Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Name unavailable in Volume. Alureon Virus?????


  • Please log in to reply
8 replies to this topic

#1 ifekoya

ifekoya

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:08:37 AM

Posted 29 July 2013 - 10:26 PM

Have like 5 volume tabs that say name not available and my computer keeps crashing.  I ran Microsoft essentials and it said I had alureon virus.  Please help. 



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:37 PM

Posted 30 July 2013 - 03:16 AM

:welcome:

 

:step1: Install and run MBAM

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step3: ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 ifekoya

ifekoya
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:08:37 AM

Posted 30 July 2013 - 07:16 PM

Here is the MBAM log.  I have not deleted it as of yet.

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.07.28.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
aileth :: BOO [administrator]

7/30/2013 5:15:20 PM
MBAM-log-2013-07-30 (19-14-05).txt

Scan type: Full scan (C:\|D:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 548090
Time elapsed: 1 hour(s), 57 minute(s), 1 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Qoobox\Quarantine\C\Users\aileth\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll.vir (PUP.Optional.DefaultTab) -> No action taken.

(end)



#4 ifekoya

ifekoya
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:08:37 AM

Posted 30 July 2013 - 07:21 PM

Here is step 2:

 

19:18:46.0705 5828 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

19:18:47.0396 5828 ============================================================

19:18:47.0396 5828 Current date / time: 2013/07/30 19:18:47.0396

19:18:47.0396 5828 SystemInfo:

19:18:47.0396 5828

19:18:47.0396 5828 OS Version: 6.1.7601 ServicePack: 1.0

19:18:47.0396 5828 Product type: Workstation

19:18:47.0396 5828 ComputerName: BOO

19:18:47.0397 5828 UserName: aileth

19:18:47.0397 5828 Windows directory: C:\windows

19:18:47.0397 5828 System windows directory: C:\windows

19:18:47.0397 5828 Running under WOW64

19:18:47.0397 5828 Processor architecture: Intel x64

19:18:47.0397 5828 Number of processors: 2

19:18:47.0397 5828 Page size: 0x1000

19:18:47.0397 5828 Boot type: Normal boot

19:18:47.0397 5828 ============================================================

19:18:56.0878 5828 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

19:18:56.0898 5828 ============================================================

19:18:56.0898 5828 \Device\Harddisk0\DR0:

19:18:56.0899 5828 MBR partitions:

19:18:56.0899 5828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x23A40000

19:18:56.0899 5828 ============================================================

19:18:56.0946 5828 C: <-> \Device\Harddisk0\DR0\Partition1

19:18:57.0082 5828 ============================================================

19:18:57.0082 5828 Initialize success

19:18:57.0082 5828 ============================================================

19:19:32.0826 5248 ============================================================

19:19:32.0826 5248 Scan started

19:19:32.0826 5248 Mode: Manual; TDLFS;

19:19:32.0826 5248 ============================================================

19:19:33.0953 5248 ================ Scan system memory ========================

19:19:33.0953 5248 System memory - ok

19:19:33.0954 5248 ================ Scan services =============================

19:19:34.0116 5248 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys

19:19:34.0129 5248 1394ohci - ok

19:19:34.0191 5248 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys

19:19:34.0196 5248 ACPI - ok

19:19:34.0240 5248 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys

19:19:34.0241 5248 AcpiPmi - ok

19:19:34.0352 5248 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

19:19:34.0354 5248 AdobeARMservice - ok

19:19:34.0540 5248 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

19:19:34.0545 5248 AdobeFlashPlayerUpdateSvc - ok

19:19:34.0619 5248 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys

19:19:34.0650 5248 adp94xx - ok

19:19:34.0711 5248 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys

19:19:34.0718 5248 adpahci - ok

19:19:34.0790 5248 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys

19:19:34.0796 5248 adpu320 - ok

19:19:34.0823 5248 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll

19:19:34.0824 5248 AeLookupSvc - ok

19:19:34.0908 5248 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys

19:19:34.0916 5248 AFD - ok

19:19:34.0976 5248 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys

19:19:34.0980 5248 agp440 - ok

19:19:35.0036 5248 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe

19:19:35.0038 5248 ALG - ok

19:19:35.0090 5248 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys

19:19:35.0092 5248 aliide - ok

19:19:35.0161 5248 [ 57B773D82E8CC3C6D7E02CC8A6632043 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe

19:19:35.0165 5248 AMD External Events Utility - ok

19:19:35.0181 5248 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys

19:19:35.0183 5248 amdide - ok

19:19:35.0215 5248 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys

19:19:35.0216 5248 AmdK8 - ok

19:19:35.0410 5248 [ AEFAF27F1B7E52C705DF4FB6C96732F6 ] amdkmdag C:\windows\system32\DRIVERS\atipmdag.sys

19:19:35.0586 5248 amdkmdag - ok

19:19:35.0637 5248 [ 8149DB73BE27950EC72767A1193153A6 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys

19:19:35.0640 5248 amdkmdap - ok

19:19:35.0701 5248 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys

19:19:35.0703 5248 AmdPPM - ok

19:19:35.0773 5248 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys

19:19:35.0776 5248 amdsata - ok

19:19:35.0835 5248 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys

19:19:35.0886 5248 amdsbs - ok

19:19:35.0907 5248 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys

19:19:35.0909 5248 amdxata - ok

19:19:35.0968 5248 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys

19:19:35.0971 5248 AppID - ok

19:19:36.0001 5248 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll

19:19:36.0003 5248 AppIDSvc - ok

19:19:36.0073 5248 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\windows\System32\appinfo.dll

19:19:36.0074 5248 Appinfo - ok

19:19:36.0185 5248 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

19:19:36.0187 5248 Apple Mobile Device - ok

19:19:36.0244 5248 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys

19:19:36.0246 5248 arc - ok

19:19:36.0258 5248 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys

19:19:36.0260 5248 arcsas - ok

19:19:36.0313 5248 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys

19:19:36.0314 5248 AsyncMac - ok

19:19:36.0347 5248 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys

19:19:36.0347 5248 atapi - ok

19:19:36.0456 5248 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys

19:19:36.0460 5248 AtiPcie - ok

19:19:36.0527 5248 [ 2BEBEDF0A2C6EEC436F0546432D10B3E ] ATMFBUS C:\windows\system32\DRIVERS\ATMFBUS.sys

19:19:36.0530 5248 ATMFBUS - ok

19:19:36.0559 5248 [ 8C13767E368DE74CB44BF750F27EC9B8 ] ATMFCVsp C:\windows\system32\DRIVERS\ATMFCVsp.sys

19:19:36.0563 5248 ATMFCVsp - ok

19:19:36.0606 5248 [ CB365FAB232D60423B287A650A092343 ] ATMFFLT C:\windows\system32\DRIVERS\ATMFFLT.sys

19:19:36.0607 5248 ATMFFLT - ok

19:19:36.0618 5248 [ 7EDBB7DF5413CFD62EB247A3F5FEE03E ] ATMFMdm C:\windows\system32\DRIVERS\ATMFMdm.sys

19:19:36.0621 5248 ATMFMdm - ok

19:19:36.0634 5248 [ 9DEFF1B882978630B64FA887BF1920F7 ] ATMFNET C:\windows\system32\DRIVERS\ATMFNET.sys

19:19:36.0646 5248 ATMFNET - ok

19:19:36.0676 5248 [ 6C40F32270DE3579F26892BCD381F5EA ] ATMFNVsp C:\windows\system32\DRIVERS\ATMFNVsp.sys

19:19:36.0686 5248 ATMFNVsp - ok

19:19:36.0726 5248 [ 7AA5D545E17306E4BE3F996D63ED8BEE ] ATMFVsp C:\windows\system32\DRIVERS\ATMFVsp.sys

19:19:36.0728 5248 ATMFVsp - ok

19:19:36.0794 5248 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll

19:19:36.0801 5248 AudioEndpointBuilder - ok

19:19:36.0824 5248 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll

19:19:36.0829 5248 AudioSrv - ok

19:19:36.0881 5248 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll

19:19:36.0883 5248 AxInstSV - ok

19:19:36.0949 5248 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys

19:19:36.0957 5248 b06bdrv - ok

19:19:37.0027 5248 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys

19:19:37.0036 5248 b57nd60a - ok

19:19:37.0114 5248 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll

19:19:37.0116 5248 BDESVC - ok

19:19:37.0129 5248 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys

19:19:37.0130 5248 Beep - ok

19:19:37.0211 5248 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll

19:19:37.0219 5248 BFE - ok

19:19:37.0249 5248 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll

19:19:37.0279 5248 BITS - ok

19:19:37.0332 5248 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys

19:19:37.0335 5248 blbdrive - ok

19:19:37.0468 5248 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

19:19:37.0474 5248 Bonjour Service - ok

19:19:37.0497 5248 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys

19:19:37.0499 5248 bowser - ok

19:19:37.0531 5248 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys

19:19:37.0532 5248 BrFiltLo - ok

19:19:37.0567 5248 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys

19:19:37.0568 5248 BrFiltUp - ok

19:19:37.0635 5248 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll

19:19:37.0640 5248 Browser - ok

19:19:37.0669 5248 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys

19:19:37.0673 5248 Brserid - ok

19:19:37.0718 5248 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys

19:19:37.0725 5248 BrSerWdm - ok

19:19:37.0736 5248 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys

19:19:37.0757 5248 BrUsbMdm - ok

19:19:37.0769 5248 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys

19:19:37.0783 5248 BrUsbSer - ok

19:19:37.0807 5248 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys

19:19:37.0811 5248 BTHMODEM - ok

19:19:37.0838 5248 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll

19:19:37.0840 5248 bthserv - ok

19:19:37.0855 5248 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys

19:19:37.0857 5248 cdfs - ok

19:19:37.0919 5248 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys

19:19:37.0924 5248 cdrom - ok

19:19:37.0990 5248 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll

19:19:37.0992 5248 CertPropSvc - ok

19:19:38.0049 5248 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys

19:19:38.0052 5248 circlass - ok

19:19:38.0082 5248 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys

19:19:38.0087 5248 CLFS - ok

19:19:38.0161 5248 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

19:19:38.0164 5248 clr_optimization_v2.0.50727_32 - ok

19:19:38.0205 5248 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

19:19:38.0208 5248 clr_optimization_v2.0.50727_64 - ok

19:19:38.0300 5248 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

19:19:38.0314 5248 clr_optimization_v4.0.30319_32 - ok

19:19:38.0344 5248 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

19:19:38.0347 5248 clr_optimization_v4.0.30319_64 - ok

19:19:38.0415 5248 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys

19:19:38.0416 5248 CmBatt - ok

19:19:38.0461 5248 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys

19:19:38.0463 5248 cmdide - ok

19:19:38.0512 5248 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys

19:19:38.0517 5248 CNG - ok

19:19:38.0631 5248 [ 25C58EE97BE0416A373E3E4F855206B5 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys

19:19:38.0640 5248 CnxtHdAudService - ok

19:19:38.0672 5248 [ 74FB23E505A7F580C4C8E276FD44C498 ] CnxtHdmiAudService C:\windows\system32\drivers\CHDMI64.sys

19:19:38.0682 5248 CnxtHdmiAudService - ok

19:19:38.0744 5248 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys

19:19:38.0745 5248 Compbatt - ok

19:19:38.0817 5248 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys

19:19:38.0819 5248 CompositeBus - ok

19:19:38.0843 5248 COMSysApp - ok

19:19:38.0866 5248 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys

19:19:38.0868 5248 crcdisk - ok

19:19:38.0927 5248 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\windows\system32\cryptsvc.dll

19:19:38.0930 5248 CryptSvc - ok

19:19:39.0043 5248 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

19:19:39.0053 5248 cvhsvc - ok

19:19:39.0112 5248 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll

19:19:39.0119 5248 DcomLaunch - ok

19:19:39.0153 5248 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll

19:19:39.0157 5248 defragsvc - ok

19:19:39.0216 5248 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys

19:19:39.0219 5248 DfsC - ok

19:19:39.0289 5248 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll

19:19:39.0293 5248 Dhcp - ok

19:19:39.0339 5248 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys

19:19:39.0340 5248 discache - ok

19:19:39.0465 5248 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys

19:19:39.0574 5248 Disk - ok

19:19:39.0606 5248 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll

19:19:39.0609 5248 Dnscache - ok

19:19:39.0647 5248 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll

19:19:39.0651 5248 dot3svc - ok

19:19:39.0672 5248 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll

19:19:39.0675 5248 DPS - ok

19:19:39.0721 5248 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys

19:19:39.0723 5248 drmkaud - ok

19:19:39.0778 5248 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys

19:19:39.0789 5248 DXGKrnl - ok

19:19:39.0809 5248 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll

19:19:39.0812 5248 EapHost - ok

19:19:39.0907 5248 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys

19:19:39.0987 5248 ebdrv - ok

19:19:40.0023 5248 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe

19:19:40.0025 5248 EFS - ok

19:19:40.0113 5248 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe

19:19:40.0121 5248 ehRecvr - ok

19:19:40.0151 5248 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe

19:19:40.0153 5248 ehSched - ok

19:19:40.0186 5248 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys

19:19:40.0192 5248 elxstor - ok

19:19:40.0214 5248 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys

19:19:40.0215 5248 ErrDev - ok

19:19:40.0287 5248 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll

19:19:40.0292 5248 EventSystem - ok

19:19:40.0328 5248 ewusbnet - ok

19:19:40.0335 5248 ew_hwusbdev - ok

19:19:40.0362 5248 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys

19:19:40.0364 5248 exfat - ok

19:19:40.0378 5248 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys

19:19:40.0381 5248 fastfat - ok

19:19:40.0462 5248 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe

19:19:40.0473 5248 Fax - ok

19:19:40.0517 5248 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys

19:19:40.0527 5248 fdc - ok

19:19:40.0590 5248 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll

19:19:40.0592 5248 fdPHost - ok

19:19:40.0600 5248 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll

19:19:40.0602 5248 FDResPub - ok

19:19:40.0611 5248 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys

19:19:40.0614 5248 FileInfo - ok

19:19:40.0629 5248 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys

19:19:40.0631 5248 Filetrace - ok

19:19:40.0647 5248 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys

19:19:40.0649 5248 flpydisk - ok

19:19:40.0706 5248 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys

19:19:40.0710 5248 FltMgr - ok

19:19:40.0786 5248 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\windows\system32\FntCache.dll

19:19:40.0799 5248 FontCache - ok

19:19:40.0844 5248 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

19:19:40.0847 5248 FontCache3.0.0.0 - ok

19:19:40.0879 5248 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys

19:19:40.0881 5248 FsDepends - ok

19:19:40.0914 5248 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys

19:19:40.0915 5248 Fs_Rec - ok

19:19:40.0987 5248 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys

19:19:40.0993 5248 fvevol - ok

19:19:41.0014 5248 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys

19:19:41.0016 5248 gagp30kx - ok

19:19:41.0105 5248 [ 551D463E4CCEB5240234DA6718C93A44 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe

19:19:41.0110 5248 GameConsoleService - ok

19:19:41.0172 5248 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys

19:19:41.0174 5248 GEARAspiWDM - ok

19:19:41.0214 5248 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll

19:19:41.0224 5248 gpsvc - ok

19:19:41.0304 5248 gupdate - ok

19:19:41.0348 5248 gupdatem - ok

19:19:41.0380 5248 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys

19:19:41.0382 5248 hcw85cir - ok

19:19:41.0455 5248 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys

19:19:41.0460 5248 HdAudAddService - ok

19:19:41.0498 5248 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys

19:19:41.0500 5248 HDAudBus - ok

19:19:41.0541 5248 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys

19:19:41.0570 5248 HidBatt - ok

19:19:41.0614 5248 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys

19:19:41.0618 5248 HidBth - ok

19:19:41.0638 5248 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys

19:19:41.0640 5248 HidIr - ok

19:19:41.0666 5248 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll

19:19:41.0669 5248 hidserv - ok

19:19:41.0726 5248 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys

19:19:41.0731 5248 HidUsb - ok

19:19:41.0751 5248 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll

19:19:41.0754 5248 hkmsvc - ok

19:19:41.0783 5248 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll

19:19:41.0787 5248 HomeGroupListener - ok

19:19:41.0816 5248 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll

19:19:41.0820 5248 HomeGroupProvider - ok

19:19:41.0841 5248 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys

19:19:41.0843 5248 HpSAMD - ok

19:19:41.0887 5248 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys

19:19:41.0896 5248 HTTP - ok

19:19:41.0928 5248 huawei_enumerator - ok

19:19:41.0951 5248 hwdatacard - ok

19:19:41.0998 5248 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys

19:19:41.0999 5248 hwpolicy - ok

19:19:42.0097 5248 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys

19:19:42.0100 5248 i8042prt - ok

19:19:42.0167 5248 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys

19:19:42.0174 5248 iaStorV - ok

19:19:42.0250 5248 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

19:19:42.0253 5248 IDriverT - ok

19:19:42.0303 5248 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

19:19:42.0315 5248 idsvc - ok

19:19:42.0350 5248 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys

19:19:42.0353 5248 iirsp - ok

19:19:42.0464 5248 [ F82BC30BB2B608AF8B5540CDBAEA93A6 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE

19:19:42.0466 5248 IJPLMSVC - ok

19:19:42.0514 5248 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll

19:19:42.0525 5248 IKEEXT - ok

19:19:42.0590 5248 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys

19:19:42.0594 5248 intelide - ok

19:19:42.0666 5248 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys

19:19:42.0669 5248 intelppm - ok

19:19:42.0697 5248 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll

19:19:42.0701 5248 IPBusEnum - ok

19:19:42.0733 5248 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys

19:19:42.0735 5248 IpFilterDriver - ok

19:19:42.0786 5248 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll

19:19:42.0796 5248 iphlpsvc - ok

19:19:42.0894 5248 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys

19:19:42.0906 5248 IPMIDRV - ok

19:19:42.0938 5248 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys

19:19:42.0940 5248 IPNAT - ok

19:19:43.0021 5248 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

19:19:43.0032 5248 iPod Service - ok

19:19:43.0081 5248 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys

19:19:43.0082 5248 IRENUM - ok

19:19:43.0106 5248 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys

19:19:43.0127 5248 isapnp - ok

19:19:43.0170 5248 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys

19:19:43.0181 5248 iScsiPrt - ok

19:19:43.0228 5248 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys

19:19:43.0256 5248 kbdclass - ok

19:19:43.0311 5248 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys

19:19:43.0313 5248 kbdhid - ok

19:19:43.0335 5248 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe

19:19:43.0337 5248 KeyIso - ok

19:19:43.0367 5248 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys

19:19:43.0369 5248 KSecDD - ok

19:19:43.0386 5248 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys

19:19:43.0389 5248 KSecPkg - ok

19:19:43.0409 5248 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys

19:19:43.0412 5248 ksthunk - ok

19:19:43.0456 5248 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll

19:19:43.0462 5248 KtmRm - ok

19:19:43.0508 5248 [ 55480B9C63F3F91A8EBBADCBF28FE581 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys

19:19:43.0510 5248 L1C - ok

19:19:43.0572 5248 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll

19:19:43.0592 5248 LanmanServer - ok

19:19:43.0640 5248 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll

19:19:43.0643 5248 LanmanWorkstation - ok

19:19:43.0706 5248 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys

19:19:43.0707 5248 lltdio - ok

19:19:43.0740 5248 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll

19:19:43.0745 5248 lltdsvc - ok

19:19:43.0762 5248 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll

19:19:43.0764 5248 lmhosts - ok

19:19:43.0830 5248 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys

19:19:43.0833 5248 LSI_FC - ok

19:19:43.0841 5248 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys

19:19:43.0843 5248 LSI_SAS - ok

19:19:43.0860 5248 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys

19:19:43.0862 5248 LSI_SAS2 - ok

19:19:43.0878 5248 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys

19:19:43.0880 5248 LSI_SCSI - ok

19:19:43.0928 5248 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys

19:19:43.0931 5248 luafv - ok

19:19:43.0996 5248 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\windows\system32\drivers\mbam.sys

19:19:44.0046 5248 MBAMProtector - ok

19:19:44.0114 5248 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

19:19:44.0120 5248 MBAMScheduler - ok

19:19:44.0165 5248 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

19:19:44.0173 5248 MBAMService - ok

19:19:44.0221 5248 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll

19:19:44.0223 5248 Mcx2Svc - ok

19:19:44.0246 5248 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys

19:19:44.0247 5248 megasas - ok

19:19:44.0304 5248 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys

19:19:44.0307 5248 MegaSR - ok

19:19:44.0413 5248 Microsoft SharePoint Workspace Audit Service - ok

19:19:44.0494 5248 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll

19:19:44.0496 5248 MMCSS - ok

19:19:44.0544 5248 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys

19:19:44.0546 5248 Modem - ok

19:19:44.0595 5248 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys

19:19:44.0618 5248 monitor - ok

19:19:44.0662 5248 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys

19:19:44.0666 5248 mouclass - ok

19:19:44.0716 5248 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys

19:19:44.0717 5248 mouhid - ok

19:19:44.0752 5248 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys

19:19:44.0753 5248 mountmgr - ok

19:19:44.0819 5248 [ FC1D590039EF06A381768710E6C07E75 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys

19:19:44.0822 5248 MpFilter - ok

19:19:44.0851 5248 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys

19:19:44.0854 5248 mpio - ok

19:19:45.0005 5248 MpKsl4119ac9f - ok

19:19:45.0041 5248 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys

19:19:45.0043 5248 mpsdrv - ok

19:19:45.0080 5248 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll

19:19:45.0089 5248 MpsSvc - ok

19:19:45.0123 5248 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys

19:19:45.0126 5248 MRxDAV - ok

19:19:45.0154 5248 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys

19:19:45.0157 5248 mrxsmb - ok

19:19:45.0174 5248 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys

19:19:45.0179 5248 mrxsmb10 - ok

19:19:45.0201 5248 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys

19:19:45.0203 5248 mrxsmb20 - ok

19:19:45.0231 5248 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys

19:19:45.0232 5248 msahci - ok

19:19:45.0263 5248 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys

19:19:45.0265 5248 msdsm - ok

19:19:45.0295 5248 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe

19:19:45.0299 5248 MSDTC - ok

19:19:45.0348 5248 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys

19:19:45.0349 5248 Msfs - ok

19:19:45.0394 5248 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys

19:19:45.0395 5248 mshidkmdf - ok

19:19:45.0414 5248 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys

19:19:45.0418 5248 msisadrv - ok

19:19:45.0448 5248 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll

19:19:45.0452 5248 MSiSCSI - ok

19:19:45.0456 5248 msiserver - ok

19:19:45.0504 5248 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys

19:19:45.0506 5248 MSKSSRV - ok

19:19:45.0607 5248 [ 66238063B53E51ADDA16764BAB9A3F7C ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe

19:19:45.0609 5248 MsMpSvc - ok

19:19:45.0630 5248 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys

19:19:45.0631 5248 MSPCLOCK - ok

19:19:45.0637 5248 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys

19:19:45.0638 5248 MSPQM - ok

19:19:45.0674 5248 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys

19:19:45.0679 5248 MsRPC - ok

19:19:45.0717 5248 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys

19:19:45.0722 5248 mssmbios - ok

19:19:45.0769 5248 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys

19:19:45.0770 5248 MSTEE - ok

19:19:45.0785 5248 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys

19:19:45.0787 5248 MTConfig - ok

19:19:45.0802 5248 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys

19:19:45.0803 5248 Mup - ok

19:19:45.0841 5248 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll

19:19:45.0848 5248 napagent - ok

19:19:45.0921 5248 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys

19:19:45.0930 5248 NativeWifiP - ok

19:19:46.0006 5248 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys

19:19:46.0016 5248 NDIS - ok

19:19:46.0073 5248 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys

19:19:46.0074 5248 NdisCap - ok

19:19:46.0121 5248 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys

19:19:46.0122 5248 NdisTapi - ok

19:19:46.0181 5248 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys

19:19:46.0183 5248 Ndisuio - ok

19:19:46.0218 5248 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys

19:19:46.0220 5248 NdisWan - ok

19:19:46.0248 5248 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys

19:19:46.0249 5248 NDProxy - ok

19:19:46.0304 5248 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys

19:19:46.0305 5248 NetBIOS - ok

19:19:46.0337 5248 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys

19:19:46.0340 5248 NetBT - ok

19:19:46.0380 5248 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe

19:19:46.0381 5248 Netlogon - ok

19:19:46.0441 5248 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll

19:19:46.0446 5248 Netman - ok

19:19:46.0491 5248 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll

19:19:46.0498 5248 netprofm - ok

19:19:46.0572 5248 [ 618C55B392238B9467F9113E13525C49 ] netr28ux C:\windows\system32\DRIVERS\netr28ux.sys

19:19:46.0582 5248 netr28ux - ok

19:19:46.0616 5248 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

19:19:46.0618 5248 NetTcpPortSharing - ok

19:19:46.0654 5248 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys

19:19:46.0655 5248 nfrd960 - ok

19:19:46.0751 5248 [ 8FB3C853E886E1E4D57271672486111C ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys

19:19:46.0753 5248 NisDrv - ok

19:19:46.0801 5248 [ 869A808253726EA11939EC4FE76346A4 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe

19:19:46.0806 5248 NisSrv - ok

19:19:46.0868 5248 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll

19:19:46.0872 5248 NlaSvc - ok

19:19:46.0900 5248 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys

19:19:46.0901 5248 Npfs - ok

19:19:46.0922 5248 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll

19:19:46.0924 5248 nsi - ok

19:19:46.0942 5248 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys

19:19:46.0944 5248 nsiproxy - ok

19:19:46.0998 5248 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\windows\system32\drivers\Ntfs.sys

19:19:47.0016 5248 Ntfs - ok

19:19:47.0033 5248 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys

19:19:47.0034 5248 Null - ok

19:19:47.0066 5248 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys

19:19:47.0068 5248 nvraid - ok

19:19:47.0083 5248 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys

19:19:47.0086 5248 nvstor - ok

19:19:47.0101 5248 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys

19:19:47.0103 5248 nv_agp - ok

19:19:47.0116 5248 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys

19:19:47.0118 5248 ohci1394 - ok

19:19:47.0177 5248 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

19:19:47.0181 5248 ose - ok

19:19:47.0369 5248 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

19:19:47.0507 5248 osppsvc - ok

19:19:47.0608 5248 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll

19:19:47.0617 5248 p2pimsvc - ok

19:19:47.0695 5248 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll

19:19:47.0705 5248 p2psvc - ok

19:19:47.0726 5248 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys

19:19:47.0728 5248 Parport - ok

19:19:47.0757 5248 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys

19:19:47.0759 5248 partmgr - ok

19:19:47.0794 5248 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll

19:19:47.0797 5248 PcaSvc - ok

19:19:47.0834 5248 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys

19:19:47.0837 5248 pci - ok

19:19:47.0856 5248 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys

19:19:47.0858 5248 pciide - ok

19:19:47.0886 5248 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys

19:19:47.0904 5248 pcmcia - ok

19:19:47.0923 5248 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys

19:19:47.0924 5248 pcw - ok

19:19:47.0949 5248 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys

19:19:47.0957 5248 PEAUTH - ok

19:19:48.0023 5248 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe

19:19:48.0025 5248 PerfHost - ok

19:19:48.0144 5248 [ 663962900E7FEA522126BA287715BB4A ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys

19:19:48.0245 5248 PGEffect - ok

19:19:48.0307 5248 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll

19:19:48.0331 5248 pla - ok

19:19:48.0414 5248 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll

19:19:48.0420 5248 PlugPlay - ok

19:19:48.0439 5248 [ A010F13D27C1033A8BE09D5FA9BF348B ] pneteth C:\windows\system32\DRIVERS\pneteth.sys

19:19:48.0441 5248 pneteth - ok

19:19:48.0472 5248 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll

19:19:48.0474 5248 PNRPAutoReg - ok

19:19:48.0523 5248 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll

19:19:48.0528 5248 PNRPsvc - ok

19:19:48.0564 5248 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll

19:19:48.0570 5248 PolicyAgent - ok

19:19:48.0608 5248 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll

19:19:48.0611 5248 Power - ok

19:19:48.0665 5248 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys

19:19:48.0667 5248 PptpMiniport - ok

19:19:48.0699 5248 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys

19:19:48.0702 5248 Processor - ok

19:19:48.0782 5248 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll

19:19:48.0786 5248 ProfSvc - ok

19:19:48.0806 5248 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe

19:19:48.0807 5248 ProtectedStorage - ok

19:19:48.0890 5248 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys

19:19:48.0893 5248 Psched - ok

19:19:48.0965 5248 [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem C:\windows\system32\DRIVERS\QIOMem.sys

19:19:48.0971 5248 QIOMem - ok

19:19:49.0013 5248 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys

19:19:49.0036 5248 ql2300 - ok

19:19:49.0063 5248 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys

19:19:49.0065 5248 ql40xx - ok

19:19:49.0097 5248 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll

19:19:49.0104 5248 QWAVE - ok

19:19:49.0121 5248 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys

19:19:49.0122 5248 QWAVEdrv - ok

19:19:49.0158 5248 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys

19:19:49.0160 5248 RasAcd - ok

19:19:49.0217 5248 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys

19:19:49.0219 5248 RasAgileVpn - ok

19:19:49.0231 5248 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll

19:19:49.0234 5248 RasAuto - ok

19:19:49.0272 5248 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys

19:19:49.0274 5248 Rasl2tp - ok

19:19:49.0309 5248 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll

19:19:49.0315 5248 RasMan - ok

19:19:49.0343 5248 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys

19:19:49.0345 5248 RasPppoe - ok

19:19:49.0392 5248 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys

19:19:49.0394 5248 RasSstp - ok

19:19:49.0437 5248 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys

19:19:49.0441 5248 rdbss - ok

19:19:49.0462 5248 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys

19:19:49.0465 5248 rdpbus - ok

19:19:49.0482 5248 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys

19:19:49.0483 5248 RDPCDD - ok

19:19:49.0530 5248 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys

19:19:49.0532 5248 RDPENCDD - ok

19:19:49.0571 5248 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys

19:19:49.0573 5248 RDPREFMP - ok

19:19:49.0611 5248 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys

19:19:49.0614 5248 RDPWD - ok

19:19:49.0684 5248 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys

19:19:49.0687 5248 rdyboost - ok

19:19:49.0718 5248 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll

19:19:49.0721 5248 RemoteAccess - ok

19:19:49.0748 5248 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll

19:19:49.0753 5248 RemoteRegistry - ok

19:19:49.0802 5248 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\windows\system32\Drivers\RimUsb_AMD64.sys

19:19:49.0806 5248 RimUsb - ok

19:19:49.0848 5248 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll

19:19:49.0851 5248 RpcEptMapper - ok

19:19:49.0873 5248 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe

19:19:49.0875 5248 RpcLocator - ok

19:19:49.0902 5248 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll

19:19:49.0907 5248 RpcSs - ok

19:19:49.0965 5248 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys

19:19:49.0967 5248 rspndr - ok

19:19:50.0078 5248 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys

19:19:50.0085 5248 RSUSBSTOR - ok

19:19:50.0158 5248 [ B89C0601A05E1140AC96FA965D94C340 ] rtl8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys

19:19:50.0171 5248 rtl8192Ce - ok

19:19:50.0191 5248 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe

19:19:50.0193 5248 SamSs - ok

19:19:50.0228 5248 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys

19:19:50.0230 5248 sbp2port - ok

19:19:50.0264 5248 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll

19:19:50.0269 5248 SCardSvr - ok

19:19:50.0300 5248 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys

19:19:50.0301 5248 scfilter - ok

19:19:50.0351 5248 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll

19:19:50.0366 5248 Schedule - ok

19:19:50.0401 5248 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll

19:19:50.0402 5248 SCPolicySvc - ok

19:19:50.0421 5248 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll

19:19:50.0425 5248 SDRSVC - ok

19:19:50.0470 5248 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys

19:19:50.0473 5248 secdrv - ok

19:19:50.0523 5248 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll

19:19:50.0526 5248 seclogon - ok

19:19:50.0551 5248 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll

19:19:50.0553 5248 SENS - ok

19:19:50.0573 5248 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll

19:19:50.0575 5248 SensrSvc - ok

19:19:50.0598 5248 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys

19:19:50.0599 5248 Serenum - ok

19:19:50.0614 5248 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys

19:19:50.0619 5248 Serial - ok

19:19:50.0635 5248 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys

19:19:50.0637 5248 sermouse - ok

19:19:50.0673 5248 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll

19:19:50.0676 5248 SessionEnv - ok

19:19:50.0696 5248 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys

19:19:50.0713 5248 sffdisk - ok

19:19:50.0731 5248 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys

19:19:50.0747 5248 sffp_mmc - ok

19:19:50.0754 5248 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys

19:19:50.0764 5248 sffp_sd - ok

19:19:50.0798 5248 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys

19:19:50.0800 5248 sfloppy - ok

19:19:50.0874 5248 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys

19:19:50.0888 5248 Sftfs - ok

19:19:50.0927 5248 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

19:19:50.0933 5248 sftlist - ok

19:19:50.0965 5248 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys

19:19:50.0970 5248 Sftplay - ok

19:19:50.0981 5248 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys

19:19:50.0983 5248 Sftredir - ok

19:19:51.0018 5248 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys

19:19:51.0028 5248 Sftvol - ok

19:19:51.0046 5248 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

19:19:51.0049 5248 sftvsa - ok

19:19:51.0074 5248 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll

19:19:51.0079 5248 SharedAccess - ok

19:19:51.0113 5248 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll

19:19:51.0119 5248 ShellHWDetection - ok

19:19:51.0137 5248 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys

19:19:51.0142 5248 SiSRaid2 - ok

19:19:51.0178 5248 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys

19:19:51.0183 5248 SiSRaid4 - ok

19:19:51.0227 5248 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys

19:19:51.0229 5248 Smb - ok

19:19:51.0291 5248 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe

19:19:51.0293 5248 SNMPTRAP - ok

19:19:51.0305 5248 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys

19:19:51.0306 5248 spldr - ok

19:19:51.0344 5248 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe

19:19:51.0352 5248 Spooler - ok

19:19:51.0449 5248 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe

19:19:51.0550 5248 sppsvc - ok

19:19:51.0603 5248 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll

19:19:51.0605 5248 sppuinotify - ok

19:19:51.0639 5248 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys

19:19:51.0644 5248 srv - ok

19:19:51.0672 5248 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys

19:19:51.0677 5248 srv2 - ok

19:19:51.0732 5248 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\windows\system32\DRIVERS\VSTAZL6.SYS

19:19:51.0770 5248 SrvHsfHDA - ok

19:19:51.0812 5248 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\windows\system32\DRIVERS\VSTDPV6.SYS

19:19:51.0853 5248 SrvHsfV92 - ok

19:19:51.0884 5248 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\windows\system32\DRIVERS\VSTCNXT6.SYS

19:19:51.0894 5248 SrvHsfWinac - ok

19:19:51.0931 5248 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys

19:19:51.0936 5248 srvnet - ok

19:19:51.0993 5248 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\windows\system32\DRIVERS\ssadbus.sys

19:19:52.0004 5248 ssadbus - ok

19:19:52.0048 5248 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\windows\system32\DRIVERS\ssadmdfl.sys

19:19:52.0049 5248 ssadmdfl - ok

19:19:52.0071 5248 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\windows\system32\DRIVERS\ssadmdm.sys

19:19:52.0080 5248 ssadmdm - ok

19:19:52.0098 5248 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\windows\system32\DRIVERS\ssadserd.sys

19:19:52.0126 5248 ssadserd - ok

19:19:52.0191 5248 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll

19:19:52.0195 5248 SSDPSRV - ok

19:19:52.0209 5248 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll

19:19:52.0212 5248 SstpSvc - ok

19:19:52.0240 5248 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys

19:19:52.0251 5248 stexstor - ok

19:19:52.0321 5248 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll

19:19:52.0330 5248 stisvc - ok

19:19:52.0365 5248 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys

19:19:52.0366 5248 swenum - ok

19:19:52.0392 5248 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll

19:19:52.0399 5248 swprv - ok

19:19:52.0503 5248 [ 470C47DABA9CA3966F0AB3F835D7D135 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys

19:19:52.0510 5248 SynTP - ok

19:19:52.0571 5248 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll

19:19:52.0592 5248 SysMain - ok

19:19:52.0623 5248 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll

19:19:52.0627 5248 TabletInputService - ok

19:19:52.0648 5248 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll

19:19:52.0653 5248 TapiSrv - ok

19:19:52.0681 5248 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll

19:19:52.0684 5248 TBS - ok

19:19:52.0767 5248 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\windows\system32\drivers\tcpip.sys

19:19:52.0789 5248 Tcpip - ok

19:19:52.0867 5248 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys

19:19:52.0880 5248 TCPIP6 - ok

19:19:52.0911 5248 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys

19:19:52.0912 5248 tcpipreg - ok

19:19:52.0975 5248 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys

19:19:52.0977 5248 tdcmdpst - ok

19:19:53.0008 5248 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys

19:19:53.0011 5248 TDPIPE - ok

19:19:53.0039 5248 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys

19:19:53.0040 5248 TDTCP - ok

19:19:53.0098 5248 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys

19:19:53.0100 5248 tdx - ok

19:19:53.0120 5248 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys

19:19:53.0134 5248 TermDD - ok

19:19:53.0159 5248 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll

19:19:53.0168 5248 TermService - ok

19:19:53.0194 5248 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll

19:19:53.0196 5248 Themes - ok

19:19:53.0228 5248 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll

19:19:53.0229 5248 THREADORDER - ok

19:19:53.0309 5248 [ F120967184A27E927052E8DDBB727851 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

19:19:53.0310 5248 TMachInfo - ok

19:19:53.0371 5248 [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv C:\Windows\system32\TODDSrv.exe

19:19:53.0374 5248 TODDSrv - ok

19:19:53.0458 5248 [ DB9719688C08F42705FEB3F6A0C98B91 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

19:19:53.0463 5248 TosCoSrv - ok

19:19:53.0507 5248 [ BAE96AD126F4EED4D361B092BA2E61FE ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe

19:19:53.0511 5248 TOSHIBA eco Utility Service - ok

19:19:53.0587 5248 [ 74C2FA8C3765EE71A9C22182EC108457 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

19:19:53.0590 5248 TOSHIBA HDD SSD Alert Service - ok

19:19:53.0668 5248 [ 97687D094AA597DA366E1194B218CC6C ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

19:19:53.0679 5248 TPCHSrv - ok

19:19:53.0732 5248 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll

19:19:53.0736 5248 TrkWks - ok

19:19:53.0780 5248 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe

19:19:53.0785 5248 TrustedInstaller - ok

19:19:53.0813 5248 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys

19:19:53.0815 5248 tssecsrv - ok

19:19:53.0851 5248 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys

19:19:53.0853 5248 TsUsbFlt - ok

19:19:53.0932 5248 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys

19:19:53.0934 5248 tunnel - ok

19:19:53.0994 5248 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS

19:19:53.0998 5248 TVALZ - ok

19:19:54.0027 5248 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys

19:19:54.0032 5248 TVALZFL - ok

19:19:54.0057 5248 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys

19:19:54.0068 5248 uagp35 - ok

19:19:54.0101 5248 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys

19:19:54.0110 5248 udfs - ok

19:19:54.0159 5248 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe

19:19:54.0162 5248 UI0Detect - ok

19:19:54.0176 5248 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys

19:19:54.0180 5248 uliagpkx - ok

19:19:54.0253 5248 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\drivers\umbus.sys

19:19:54.0255 5248 umbus - ok

19:19:54.0281 5248 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys

19:19:54.0284 5248 UmPass - ok

19:19:54.0320 5248 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll

19:19:54.0327 5248 upnphost - ok

19:19:54.0344 5248 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys

19:19:54.0347 5248 usbccgp - ok

19:19:54.0396 5248 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys

19:19:54.0398 5248 usbcir - ok

19:19:54.0417 5248 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys

19:19:54.0419 5248 usbehci - ok

19:19:54.0477 5248 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys

19:19:54.0508 5248 usbhub - ok

19:19:54.0540 5248 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys

19:19:54.0596 5248 usbohci - ok

19:19:54.0762 5248 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys

19:19:54.0779 5248 usbprint - ok

19:19:54.0809 5248 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys

19:19:54.0812 5248 usbscan - ok

19:19:54.0852 5248 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS

19:19:54.0867 5248 USBSTOR - ok

19:19:54.0897 5248 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys

19:19:54.0905 5248 usbuhci - ok

19:19:54.0977 5248 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys

19:19:54.0995 5248 usbvideo - ok

19:19:55.0024 5248 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll

19:19:55.0026 5248 UxSms - ok

19:19:55.0047 5248 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe

19:19:55.0049 5248 VaultSvc - ok

19:19:55.0120 5248 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys

19:19:55.0125 5248 vdrvroot - ok

19:19:55.0167 5248 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe

19:19:55.0175 5248 vds - ok

19:19:55.0205 5248 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys

19:19:55.0212 5248 vga - ok

19:19:55.0228 5248 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys

19:19:55.0230 5248 VgaSave - ok

19:19:55.0263 5248 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys

19:19:55.0307 5248 vhdmp - ok

19:19:55.0324 5248 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys

19:19:55.0355 5248 viaide - ok

19:19:55.0379 5248 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys

19:19:55.0382 5248 volmgr - ok

19:19:55.0413 5248 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys

19:19:55.0419 5248 volmgrx - ok

19:19:55.0446 5248 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys

19:19:55.0457 5248 volsnap - ok

19:19:55.0486 5248 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys

19:19:55.0490 5248 vsmraid - ok

19:19:55.0544 5248 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe

19:19:55.0564 5248 VSS - ok

19:19:55.0607 5248 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys

19:19:55.0608 5248 vwifibus - ok

19:19:55.0625 5248 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys

19:19:55.0626 5248 vwififlt - ok

19:19:55.0669 5248 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys

19:19:55.0670 5248 vwifimp - ok

19:19:55.0695 5248 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll

19:19:55.0701 5248 W32Time - ok

19:19:55.0724 5248 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys

19:19:55.0733 5248 WacomPen - ok

19:19:55.0792 5248 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys

19:19:55.0794 5248 WANARP - ok

19:19:55.0799 5248 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys

19:19:55.0800 5248 Wanarpv6 - ok

19:19:55.0891 5248 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe

19:19:55.0907 5248 WatAdminSvc - ok

19:19:55.0965 5248 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe

19:19:55.0986 5248 wbengine - ok

19:19:56.0018 5248 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll

19:19:56.0022 5248 WbioSrvc - ok

19:19:56.0047 5248 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll

19:19:56.0053 5248 wcncsvc - ok

19:19:56.0070 5248 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll

19:19:56.0072 5248 WcsPlugInService - ok

19:19:56.0090 5248 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys

19:19:56.0091 5248 Wd - ok

19:19:56.0132 5248 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys

19:19:56.0141 5248 Wdf01000 - ok

19:19:56.0151 5248 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll

19:19:56.0154 5248 WdiServiceHost - ok

19:19:56.0158 5248 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll

19:19:56.0161 5248 WdiSystemHost - ok

19:19:56.0186 5248 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll

19:19:56.0191 5248 WebClient - ok

19:19:56.0226 5248 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll

19:19:56.0231 5248 Wecsvc - ok

19:19:56.0269 5248 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll

19:19:56.0272 5248 wercplsupport - ok

19:19:56.0325 5248 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll

19:19:56.0327 5248 WerSvc - ok

19:19:56.0379 5248 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys

19:19:56.0381 5248 WfpLwf - ok

19:19:56.0410 5248 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys

19:19:56.0412 5248 WIMMount - ok

19:19:56.0479 5248 WinDefend - ok

19:19:56.0487 5248 WinHttpAutoProxySvc - ok

19:19:56.0544 5248 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll

19:19:56.0548 5248 Winmgmt - ok

19:19:56.0617 5248 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll

19:19:56.0642 5248 WinRM - ok

19:19:56.0720 5248 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys

19:19:56.0724 5248 WinUsb - ok

19:19:56.0769 5248 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll

19:19:56.0780 5248 Wlansvc - ok

19:19:56.0829 5248 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

19:19:56.0831 5248 wlcrasvc - ok

19:19:56.0922 5248 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

19:19:56.0948 5248 wlidsvc - ok

19:19:56.0998 5248 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys

19:19:56.0998 5248 WmiAcpi - ok

19:19:57.0035 5248 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe

19:19:57.0038 5248 wmiApSrv - ok

19:19:57.0063 5248 WMPNetworkSvc - ok

19:19:57.0094 5248 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll

19:19:57.0097 5248 WPCSvc - ok

19:19:57.0121 5248 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll

19:19:57.0124 5248 WPDBusEnum - ok

19:19:57.0153 5248 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys

19:19:57.0154 5248 ws2ifsl - ok

19:19:57.0275 5248 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll

19:19:57.0278 5248 wscsvc - ok

19:19:57.0282 5248 WSearch - ok

19:19:57.0353 5248 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll

19:19:57.0381 5248 wuauserv - ok

19:19:57.0413 5248 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys

19:19:57.0414 5248 WudfPf - ok

19:19:57.0464 5248 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys

19:19:57.0469 5248 WUDFRd - ok

19:19:57.0506 5248 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll

19:19:57.0523 5248 wudfsvc - ok

19:19:57.0561 5248 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\windows\System32\wwansvc.dll

19:19:57.0565 5248 WwanSvc - ok

19:19:57.0699 5248 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

19:19:57.0706 5248 YahooAUService - ok

19:19:57.0769 5248 ================ Scan global ===============================

19:19:57.0821 5248 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll

19:19:57.0873 5248 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll

19:19:57.0883 5248 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll

19:19:57.0932 5248 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll

19:19:57.0971 5248 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe

19:19:57.0977 5248 [Global] - ok

19:19:57.0978 5248 ================ Scan MBR ==================================

19:19:57.0992 5248 [ 7C073E8BB11E8EE0F384E939542EC0E2 ] \Device\Harddisk0\DR0

19:19:57.0992 5248 Suspicious mbr (Forged): \Device\Harddisk0\DR0

19:19:58.0040 5248 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - infected

19:19:58.0040 5248 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Harbinger.a (0)

19:19:58.0164 5248 ================ Scan VBR ==================================

19:19:58.0192 5248 [ 4E593CCF0962DF9FD2DA7CD9AB852DD8 ] \Device\Harddisk0\DR0\Partition1

19:19:58.0194 5248 \Device\Harddisk0\DR0\Partition1 - ok

19:19:58.0194 5248 ============================================================

19:19:58.0195 5248 Scan finished

19:19:58.0195 5248 ============================================================

19:19:58.0214 0388 Detected object count: 1

19:19:58.0214 0388 Actual detected object count: 1

19:20:11.0107 0388 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - skipped by user

19:20:11.0107 0388 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - User select action: Skip



#5 ifekoya

ifekoya
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:08:37 AM

Posted 30 July 2013 - 11:07 PM

C:\Program Files (x86)\Evrsoft First Page 2006\Iscripts\Games\games-scripts.izs JS/BadJoke.KillFiles.A application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\aileth\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll.vir a variant of Win32/Toolbar.DefaultTab.B application cleaned by deleting - quarantined
C:\Users\aileth\AppData\Local\Temp\apnpip.exe a variant of Win32/Bundled.Toolbar.Ask.D application cleaned by deleting - quarantined
C:\Users\aileth\AppData\Local\Temp\BetterInstaller.exe a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\aileth\AppData\Local\Temp\MyBabylonTB.exe Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\Users\aileth\AppData\Local\Temp\SetupDataMngr_Searchqu.exe multiple threats cleaned by deleting - quarantined
C:\Users\aileth\Desktop\OFFICE2010\CrK.rar a variant of MSIL/HackKMS.A application deleted - quarantined
C:\Users\aileth\Downloads\GamesSetup (1).exe Win32/Toolbar.Inbox.A application cleaned by deleting - quarantined
C:\Users\aileth\Downloads\GamesSetup.exe Win32/Toolbar.Inbox.A application cleaned by deleting - quarantined
 



#6 ifekoya

ifekoya
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:08:37 AM

Posted 30 July 2013 - 11:15 PM

I didn't see the uncheck delete files until just now.  I don't know how I can fix this major error. 



#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:37 PM

Posted 31 July 2013 - 02:42 AM

:step1: Rerun  TDSSKiller

 

Cure:

 

19:20:11.0107 0388 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - skipped by user

19:20:11.0107 0388 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - User select action: Skip


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 ifekoya

ifekoya
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:08:37 AM

Posted 31 July 2013 - 11:14 PM

Thank you so much.  You are a life saver.  My computer is not freezing up at all.  You are awesome!!!!!



#9 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:37 PM

Posted 01 August 2013 - 02:36 AM

:step1: Change all passwords, because you have had a rootkit. To check it's gone, use TDSSKiller again.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users