Gurgg

Members

View Profile See their activity

Posts
5
Joined
May 28, 2012
Last visited
May 30, 2012

Content Type

All Activity

Events

Profiles

Forums

Topics
Posts

Everything posted by Gurgg

Problem persists after various rem. attempts

Gurgg replied to Gurgg's topic in Resolved Malware Removal Logs

Rkill was the first thing i thought of when Combofix wouldn't run. Upon doing more searching since the first night it seems this is a newer version of this infection. I needed my PC desperately and I see you guys have alot going on, so I have reformatted. I really appreciate the time you did spend and I commend you for offering your services to strangers at no charge. Good luck with future infections (it seems there is even a couple mentions of it on here now!)
- May 30, 2012
- 8 replies
Problem persists after various rem. attempts

Gurgg replied to Gurgg's topic in Resolved Malware Removal Logs

Sorry to continually post (i cant seem to find an edit function) I have removed my dvd emulator and tdss no longer shows errors, im not sure if it is necesary but here is the most current log: 23:16:54.0231 3792 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31 23:16:54.0543 3792 ============================================================ 23:16:54.0543 3792 Current date / time: 2012/05/29 23:16:54.0543 23:16:54.0543 3792 SystemInfo: 23:16:54.0543 3792 23:16:54.0543 3792 OS Version: 6.1.7601 ServicePack: 1.0 23:16:54.0543 3792 Product type: Workstation 23:16:54.0543 3792 ComputerName: TJ-PC 23:16:54.0543 3792 UserName: TJ 23:16:54.0543 3792 Windows directory: C:\Windows 23:16:54.0543 3792 System windows directory: C:\Windows 23:16:54.0543 3792 Running under WOW64 23:16:54.0543 3792 Processor architecture: Intel x64 23:16:54.0543 3792 Number of processors: 4 23:16:54.0543 3792 Page size: 0x1000 23:16:54.0543 3792 Boot type: Normal boot 23:16:54.0543 3792 ============================================================ 23:16:55.0760 3792 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 23:16:55.0775 3792 Drive \Device\Harddisk1\DR1 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 23:16:55.0775 3792 Drive \Device\Harddisk2\DR2 - Size: 0xF4FFE00 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 23:16:55.0791 3792 ============================================================ 23:16:55.0791 3792 \Device\Harddisk0\DR0: 23:16:55.0791 3792 MBR partitions: 23:16:55.0791 3792 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 23:16:55.0791 3792 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800 23:16:55.0791 3792 \Device\Harddisk1\DR1: 23:16:55.0791 3792 MBR partitions: 23:16:55.0791 3792 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000 23:16:55.0791 3792 \Device\Harddisk2\DR2: 23:16:55.0791 3792 MBR partitions: 23:16:55.0791 3792 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x63, BlocksNum 0x7A59D 23:16:55.0791 3792 ============================================================ 23:16:55.0822 3792 C: <-> \Device\Harddisk0\DR0\Partition1 23:16:55.0838 3792 D: <-> \Device\Harddisk1\DR1\Partition0 23:16:55.0838 3792 ============================================================ 23:16:55.0838 3792 Initialize success 23:16:55.0838 3792 ============================================================ 23:16:56.0883 3852 ============================================================ 23:16:56.0883 3852 Scan started 23:16:56.0883 3852 Mode: Manual; 23:16:56.0883 3852 ============================================================ 23:16:58.0443 3852 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 23:16:58.0443 3852 1394ohci - ok 23:16:58.0552 3852 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 23:16:58.0552 3852 ACPI - ok 23:16:58.0583 3852 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 23:16:58.0599 3852 AcpiPmi - ok 23:16:58.0770 3852 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 23:16:58.0770 3852 AdobeARMservice - ok 23:16:59.0722 3852 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 23:16:59.0769 3852 AdobeFlashPlayerUpdateSvc - ok 23:17:00.0050 3852 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys 23:17:00.0081 3852 adp94xx - ok 23:17:00.0455 3852 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys 23:17:00.0502 3852 adpahci - ok 23:17:00.0642 3852 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys 23:17:00.0642 3852 adpu320 - ok 23:17:00.0736 3852 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll 23:17:00.0752 3852 AeLookupSvc - ok 23:17:01.0110 3852 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 23:17:01.0142 3852 AFD - ok 23:17:01.0282 3852 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 23:17:01.0298 3852 agp440 - ok 23:17:01.0438 3852 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe 23:17:01.0454 3852 ALG - ok 23:17:01.0500 3852 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 23:17:01.0516 3852 aliide - ok 23:17:01.0547 3852 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 23:17:01.0547 3852 amdide - ok 23:17:01.0610 3852 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys 23:17:01.0610 3852 AmdK8 - ok 23:17:01.0656 3852 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys 23:17:01.0656 3852 AmdPPM - ok 23:17:01.0750 3852 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 23:17:01.0750 3852 amdsata - ok 23:17:01.0828 3852 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys 23:17:01.0859 3852 amdsbs - ok 23:17:01.0890 3852 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 23:17:01.0906 3852 amdxata - ok 23:17:02.0046 3852 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 23:17:02.0046 3852 AppID - ok 23:17:02.0093 3852 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll 23:17:02.0109 3852 AppIDSvc - ok 23:17:02.0156 3852 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll 23:17:02.0156 3852 Appinfo - ok 23:17:02.0296 3852 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 23:17:02.0312 3852 Apple Mobile Device - ok 23:17:02.0436 3852 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll 23:17:02.0452 3852 AppMgmt - ok 23:17:02.0499 3852 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys 23:17:02.0514 3852 arc - ok 23:17:02.0530 3852 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys 23:17:02.0530 3852 arcsas - ok 23:17:02.0686 3852 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 23:17:02.0748 3852 aspnet_state - ok 23:17:02.0811 3852 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 23:17:02.0826 3852 AsyncMac - ok 23:17:02.0889 3852 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 23:17:02.0904 3852 atapi - ok 23:17:03.0170 3852 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll 23:17:03.0201 3852 AudioEndpointBuilder - ok 23:17:03.0201 3852 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll 23:17:03.0216 3852 AudioSrv - ok 23:17:03.0357 3852 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll 23:17:03.0372 3852 AxInstSV - ok 23:17:03.0575 3852 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys 23:17:03.0575 3852 b06bdrv - ok 23:17:03.0809 3852 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 23:17:03.0809 3852 b57nd60a - ok 23:17:03.0934 3852 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll 23:17:03.0950 3852 BDESVC - ok 23:17:04.0012 3852 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 23:17:04.0012 3852 Beep - ok 23:17:04.0355 3852 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll 23:17:04.0386 3852 BITS - ok 23:17:04.0464 3852 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 23:17:04.0464 3852 blbdrive - ok 23:17:04.0542 3852 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 23:17:04.0542 3852 bowser - ok 23:17:04.0574 3852 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys 23:17:04.0589 3852 BrFiltLo - ok 23:17:04.0605 3852 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys 23:17:04.0605 3852 BrFiltUp - ok 23:17:04.0652 3852 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys 23:17:04.0698 3852 BridgeMP - ok 23:17:04.0761 3852 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll 23:17:04.0761 3852 Browser - ok 23:17:05.0073 3852 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 23:17:05.0073 3852 Brserid - ok 23:17:05.0120 3852 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 23:17:05.0120 3852 BrSerWdm - ok 23:17:05.0151 3852 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 23:17:05.0151 3852 BrUsbMdm - ok 23:17:05.0182 3852 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 23:17:05.0182 3852 BrUsbSer - ok 23:17:05.0276 3852 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 23:17:05.0291 3852 BTHMODEM - ok 23:17:05.0447 3852 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll 23:17:05.0463 3852 bthserv - ok 23:17:05.0603 3852 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 23:17:05.0603 3852 cdfs - ok 23:17:05.0822 3852 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 23:17:05.0822 3852 cdrom - ok 23:17:05.0946 3852 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll 23:17:05.0946 3852 CertPropSvc - ok 23:17:06.0040 3852 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys 23:17:06.0056 3852 circlass - ok 23:17:06.0321 3852 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 23:17:06.0336 3852 CLFS - ok 23:17:06.0586 3852 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 23:17:06.0617 3852 clr_optimization_v2.0.50727_32 - ok 23:17:06.0695 3852 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 23:17:06.0695 3852 clr_optimization_v2.0.50727_64 - ok 23:17:06.0945 3852 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 23:17:07.0366 3852 clr_optimization_v4.0.30319_32 - ok 23:17:07.0491 3852 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 23:17:07.0569 3852 clr_optimization_v4.0.30319_64 - ok 23:17:07.0662 3852 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys 23:17:07.0678 3852 CmBatt - ok 23:17:07.0725 3852 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 23:17:07.0740 3852 cmdide - ok 23:17:07.0881 3852 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 23:17:07.0896 3852 CNG - ok 23:17:07.0974 3852 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys 23:17:07.0990 3852 Compbatt - ok 23:17:08.0099 3852 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys 23:17:08.0099 3852 CompositeBus - ok 23:17:08.0130 3852 COMSysApp - ok 23:17:08.0146 3852 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys 23:17:08.0162 3852 crcdisk - ok 23:17:08.0208 3852 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll 23:17:08.0208 3852 CryptSvc - ok 23:17:08.0286 3852 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 23:17:08.0286 3852 CSC - ok 23:17:08.0396 3852 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll 23:17:08.0411 3852 CscService - ok 23:17:08.0489 3852 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys 23:17:08.0505 3852 dc3d - ok 23:17:08.0645 3852 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll 23:17:08.0645 3852 DcomLaunch - ok 23:17:08.0692 3852 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll 23:17:08.0692 3852 defragsvc - ok 23:17:08.0739 3852 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 23:17:08.0739 3852 DfsC - ok 23:17:08.0848 3852 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll 23:17:08.0864 3852 Dhcp - ok 23:17:08.0879 3852 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 23:17:08.0879 3852 discache - ok 23:17:08.0910 3852 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys 23:17:08.0910 3852 Disk - ok 23:17:08.0957 3852 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll 23:17:08.0988 3852 Dnscache - ok 23:17:09.0113 3852 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll 23:17:09.0113 3852 dot3svc - ok 23:17:09.0144 3852 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll 23:17:09.0144 3852 DPS - ok 23:17:09.0207 3852 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 23:17:09.0207 3852 drmkaud - ok 23:17:09.0300 3852 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 23:17:09.0300 3852 DXGKrnl - ok 23:17:09.0347 3852 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll 23:17:09.0347 3852 EapHost - ok 23:17:09.0971 3852 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys 23:17:10.0065 3852 ebdrv - ok 23:17:10.0283 3852 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe 23:17:10.0283 3852 EFS - ok 23:17:10.0455 3852 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe 23:17:10.0455 3852 ehRecvr - ok 23:17:10.0548 3852 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe 23:17:10.0548 3852 ehSched - ok 23:17:10.0658 3852 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys 23:17:10.0658 3852 elxstor - ok 23:17:10.0704 3852 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 23:17:10.0720 3852 ErrDev - ok 23:17:10.0767 3852 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll 23:17:10.0767 3852 EventSystem - ok 23:17:10.0814 3852 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 23:17:10.0814 3852 exfat - ok 23:17:10.0845 3852 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 23:17:10.0845 3852 fastfat - ok 23:17:11.0048 3852 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe 23:17:11.0079 3852 Fax - ok 23:17:11.0110 3852 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys 23:17:11.0110 3852 fdc - ok 23:17:11.0126 3852 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll 23:17:11.0126 3852 fdPHost - ok 23:17:11.0141 3852 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll 23:17:11.0141 3852 FDResPub - ok 23:17:11.0188 3852 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 23:17:11.0188 3852 FileInfo - ok 23:17:11.0188 3852 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 23:17:11.0188 3852 Filetrace - ok 23:17:11.0204 3852 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys 23:17:11.0204 3852 flpydisk - ok 23:17:11.0250 3852 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 23:17:11.0250 3852 FltMgr - ok 23:17:11.0344 3852 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll 23:17:11.0360 3852 FontCache - ok 23:17:11.0422 3852 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 23:17:11.0422 3852 FontCache3.0.0.0 - ok 23:17:11.0453 3852 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 23:17:11.0469 3852 FsDepends - ok 23:17:11.0500 3852 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys 23:17:11.0500 3852 Fs_Rec - ok 23:17:11.0609 3852 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 23:17:11.0609 3852 fvevol - ok 23:17:11.0625 3852 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys 23:17:11.0625 3852 gagp30kx - ok 23:17:11.0687 3852 GIVEIO - ok 23:17:11.0859 3852 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll 23:17:11.0890 3852 gpsvc - ok 23:17:11.0968 3852 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 23:17:11.0968 3852 hcw85cir - ok 23:17:12.0046 3852 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 23:17:12.0046 3852 HdAudAddService - ok 23:17:12.0077 3852 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys 23:17:12.0077 3852 HDAudBus - ok 23:17:12.0077 3852 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys 23:17:12.0093 3852 HidBatt - ok 23:17:12.0093 3852 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys 23:17:12.0093 3852 HidBth - ok 23:17:12.0108 3852 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys 23:17:12.0108 3852 HidIr - ok 23:17:12.0124 3852 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll 23:17:12.0124 3852 hidserv - ok 23:17:12.0140 3852 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 23:17:12.0140 3852 HidUsb - ok 23:17:12.0202 3852 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll 23:17:12.0202 3852 hkmsvc - ok 23:17:12.0249 3852 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll 23:17:12.0249 3852 HomeGroupListener - ok 23:17:12.0311 3852 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll 23:17:12.0311 3852 HomeGroupProvider - ok 23:17:12.0327 3852 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 23:17:12.0342 3852 HpSAMD - ok 23:17:12.0389 3852 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys 23:17:12.0389 3852 HTCAND64 - ok 23:17:12.0467 3852 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys 23:17:12.0467 3852 htcnprot - ok 23:17:12.0623 3852 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 23:17:12.0623 3852 HTTP - ok 23:17:12.0670 3852 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 23:17:12.0670 3852 hwpolicy - ok 23:17:12.0701 3852 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys 23:17:12.0701 3852 i8042prt - ok 23:17:12.0779 3852 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 23:17:12.0779 3852 iaStorV - ok 23:17:13.0060 3852 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 23:17:13.0122 3852 idsvc - ok 23:17:13.0185 3852 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys 23:17:13.0185 3852 iirsp - ok 23:17:13.0372 3852 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll 23:17:13.0388 3852 IKEEXT - ok 23:17:13.0528 3852 IntcAzAudAddService (bfbabcb231628a4551dbb10d0ea25d62) C:\Windows\system32\drivers\RTKVHD64.sys 23:17:13.0528 3852 IntcAzAudAddService - ok 23:17:13.0778 3852 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 23:17:13.0778 3852 intelide - ok 23:17:13.0856 3852 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 23:17:13.0856 3852 intelppm - ok 23:17:13.0887 3852 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll 23:17:13.0887 3852 IPBusEnum - ok 23:17:13.0918 3852 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 23:17:13.0918 3852 IpFilterDriver - ok 23:17:14.0043 3852 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll 23:17:14.0058 3852 iphlpsvc - ok 23:17:14.0090 3852 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 23:17:14.0105 3852 IPMIDRV - ok 23:17:14.0168 3852 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 23:17:14.0168 3852 IPNAT - ok 23:17:14.0183 3852 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 23:17:14.0183 3852 IRENUM - ok 23:17:14.0199 3852 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 23:17:14.0199 3852 isapnp - ok 23:17:14.0230 3852 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 23:17:14.0230 3852 iScsiPrt - ok 23:17:14.0261 3852 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 23:17:14.0261 3852 kbdclass - ok 23:17:14.0277 3852 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 23:17:14.0277 3852 kbdhid - ok 23:17:14.0308 3852 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 23:17:14.0308 3852 KeyIso - ok 23:17:14.0339 3852 KMService - ok 23:17:14.0355 3852 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 23:17:14.0355 3852 KSecDD - ok 23:17:14.0370 3852 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 23:17:14.0370 3852 KSecPkg - ok 23:17:14.0386 3852 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 23:17:14.0386 3852 ksthunk - ok 23:17:14.0448 3852 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll 23:17:14.0464 3852 KtmRm - ok 23:17:14.0511 3852 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll 23:17:14.0511 3852 LanmanServer - ok 23:17:14.0558 3852 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll 23:17:14.0558 3852 LanmanWorkstation - ok 23:17:14.0667 3852 LightScribeService (83d8be94e1cbcbe2ea8372db1a95a159) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 23:17:14.0667 3852 LightScribeService - ok 23:17:14.0698 3852 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 23:17:14.0698 3852 lltdio - ok 23:17:14.0745 3852 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll 23:17:14.0745 3852 lltdsvc - ok 23:17:14.0760 3852 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll 23:17:14.0760 3852 lmhosts - ok 23:17:14.0776 3852 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys 23:17:14.0776 3852 LSI_FC - ok 23:17:14.0792 3852 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys 23:17:14.0807 3852 LSI_SAS - ok 23:17:14.0807 3852 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys 23:17:14.0807 3852 LSI_SAS2 - ok 23:17:14.0823 3852 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys 23:17:14.0823 3852 LSI_SCSI - ok 23:17:14.0838 3852 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 23:17:14.0838 3852 luafv - ok 23:17:14.0885 3852 lvpepf64 (4a503882318bb2f59218d401614e6af6) C:\Windows\system32\DRIVERS\lv302a64.sys 23:17:14.0885 3852 lvpepf64 - ok 23:17:14.0932 3852 LVPr2M64 (ded333dbdbbcc3555a6e6244522e2f1a) C:\Windows\system32\DRIVERS\LVPr2M64.sys 23:17:14.0932 3852 LVPr2M64 - ok 23:17:14.0932 3852 LVPr2Mon (ded333dbdbbcc3555a6e6244522e2f1a) C:\Windows\system32\DRIVERS\LVPr2M64.sys 23:17:14.0932 3852 LVPr2Mon - ok 23:17:15.0041 3852 LVPrcS64 (a35679e56e78091e1042a2d7adbf2958) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe 23:17:15.0057 3852 LVPrcS64 - ok 23:17:15.0369 3852 LVRS64 (125ae13c293889001b8456cf3eb04a40) C:\Windows\system32\DRIVERS\lvrs64.sys 23:17:15.0369 3852 LVRS64 - ok 23:17:15.0447 3852 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll 23:17:15.0447 3852 Mcx2Svc - ok 23:17:15.0525 3852 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys 23:17:15.0572 3852 megasas - ok 23:17:15.0759 3852 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys 23:17:15.0759 3852 MegaSR - ok 23:17:15.0852 3852 MEMSWEEP2 (d70476ad02d6fd75282b196d3b58831d) C:\Windows\system32\9665.tmp 23:17:15.0868 3852 MEMSWEEP2 - ok 23:17:15.0899 3852 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll 23:17:15.0899 3852 MMCSS - ok 23:17:15.0899 3852 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 23:17:15.0899 3852 Modem - ok 23:17:15.0946 3852 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 23:17:15.0946 3852 monitor - ok 23:17:16.0008 3852 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 23:17:16.0008 3852 mouclass - ok 23:17:16.0040 3852 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 23:17:16.0040 3852 mouhid - ok 23:17:16.0086 3852 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 23:17:16.0086 3852 mountmgr - ok 23:17:16.0227 3852 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 23:17:16.0227 3852 MozillaMaintenance - ok 23:17:16.0258 3852 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 23:17:16.0258 3852 mpio - ok 23:17:16.0289 3852 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 23:17:16.0305 3852 mpsdrv - ok 23:17:16.0336 3852 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 23:17:16.0336 3852 MRxDAV - ok 23:17:16.0414 3852 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 23:17:16.0414 3852 mrxsmb - ok 23:17:16.0554 3852 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 23:17:16.0554 3852 mrxsmb10 - ok 23:17:16.0601 3852 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 23:17:16.0601 3852 mrxsmb20 - ok 23:17:16.0648 3852 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 23:17:16.0664 3852 msahci - ok 23:17:16.0679 3852 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 23:17:16.0679 3852 msdsm - ok 23:17:16.0710 3852 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe 23:17:16.0710 3852 MSDTC - ok 23:17:16.0742 3852 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 23:17:16.0742 3852 Msfs - ok 23:17:16.0773 3852 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 23:17:16.0788 3852 mshidkmdf - ok 23:17:16.0788 3852 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 23:17:16.0788 3852 msisadrv - ok 23:17:16.0820 3852 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll 23:17:16.0835 3852 MSiSCSI - ok 23:17:16.0835 3852 msiserver - ok 23:17:16.0851 3852 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 23:17:16.0851 3852 MSKSSRV - ok 23:17:16.0866 3852 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 23:17:16.0866 3852 MSPCLOCK - ok 23:17:16.0882 3852 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 23:17:16.0882 3852 MSPQM - ok 23:17:16.0976 3852 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 23:17:16.0991 3852 MsRPC - ok 23:17:17.0038 3852 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys 23:17:17.0038 3852 mssmbios - ok 23:17:17.0100 3852 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 23:17:17.0100 3852 MSTEE - ok 23:17:17.0100 3852 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys 23:17:17.0100 3852 MTConfig - ok 23:17:17.0163 3852 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 23:17:17.0163 3852 Mup - ok 23:17:17.0256 3852 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll 23:17:17.0272 3852 napagent - ok 23:17:17.0366 3852 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 23:17:17.0366 3852 NativeWifiP - ok 23:17:17.0600 3852 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 23:17:17.0631 3852 NDIS - ok 23:17:17.0678 3852 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 23:17:17.0678 3852 NdisCap - ok 23:17:17.0709 3852 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 23:17:17.0709 3852 NdisTapi - ok 23:17:17.0740 3852 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 23:17:17.0740 3852 Ndisuio - ok 23:17:17.0818 3852 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 23:17:17.0818 3852 NdisWan - ok 23:17:17.0849 3852 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 23:17:17.0849 3852 NDProxy - ok 23:17:17.0880 3852 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 23:17:17.0880 3852 NetBIOS - ok 23:17:17.0990 3852 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 23:17:17.0990 3852 NetBT - ok 23:17:18.0036 3852 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 23:17:18.0036 3852 Netlogon - ok 23:17:18.0099 3852 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll 23:17:18.0099 3852 Netman - ok 23:17:18.0177 3852 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 23:17:18.0192 3852 NetMsmqActivator - ok 23:17:18.0208 3852 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 23:17:18.0208 3852 NetPipeActivator - ok 23:17:18.0270 3852 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll 23:17:18.0286 3852 netprofm - ok 23:17:18.0489 3852 netr28x (5758fd37bf31e759f8610311e4d08eca) C:\Windows\system32\DRIVERS\netr28x.sys 23:17:18.0489 3852 netr28x - ok 23:17:18.0707 3852 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 23:17:18.0707 3852 NetTcpActivator - ok 23:17:18.0707 3852 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 23:17:18.0707 3852 NetTcpPortSharing - ok 23:17:18.0894 3852 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys 23:17:18.0894 3852 nfrd960 - ok 23:17:19.0019 3852 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll 23:17:19.0019 3852 NlaSvc - ok 23:17:19.0082 3852 NPF (c31fa031335eff434b2d94278e74bcce) C:\Windows\system32\drivers\npf.sys 23:17:19.0082 3852 NPF - ok 23:17:19.0128 3852 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 23:17:19.0128 3852 Npfs - ok 23:17:19.0175 3852 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll 23:17:19.0175 3852 nsi - ok 23:17:19.0191 3852 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 23:17:19.0191 3852 nsiproxy - ok 23:17:19.0425 3852 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 23:17:19.0440 3852 Ntfs - ok 23:17:19.0534 3852 nTuneService - ok 23:17:19.0612 3852 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 23:17:19.0612 3852 Null - ok 23:17:21.0422 3852 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys 23:17:21.0500 3852 nvlddmkm - ok 23:17:21.0624 3852 NVR0Dev (241a095631570a9cef4f126c87605c60) C:\Windows\nvoclk64.sys 23:17:21.0624 3852 NVR0Dev - ok 23:17:21.0765 3852 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 23:17:21.0765 3852 nvraid - ok 23:17:21.0796 3852 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 23:17:21.0812 3852 nvstor - ok 23:17:21.0890 3852 nvsvc (32ff8ee6dcee5c0cb91ff892fb1ca364) C:\Windows\system32\nvvsvc.exe 23:17:21.0905 3852 nvsvc - ok 23:17:22.0248 3852 nvUpdatusService (bd012dc22c78be1071bc21eb125d782f) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 23:17:22.0280 3852 nvUpdatusService - ok 23:17:22.0467 3852 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 23:17:22.0467 3852 nv_agp - ok 23:17:22.0482 3852 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 23:17:22.0482 3852 ohci1394 - ok 23:17:22.0623 3852 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 23:17:22.0623 3852 ose - ok 23:17:23.0247 3852 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 23:17:23.0356 3852 osppsvc - ok 23:17:23.0481 3852 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll 23:17:23.0496 3852 p2pimsvc - ok 23:17:23.0528 3852 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll 23:17:23.0543 3852 p2psvc - ok 23:17:23.0574 3852 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys 23:17:23.0574 3852 Parport - ok 23:17:23.0606 3852 Partizan - ok 23:17:23.0637 3852 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys 23:17:23.0652 3852 partmgr - ok 23:17:23.0730 3852 pbfilter (7c0582921913d00180ec2b8518ba135c) C:\Program Files\PeerBlock\pbfilter.sys 23:17:23.0730 3852 pbfilter - ok 23:17:23.0808 3852 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll 23:17:23.0808 3852 PcaSvc - ok 23:17:23.0855 3852 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 23:17:23.0855 3852 pci - ok 23:17:23.0871 3852 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 23:17:23.0871 3852 pciide - ok 23:17:23.0902 3852 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys 23:17:23.0902 3852 pcmcia - ok 23:17:23.0902 3852 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 23:17:23.0902 3852 pcw - ok 23:17:23.0949 3852 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 23:17:23.0949 3852 PEAUTH - ok 23:17:24.0058 3852 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll 23:17:24.0074 3852 PeerDistSvc - ok 23:17:24.0152 3852 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe 23:17:24.0214 3852 PerfHost - ok 23:17:24.0479 3852 PEVSystemStart (f042ee4c8d66248d9b86dcf52abae416) C:\32788R22FWJFW\pev.3XE 23:17:24.0495 3852 PEVSystemStart - ok 23:17:25.0166 3852 PID_PEPI (ae0b94363da0f60d42b9d05b352f61ed) C:\Windows\system32\DRIVERS\LV302V64.SYS 23:17:25.0181 3852 PID_PEPI - ok 23:17:25.0649 3852 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll 23:17:25.0680 3852 pla - ok 23:17:25.0836 3852 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll 23:17:25.0836 3852 PlugPlay - ok 23:17:25.0868 3852 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll 23:17:25.0868 3852 PNRPAutoReg - ok 23:17:25.0899 3852 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll 23:17:25.0899 3852 PNRPsvc - ok 23:17:25.0961 3852 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys 23:17:25.0961 3852 Point64 - ok 23:17:26.0055 3852 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll 23:17:26.0070 3852 PolicyAgent - ok 23:17:26.0102 3852 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll 23:17:26.0102 3852 Power - ok 23:17:26.0148 3852 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 23:17:26.0148 3852 PptpMiniport - ok 23:17:26.0180 3852 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys 23:17:26.0180 3852 Processor - ok 23:17:26.0414 3852 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll 23:17:26.0429 3852 ProfSvc - ok 23:17:26.0476 3852 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 23:17:26.0476 3852 ProtectedStorage - ok 23:17:26.0554 3852 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 23:17:26.0554 3852 Psched - ok 23:17:26.0913 3852 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys 23:17:26.0960 3852 ql2300 - ok 23:17:27.0069 3852 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys 23:17:27.0084 3852 ql40xx - ok 23:17:27.0147 3852 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll 23:17:27.0147 3852 QWAVE - ok 23:17:27.0178 3852 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 23:17:27.0178 3852 QWAVEdrv - ok 23:17:27.0381 3852 RalinkRegistryWriter (f502a4b72524d21c5ca7183e61fb522e) C:\Program Files (x86)\Ralink\Common\RaRegistry.exe 23:17:27.0381 3852 RalinkRegistryWriter - ok 23:17:27.0490 3852 RalinkRegistryWriter64 (56b2eed5f1f150519dfac03aa9825af5) C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe 23:17:27.0490 3852 RalinkRegistryWriter64 - ok 23:17:27.0599 3852 RaMediaServer (cbc738221e5b80c4566e4ac0dc16cc8c) C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe 23:17:27.0599 3852 RaMediaServer - ok 23:17:28.0083 3852 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 23:17:28.0083 3852 RasAcd - ok 23:17:28.0223 3852 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 23:17:28.0239 3852 RasAgileVpn - ok 23:17:28.0332 3852 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll 23:17:28.0348 3852 RasAuto - ok 23:17:28.0379 3852 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 23:17:28.0379 3852 Rasl2tp - ok 23:17:28.0410 3852 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll 23:17:28.0410 3852 RasMan - ok 23:17:28.0457 3852 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 23:17:28.0457 3852 RasPppoe - ok 23:17:28.0535 3852 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 23:17:28.0535 3852 RasSstp - ok 23:17:28.0551 3852 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 23:17:28.0566 3852 rdbss - ok 23:17:28.0566 3852 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 23:17:28.0566 3852 rdpbus - ok 23:17:28.0582 3852 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 23:17:28.0582 3852 RDPCDD - ok 23:17:28.0629 3852 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 23:17:28.0629 3852 RDPDR - ok 23:17:28.0644 3852 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 23:17:28.0644 3852 RDPENCDD - ok 23:17:28.0660 3852 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 23:17:28.0660 3852 RDPREFMP - ok 23:17:28.0722 3852 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys 23:17:28.0722 3852 RdpVideoMiniport - ok 23:17:28.0816 3852 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys 23:17:28.0832 3852 RDPWD - ok 23:17:28.0910 3852 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 23:17:28.0925 3852 rdyboost - ok 23:17:28.0956 3852 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll 23:17:28.0956 3852 RemoteAccess - ok 23:17:28.0988 3852 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll 23:17:28.0988 3852 RemoteRegistry - ok 23:17:29.0034 3852 RimUsb (5790bca445cc40df8b38c2c48608aac2) C:\Windows\system32\Drivers\RimUsb_AMD64.sys 23:17:29.0034 3852 RimUsb - ok 23:17:29.0175 3852 rpcapd (a780d3eaa74582ea1deb6bd9c7a3d9c9) C:\Program Files (x86)\WinPcap\rpcapd.exe 23:17:29.0175 3852 rpcapd - ok 23:17:29.0206 3852 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll 23:17:29.0206 3852 RpcEptMapper - ok 23:17:29.0222 3852 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe 23:17:29.0222 3852 RpcLocator - ok 23:17:29.0424 3852 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll 23:17:29.0424 3852 RpcSs - ok 23:17:29.0456 3852 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 23:17:29.0456 3852 rspndr - ok 23:17:29.0549 3852 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys 23:17:29.0549 3852 RTL8167 - ok 23:17:29.0612 3852 RTL8187 (333224d4d25f9bcca488e08345083e1c) C:\Windows\system32\DRIVERS\rtl8187.sys 23:17:29.0612 3852 RTL8187 - ok 23:17:29.0690 3852 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 23:17:29.0690 3852 s3cap - ok 23:17:29.0768 3852 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 23:17:29.0768 3852 SamSs - ok 23:17:29.0814 3852 SAVRKBootTasks - ok 23:17:29.0846 3852 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 23:17:29.0846 3852 sbp2port - ok 23:17:29.0877 3852 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll 23:17:29.0908 3852 SCardSvr - ok 23:17:29.0955 3852 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 23:17:29.0955 3852 scfilter - ok 23:17:30.0251 3852 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll 23:17:30.0267 3852 Schedule - ok 23:17:30.0345 3852 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll 23:17:30.0345 3852 SCPolicySvc - ok 23:17:30.0454 3852 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll 23:17:30.0470 3852 SDRSVC - ok 23:17:30.0516 3852 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 23:17:30.0516 3852 secdrv - ok 23:17:30.0548 3852 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll 23:17:30.0563 3852 seclogon - ok 23:17:30.0579 3852 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll 23:17:30.0579 3852 SENS - ok 23:17:30.0594 3852 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll 23:17:30.0594 3852 SensrSvc - ok 23:17:30.0610 3852 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 23:17:30.0610 3852 Serenum - ok 23:17:30.0626 3852 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 23:17:30.0626 3852 Serial - ok 23:17:30.0657 3852 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys 23:17:30.0657 3852 sermouse - ok 23:17:30.0719 3852 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll 23:17:30.0735 3852 SessionEnv - ok 23:17:30.0750 3852 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 23:17:30.0750 3852 sffdisk - ok 23:17:30.0750 3852 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 23:17:30.0766 3852 sffp_mmc - ok 23:17:30.0766 3852 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 23:17:30.0766 3852 sffp_sd - ok 23:17:30.0782 3852 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys 23:17:30.0782 3852 sfloppy - ok 23:17:30.0813 3852 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll 23:17:30.0828 3852 ShellHWDetection - ok 23:17:30.0844 3852 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys 23:17:30.0844 3852 SiSRaid2 - ok 23:17:30.0860 3852 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys 23:17:30.0860 3852 SiSRaid4 - ok 23:17:30.0875 3852 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 23:17:30.0875 3852 Smb - ok 23:17:30.0891 3852 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe 23:17:30.0891 3852 SNMPTRAP - ok 23:17:30.0891 3852 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 23:17:30.0906 3852 spldr - ok 23:17:30.0969 3852 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe 23:17:31.0016 3852 Spooler - ok 23:17:31.0359 3852 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe 23:17:31.0421 3852 sppsvc - ok 23:17:31.0936 3852 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll 23:17:31.0936 3852 sppuinotify - ok 23:17:32.0186 3852 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 23:17:32.0201 3852 srv - ok 23:17:32.0420 3852 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 23:17:32.0435 3852 srv2 - ok 23:17:32.0466 3852 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 23:17:32.0482 3852 srvnet - ok 23:17:32.0576 3852 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll 23:17:32.0576 3852 SSDPSRV - ok 23:17:32.0591 3852 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll 23:17:32.0591 3852 SstpSvc - ok 23:17:32.0794 3852 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe 23:17:32.0794 3852 StarWindServiceAE - ok 23:17:33.0168 3852 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 23:17:33.0168 3852 Stereo Service - ok 23:17:33.0215 3852 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys 23:17:33.0215 3852 stexstor - ok 23:17:33.0402 3852 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll 23:17:33.0434 3852 stisvc - ok 23:17:33.0512 3852 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 23:17:33.0527 3852 storflt - ok 23:17:33.0543 3852 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 23:17:33.0543 3852 storvsc - ok 23:17:33.0558 3852 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys 23:17:33.0558 3852 swenum - ok 23:17:33.0699 3852 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll 23:17:33.0714 3852 swprv - ok 23:17:33.0746 3852 Synth3dVsc - ok 23:17:34.0307 3852 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll 23:17:34.0370 3852 SysMain - ok 23:17:34.0666 3852 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll 23:17:34.0666 3852 TabletInputService - ok 23:17:34.0775 3852 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll 23:17:34.0791 3852 TapiSrv - ok 23:17:34.0822 3852 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll 23:17:34.0822 3852 TBS - ok 23:17:35.0165 3852 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys 23:17:35.0181 3852 Tcpip - ok 23:17:36.0351 3852 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys 23:17:36.0366 3852 TCPIP6 - ok 23:17:36.0990 3852 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 23:17:36.0990 3852 tcpipreg - ok 23:17:37.0037 3852 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 23:17:37.0037 3852 TDPIPE - ok 23:17:37.0068 3852 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys 23:17:37.0068 3852 TDTCP - ok 23:17:37.0131 3852 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 23:17:37.0146 3852 tdx - ok 23:17:37.0178 3852 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys 23:17:37.0178 3852 TermDD - ok 23:17:37.0349 3852 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll 23:17:37.0349 3852 TermService - ok 23:17:37.0412 3852 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll 23:17:37.0412 3852 Themes - ok 23:17:37.0427 3852 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll 23:17:37.0427 3852 THREADORDER - ok 23:17:37.0443 3852 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll 23:17:37.0443 3852 TrkWks - ok 23:17:37.0490 3852 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe 23:17:37.0490 3852 TrustedInstaller - ok 23:17:37.0536 3852 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 23:17:37.0552 3852 tssecsrv - ok 23:17:37.0599 3852 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 23:17:37.0599 3852 TsUsbFlt - ok 23:17:37.0630 3852 tsusbhub - ok 23:17:37.0692 3852 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 23:17:37.0692 3852 tunnel - ok 23:17:37.0739 3852 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys 23:17:37.0755 3852 uagp35 - ok 23:17:37.0786 3852 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 23:17:37.0786 3852 udfs - ok 23:17:37.0817 3852 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe 23:17:37.0833 3852 UI0Detect - ok 23:17:37.0880 3852 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 23:17:37.0895 3852 uliagpkx - ok 23:17:37.0926 3852 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 23:17:37.0926 3852 umbus - ok 23:17:37.0942 3852 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys 23:17:37.0942 3852 UmPass - ok 23:17:38.0020 3852 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll 23:17:38.0020 3852 UmRdpService - ok 23:17:38.0067 3852 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll 23:17:38.0067 3852 upnphost - ok 23:17:38.0114 3852 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys 23:17:38.0114 3852 USBAAPL64 - ok 23:17:38.0207 3852 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys 23:17:38.0207 3852 usbaudio - ok 23:17:38.0238 3852 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 23:17:38.0238 3852 usbccgp - ok 23:17:38.0301 3852 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 23:17:38.0301 3852 usbcir - ok 23:17:38.0363 3852 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys 23:17:38.0363 3852 usbehci - ok 23:17:38.0472 3852 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 23:17:38.0488 3852 usbhub - ok 23:17:38.0519 3852 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys 23:17:38.0519 3852 usbohci - ok 23:17:38.0519 3852 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 23:17:38.0519 3852 usbprint - ok 23:17:38.0582 3852 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 23:17:38.0582 3852 USBSTOR - ok 23:17:38.0597 3852 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys 23:17:38.0597 3852 usbuhci - ok 23:17:38.0613 3852 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll 23:17:38.0613 3852 UxSms - ok 23:17:38.0660 3852 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 23:17:38.0660 3852 VaultSvc - ok 23:17:38.0753 3852 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 23:17:38.0753 3852 vdrvroot - ok 23:17:38.0925 3852 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe 23:17:38.0925 3852 vds - ok 23:17:38.0956 3852 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 23:17:38.0972 3852 vga - ok 23:17:38.0987 3852 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 23:17:38.0987 3852 VgaSave - ok 23:17:39.0003 3852 VGPU - ok 23:17:39.0065 3852 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 23:17:39.0065 3852 vhdmp - ok 23:17:39.0112 3852 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 23:17:39.0112 3852 viaide - ok 23:17:39.0143 3852 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 23:17:39.0159 3852 vmbus - ok 23:17:39.0159 3852 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 23:17:39.0159 3852 VMBusHID - ok 23:17:39.0206 3852 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 23:17:39.0206 3852 volmgr - ok 23:17:39.0252 3852 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 23:17:39.0252 3852 volmgrx - ok 23:17:39.0284 3852 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 23:17:39.0284 3852 volsnap - ok 23:17:39.0330 3852 vpcbus (b4a73ca4ef9a02b9738cea9ad5fe5917) C:\Windows\system32\DRIVERS\vpchbus.sys 23:17:39.0330 3852 vpcbus - ok 23:17:39.0377 3852 vpcnfltr (e675fb2b48c54f09895482e2253b289c) C:\Windows\system32\DRIVERS\vpcnfltr.sys 23:17:39.0377 3852 vpcnfltr - ok 23:17:39.0408 3852 vpcusb (5fb42082b0d19a0268705f1dd343df20) C:\Windows\system32\DRIVERS\vpcusb.sys 23:17:39.0424 3852 vpcusb - ok 23:17:39.0518 3852 vpcvmm (207b6539799cc1c112661a9b620dd233) C:\Windows\system32\drivers\vpcvmm.sys 23:17:39.0518 3852 vpcvmm - ok 23:17:39.0564 3852 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys 23:17:39.0564 3852 vsmraid - ok 23:17:39.0814 3852 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe 23:17:39.0845 3852 VSS - ok 23:17:40.0017 3852 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys 23:17:40.0017 3852 vwifibus - ok 23:17:40.0048 3852 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys 23:17:40.0048 3852 vwififlt - ok 23:17:40.0079 3852 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys 23:17:40.0079 3852 vwifimp - ok 23:17:40.0126 3852 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll 23:17:40.0157 3852 W32Time - ok 23:17:40.0173 3852 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys 23:17:40.0173 3852 WacomPen - ok 23:17:40.0220 3852 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 23:17:40.0235 3852 WANARP - ok 23:17:40.0235 3852 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 23:17:40.0235 3852 Wanarpv6 - ok 23:17:40.0344 3852 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe 23:17:40.0376 3852 WatAdminSvc - ok 23:17:40.0485 3852 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe 23:17:40.0500 3852 wbengine - ok 23:17:40.0703 3852 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll 23:17:40.0719 3852 WbioSrvc - ok 23:17:40.0766 3852 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll 23:17:40.0781 3852 wcncsvc - ok 23:17:40.0797 3852 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll 23:17:40.0797 3852 WcsPlugInService - ok 23:17:40.0828 3852 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys 23:17:40.0828 3852 Wd - ok 23:17:40.0890 3852 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 23:17:40.0890 3852 Wdf01000 - ok 23:17:40.0922 3852 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll 23:17:40.0922 3852 WdiServiceHost - ok 23:17:40.0922 3852 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll 23:17:40.0922 3852 WdiSystemHost - ok 23:17:41.0000 3852 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll 23:17:41.0000 3852 WebClient - ok 23:17:41.0046 3852 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll 23:17:41.0062 3852 Wecsvc - ok 23:17:41.0078 3852 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll 23:17:41.0093 3852 wercplsupport - ok 23:17:41.0109 3852 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll 23:17:41.0109 3852 WerSvc - ok 23:17:41.0140 3852 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 23:17:41.0140 3852 WfpLwf - ok 23:17:41.0171 3852 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 23:17:41.0187 3852 WIMMount - ok 23:17:41.0218 3852 WinDefend - ok 23:17:41.0234 3852 WinHttpAutoProxySvc - ok 23:17:41.0280 3852 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll 23:17:41.0280 3852 Winmgmt - ok 23:17:41.0842 3852 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll 23:17:41.0889 3852 WinRM - ok 23:17:42.0107 3852 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 23:17:42.0107 3852 WinUsb - ok 23:17:42.0185 3852 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll 23:17:42.0185 3852 Wlansvc - ok 23:17:42.0232 3852 WmBEnum (680a7846370000d20d7e74917d5b7936) C:\Windows\system32\drivers\WmBEnum.sys 23:17:42.0232 3852 WmBEnum - ok 23:17:42.0248 3852 WmFilter (14c35ba8189c6f65d839163aa285e954) C:\Windows\system32\drivers\WmFilter.sys 23:17:42.0263 3852 WmFilter - ok 23:17:42.0279 3852 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys 23:17:42.0294 3852 WmiAcpi - ok 23:17:42.0341 3852 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe 23:17:42.0341 3852 wmiApSrv - ok 23:17:42.0388 3852 WMPNetworkSvc - ok 23:17:42.0435 3852 WmVirHid (8488dd91a3ee54a8e29f02ad7bb8201e) C:\Windows\system32\drivers\WmVirHid.sys 23:17:42.0435 3852 WmVirHid - ok 23:17:42.0450 3852 WmXlCore (14802b3a30aa849c97cb968ccc813bf3) C:\Windows\system32\drivers\WmXlCore.sys 23:17:42.0450 3852 WmXlCore - ok 23:17:42.0466 3852 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll 23:17:42.0482 3852 WPCSvc - ok 23:17:42.0513 3852 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll 23:17:42.0513 3852 WPDBusEnum - ok 23:17:42.0528 3852 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 23:17:42.0528 3852 ws2ifsl - ok 23:17:42.0575 3852 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll 23:17:42.0575 3852 wscsvc - ok 23:17:42.0622 3852 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys 23:17:42.0622 3852 WSDPrintDevice - ok 23:17:42.0638 3852 WSearch - ok 23:17:43.0808 3852 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll 23:17:43.0854 3852 wuauserv - ok 23:17:44.0400 3852 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 23:17:44.0400 3852 WudfPf - ok 23:17:44.0494 3852 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 23:17:44.0494 3852 WUDFRd - ok 23:17:44.0525 3852 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll 23:17:44.0525 3852 wudfsvc - ok 23:17:44.0556 3852 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll 23:17:44.0572 3852 WwanSvc - ok 23:17:44.0603 3852 xusb21 (2c6bc21b2d5b58d8b1d638c1704cb494) C:\Windows\system32\DRIVERS\xusb21.sys 23:17:44.0603 3852 xusb21 - ok 23:17:44.0666 3852 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 23:17:45.0492 3852 \Device\Harddisk0\DR0 - ok 23:17:45.0508 3852 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk1\DR1 23:17:45.0555 3852 \Device\Harddisk1\DR1 - ok 23:17:45.0555 3852 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk2\DR2 23:17:45.0555 3852 \Device\Harddisk2\DR2 - ok 23:17:45.0570 3852 Boot (0x1200) (a1cbd61da0a402972c7bdba51c9332a0) \Device\Harddisk0\DR0\Partition0 23:17:45.0570 3852 \Device\Harddisk0\DR0\Partition0 - ok 23:17:45.0586 3852 Boot (0x1200) (eff0407c7525c8f554f2eb706344797f) \Device\Harddisk0\DR0\Partition1 23:17:45.0617 3852 \Device\Harddisk0\DR0\Partition1 - ok 23:17:45.0617 3852 Boot (0x1200) (251fb1f81f048e35ce470cbe51b546ce) \Device\Harddisk1\DR1\Partition0 23:17:45.0617 3852 \Device\Harddisk1\DR1\Partition0 - ok 23:17:45.0617 3852 Boot (0x1200) (36413a580209b2e35ecf1abda637f22b) \Device\Harddisk2\DR2\Partition0 23:17:45.0617 3852 \Device\Harddisk2\DR2\Partition0 - ok 23:17:45.0617 3852 ============================================================ 23:17:45.0617 3852 Scan finished 23:17:45.0617 3852 ============================================================ 23:17:45.0633 3844 Detected object count: 0 23:17:45.0633 3844 Actual detected object count: 0 23:17:48.0612 3780 Deinitialize success
- May 30, 2012
- 8 replies
Problem persists after various rem. attempts

Gurgg replied to Gurgg's topic in Resolved Malware Removal Logs

Combofix will launch but doesnt run in safe or nomal mode, and it doesnt seem to be spitting a log Here is my checkup: Results of screen317's Security Check version 0.99.24 Windows 7 x64 (UAC is disabled!) Internet Explorer 9 `````````````````````````````` Antivirus/Firewall Check: WMI entry may not exist for antivirus; attempting automatic update. ``````````````````````````````` Anti-malware/Other Utilities Check: Sophos Anti-Rootkit 1.5.4 Java 6 Update 21 Out of date Java installed! Adobe Reader X (10.1.3) Mozilla Firefox (x86 en-US..) ```````````````````````````````` Process Check: objlist.exe by Laurent ``````````End of Log````````````
- May 30, 2012
- 8 replies
Problem persists after various rem. attempts

Gurgg replied to Gurgg's topic in Resolved Malware Removal Logs

I greatly appreciate your response; here is my TDSS log: 22:27:21.0675 3592 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31 22:27:21.0925 3592 ============================================================ 22:27:21.0925 3592 Current date / time: 2012/05/29 22:27:21.0925 22:27:21.0925 3592 SystemInfo: 22:27:21.0925 3592 22:27:21.0925 3592 OS Version: 6.1.7601 ServicePack: 1.0 22:27:21.0925 3592 Product type: Workstation 22:27:21.0925 3592 ComputerName: TJ-PC 22:27:21.0925 3592 UserName: TJ 22:27:21.0925 3592 Windows directory: C:\Windows 22:27:21.0925 3592 System windows directory: C:\Windows 22:27:21.0925 3592 Running under WOW64 22:27:21.0925 3592 Processor architecture: Intel x64 22:27:21.0925 3592 Number of processors: 4 22:27:21.0925 3592 Page size: 0x1000 22:27:21.0925 3592 Boot type: Normal boot 22:27:21.0925 3592 ============================================================ 22:27:23.0906 3592 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 22:27:23.0906 3592 Drive \Device\Harddisk1\DR1 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 22:27:23.0922 3592 Drive \Device\Harddisk2\DR2 - Size: 0xF4FFE00 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 22:27:23.0937 3592 ============================================================ 22:27:23.0937 3592 \Device\Harddisk0\DR0: 22:27:23.0937 3592 MBR partitions: 22:27:23.0937 3592 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 22:27:23.0937 3592 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800 22:27:23.0937 3592 \Device\Harddisk1\DR1: 22:27:23.0937 3592 MBR partitions: 22:27:23.0937 3592 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000 22:27:23.0937 3592 \Device\Harddisk2\DR2: 22:27:23.0937 3592 MBR partitions: 22:27:23.0937 3592 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x63, BlocksNum 0x7A59D 22:27:23.0937 3592 ============================================================ 22:27:23.0984 3592 C: <-> \Device\Harddisk0\DR0\Partition1 22:27:24.0000 3592 D: <-> \Device\Harddisk1\DR1\Partition0 22:27:24.0000 3592 ============================================================ 22:27:24.0000 3592 Initialize success 22:27:24.0000 3592 ============================================================ 22:27:26.0589 1416 ============================================================ 22:27:26.0589 1416 Scan started 22:27:26.0589 1416 Mode: Manual; 22:27:26.0589 1416 ============================================================ 22:27:29.0928 1416 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 22:27:29.0943 1416 1394ohci - ok 22:27:30.0052 1416 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 22:27:30.0052 1416 ACPI - ok 22:27:30.0146 1416 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 22:27:30.0162 1416 AcpiPmi - ok 22:27:30.0333 1416 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 22:27:30.0333 1416 AdobeARMservice - ok 22:27:30.0832 1416 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 22:27:30.0848 1416 AdobeFlashPlayerUpdateSvc - ok 22:27:31.0176 1416 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys 22:27:31.0176 1416 adp94xx - ok 22:27:31.0300 1416 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys 22:27:31.0300 1416 adpahci - ok 22:27:31.0332 1416 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys 22:27:31.0332 1416 adpu320 - ok 22:27:31.0378 1416 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll 22:27:31.0378 1416 AeLookupSvc - ok 22:27:31.0878 1416 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 22:27:31.0893 1416 AFD - ok 22:27:32.0002 1416 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 22:27:32.0002 1416 agp440 - ok 22:27:32.0080 1416 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe 22:27:32.0080 1416 ALG - ok 22:27:32.0127 1416 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 22:27:32.0127 1416 aliide - ok 22:27:32.0174 1416 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 22:27:32.0174 1416 amdide - ok 22:27:32.0268 1416 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys 22:27:32.0283 1416 AmdK8 - ok 22:27:32.0330 1416 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys 22:27:32.0330 1416 AmdPPM - ok 22:27:32.0392 1416 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 22:27:32.0392 1416 amdsata - ok 22:27:32.0424 1416 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys 22:27:32.0424 1416 amdsbs - ok 22:27:32.0455 1416 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 22:27:32.0470 1416 amdxata - ok 22:27:32.0595 1416 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 22:27:32.0595 1416 AppID - ok 22:27:32.0689 1416 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll 22:27:32.0689 1416 AppIDSvc - ok 22:27:32.0798 1416 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll 22:27:32.0798 1416 Appinfo - ok 22:27:33.0001 1416 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 22:27:33.0001 1416 Apple Mobile Device - ok 22:27:33.0079 1416 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll 22:27:33.0094 1416 AppMgmt - ok 22:27:33.0188 1416 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys 22:27:33.0188 1416 arc - ok 22:27:33.0204 1416 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys 22:27:33.0204 1416 arcsas - ok 22:27:33.0360 1416 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 22:27:33.0360 1416 aspnet_state - ok 22:27:33.0406 1416 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 22:27:33.0406 1416 AsyncMac - ok 22:27:33.0500 1416 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 22:27:33.0500 1416 atapi - ok 22:27:33.0874 1416 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll 22:27:33.0890 1416 AudioEndpointBuilder - ok 22:27:33.0890 1416 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll 22:27:33.0890 1416 AudioSrv - ok 22:27:34.0108 1416 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll 22:27:34.0108 1416 AxInstSV - ok 22:27:34.0592 1416 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys 22:27:34.0592 1416 b06bdrv - ok 22:27:34.0654 1416 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 22:27:34.0654 1416 b57nd60a - ok 22:27:34.0779 1416 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll 22:27:34.0779 1416 BDESVC - ok 22:27:34.0795 1416 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 22:27:34.0795 1416 Beep - ok 22:27:34.0888 1416 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll 22:27:34.0904 1416 BITS - ok 22:27:34.0935 1416 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 22:27:34.0935 1416 blbdrive - ok 22:27:34.0998 1416 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 22:27:34.0998 1416 bowser - ok 22:27:35.0044 1416 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys 22:27:35.0044 1416 BrFiltLo - ok 22:27:35.0044 1416 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys 22:27:35.0044 1416 BrFiltUp - ok 22:27:35.0076 1416 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys 22:27:35.0076 1416 BridgeMP - ok 22:27:35.0107 1416 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll 22:27:35.0107 1416 Browser - ok 22:27:35.0138 1416 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 22:27:35.0138 1416 Brserid - ok 22:27:35.0138 1416 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 22:27:35.0138 1416 BrSerWdm - ok 22:27:35.0154 1416 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 22:27:35.0154 1416 BrUsbMdm - ok 22:27:35.0154 1416 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 22:27:35.0154 1416 BrUsbSer - ok 22:27:35.0169 1416 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 22:27:35.0169 1416 BTHMODEM - ok 22:27:35.0263 1416 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll 22:27:35.0278 1416 bthserv - ok 22:27:35.0388 1416 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 22:27:35.0388 1416 cdfs - ok 22:27:35.0481 1416 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 22:27:35.0481 1416 cdrom - ok 22:27:35.0653 1416 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll 22:27:35.0668 1416 CertPropSvc - ok 22:27:35.0793 1416 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys 22:27:35.0809 1416 circlass - ok 22:27:35.0934 1416 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 22:27:35.0949 1416 CLFS - ok 22:27:36.0058 1416 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 22:27:36.0074 1416 clr_optimization_v2.0.50727_32 - ok 22:27:36.0183 1416 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 22:27:36.0199 1416 clr_optimization_v2.0.50727_64 - ok 22:27:36.0448 1416 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 22:27:36.0464 1416 clr_optimization_v4.0.30319_32 - ok 22:27:36.0558 1416 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 22:27:36.0558 1416 clr_optimization_v4.0.30319_64 - ok 22:27:36.0651 1416 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys 22:27:36.0667 1416 CmBatt - ok 22:27:36.0698 1416 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 22:27:36.0698 1416 cmdide - ok 22:27:37.0135 1416 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 22:27:37.0197 1416 CNG - ok 22:27:37.0275 1416 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys 22:27:37.0275 1416 Compbatt - ok 22:27:37.0369 1416 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys 22:27:37.0369 1416 CompositeBus - ok 22:27:37.0416 1416 COMSysApp - ok 22:27:37.0416 1416 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys 22:27:37.0416 1416 crcdisk - ok 22:27:37.0728 1416 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll 22:27:37.0743 1416 CryptSvc - ok 22:27:38.0367 1416 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 22:27:38.0398 1416 CSC - ok 22:27:38.0508 1416 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll 22:27:38.0508 1416 CscService - ok 22:27:38.0648 1416 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys 22:27:38.0648 1416 dc3d - ok 22:27:38.0773 1416 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll 22:27:38.0788 1416 DcomLaunch - ok 22:27:38.0929 1416 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll 22:27:38.0929 1416 defragsvc - ok 22:27:39.0038 1416 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 22:27:39.0038 1416 DfsC - ok 22:27:39.0178 1416 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll 22:27:39.0178 1416 Dhcp - ok 22:27:39.0210 1416 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 22:27:39.0210 1416 discache - ok 22:27:39.0272 1416 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys 22:27:39.0272 1416 Disk - ok 22:27:39.0490 1416 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll 22:27:39.0522 1416 Dnscache - ok 22:27:40.0208 1416 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll 22:27:40.0255 1416 dot3svc - ok 22:27:40.0489 1416 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll 22:27:40.0489 1416 DPS - ok 22:27:40.0614 1416 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 22:27:40.0614 1416 drmkaud - ok 22:27:40.0723 1416 dtsoftbus01 (fb9bef3401ee5ecc2603311b9c64f44a) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 22:27:40.0723 1416 dtsoftbus01 - ok 22:27:40.0832 1416 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 22:27:40.0848 1416 DXGKrnl - ok 22:27:40.0972 1416 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll 22:27:40.0972 1416 EapHost - ok 22:27:41.0846 1416 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys 22:27:41.0908 1416 ebdrv - ok 22:27:42.0096 1416 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe 22:27:42.0096 1416 EFS - ok 22:27:42.0751 1416 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe 22:27:42.0782 1416 ehRecvr - ok 22:27:42.0860 1416 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe 22:27:42.0860 1416 ehSched - ok 22:27:43.0047 1416 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys 22:27:43.0063 1416 elxstor - ok 22:27:43.0110 1416 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 22:27:43.0125 1416 ErrDev - ok 22:27:43.0250 1416 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll 22:27:43.0250 1416 EventSystem - ok 22:27:43.0328 1416 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 22:27:43.0328 1416 exfat - ok 22:27:43.0515 1416 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 22:27:43.0578 1416 fastfat - ok 22:27:44.0280 1416 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe 22:27:44.0295 1416 Fax - ok 22:27:44.0342 1416 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys 22:27:44.0342 1416 fdc - ok 22:27:44.0420 1416 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll 22:27:44.0420 1416 fdPHost - ok 22:27:44.0467 1416 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll 22:27:44.0467 1416 FDResPub - ok 22:27:44.0561 1416 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 22:27:44.0561 1416 FileInfo - ok 22:27:44.0607 1416 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 22:27:44.0607 1416 Filetrace - ok 22:27:44.0607 1416 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys 22:27:44.0607 1416 flpydisk - ok 22:27:44.0685 1416 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 22:27:44.0685 1416 FltMgr - ok 22:27:45.0060 1416 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll 22:27:45.0138 1416 FontCache - ok 22:27:45.0840 1416 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 22:27:45.0855 1416 FontCache3.0.0.0 - ok 22:27:45.0887 1416 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 22:27:45.0887 1416 FsDepends - ok 22:27:45.0933 1416 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys 22:27:45.0933 1416 Fs_Rec - ok 22:27:46.0011 1416 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 22:27:46.0011 1416 fvevol - ok 22:27:46.0027 1416 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys 22:27:46.0027 1416 gagp30kx - ok 22:27:46.0089 1416 GIVEIO - ok 22:27:46.0760 1416 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll 22:27:46.0807 1416 gpsvc - ok 22:27:46.0901 1416 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 22:27:46.0901 1416 hcw85cir - ok 22:27:47.0025 1416 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 22:27:47.0041 1416 HdAudAddService - ok 22:27:47.0088 1416 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys 22:27:47.0088 1416 HDAudBus - ok 22:27:47.0135 1416 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys 22:27:47.0135 1416 HidBatt - ok 22:27:47.0135 1416 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys 22:27:47.0150 1416 HidBth - ok 22:27:47.0166 1416 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys 22:27:47.0166 1416 HidIr - ok 22:27:47.0181 1416 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll 22:27:47.0197 1416 hidserv - ok 22:27:47.0259 1416 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 22:27:47.0259 1416 HidUsb - ok 22:27:47.0415 1416 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll 22:27:47.0431 1416 hkmsvc - ok 22:27:47.0618 1416 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll 22:27:47.0634 1416 HomeGroupListener - ok 22:27:47.0712 1416 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll 22:27:47.0712 1416 HomeGroupProvider - ok 22:27:47.0821 1416 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 22:27:47.0837 1416 HpSAMD - ok 22:27:47.0915 1416 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys 22:27:47.0915 1416 HTCAND64 - ok 22:27:48.0102 1416 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys 22:27:48.0102 1416 htcnprot - ok 22:27:48.0367 1416 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 22:27:48.0367 1416 HTTP - ok 22:27:48.0601 1416 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 22:27:48.0601 1416 hwpolicy - ok 22:27:48.0710 1416 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys 22:27:48.0710 1416 i8042prt - ok 22:27:48.0882 1416 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 22:27:48.0882 1416 iaStorV - ok 22:27:49.0365 1416 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 22:27:49.0443 1416 idsvc - ok 22:27:49.0521 1416 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys 22:27:49.0521 1416 iirsp - ok 22:27:49.0646 1416 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll 22:27:49.0662 1416 IKEEXT - ok 22:27:50.0301 1416 IntcAzAudAddService (bfbabcb231628a4551dbb10d0ea25d62) C:\Windows\system32\drivers\RTKVHD64.sys 22:27:50.0301 1416 IntcAzAudAddService - ok 22:27:51.0425 1416 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 22:27:51.0440 1416 intelide - ok 22:27:51.0674 1416 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 22:27:51.0674 1416 intelppm - ok 22:27:51.0705 1416 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll 22:27:51.0705 1416 IPBusEnum - ok 22:27:51.0799 1416 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 22:27:51.0799 1416 IpFilterDriver - ok 22:27:52.0142 1416 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll 22:27:52.0173 1416 iphlpsvc - ok 22:27:52.0236 1416 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 22:27:52.0236 1416 IPMIDRV - ok 22:27:52.0439 1416 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 22:27:52.0454 1416 IPNAT - ok 22:27:52.0517 1416 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 22:27:52.0517 1416 IRENUM - ok 22:27:52.0595 1416 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 22:27:52.0610 1416 isapnp - ok 22:27:52.0907 1416 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 22:27:52.0969 1416 iScsiPrt - ok 22:27:53.0047 1416 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 22:27:53.0047 1416 kbdclass - ok 22:27:53.0125 1416 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 22:27:53.0125 1416 kbdhid - ok 22:27:53.0187 1416 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 22:27:53.0187 1416 KeyIso - ok 22:27:53.0203 1416 KMService - ok 22:27:53.0250 1416 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 22:27:53.0250 1416 KSecDD - ok 22:27:53.0265 1416 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 22:27:53.0265 1416 KSecPkg - ok 22:27:53.0328 1416 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 22:27:53.0328 1416 ksthunk - ok 22:27:53.0453 1416 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll 22:27:53.0468 1416 KtmRm - ok 22:27:53.0577 1416 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll 22:27:53.0577 1416 LanmanServer - ok 22:27:53.0640 1416 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll 22:27:53.0640 1416 LanmanWorkstation - ok 22:27:53.0858 1416 LightScribeService (83d8be94e1cbcbe2ea8372db1a95a159) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 22:27:53.0874 1416 LightScribeService - ok 22:27:53.0999 1416 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 22:27:53.0999 1416 lltdio - ok 22:27:54.0092 1416 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll 22:27:54.0092 1416 lltdsvc - ok 22:27:54.0139 1416 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll 22:27:54.0139 1416 lmhosts - ok 22:27:54.0217 1416 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys 22:27:54.0217 1416 LSI_FC - ok 22:27:54.0264 1416 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys 22:27:54.0264 1416 LSI_SAS - ok 22:27:54.0279 1416 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys 22:27:54.0279 1416 LSI_SAS2 - ok 22:27:54.0295 1416 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys 22:27:54.0295 1416 LSI_SCSI - ok 22:27:54.0373 1416 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 22:27:54.0373 1416 luafv - ok 22:27:54.0498 1416 lvpepf64 (4a503882318bb2f59218d401614e6af6) C:\Windows\system32\DRIVERS\lv302a64.sys 22:27:54.0498 1416 lvpepf64 - ok 22:27:54.0591 1416 LVPr2M64 (ded333dbdbbcc3555a6e6244522e2f1a) C:\Windows\system32\DRIVERS\LVPr2M64.sys 22:27:54.0591 1416 LVPr2M64 - ok 22:27:54.0591 1416 LVPr2Mon (ded333dbdbbcc3555a6e6244522e2f1a) C:\Windows\system32\DRIVERS\LVPr2M64.sys 22:27:54.0607 1416 LVPr2Mon - ok 22:27:54.0779 1416 LVPrcS64 (a35679e56e78091e1042a2d7adbf2958) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe 22:27:54.0779 1416 LVPrcS64 - ok 22:27:54.0888 1416 LVRS64 (125ae13c293889001b8456cf3eb04a40) C:\Windows\system32\DRIVERS\lvrs64.sys 22:27:54.0888 1416 LVRS64 - ok 22:27:54.0919 1416 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll 22:27:54.0919 1416 Mcx2Svc - ok 22:27:54.0981 1416 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys 22:27:54.0981 1416 megasas - ok 22:27:55.0044 1416 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys 22:27:55.0075 1416 MegaSR - ok 22:27:55.0215 1416 MEMSWEEP2 (d70476ad02d6fd75282b196d3b58831d) C:\Windows\system32\9665.tmp 22:27:55.0215 1416 MEMSWEEP2 - ok 22:27:55.0262 1416 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll 22:27:55.0262 1416 MMCSS - ok 22:27:55.0262 1416 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 22:27:55.0278 1416 Modem - ok 22:27:55.0387 1416 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 22:27:55.0387 1416 monitor - ok 22:27:55.0481 1416 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 22:27:55.0481 1416 mouclass - ok 22:27:55.0543 1416 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 22:27:55.0559 1416 mouhid - ok 22:27:55.0605 1416 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 22:27:55.0605 1416 mountmgr - ok 22:27:55.0777 1416 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 22:27:55.0777 1416 MozillaMaintenance - ok 22:27:55.0824 1416 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 22:27:55.0824 1416 mpio - ok 22:27:55.0980 1416 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 22:27:55.0995 1416 mpsdrv - ok 22:27:56.0058 1416 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 22:27:56.0073 1416 MRxDAV - ok 22:27:56.0136 1416 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 22:27:56.0136 1416 mrxsmb - ok 22:27:56.0370 1416 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 22:27:56.0401 1416 mrxsmb10 - ok 22:27:56.0463 1416 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 22:27:56.0463 1416 mrxsmb20 - ok 22:27:56.0510 1416 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 22:27:56.0510 1416 msahci - ok 22:27:56.0541 1416 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 22:27:56.0557 1416 msdsm - ok 22:27:56.0651 1416 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe 22:27:56.0651 1416 MSDTC - ok 22:27:57.0056 1416 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 22:27:57.0103 1416 Msfs - ok 22:27:57.0134 1416 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 22:27:57.0150 1416 mshidkmdf - ok 22:27:57.0290 1416 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 22:27:57.0290 1416 msisadrv - ok 22:27:57.0415 1416 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll 22:27:57.0415 1416 MSiSCSI - ok 22:27:57.0415 1416 msiserver - ok 22:27:57.0446 1416 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 22:27:57.0446 1416 MSKSSRV - ok 22:27:57.0462 1416 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 22:27:57.0462 1416 MSPCLOCK - ok 22:27:57.0462 1416 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 22:27:57.0477 1416 MSPQM - ok 22:27:57.0540 1416 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 22:27:57.0540 1416 MsRPC - ok 22:27:57.0571 1416 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys 22:27:57.0571 1416 mssmbios - ok 22:27:57.0571 1416 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 22:27:57.0587 1416 MSTEE - ok 22:27:57.0587 1416 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys 22:27:57.0587 1416 MTConfig - ok 22:27:57.0618 1416 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 22:27:57.0618 1416 Mup - ok 22:27:57.0680 1416 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll 22:27:57.0680 1416 napagent - ok 22:27:57.0743 1416 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 22:27:57.0758 1416 NativeWifiP - ok 22:27:57.0805 1416 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 22:27:57.0821 1416 NDIS - ok 22:27:57.0852 1416 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 22:27:57.0852 1416 NdisCap - ok 22:27:57.0883 1416 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 22:27:57.0883 1416 NdisTapi - ok 22:27:57.0930 1416 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 22:27:57.0930 1416 Ndisuio - ok 22:27:57.0977 1416 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 22:27:57.0977 1416 NdisWan - ok 22:27:58.0023 1416 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 22:27:58.0023 1416 NDProxy - ok 22:27:58.0039 1416 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 22:27:58.0039 1416 NetBIOS - ok 22:27:58.0086 1416 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 22:27:58.0086 1416 NetBT - ok 22:27:58.0133 1416 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 22:27:58.0133 1416 Netlogon - ok 22:27:58.0445 1416 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll 22:27:58.0460 1416 Netman - ok 22:27:58.0632 1416 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 22:27:58.0632 1416 NetMsmqActivator - ok 22:27:58.0632 1416 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 22:27:58.0632 1416 NetPipeActivator - ok 22:27:58.0928 1416 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll 22:27:58.0975 1416 netprofm - ok 22:27:59.0256 1416 netr28x (5758fd37bf31e759f8610311e4d08eca) C:\Windows\system32\DRIVERS\netr28x.sys 22:27:59.0271 1416 netr28x - ok 22:27:59.0864 1416 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 22:27:59.0864 1416 NetTcpActivator - ok 22:27:59.0864 1416 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 22:27:59.0864 1416 NetTcpPortSharing - ok 22:28:00.0051 1416 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys 22:28:00.0067 1416 nfrd960 - ok 22:28:00.0192 1416 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll 22:28:00.0207 1416 NlaSvc - ok 22:28:00.0301 1416 NPF (c31fa031335eff434b2d94278e74bcce) C:\Windows\system32\drivers\npf.sys 22:28:00.0301 1416 NPF - ok 22:28:00.0395 1416 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 22:28:00.0410 1416 Npfs - ok 22:28:00.0504 1416 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll 22:28:00.0504 1416 nsi - ok 22:28:00.0551 1416 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 22:28:00.0551 1416 nsiproxy - ok 22:28:01.0221 1416 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 22:28:01.0331 1416 Ntfs - ok 22:28:01.0409 1416 nTuneService - ok 22:28:01.0986 1416 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 22:28:02.0001 1416 Null - ok 22:28:05.0012 1416 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys 22:28:05.0090 1416 nvlddmkm - ok 22:28:05.0355 1416 NVR0Dev (241a095631570a9cef4f126c87605c60) C:\Windows\nvoclk64.sys 22:28:05.0355 1416 NVR0Dev - ok 22:28:05.0543 1416 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 22:28:05.0543 1416 nvraid - ok 22:28:05.0589 1416 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 22:28:05.0589 1416 nvstor - ok 22:28:06.0089 1416 nvsvc (32ff8ee6dcee5c0cb91ff892fb1ca364) C:\Windows\system32\nvvsvc.exe 22:28:06.0104 1416 nvsvc - ok 22:28:07.0337 1416 nvUpdatusService (bd012dc22c78be1071bc21eb125d782f) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 22:28:07.0352 1416 nvUpdatusService - ok 22:28:09.0458 1416 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 22:28:09.0458 1416 nv_agp - ok 22:28:09.0567 1416 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 22:28:09.0583 1416 ohci1394 - ok 22:28:09.0692 1416 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 22:28:09.0692 1416 ose - ok 22:28:13.0140 1416 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 22:28:13.0265 1416 osppsvc - ok 22:28:13.0733 1416 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll 22:28:13.0889 1416 p2pimsvc - ok 22:28:14.0185 1416 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll 22:28:14.0310 1416 p2psvc - ok 22:28:14.0357 1416 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys 22:28:14.0372 1416 Parport - ok 22:28:14.0403 1416 Partizan - ok 22:28:14.0466 1416 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys 22:28:14.0466 1416 partmgr - ok 22:28:14.0591 1416 pbfilter (7c0582921913d00180ec2b8518ba135c) C:\Program Files\PeerBlock\pbfilter.sys 22:28:14.0591 1416 pbfilter - ok 22:28:14.0684 1416 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll 22:28:14.0700 1416 PcaSvc - ok 22:28:15.0168 1416 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 22:28:15.0168 1416 pci - ok 22:28:15.0246 1416 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 22:28:15.0277 1416 pciide - ok 22:28:15.0402 1416 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys 22:28:15.0417 1416 pcmcia - ok 22:28:16.0088 1416 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 22:28:16.0104 1416 pcw - ok 22:28:16.0291 1416 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 22:28:16.0322 1416 PEAUTH - ok 22:28:17.0024 1416 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll 22:28:17.0087 1416 PeerDistSvc - ok 22:28:17.0321 1416 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe 22:28:17.0321 1416 PerfHost - ok 22:28:17.0352 1416 PEVSystemStart - ok 22:28:18.0303 1416 PID_PEPI (ae0b94363da0f60d42b9d05b352f61ed) C:\Windows\system32\DRIVERS\LV302V64.SYS 22:28:18.0319 1416 PID_PEPI - ok 22:28:19.0037 1416 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll 22:28:19.0068 1416 pla - ok 22:28:19.0427 1416 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll 22:28:19.0442 1416 PlugPlay - ok 22:28:19.0598 1416 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll 22:28:19.0614 1416 PNRPAutoReg - ok 22:28:19.0785 1416 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll 22:28:19.0785 1416 PNRPsvc - ok 22:28:19.0988 1416 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys 22:28:19.0988 1416 Point64 - ok 22:28:20.0316 1416 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll 22:28:20.0331 1416 PolicyAgent - ok 22:28:20.0456 1416 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll 22:28:20.0472 1416 Power - ok 22:28:20.0597 1416 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 22:28:20.0597 1416 PptpMiniport - ok 22:28:20.0768 1416 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys 22:28:20.0768 1416 Processor - ok 22:28:20.0940 1416 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll 22:28:20.0955 1416 ProfSvc - ok 22:28:21.0033 1416 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 22:28:21.0033 1416 ProtectedStorage - ok 22:28:21.0189 1416 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 22:28:21.0205 1416 Psched - ok 22:28:21.0501 1416 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys 22:28:21.0548 1416 ql2300 - ok 22:28:21.0798 1416 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys 22:28:21.0798 1416 ql40xx - ok 22:28:21.0876 1416 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll 22:28:21.0876 1416 QWAVE - ok 22:28:21.0938 1416 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 22:28:21.0938 1416 QWAVEdrv - ok 22:28:22.0250 1416 RalinkRegistryWriter (f502a4b72524d21c5ca7183e61fb522e) C:\Program Files (x86)\Ralink\Common\RaRegistry.exe 22:28:22.0250 1416 RalinkRegistryWriter - ok 22:28:22.0781 1416 RalinkRegistryWriter64 (56b2eed5f1f150519dfac03aa9825af5) C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe 22:28:22.0781 1416 RalinkRegistryWriter64 - ok 22:28:23.0342 1416 RaMediaServer (cbc738221e5b80c4566e4ac0dc16cc8c) C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe 22:28:23.0498 1416 RaMediaServer - ok 22:28:24.0216 1416 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 22:28:24.0216 1416 RasAcd - ok 22:28:24.0481 1416 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 22:28:24.0481 1416 RasAgileVpn - ok 22:28:24.0840 1416 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll 22:28:24.0840 1416 RasAuto - ok 22:28:25.0105 1416 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 22:28:25.0105 1416 Rasl2tp - ok 22:28:25.0167 1416 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll 22:28:25.0183 1416 RasMan - ok 22:28:25.0245 1416 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 22:28:25.0245 1416 RasPppoe - ok 22:28:25.0277 1416 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 22:28:25.0277 1416 RasSstp - ok 22:28:25.0308 1416 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 22:28:25.0308 1416 rdbss - ok 22:28:25.0308 1416 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 22:28:25.0308 1416 rdpbus - ok 22:28:25.0323 1416 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 22:28:25.0323 1416 RDPCDD - ok 22:28:25.0417 1416 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 22:28:25.0433 1416 RDPDR - ok 22:28:25.0495 1416 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 22:28:25.0511 1416 RDPENCDD - ok 22:28:25.0511 1416 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 22:28:25.0511 1416 RDPREFMP - ok 22:28:25.0604 1416 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys 22:28:25.0604 1416 RdpVideoMiniport - ok 22:28:25.0729 1416 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys 22:28:25.0729 1416 RDPWD - ok 22:28:25.0979 1416 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 22:28:26.0010 1416 rdyboost - ok 22:28:26.0197 1416 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll 22:28:26.0197 1416 RemoteAccess - ok 22:28:26.0400 1416 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll 22:28:26.0400 1416 RemoteRegistry - ok 22:28:26.0587 1416 RimUsb (5790bca445cc40df8b38c2c48608aac2) C:\Windows\system32\Drivers\RimUsb_AMD64.sys 22:28:26.0618 1416 RimUsb - ok 22:28:26.0930 1416 rpcapd (a780d3eaa74582ea1deb6bd9c7a3d9c9) C:\Program Files (x86)\WinPcap\rpcapd.exe 22:28:27.0008 1416 rpcapd - ok 22:28:27.0117 1416 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll 22:28:27.0133 1416 RpcEptMapper - ok 22:28:27.0601 1416 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe 22:28:27.0601 1416 RpcLocator - ok 22:28:27.0757 1416 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll 22:28:27.0757 1416 RpcSs - ok 22:28:27.0851 1416 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 22:28:27.0851 1416 rspndr - ok 22:28:27.0929 1416 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys 22:28:27.0929 1416 RTL8167 - ok 22:28:28.0506 1416 RTL8187 (333224d4d25f9bcca488e08345083e1c) C:\Windows\system32\DRIVERS\rtl8187.sys 22:28:28.0537 1416 RTL8187 - ok 22:28:28.0615 1416 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 22:28:28.0631 1416 s3cap - ok 22:28:28.0709 1416 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 22:28:28.0709 1416 SamSs - ok 22:28:28.0740 1416 SAVRKBootTasks - ok 22:28:28.0849 1416 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 22:28:28.0865 1416 sbp2port - ok 22:28:29.0130 1416 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll 22:28:29.0130 1416 SCardSvr - ok 22:28:29.0255 1416 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 22:28:29.0255 1416 scfilter - ok 22:28:29.0894 1416 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll 22:28:29.0925 1416 Schedule - ok 22:28:30.0237 1416 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll 22:28:30.0237 1416 SCPolicySvc - ok 22:28:30.0456 1416 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll 22:28:30.0487 1416 SDRSVC - ok 22:28:30.0612 1416 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 22:28:30.0612 1416 secdrv - ok 22:28:30.0674 1416 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll 22:28:30.0690 1416 seclogon - ok 22:28:30.0846 1416 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll 22:28:30.0846 1416 SENS - ok 22:28:30.0939 1416 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll 22:28:30.0939 1416 SensrSvc - ok 22:28:31.0017 1416 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 22:28:31.0017 1416 Serenum - ok 22:28:31.0314 1416 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 22:28:31.0314 1416 Serial - ok 22:28:31.0470 1416 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys 22:28:31.0485 1416 sermouse - ok 22:28:31.0704 1416 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll 22:28:31.0719 1416 SessionEnv - ok 22:28:31.0797 1416 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 22:28:31.0813 1416 sffdisk - ok 22:28:31.0860 1416 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 22:28:31.0875 1416 sffp_mmc - ok 22:28:31.0891 1416 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 22:28:31.0907 1416 sffp_sd - ok 22:28:31.0969 1416 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys 22:28:31.0985 1416 sfloppy - ok 22:28:32.0234 1416 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll 22:28:32.0250 1416 ShellHWDetection - ok 22:28:32.0406 1416 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys 22:28:32.0421 1416 SiSRaid2 - ok 22:28:32.0515 1416 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys 22:28:32.0515 1416 SiSRaid4 - ok 22:28:32.0702 1416 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 22:28:32.0702 1416 Smb - ok 22:28:32.0905 1416 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe 22:28:32.0921 1416 SNMPTRAP - ok 22:28:33.0077 1416 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 22:28:33.0139 1416 spldr - ok 22:28:33.0529 1416 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe 22:28:33.0545 1416 Spooler - ok 22:28:36.0228 1416 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe 22:28:36.0290 1416 sppsvc - ok 22:28:36.0883 1416 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll 22:28:36.0883 1416 sppuinotify - ok 22:28:37.0289 1416 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys 22:28:37.0289 1416 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb 22:28:37.0289 1416 sptd ( LockedFile.Multi.Generic ) - warning 22:28:37.0289 1416 sptd - detected LockedFile.Multi.Generic (1) 22:28:37.0647 1416 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 22:28:37.0679 1416 srv - ok 22:28:38.0006 1416 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 22:28:38.0053 1416 srv2 - ok 22:28:38.0069 1416 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 22:28:38.0069 1416 srvnet - ok 22:28:38.0131 1416 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll 22:28:38.0131 1416 SSDPSRV - ok 22:28:38.0209 1416 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll 22:28:38.0209 1416 SstpSvc - ok 22:28:38.0958 1416 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe 22:28:38.0989 1416 StarWindServiceAE - ok 22:28:39.0270 1416 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 22:28:39.0270 1416 Stereo Service - ok 22:28:39.0332 1416 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys 22:28:39.0332 1416 stexstor - ok 22:28:39.0660 1416 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll 22:28:39.0675 1416 stisvc - ok 22:28:39.0769 1416 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 22:28:39.0785 1416 storflt - ok 22:28:39.0831 1416 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 22:28:39.0831 1416 storvsc - ok 22:28:39.0878 1416 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys 22:28:39.0878 1416 swenum - ok 22:28:40.0253 1416 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll 22:28:40.0268 1416 swprv - ok 22:28:40.0315 1416 Synth3dVsc - ok 22:28:40.0736 1416 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll 22:28:40.0814 1416 SysMain - ok 22:28:41.0360 1416 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll 22:28:41.0360 1416 TabletInputService - ok 22:28:41.0485 1416 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll 22:28:41.0485 1416 TapiSrv - ok 22:28:41.0719 1416 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll 22:28:41.0719 1416 TBS - ok 22:28:43.0185 1416 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys 22:28:43.0295 1416 Tcpip - ok 22:28:45.0167 1416 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys 22:28:45.0182 1416 TCPIP6 - ok 22:28:45.0775 1416 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 22:28:45.0775 1416 tcpipreg - ok 22:28:45.0806 1416 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 22:28:45.0806 1416 TDPIPE - ok 22:28:45.0962 1416 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys 22:28:45.0962 1416 TDTCP - ok 22:28:45.0993 1416 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 22:28:45.0993 1416 tdx - ok 22:28:46.0056 1416 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys 22:28:46.0056 1416 TermDD - ok 22:28:46.0555 1416 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll 22:28:46.0602 1416 TermService - ok 22:28:46.0617 1416 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll 22:28:46.0617 1416 Themes - ok 22:28:46.0633 1416 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll 22:28:46.0633 1416 THREADORDER - ok 22:28:46.0680 1416 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll 22:28:46.0680 1416 TrkWks - ok 22:28:46.0773 1416 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe 22:28:46.0773 1416 TrustedInstaller - ok 22:28:46.0820 1416 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 22:28:46.0820 1416 tssecsrv - ok 22:28:46.0867 1416 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 22:28:46.0867 1416 TsUsbFlt - ok 22:28:46.0898 1416 tsusbhub - ok 22:28:46.0945 1416 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 22:28:46.0945 1416 tunnel - ok 22:28:46.0992 1416 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys 22:28:46.0992 1416 uagp35 - ok 22:28:47.0039 1416 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 22:28:47.0039 1416 udfs - ok 22:28:47.0070 1416 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe 22:28:47.0085 1416 UI0Detect - ok 22:28:47.0117 1416 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 22:28:47.0117 1416 uliagpkx - ok 22:28:47.0179 1416 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 22:28:47.0179 1416 umbus - ok 22:28:47.0304 1416 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys 22:28:47.0319 1416 UmPass - ok 22:28:47.0429 1416 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll 22:28:47.0444 1416 UmRdpService - ok 22:28:47.0507 1416 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll 22:28:47.0507 1416 upnphost - ok 22:28:47.0553 1416 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys 22:28:47.0569 1416 USBAAPL64 - ok 22:28:47.0631 1416 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys 22:28:47.0631 1416 usbaudio - ok 22:28:47.0725 1416 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 22:28:47.0741 1416 usbccgp - ok 22:28:47.0787 1416 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 22:28:47.0787 1416 usbcir - ok 22:28:47.0850 1416 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys 22:28:47.0850 1416 usbehci - ok 22:28:47.0959 1416 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 22:28:47.0959 1416 usbhub - ok 22:28:47.0990 1416 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys 22:28:47.0990 1416 usbohci - ok 22:28:48.0006 1416 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 22:28:48.0006 1416 usbprint - ok 22:28:48.0053 1416 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 22:28:48.0053 1416 USBSTOR - ok 22:28:48.0084 1416 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys 22:28:48.0084 1416 usbuhci - ok 22:28:48.0099 1416 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll 22:28:48.0099 1416 UxSms - ok 22:28:48.0131 1416 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 22:28:48.0131 1416 VaultSvc - ok 22:28:48.0209 1416 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 22:28:48.0224 1416 vdrvroot - ok 22:28:49.0129 1416 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe 22:28:49.0145 1416 vds - ok 22:28:49.0269 1416 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 22:28:49.0269 1416 vga - ok 22:28:49.0316 1416 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 22:28:49.0316 1416 VgaSave - ok 22:28:49.0347 1416 VGPU - ok 22:28:49.0847 1416 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 22:28:49.0909 1416 vhdmp - ok 22:28:49.0971 1416 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 22:28:49.0971 1416 viaide - ok 22:28:49.0987 1416 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 22:28:50.0003 1416 vmbus - ok 22:28:50.0003 1416 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 22:28:50.0003 1416 VMBusHID - ok 22:28:50.0034 1416 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 22:28:50.0034 1416 volmgr - ok 22:28:50.0174 1416 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 22:28:50.0190 1416 volmgrx - ok 22:28:50.0455 1416 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 22:28:50.0486 1416 volsnap - ok 22:28:50.0580 1416 vpcbus (b4a73ca4ef9a02b9738cea9ad5fe5917) C:\Windows\system32\DRIVERS\vpchbus.sys 22:28:50.0580 1416 vpcbus - ok 22:28:50.0627 1416 vpcnfltr (e675fb2b48c54f09895482e2253b289c) C:\Windows\system32\DRIVERS\vpcnfltr.sys 22:28:50.0642 1416 vpcnfltr - ok 22:28:50.0658 1416 vpcusb (5fb42082b0d19a0268705f1dd343df20) C:\Windows\system32\DRIVERS\vpcusb.sys 22:28:50.0673 1416 vpcusb - ok 22:28:50.0783 1416 vpcvmm (207b6539799cc1c112661a9b620dd233) C:\Windows\system32\drivers\vpcvmm.sys 22:28:50.0783 1416 vpcvmm - ok 22:28:50.0829 1416 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys 22:28:50.0829 1416 vsmraid - ok 22:28:51.0313 1416 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe 22:28:51.0344 1416 VSS - ok 22:28:52.0077 1416 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys 22:28:52.0093 1416 vwifibus - ok 22:28:52.0124 1416 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys 22:28:52.0124 1416 vwififlt - ok 22:28:52.0155 1416 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys 22:28:52.0155 1416 vwifimp - ok 22:28:52.0421 1416 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll 22:28:52.0452 1416 W32Time - ok 22:28:52.0467 1416 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys 22:28:52.0467 1416 WacomPen - ok 22:28:52.0670 1416 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 22:28:52.0686 1416 WANARP - ok 22:28:52.0701 1416 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 22:28:52.0717 1416 Wanarpv6 - ok 22:28:53.0669 1416 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe 22:28:53.0715 1416 WatAdminSvc - ok 22:28:54.0854 1416 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe 22:28:54.0901 1416 wbengine - ok 22:28:55.0166 1416 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll 22:28:55.0166 1416 WbioSrvc - ok 22:28:55.0244 1416 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll 22:28:55.0260 1416 wcncsvc - ok 22:28:55.0353 1416 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll 22:28:55.0353 1416 WcsPlugInService - ok 22:28:55.0478 1416 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys 22:28:55.0478 1416 Wd - ok 22:28:55.0603 1416 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 22:28:55.0619 1416 Wdf01000 - ok 22:28:55.0665 1416 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll 22:28:55.0665 1416 WdiServiceHost - ok 22:28:55.0665 1416 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll 22:28:55.0681 1416 WdiSystemHost - ok 22:28:55.0712 1416 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll 22:28:55.0728 1416 WebClient - ok 22:28:55.0759 1416 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll 22:28:55.0759 1416 Wecsvc - ok 22:28:55.0775 1416 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll 22:28:55.0775 1416 wercplsupport - ok 22:28:55.0790 1416 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll 22:28:55.0806 1416 WerSvc - ok 22:28:55.0837 1416 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 22:28:55.0837 1416 WfpLwf - ok 22:28:55.0853 1416 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 22:28:55.0853 1416 WIMMount - ok 22:28:55.0884 1416 WinDefend - ok 22:28:55.0899 1416 WinHttpAutoProxySvc - ok 22:28:55.0962 1416 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll 22:28:55.0962 1416 Winmgmt - ok 22:28:56.0539 1416 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll 22:28:56.0601 1416 WinRM - ok 22:28:56.0726 1416 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 22:28:56.0726 1416 WinUsb - ok 22:28:56.0835 1416 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll 22:28:56.0851 1416 Wlansvc - ok 22:28:56.0913 1416 WmBEnum (680a7846370000d20d7e74917d5b7936) C:\Windows\system32\drivers\WmBEnum.sys 22:28:56.0913 1416 WmBEnum - ok 22:28:56.0929 1416 WmFilter (14c35ba8189c6f65d839163aa285e954) C:\Windows\system32\drivers\WmFilter.sys 22:28:56.0929 1416 WmFilter - ok 22:28:56.0960 1416 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys 22:28:56.0960 1416 WmiAcpi - ok 22:28:57.0007 1416 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe 22:28:57.0007 1416 wmiApSrv - ok 22:28:57.0054 1416 WMPNetworkSvc - ok 22:28:57.0116 1416 WmVirHid (8488dd91a3ee54a8e29f02ad7bb8201e) C:\Windows\system32\drivers\WmVirHid.sys 22:28:57.0116 1416 WmVirHid - ok 22:28:57.0147 1416 WmXlCore (14802b3a30aa849c97cb968ccc813bf3) C:\Windows\system32\drivers\WmXlCore.sys 22:28:57.0147 1416 WmXlCore - ok 22:28:57.0194 1416 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll 22:28:57.0194 1416 WPCSvc - ok 22:28:57.0241 1416 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll 22:28:57.0241 1416 WPDBusEnum - ok 22:28:57.0257 1416 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 22:28:57.0257 1416 ws2ifsl - ok 22:28:57.0288 1416 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll 22:28:57.0288 1416 wscsvc - ok 22:28:57.0335 1416 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys 22:28:57.0350 1416 WSDPrintDevice - ok 22:28:57.0350 1416 WSearch - ok 22:28:58.0614 1416 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll 22:28:58.0676 1416 wuauserv - ok 22:28:59.0066 1416 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 22:28:59.0066 1416 WudfPf - ok 22:28:59.0097 1416 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 22:28:59.0097 1416 WUDFRd - ok 22:28:59.0144 1416 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll 22:28:59.0160 1416 wudfsvc - ok 22:28:59.0191 1416 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll 22:28:59.0207 1416 WwanSvc - ok 22:28:59.0238 1416 xusb21 (2c6bc21b2d5b58d8b1d638c1704cb494) C:\Windows\system32\DRIVERS\xusb21.sys 22:28:59.0238 1416 xusb21 - ok 22:28:59.0285 1416 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 22:29:00.0236 1416 \Device\Harddisk0\DR0 - ok 22:29:00.0236 1416 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk1\DR1 22:29:00.0283 1416 \Device\Harddisk1\DR1 - ok 22:29:00.0283 1416 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk2\DR2 22:29:00.0767 1416 \Device\Harddisk2\DR2 - ok 22:29:00.0782 1416 Boot (0x1200) (a1cbd61da0a402972c7bdba51c9332a0) \Device\Harddisk0\DR0\Partition0 22:29:00.0798 1416 \Device\Harddisk0\DR0\Partition0 - ok 22:29:00.0798 1416 Boot (0x1200) (eff0407c7525c8f554f2eb706344797f) \Device\Harddisk0\DR0\Partition1 22:29:00.0813 1416 \Device\Harddisk0\DR0\Partition1 - ok 22:29:00.0813 1416 Boot (0x1200) (251fb1f81f048e35ce470cbe51b546ce) \Device\Harddisk1\DR1\Partition0 22:29:00.0813 1416 \Device\Harddisk1\DR1\Partition0 - ok 22:29:00.0813 1416 Boot (0x1200) (36413a580209b2e35ecf1abda637f22b) \Device\Harddisk2\DR2\Partition0 22:29:00.0829 1416 \Device\Harddisk2\DR2\Partition0 - ok 22:29:00.0829 1416 ============================================================ 22:29:00.0829 1416 Scan finished 22:29:00.0829 1416 ============================================================ 22:29:00.0829 0772 Detected object count: 1 22:29:00.0829 0772 Actual detected object count: 1 22:29:17.0646 0772 sptd ( LockedFile.Multi.Generic ) - skipped by user 22:29:17.0646 0772 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 22:29:21.0920 3892 Deinitialize success Im not sure but i believe the sptd file is related to a virtual cd program i use, should i delete it?
- May 30, 2012
- 8 replies
Problem persists after various rem. attempts

Gurgg posted a topic in Resolved Malware Removal Logs

Merged 3 post We look for post with 0 replies, so when you replied to your own topic, we assumed you were being helped Hello all, I would like to start by saying i appreciate whatever help would be given here i understand time is a valuable commdity. Earlier today i logged onto my machine, started Firefox and almost immediately was redirected with several tabs. I am a big box tech so i am pretty well versed in this situation although we farm the majority of our removals to support.com. Steps I've performed -Ran CCleaner immediately -Ran MBAM (Finds Trojan.dropper.bcminer restarts but it still appears) -Ran Superanti Spy (found nothing) -Attempted to run Combofix (would get the initial dialog but it would never actually launch) -Ran TDSSKill (found nothing) -Ran Sophos Rootkit -Ran HJT (nothing seemed out of the ordinary to my eye) -Ran OLT I am at a complete loss here guys so here is my HJT log, thank you for any help you can lend! I should also add I'm running Win 7 64bit Anyone? hijackthis.log
- May 28, 2012
- 8 replies

Sign In

Gurgg

Posts

Joined

Last visited

Content Type

Events

Profiles

Forums

Everything posted by Gurgg

Problem persists after various rem. attempts

Problem persists after various rem. attempts

Problem persists after various rem. attempts

Problem persists after various rem. attempts

Problem persists after various rem. attempts

Browse

Activity

Personal

Business

Business Modules

Partners

Learn

Start here

Type of malware/attacks

How does it get on my computer?

Scams and grifts

Support

Important Information