbSer - ok
11:37:48.0214 4168 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:37:48.0268 4168 BTHMODEM - ok
11:37:48.0326 4168 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:37:48.0328 4168 cdfs - ok
11:37:48.0389 4168 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:37:48.0392 4168 cdrom - ok
11:37:48.0451 4168 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:37:48.0453 4168 CertPropSvc - ok
11:37:48.0474 4168 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
11:37:48.0507 4168 circlass - ok
11:37:48.0653 4168 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
11:37:48.0686 4168 CLFS - ok
11:37:48.0977 4168 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:37:49.0067 4168 clr_optimization_v2.0.50727_32 - ok
11:37:49.0140 4168 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:37:49.0177 4168 clr_optimization_v4.0.30319_32 - ok
11:37:49.0225 4168 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:37:49.0246 4168 cmdide - ok
11:37:49.0282 4168 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:37:49.0311 4168 Compbatt - ok
11:37:49.0336 4168 COMSysApp - ok
11:37:49.0359 4168 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:37:49.0361 4168 crcdisk - ok
11:37:49.0376 4168 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:37:49.0425 4168 Crusoe - ok
11:37:49.0518 4168 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:37:49.0522 4168 CryptSvc - ok
11:37:49.0641 4168 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:37:49.0667 4168 DcomLaunch - ok
11:37:49.0715 4168 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:37:49.0718 4168 DfsC - ok
11:37:49.0816 4168 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
11:37:49.0874 4168 DFSR - ok
11:37:49.0956 4168 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:37:49.0962 4168 Dhcp - ok
11:37:50.0026 4168 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
11:37:50.0028 4168 disk - ok
11:37:50.0089 4168 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:37:50.0114 4168 Dnscache - ok
11:37:50.0158 4168 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:37:50.0163 4168 dot3svc - ok
11:37:50.0221 4168 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
11:37:50.0226 4168 DPS - ok
11:37:50.0265 4168 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:37:50.0269 4168 drmkaud - ok
11:37:50.0356 4168 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:37:50.0371 4168 DXGKrnl - ok
11:37:50.0443 4168 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:37:50.0538 4168 E1G60 - ok
11:37:50.0624 4168 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
11:37:50.0643 4168 EapHost - ok
11:37:50.0729 4168 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:37:50.0733 4168 Ecache - ok
11:37:50.0896 4168 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:37:50.0904 4168 ehRecvr - ok
11:37:51.0016 4168 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
11:37:51.0061 4168 ehSched - ok
11:37:51.0165 4168 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
11:37:51.0180 4168 ehstart - ok
11:37:51.0408 4168 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:37:51.0540 4168 elxstor - ok
11:37:51.0609 4168 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:37:51.0626 4168 EMDMgmt - ok
11:37:51.0668 4168 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:37:51.0705 4168 ErrDev - ok
11:37:51.0831 4168 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
11:37:51.0948 4168 EventSystem - ok
11:37:52.0165 4168 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
11:37:52.0206 4168 exfat - ok
11:37:52.0302 4168 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:37:52.0453 4168 fastfat - ok
11:37:52.0566 4168 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:37:52.0575 4168 fdc - ok
11:37:52.0651 4168 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:37:52.0663 4168 fdPHost - ok
11:37:52.0694 4168 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:37:52.0700 4168 FDResPub - ok
11:37:52.0717 4168 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:37:52.0721 4168 FileInfo - ok
11:37:52.0755 4168 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:37:52.0777 4168 Filetrace - ok
11:37:52.0831 4168 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:37:52.0857 4168 flpydisk - ok
11:37:52.0913 4168 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:37:52.0919 4168 FltMgr - ok
11:37:53.0050 4168 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
11:37:53.0084 4168 FontCache - ok
11:37:53.0163 4168 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:37:53.0190 4168 FontCache3.0.0.0 - ok
11:37:53.0276 4168 [ B0082808A6856A252F7CDD939892CE50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
11:37:53.0279 4168 fssfltr - ok
11:37:53.0411 4168 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
11:37:53.0470 4168 fsssvc - ok
11:37:53.0546 4168 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:37:53.0547 4168 Fs_Rec - ok
11:37:53.0601 4168 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:37:53.0630 4168 gagp30kx - ok
11:37:53.0696 4168 [ 07F92834B21AF6AE36F4DB0ACC03658D ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
11:37:54.0619 4168 GameConsoleService - ok
11:37:54.0693 4168 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:37:54.0709 4168 gpsvc - ok
11:37:54.0788 4168 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c99484ab7ccab0 C:\Program Files\Google\Update\GoogleUpdate.exe
11:37:54.0812 4168 gupdate1c99484ab7ccab0 - ok
11:37:54.0853 4168 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
11:37:54.0855 4168 gupdatem - ok
11:37:54.0893 4168 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:37:54.0898 4168 gusvc - ok
11:37:54.0963 4168 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:37:55.0021 4168 HDAudBus - ok
11:37:55.0081 4168 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:37:55.0083 4168 HidBth - ok
11:37:55.0139 4168 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
11:37:55.0141 4168 HidIr - ok
11:37:55.0172 4168 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
11:37:55.0175 4168 hidserv - ok
11:37:55.0232 4168 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:37:55.0258 4168 HidUsb - ok
11:37:55.0309 4168 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:37:55.0314 4168 hkmsvc - ok
11:37:55.0403 4168 [ 0D26C438E2938A3E6BDD91173BC96FF0 ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
11:37:55.0421 4168 HP Health Check Service - ok
11:37:55.0460 4168 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:37:55.0462 4168 HpCISSs - ok
11:37:55.0552 4168 [ 88749FBF8BEB18C90E7D6626C8C1910B ] HSF_DP C:\Windows\system32\DRIVERS\HSX_DP.sys
11:37:55.0856 4168 HSF_DP - ok
11:37:55.0909 4168 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
11:37:56.0065 4168 HSXHWBS2 - ok
11:37:56.0168 4168 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:37:56.0177 4168 HTTP - ok
11:37:56.0230 4168 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:37:56.0233 4168 i2omp - ok
11:37:56.0279 4168 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:37:56.0282 4168 i8042prt - ok
11:37:56.0313 4168 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:37:56.0321 4168 iaStorV - ok
11:37:56.0389 4168 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:37:56.0447 4168 idsvc - ok
11:37:56.0754 4168 [ A9221D13D8F1F772010EE293BA9BAEB7 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
11:37:57.0172 4168 igfx - ok
11:37:57.0212 4168 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:37:57.0215 4168 iirsp - ok
11:37:57.0281 4168 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:37:57.0373 4168 IKEEXT - ok
11:37:57.0852 4168 [ 84ED2154239F9D013BBD3220755ADA8B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:37:58.0310 4168 IntcAzAudAddService - ok
11:37:58.0366 4168 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
11:37:58.0368 4168 intelide - ok
11:37:58.0517 4168 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:37:58.0521 4168 intelppm - ok
11:37:58.0664 4168 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:37:58.0668 4168 IPBusEnum - ok
11:37:58.0706 4168 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:37:58.0834 4168 IpFilterDriver - ok
11:37:58.0952 4168 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:37:58.0963 4168 iphlpsvc - ok
11:37:58.0973 4168 IpInIp - ok
11:37:59.0145 4168 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:37:59.0150 4168 IPMIDRV - ok
11:37:59.0175 4168 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:37:59.0180 4168 IPNAT - ok
11:37:59.0298 4168 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:37:59.0473 4168 IRENUM - ok
11:37:59.0595 4168 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:37:59.0735 4168 isapnp - ok
11:37:59.0925 4168 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:38:00.0169 4168 iScsiPrt - ok
11:38:00.0204 4168 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:38:00.0217 4168 iteatapi - ok
11:38:00.0302 4168 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:38:00.0427 4168 iteraid - ok
11:38:00.0550 4168 [ 8E6EAD34EF56DCE7AF89E0317E69F828 ] JL2005C C:\Windows\system32\Drivers\jl2005c.sys
11:38:00.0877 4168 JL2005C - ok
11:38:00.0926 4168 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:38:01.0001 4168 kbdclass - ok
11:38:01.0060 4168 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:38:01.0120 4168 kbdhid - ok
11:38:01.0238 4168 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
11:38:01.0338 4168 KeyIso - ok
11:38:01.0536 4168 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:38:02.0445 4168 KSecDD - ok
11:38:02.0499 4168 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:38:02.0540 4168 KtmRm - ok
11:38:02.0601 4168 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
11:38:02.0608 4168 LanmanServer - ok
11:38:02.0666 4168 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:38:02.0690 4168 LanmanWorkstation - ok
11:38:02.0828 4168 [ 9039717A906DA0AE38420918801D9AB3 ] LightScribeService c:\Program Files\Common Files\LightScribe\LSSrvc.exe
11:38:02.0885 4168 LightScribeService - ok
11:38:02.0940 4168 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:38:02.0980 4168 lltdio - ok
11:38:03.0028 4168 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:38:03.0062 4168 lltdsvc - ok
11:38:03.0101 4168 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:38:03.0104 4168 lmhosts - ok
11:38:03.0162 4168 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:38:03.0246 4168 LSI_FC - ok
11:38:03.0344 4168 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:38:03.0469 4168 LSI_SAS - ok
11:38:03.0628 4168 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:38:03.0698 4168 LSI_SCSI - ok
11:38:03.0732 4168 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
11:38:03.0815 4168 luafv - ok
11:38:04.0204 4168 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
11:38:04.0495 4168 McComponentHostService - ok
11:38:04.0585 4168 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:38:04.0625 4168 Mcx2Svc - ok
11:38:04.0764 4168 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
11:38:05.0318 4168 mdmxsdk - ok
11:38:05.0414 4168 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
11:38:05.0514 4168 megasas - ok
11:38:05.0745 4168 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
11:38:06.0176 4168 MegaSR - ok
11:38:06.0271 4168 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:38:06.0321 4168 MMCSS - ok
11:38:06.0398 4168 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
11:38:06.0431 4168 Modem - ok
11:38:06.0527 4168 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:38:06.0560 4168 monitor - ok
11:38:06.0656 4168 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:38:06.0697 4168 mouclass - ok
11:38:06.0777 4168 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:38:06.0811 4168 mouhid - ok
11:38:06.0846 4168 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:38:06.0880 4168 MountMgr - ok
11:38:07.0058 4168 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:38:07.0249 4168 MozillaMaintenance - ok
11:38:07.0392 4168 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:38:07.0524 4168 MpFilter - ok
11:38:08.0335 4168 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
11:38:08.0435 4168 mpio - ok
11:38:08.0854 4168 [ A69630D039C38018689190234F866D77 ] MpKsl9e041cff c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{032EA75B-5097-47B2-A3D7-6B7E73E23B24}\MpKsl9e041cff.sys
11:38:08.0914 4168 MpKsl9e041cff - ok
11:38:09.0013 4168 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:38:09.0027 4168 mpsdrv - ok
11:38:09.0222 4168 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
11:38:09.0240 4168 MpsSvc - ok
11:38:09.0290 4168 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:38:09.0292 4168 Mraid35x - ok
11:38:09.0334 4168 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:38:09.0338 4168 MRxDAV - ok
11:38:09.0378 4168 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:38:09.0381 4168 mrxsmb - ok
11:38:09.0408 4168 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:38:09.0413 4168 mrxsmb10 - ok
11:38:09.0433 4168 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:38:09.0436 4168 mrxsmb20 - ok
11:38:09.0458 4168 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
11:38:09.0479 4168 msahci - ok
11:38:09.0515 4168 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:38:09.0518 4168 msdsm - ok
11:38:09.0535 4168 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
11:38:09.0563 4168 MSDTC - ok
11:38:09.0633 4168 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:38:09.0634 4168 Msfs - ok
11:38:09.0655 4168 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:38:09.0657 4168 msisadrv - ok
11:38:09.0700 4168 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:38:09.0705 4168 MSiSCSI - ok
11:38:09.0717 4168 msiserver - ok
11:38:09.0750 4168 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:38:09.0798 4168 MSKSSRV - ok
11:38:09.0840 4168 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
11:38:09.0843 4168 MsMpSvc - ok
11:38:09.0868 4168 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:38:09.0870 4168 MSPCLOCK - ok
11:38:09.0891 4168 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:38:09.0894 4168 MSPQM - ok
11:38:09.0956 4168 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:38:09.0960 4168 MsRPC - ok
11:38:09.0985 4168 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:38:10.0018 4168 mssmbios - ok
11:38:10.0045 4168 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:38:10.0047 4168 MSTEE - ok
11:38:10.0092 4168 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
11:38:10.0094 4168 Mup - ok
11:38:10.0152 4168 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
11:38:10.0161 4168 napagent - ok
11:38:10.0212 4168 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:38:10.0217 4168 NativeWifiP - ok
11:38:10.0282 4168 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:38:10.0299 4168 NDIS - ok
11:38:10.0365 4168 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:38:10.0367 4168 NdisTapi - ok
11:38:10.0440 4168 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:38:10.0517 4168 Ndisuio - ok
11:38:10.0574 4168 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:38:10.0578 4168 NdisWan - ok
11:38:10.0591 4168 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:38:10.0594 4168 NDProxy - ok
11:38:10.0631 4168 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:38:10.0634 4168 NetBIOS - ok
11:38:10.0680 4168 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:38:10.0686 4168 netbt - ok
11:38:10.0723 4168 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
11:38:10.0726 4168 Netlogon - ok
11:38:10.0779 4168 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
11:38:10.0788 4168 Netman - ok
11:38:10.0827 4168 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
11:38:10.0852 4168 netprofm - ok
11:38:10.0883 4168 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:38:10.0887 4168 NetTcpPortSharing - ok
11:38:10.0930 4168 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:38:10.0935 4168 nfrd960 - ok
11:38:10.0970 4168 [ 2CD24A6AF497D0E9B9BF3DA924ED05E6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:38:10.0973 4168 NisDrv - ok
11:38:11.0013 4168 [ 3B846434055F80D9E89D0742F3ADAD34 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
11:38:11.0021 4168 NisSrv - ok
11:38:11.0049 4168 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:38:11.0056 4168 NlaSvc - ok
11:38:11.0089 4168 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:38:11.0091 4168 Npfs - ok
11:38:11.0100 4168 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
11:38:11.0104 4168 nsi - ok
11:38:11.0157 4168 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:38:11.0162 4168 nsiproxy - ok
11:38:11.0229 4168 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:38:11.0255 4168 Ntfs - ok
11:38:11.0294 4168 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:38:11.0301 4168 ntrigdigi - ok
11:38:11.0327 4168 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
11:38:11.0329 4168 Null - ok
11:38:11.0347 4168 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:38:11.0351 4168 nvraid - ok
11:38:11.0367 4168 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:38:11.0369 4168 nvstor - ok
11:38:11.0390 4168 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:38:11.0412 4168 nv_agp - ok
11:38:11.0421 4168 NwlnkFlt - ok
11:38:11.0433 4168 NwlnkFwd - ok
11:38:11.0563 4168 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:38:11.0611 4168 odserv - ok
11:38:11.0629 4168 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:38:11.0655 4168 ohci1394 - ok
11:38:11.0729 4168 [ 4D1832C3E57FB8447F63A96E949D6BEB ] Omniquad MyPrivacy C:\Program Files\Defender Pro Private Surf\MyPrivacy\mpsvc.exe
11:38:12.0405 4168 Omniquad MyPrivacy - ok
11:38:12.0432 4168 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:38:12.0436 4168 ose - ok
11:38:12.0497 4168 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:38:12.0521 4168 p2pimsvc - ok
11:38:12.0541 4168 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:38:12.0553 4168 p2psvc - ok
11:38:12.0603 4168 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
11:38:12.0647 4168 Parport - ok
11:38:12.0684 4168 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:38:12.0686 4168 partmgr - ok
11:38:12.0705 4168 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:38:12.0708 4168 Parvdm - ok
11:38:12.0738 4168 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
11:38:12.0743 4168 PcaSvc - ok
11:38:12.0794 4168 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
11:38:12.0799 4168 pci - ok
11:38:12.0821 4168 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
11:38:12.0825 4168 pciide - ok
11:38:12.0863 4168 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:38:12.0868 4168 pcmcia - ok
11:38:12.0933 4168 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:38:12.0959 4168 PEAUTH - ok
11:38:13.0054 4168 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
11:38:13.0096 4168 pla - ok
11:38:13.0147 4168 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:38:13.0157 4168 PlugPlay - ok
11:38:13.0219 4168 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:38:13.0233 4168 PNRPAutoReg - ok
11:38:13.0250 4168 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:38:13.0260 4168 PNRPsvc - ok
11:38:13.0321 4168 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:38:13.0331 4168 PolicyAgent - ok
11:38:13.0362 4168 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:38:13.0365 4168 PptpMiniport - ok
11:38:13.0400 4168 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
11:38:13.0403 4168 Processor - ok
11:38:13.0466 4168 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:38:13.0472 4168 ProfSvc - ok
11:38:13.0486 4168 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
11:38:13.0489 4168 ProtectedStorage - ok
11:38:13.0524 4168 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:38:13.0527 4168 PSched - ok
11:38:13.0598 4168 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:38:13.0631 4168 ql2300 - ok
11:38:13.0661 4168 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:38:13.0665 4168 ql40xx - ok
11:38:13.0697 4168 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
11:38:13.0707 4168 QWAVE - ok
11:38:13.0750 4168 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:38:13.0752 4168 QWAVEdrv - ok
11:38:13.0791 4168 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:38:13.0793 4168 RasAcd - ok
11:38:13.0812 4168 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
11:38:13.0821 4168 RasAuto - ok
11:38:13.0843 4168 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:38:13.0864 4168 Rasl2tp - ok
11:38:13.0909 4168 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
11:38:13.0917 4168 RasMan - ok
11:38:13.0950 4168 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:38:13.0952 4168 RasPppoe - ok
11:38:14.0013 4168 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:38:14.0031 4168 RasSstp - ok
11:38:14.0087 4168 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:38:14.0093 4168 rdbss - ok
11:38:14.0193 4168 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:38:14.0195 4168 RDPCDD - ok
11:38:14.0243 4168 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:38:14.0271 4168 rdpdr - ok
11:38:14.0287 4168 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:38:14.0299 4168 RDPENCDD - ok
11:38:14.0339 4168 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:38:14.0344 4168 RDPWD - ok
11:38:14.0390 4168 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:38:14.0394 4168 RemoteAccess - ok
11:38:14.0441 4168 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:38:14.0447 4168 RemoteRegistry - ok
11:38:14.0471 4168 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
11:38:14.0474 4168 RpcLocator - ok
11:38:14.0504 4168 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
11:38:14.0515 4168 RpcSs - ok
11:38:14.0526 4168 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:38:14.0539 4168 rspndr - ok
11:38:14.0592 4168 [ C347A3CDE57077056E7E73D3498F7D7D ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
11:38:14.0595 4168 RTL8169 - ok
11:38:14.0631 4168 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
11:38:14.0634 4168 SamSs - ok
11:38:14.0655 4168 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:38:14.0660 4168 sbp2port - ok
11:38:14.0752 4168 [ A0C00A6265949AC72AB51B711743CA6D ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
11:38:14.0846 4168 SBSDWSCService - ok
11:38:14.0880 4168 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:38:14.0888 4168 SCardSvr - ok
11:38:15.0014 4168 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
11:38:15.0065 4168 Schedule - ok
11:38:15.0113 4168 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:38:15.0115 4168 SCPolicySvc - ok
11:38:15.0151 4168 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:38:15.0157 4168 SDRSVC - ok
11:38:15.0217 4168 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:38:15.0219 4168 secdrv - ok
11:38:15.0236 4168 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
11:38:15.0240 4168 seclogon - ok
11:38:15.0273 4168 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
11:38:15.0278 4168 SENS - ok
11:38:15.0365 4168 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:38:15.0386 4168 Serenum - ok
11:38:15.0417 4168 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
11:38:15.0421 4168 Serial - ok
11:38:15.0451 4168 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:38:15.0454 4168 sermouse - ok
11:38:15.0487 4168 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:38:15.0492 4168 SessionEnv - ok
11:38:15.0514 4168 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:38:15.0517 4168 sffdisk - ok
11:38:15.0535 4168 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:38:15.0537 4168 sffp_mmc - ok
11:38:15.0555 4168 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:38:15.0557 4168 sffp_sd - ok
11:38:15.0580 4168 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:38:15.0583 4168 sfloppy - ok
11:38:15.0630 4168 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:38:15.0638 4168 SharedAccess - ok
11:38:15.0703 4168 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:38:15.0720 4168 ShellHWDetection - ok
11:38:15.0757 4168 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:38:15.0760 4168 sisagp - ok
11:38:15.0776 4168 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:38:15.0786 4168 SiSRaid2 - ok
11:38:15.0803 4168 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:38:15.0809 4168 SiSRaid4 - ok
11:38:15.0941 4168 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
11:38:16.0058 4168 slsvc - ok
11:38:16.0112 4168 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:38:16.0118 4168 SLUINotify - ok
11:38:16.0165 4168 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:38:16.0168 4168 Smb - ok
11:38:16.0235 4168 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:38:16.0240 4168 SNMPTRAP - ok
11:38:16.0273 4168 spcstb - ok
11:38:16.0339 4168 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
11:38:16.0341 4168 spldr - ok
11:38:16.0411 4168 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
11:38:16.0417 4168 Spooler - ok
11:38:16.0480 4168 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:38:16.0488 4168 srv - ok
11:38:16.0526 4168 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:38:16.0531 4168 srv2 - ok
11:38:16.0568 4168 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:38:16.0572 4168 srvnet - ok
11:38:16.0630 4168 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:38:16.0647 4168 SSDPSRV - ok
11:38:16.0685 4168 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:38:16.0691 4168 SstpSvc - ok
11:38:16.0742 4168 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
11:38:16.0776 4168 stisvc - ok
11:38:16.0806 4168 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:38:16.0810 4168 swenum - ok
11:38:16.0866 4168 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
11:38:16.0882 4168 swprv - ok
11:38:16.0922 4168 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:38:16.0924 4168 Symc8xx - ok
11:38:16.0932 4168 SymIMMP - ok
11:38:16.0954 4168 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:38:16.0957 4168 Sym_hi - ok
11:38:17.0008 4168 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:38:17.0021 4168 Sym_u3 - ok
11:38:17.0066 4168 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
11:38:17.0100 4168 SysMain - ok
11:38:17.0168 4168 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:38:17.0173 4168 TabletInputService - ok
11:38:17.0241 4168 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:38:17.0252 4168 TapiSrv - ok
11:38:17.0291 4168 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
11:38:17.0297 4168 TBS - ok
11:38:17.0346 4168 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:38:17.0371 4168 Tcpip - ok
11:38:17.0414 4168 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:38:17.0425 4168 Tcpip6 - ok
11:38:17.0464 4168 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:38:17.0466 4168 tcpipreg - ok
11:38:17.0498 4168 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:38:17.0500 4168 TDPIPE - ok
11:38:17.0522 4168 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:38:17.0525 4168 TDTCP - ok
11:38:17.0556 4168 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:38:17.0587 4168 tdx - ok
11:38:17.0631 4168 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:38:17.0633 4168 TermDD - ok
11:38:17.0677 4168 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
11:38:17.0716 4168 TermService - ok
11:38:17.0761 4168 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
11:38:17.0767 4168 Themes - ok
11:38:17.0781 4168 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:38:17.0784 4168 THREADORDER - ok
11:38:17.0840 4168 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
11:38:17.0848 4168 TrkWks - ok
11:38:17.0892 4168 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:38:17.0894 4168 TrustedInstaller - ok
11:38:17.0941 4168 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:38:17.0965 4168 tssecsrv - ok
11:38:18.0032 4168 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:38:18.0034 4168 tunmp - ok
11:38:18.0079 4168 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:38:18.0122 4168 tunnel - ok
11:38:18.0172 4168 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:38:18.0197 4168 uagp35 - ok
11:38:18.0242 4168 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:38:18.0250 4168 udfs - ok
11:38:18.0308 4168 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:38:18.0313 4168 UI0Detect - ok
11:38:18.0322 4168 UimBus - ok
11:38:18.0331 4168 Uim_IM - ok
11:38:18.0362 4168 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:38:18.0365 4168 uliagpkx - ok
11:38:18.0393 4168 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:38:18.0399 4168 uliahci - ok
11:38:18.0415 4168 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:38:18.0421 4168 UlSata - ok
11:38:18.0460 4168 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:38:18.0463 4168 ulsata2 - ok
11:38:18.0489 4168 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:38:18.0586 4168 umbus - ok
11:38:18.0621 4168 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
11:38:18.0630 4168 upnphost - ok
11:38:18.0681 4168 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:38:18.0684 4168 usbccgp - ok
11:38:18.0711 4168 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:38:18.0714 4168 usbcir - ok
11:38:18.0801 4168 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:38:18.0803 4168 usbehci - ok
11:38:18.0825 4168 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:38:18.0830 4168 usbhub - ok
11:38:18.0858 4168 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:38:18.0876 4168 usbohci - ok
11:38:18.0899 4168 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:38:18.0901 4168 usbprint - ok
11:38:18.0932 4168 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:38:18.0935 4168 usbscan - ok
11:38:18.0955 4168 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:38:19.0177 4168 USBSTOR - ok
11:38:19.0224 4168 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:38:19.0227 4168 usbuhci - ok
11:38:19.0260 4168 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
11:38:19.0265 4168 UxSms - ok
11:38:19.0346 4168 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
11:38:19.0365 4168 vds - ok
11:38:19.0413 4168 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:38:19.0435 4168 vga - ok
11:38:19.0465 4168 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
11:38:19.0467 4168 VgaSave - ok
11:38:19.0481 4168 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:38:19.0485 4168 viaagp - ok
11:38:19.0509 4168 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:38:19.0511 4168 ViaC7 - ok
11:38:19.0529 4168 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
11:38:19.0531 4168 viaide - ok
11:38:19.0550 4168 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:38:19.0552 4168 volmgr - ok
11:38:19.0585 4168 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:38:19.0592 4168 volmgrx - ok
11:38:19.0645 4168 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:38:19.0651 4168 volsnap - ok
11:38:19.0675 4168 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:38:19.0679 4168 vsmraid - ok
11:38:19.0764 4168 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
11:38:19.0827 4168 VSS - ok
11:38:19.0877 4168 [ C466021D31FF6C0A6069D12299D80C0B ] VSTHWBS2 C:\Windows\system32\DRIVERS\VSTBS23.SYS
11:38:20.0008 4168 VSTHWBS2 - ok
11:38:20.0062 4168 [ EC36F1D542ED4252390D446BF6D4DFD0 ] VST_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS
11:38:20.0277 4168 VST_DPV - ok
11:38:20.0356 4168 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
11:38:20.0366 4168 W32Time - ok
11:38:20.0398 4168 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:38:20.0400 4168 WacomPen - ok
11:38:20.0422 4168 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:38:20.0426 4168 Wanarp - ok
11:38:20.0433 4168 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:38:20.0434 4168 Wanarpv6 - ok
11:38:20.0458 4168 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:38:20.0474 4168 wcncsvc - ok
11:38:20.0528 4168 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:38:20.0536 4168 WcsPlugInService - ok
11:38:20.0569 4168 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
11:38:20.0571 4168 Wd - ok
11:38:20.0610 4168 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:38:20.0626 4168 Wdf01000 - ok
11:38:20.0658 4168 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:38:20.0664 4168 WdiServiceHost - ok
11:38:20.0674 4168 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:38:20.0679 4168 WdiSystemHost - ok
11:38:20.0740 4168 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
11:38:20.0748 4168 WebClient - ok
11:38:20.0812 4168 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:38:20.0820 4168 Wecsvc - ok
11:38:20.0880 4168 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:38:20.0886 4168 wercplsupport - ok
11:38:20.0921 4168 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:38:20.0929 4168 WerSvc - ok
11:38:20.0981 4168 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
11:38:21.0227 4168 winachsf - ok
11:38:21.0301 4168 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:38:21.0331 4168 WinDefend - ok
11:38:21.0345 4168 WinHttpAutoProxySvc - ok
11:38:21.0436 4168 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:38:21.0442 4168 Winmgmt - ok
11:38:21.0533 4168 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:38:21.0567 4168 WinRM - ok
11:38:21.0657 4168 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:38:21.0674 4168 Wlansvc - ok
11:38:21.0797 4168 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:38:21.0801 4168 wlcrasvc - ok
11:38:21.0979 4168 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:38:22.0021 4168 wlidsvc - ok
11:38:22.0057 4168 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:38:22.0059 4168 WmiAcpi - ok
11:38:22.0115 4168 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:38:22.0120 4168 wmiApSrv - ok
11:38:22.0203 4168 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:38:22.0227 4168 WMPNetworkSvc - ok
11:38:22.0286 4168 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:38:22.0294 4168 WPCSvc - ok
11:38:22.0349 4168 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:38:22.0355 4168 WPDBusEnum - ok
11:38:22.0399 4168 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:38:22.0402 4168 WpdUsb - ok
11:38:22.0713 4168 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:38:22.0738 4168 WPFFontCache_v0400 - ok
11:38:22.0779 4168 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:38:22.0781 4168 ws2ifsl - ok
11:38:22.0811 4168 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
11:38:22.0818 4168 wscsvc - ok
11:38:22.0829 4168 WSearch - ok
11:38:22.0961 4168 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:38:23.0013 4168 wuauserv - ok
11:38:23.0085 4168 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:38:23.0087 4168 WudfPf - ok
11:38:23.0129 4168 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:38:23.0134 4168 WUDFRd - ok
11:38:23.0209 4168 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:38:23.0215 4168 wudfsvc - ok
11:38:23.0249 4168 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
11:38:23.0352 4168 XAudio - ok
11:38:23.0401 4168 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
11:38:23.0411 4168 XAudioService - ok
11:38:23.0446 4168 ================ Scan global ===============================
11:38:23.0490 4168 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:38:23.0555 4168 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:38:23.0582 4168 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:38:23.0624 4168 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
11:38:23.0633 4168 [Global] - ok
11:38:23.0634 4168 ================ Scan MBR ==================================
11:38:23.0645 4168 [ 03BA8F890B47C0BE359A4D5A636D214D ] \Device\Harddisk0\DR0
11:38:24.0270 4168 \Device\Harddisk0\DR0 - ok
11:38:24.0271 4168 ================ Scan VBR ==================================
11:38:24.0278 4168 [ FD4AA8F1927AFB92857FA31C833F20A8 ] \Device\Harddisk0\DR0\Partition1
11:38:24.0280 4168 \Device\Harddisk0\DR0\Partition1 - ok
11:38:24.0286 4168 [ 73D0F411AC9FDCED6C17FE1D1F14AC26 ] \Device\Harddisk0\DR0\Partition2
11:38:24.0289 4168 \Device\Harddisk0\DR0\Partition2 - ok
11:38:24.0291 4168 ============================================================
11:38:24.0291 4168 Scan finished
11:38:24.0291 4168 ============================================================
11:38:24.0309 4176 Detected object count: 0
11:38:24.0309 4176 Actual detected object count: 0
12:30:33.0669 4212 Deinitialize success

#9 brames1

brames1
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:00 AM

Posted 27 December 2012 - 09:29 PM

The aswMBR gave an error and I don't think it ran correctly so I don't have that log.

The ESET online scanner took about 6 hours to complete so here is this log:

C:\Program Files\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.5 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\Admin\Downloads\FunWebProductsRemovalTool.exe multiple threats cleaned by deleting - quarantined
C:\Users\family\AppData\Local\HP Guide\kemzwarb.dll Win32/Kryptik.ARGY.Gen trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\family\AppData\Local\Temp\wpbt0.dll Win32/Kryptik.ARGY.Gen trojan cleaned by deleting - quarantined
C:\Users\family\Documents\YTD (Youtube)\YouTubeDownloaderSetup33.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined

I have not closed out the online scanner yet but would like to because my computer is running so slow and it wasn't doing this until I downloaded that program.
Do I click on the box to uninstall the program and delete the quarantine files?

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:00 AM

Posted 27 December 2012 - 09:48 PM

Yes uninstall.


Reboot into Safe Mode with Networking
How to enter safe mode(XP/Vista)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode with Networking using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.

Do a file search for
wpbt0.dll
Delete any found.

Edited by boopme, 27 December 2012 - 10:05 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 brames1

brames1
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:00 AM

Posted 28 December 2012 - 08:36 AM

I booted in safemode with networking and can not find that file 'wpbt0.dll' THANK YOU!!!!!!! You are awesome!!!!

I have another question though. I bought a wireless router so that I can use a laptop on my network connection.

This virus popped up on my desktop so is it possible that this virus can be transferred to the laptop? I am running

Windows 8 on the laptop and it has Windows Defender for the anti-virus. It won't let me download any other anti-virus

on the computer. I've run Defender on the computer before and after the virus and nothing shows up. I don't know how to get

to the command prompt to look for this file. Do you know how to get to the command prompt on Windows 8?

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:00 AM

Posted 28 December 2012 - 12:19 PM

Hello, not unless you are tranferring executable files between them.

See from our tutotials .. How to open an Elevated Command Prompt in Windows 8
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users