Problem persists after various rem. attempts

[Gurgg]

Merged 3 post

We look for post with 0 replies, so when you replied to your own topic, we assumed you were being helped

Hello all, I would like to start by saying i appreciate whatever help would be given here i understand time is a valuable commdity. Earlier today i logged onto my machine, started Firefox and almost immediately was redirected with several tabs. I am a big box tech so i am pretty well versed in this situation although we farm the majority of our removals to support.com. Steps I've performed

-Ran CCleaner immediately

-Ran MBAM (Finds Trojan.dropper.bcminer restarts but it still appears)

-Ran Superanti Spy (found nothing)

-Attempted to run Combofix (would get the initial dialog but it would never actually launch)

-Ran TDSSKill (found nothing)

-Ran Sophos Rootkit

-Ran HJT (nothing seemed out of the ordinary to my eye)

-Ran OLT

I am at a complete loss here guys so here is my HJT log, thank you for any help you can lend!

I should also add I'm running Win 7 64bit

Anyone?

hijackthis.log

[D-FRED-BROWN]

Hello Gurgg and welcome to Malwarebytes!

I am D-FRED-BROWN and I will be helping you.

Please print or save this topic: it will make it easier for you to follow the instructions and complete all of the necessary steps.

-------------

Please download to your Desktop:

• TDSSKiller.zip from here and extract it (right click on it => "Extract here").
  

>>> TDSSKiller: Double-click on TDSSKiller.exe to run the application.

• Click on the Start Scan button and wait for the scan and disinfection process to be over.
  
• If an infected file is detected, the default action will be Cure, click on Continue
  
• If a suspicious file is detected, the default action will be Skip, click on Continue
  
• If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.
  
• If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.
  

In your next reply, please include the following (you may need to use two posts to get it all in):

• TDSSKiller_log.txt
  

how the PC is running now?

-------------

Please download ComboFix.exe. Please visit this webpage for download links, and instructions for running the tool:

http://www.bleepingc...to-use-combofix

***IMPORTANT: save ComboFix to your Desktop***

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Please go here to see a list of programs that should be disabled.

**Note: Do not mouseclick ComboFix's window while it's running. That may cause it to stall**

Please include the C:\ComboFix.txt in your next reply for further review.

Also, please let me know if any problems still remain.

-------------

Please download Security Check by screen317 from here or here.

• Save it to your Desktop.
  
• Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  
• A Notepad document should open automatically called checkup.txt; please post the contents of that document.
  

-------------

In your next reply, please include:

• TDSSKiller logfile
  
• C:\ComboFix.txt
  
• Security Check checkup.txt
  

How is your computer running now?

[Gurgg]

I greatly appreciate your response; here is my TDSS log:

22:27:21.0675 3592 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31

22:27:21.0925 3592 ============================================================

22:27:21.0925 3592 Current date / time: 2012/05/29 22:27:21.0925

22:27:21.0925 3592 SystemInfo:

22:27:21.0925 3592

22:27:21.0925 3592 OS Version: 6.1.7601 ServicePack: 1.0

22:27:21.0925 3592 Product type: Workstation

22:27:21.0925 3592 ComputerName: TJ-PC

22:27:21.0925 3592 UserName: TJ

22:27:21.0925 3592 Windows directory: C:\Windows

22:27:21.0925 3592 System windows directory: C:\Windows

22:27:21.0925 3592 Running under WOW64

22:27:21.0925 3592 Processor architecture: Intel x64

22:27:21.0925 3592 Number of processors: 4

22:27:21.0925 3592 Page size: 0x1000

22:27:21.0925 3592 Boot type: Normal boot

22:27:21.0925 3592 ============================================================

22:27:23.0906 3592 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

22:27:23.0906 3592 Drive \Device\Harddisk1\DR1 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

22:27:23.0922 3592 Drive \Device\Harddisk2\DR2 - Size: 0xF4FFE00 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'

22:27:23.0937 3592 ============================================================

22:27:23.0937 3592 \Device\Harddisk0\DR0:

22:27:23.0937 3592 MBR partitions:

22:27:23.0937 3592 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000

22:27:23.0937 3592 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800

22:27:23.0937 3592 \Device\Harddisk1\DR1:

22:27:23.0937 3592 MBR partitions:

22:27:23.0937 3592 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000

22:27:23.0937 3592 \Device\Harddisk2\DR2:

22:27:23.0937 3592 MBR partitions:

22:27:23.0937 3592 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x63, BlocksNum 0x7A59D

22:27:23.0937 3592 ============================================================

22:27:23.0984 3592 C: <-> \Device\Harddisk0\DR0\Partition1

22:27:24.0000 3592 D: <-> \Device\Harddisk1\DR1\Partition0

22:27:24.0000 3592 ============================================================

22:27:24.0000 3592 Initialize success

22:27:24.0000 3592 ============================================================

22:27:26.0589 1416 ============================================================

22:27:26.0589 1416 Scan started

22:27:26.0589 1416 Mode: Manual;

22:27:26.0589 1416 ============================================================

22:27:29.0928 1416 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys

22:27:29.0943 1416 1394ohci - ok

22:27:30.0052 1416 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys

22:27:30.0052 1416 ACPI - ok

22:27:30.0146 1416 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys

22:27:30.0162 1416 AcpiPmi - ok

22:27:30.0333 1416 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

22:27:30.0333 1416 AdobeARMservice - ok

22:27:30.0832 1416 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

22:27:30.0848 1416 AdobeFlashPlayerUpdateSvc - ok

22:27:31.0176 1416 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

22:27:31.0176 1416 adp94xx - ok

22:27:31.0300 1416 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

22:27:31.0300 1416 adpahci - ok

22:27:31.0332 1416 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

22:27:31.0332 1416 adpu320 - ok

22:27:31.0378 1416 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll

22:27:31.0378 1416 AeLookupSvc - ok

22:27:31.0878 1416 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys

22:27:31.0893 1416 AFD - ok

22:27:32.0002 1416 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys

22:27:32.0002 1416 agp440 - ok

22:27:32.0080 1416 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe

22:27:32.0080 1416 ALG - ok

22:27:32.0127 1416 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys

22:27:32.0127 1416 aliide - ok

22:27:32.0174 1416 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys

22:27:32.0174 1416 amdide - ok

22:27:32.0268 1416 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

22:27:32.0283 1416 AmdK8 - ok

22:27:32.0330 1416 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

22:27:32.0330 1416 AmdPPM - ok

22:27:32.0392 1416 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys

22:27:32.0392 1416 amdsata - ok

22:27:32.0424 1416 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

22:27:32.0424 1416 amdsbs - ok

22:27:32.0455 1416 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys

22:27:32.0470 1416 amdxata - ok

22:27:32.0595 1416 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys

22:27:32.0595 1416 AppID - ok

22:27:32.0689 1416 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll

22:27:32.0689 1416 AppIDSvc - ok

22:27:32.0798 1416 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll

22:27:32.0798 1416 Appinfo - ok

22:27:33.0001 1416 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

22:27:33.0001 1416 Apple Mobile Device - ok

22:27:33.0079 1416 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll

22:27:33.0094 1416 AppMgmt - ok

22:27:33.0188 1416 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

22:27:33.0188 1416 arc - ok

22:27:33.0204 1416 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

22:27:33.0204 1416 arcsas - ok

22:27:33.0360 1416 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

22:27:33.0360 1416 aspnet_state - ok

22:27:33.0406 1416 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

22:27:33.0406 1416 AsyncMac - ok

22:27:33.0500 1416 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys

22:27:33.0500 1416 atapi - ok

22:27:33.0874 1416 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll

22:27:33.0890 1416 AudioEndpointBuilder - ok

22:27:33.0890 1416 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll

22:27:33.0890 1416 AudioSrv - ok

22:27:34.0108 1416 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll

22:27:34.0108 1416 AxInstSV - ok

22:27:34.0592 1416 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

22:27:34.0592 1416 b06bdrv - ok

22:27:34.0654 1416 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

22:27:34.0654 1416 b57nd60a - ok

22:27:34.0779 1416 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll

22:27:34.0779 1416 BDESVC - ok

22:27:34.0795 1416 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

22:27:34.0795 1416 Beep - ok

22:27:34.0888 1416 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll

22:27:34.0904 1416 BITS - ok

22:27:34.0935 1416 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

22:27:34.0935 1416 blbdrive - ok

22:27:34.0998 1416 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys

22:27:34.0998 1416 bowser - ok

22:27:35.0044 1416 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

22:27:35.0044 1416 BrFiltLo - ok

22:27:35.0044 1416 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

22:27:35.0044 1416 BrFiltUp - ok

22:27:35.0076 1416 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys

22:27:35.0076 1416 BridgeMP - ok

22:27:35.0107 1416 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll

22:27:35.0107 1416 Browser - ok

22:27:35.0138 1416 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

22:27:35.0138 1416 Brserid - ok

22:27:35.0138 1416 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

22:27:35.0138 1416 BrSerWdm - ok

22:27:35.0154 1416 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

22:27:35.0154 1416 BrUsbMdm - ok

22:27:35.0154 1416 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

22:27:35.0154 1416 BrUsbSer - ok

22:27:35.0169 1416 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

22:27:35.0169 1416 BTHMODEM - ok

22:27:35.0263 1416 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll

22:27:35.0278 1416 bthserv - ok

22:27:35.0388 1416 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

22:27:35.0388 1416 cdfs - ok

22:27:35.0481 1416 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys

22:27:35.0481 1416 cdrom - ok

22:27:35.0653 1416 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll

22:27:35.0668 1416 CertPropSvc - ok

22:27:35.0793 1416 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

22:27:35.0809 1416 circlass - ok

22:27:35.0934 1416 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

22:27:35.0949 1416 CLFS - ok

22:27:36.0058 1416 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

22:27:36.0074 1416 clr_optimization_v2.0.50727_32 - ok

22:27:36.0183 1416 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

22:27:36.0199 1416 clr_optimization_v2.0.50727_64 - ok

22:27:36.0448 1416 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

22:27:36.0464 1416 clr_optimization_v4.0.30319_32 - ok

22:27:36.0558 1416 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

22:27:36.0558 1416 clr_optimization_v4.0.30319_64 - ok

22:27:36.0651 1416 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

22:27:36.0667 1416 CmBatt - ok

22:27:36.0698 1416 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys

22:27:36.0698 1416 cmdide - ok

22:27:37.0135 1416 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys

22:27:37.0197 1416 CNG - ok

22:27:37.0275 1416 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

22:27:37.0275 1416 Compbatt - ok

22:27:37.0369 1416 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys

22:27:37.0369 1416 CompositeBus - ok

22:27:37.0416 1416 COMSysApp - ok

22:27:37.0416 1416 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

22:27:37.0416 1416 crcdisk - ok

22:27:37.0728 1416 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll

22:27:37.0743 1416 CryptSvc - ok

22:27:38.0367 1416 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys

22:27:38.0398 1416 CSC - ok

22:27:38.0508 1416 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll

22:27:38.0508 1416 CscService - ok

22:27:38.0648 1416 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys

22:27:38.0648 1416 dc3d - ok

22:27:38.0773 1416 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll

22:27:38.0788 1416 DcomLaunch - ok

22:27:38.0929 1416 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll

22:27:38.0929 1416 defragsvc - ok

22:27:39.0038 1416 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys

22:27:39.0038 1416 DfsC - ok

22:27:39.0178 1416 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll

22:27:39.0178 1416 Dhcp - ok

22:27:39.0210 1416 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

22:27:39.0210 1416 discache - ok

22:27:39.0272 1416 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

22:27:39.0272 1416 Disk - ok

22:27:39.0490 1416 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll

22:27:39.0522 1416 Dnscache - ok

22:27:40.0208 1416 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll

22:27:40.0255 1416 dot3svc - ok

22:27:40.0489 1416 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll

22:27:40.0489 1416 DPS - ok

22:27:40.0614 1416 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

22:27:40.0614 1416 drmkaud - ok

22:27:40.0723 1416 dtsoftbus01 (fb9bef3401ee5ecc2603311b9c64f44a) C:\Windows\system32\DRIVERS\dtsoftbus01.sys

22:27:40.0723 1416 dtsoftbus01 - ok

22:27:40.0832 1416 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys

22:27:40.0848 1416 DXGKrnl - ok

22:27:40.0972 1416 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll

22:27:40.0972 1416 EapHost - ok

22:27:41.0846 1416 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

22:27:41.0908 1416 ebdrv - ok

22:27:42.0096 1416 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe

22:27:42.0096 1416 EFS - ok

22:27:42.0751 1416 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe

22:27:42.0782 1416 ehRecvr - ok

22:27:42.0860 1416 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe

22:27:42.0860 1416 ehSched - ok

22:27:43.0047 1416 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

22:27:43.0063 1416 elxstor - ok

22:27:43.0110 1416 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys

22:27:43.0125 1416 ErrDev - ok

22:27:43.0250 1416 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll

22:27:43.0250 1416 EventSystem - ok

22:27:43.0328 1416 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

22:27:43.0328 1416 exfat - ok

22:27:43.0515 1416 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

22:27:43.0578 1416 fastfat - ok

22:27:44.0280 1416 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe

22:27:44.0295 1416 Fax - ok

22:27:44.0342 1416 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

22:27:44.0342 1416 fdc - ok

22:27:44.0420 1416 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll

22:27:44.0420 1416 fdPHost - ok

22:27:44.0467 1416 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll

22:27:44.0467 1416 FDResPub - ok

22:27:44.0561 1416 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

22:27:44.0561 1416 FileInfo - ok

22:27:44.0607 1416 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

22:27:44.0607 1416 Filetrace - ok

22:27:44.0607 1416 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

22:27:44.0607 1416 flpydisk - ok

22:27:44.0685 1416 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys

22:27:44.0685 1416 FltMgr - ok

22:27:45.0060 1416 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll

22:27:45.0138 1416 FontCache - ok

22:27:45.0840 1416 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

22:27:45.0855 1416 FontCache3.0.0.0 - ok

22:27:45.0887 1416 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

22:27:45.0887 1416 FsDepends - ok

22:27:45.0933 1416 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys

22:27:45.0933 1416 Fs_Rec - ok

22:27:46.0011 1416 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys

22:27:46.0011 1416 fvevol - ok

22:27:46.0027 1416 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

22:27:46.0027 1416 gagp30kx - ok

22:27:46.0089 1416 GIVEIO - ok

22:27:46.0760 1416 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll

22:27:46.0807 1416 gpsvc - ok

22:27:46.0901 1416 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

22:27:46.0901 1416 hcw85cir - ok

22:27:47.0025 1416 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys

22:27:47.0041 1416 HdAudAddService - ok

22:27:47.0088 1416 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys

22:27:47.0088 1416 HDAudBus - ok

22:27:47.0135 1416 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

22:27:47.0135 1416 HidBatt - ok

22:27:47.0135 1416 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

22:27:47.0150 1416 HidBth - ok

22:27:47.0166 1416 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

22:27:47.0166 1416 HidIr - ok

22:27:47.0181 1416 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll

22:27:47.0197 1416 hidserv - ok

22:27:47.0259 1416 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys

22:27:47.0259 1416 HidUsb - ok

22:27:47.0415 1416 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll

22:27:47.0431 1416 hkmsvc - ok

22:27:47.0618 1416 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll

22:27:47.0634 1416 HomeGroupListener - ok

22:27:47.0712 1416 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll

22:27:47.0712 1416 HomeGroupProvider - ok

22:27:47.0821 1416 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys

22:27:47.0837 1416 HpSAMD - ok

22:27:47.0915 1416 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys

22:27:47.0915 1416 HTCAND64 - ok

22:27:48.0102 1416 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys

22:27:48.0102 1416 htcnprot - ok

22:27:48.0367 1416 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys

22:27:48.0367 1416 HTTP - ok

22:27:48.0601 1416 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys

22:27:48.0601 1416 hwpolicy - ok

22:27:48.0710 1416 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys

22:27:48.0710 1416 i8042prt - ok

22:27:48.0882 1416 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys

22:27:48.0882 1416 iaStorV - ok

22:27:49.0365 1416 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

22:27:49.0443 1416 idsvc - ok

22:27:49.0521 1416 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

22:27:49.0521 1416 iirsp - ok

22:27:49.0646 1416 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll

22:27:49.0662 1416 IKEEXT - ok

22:27:50.0301 1416 IntcAzAudAddService (bfbabcb231628a4551dbb10d0ea25d62) C:\Windows\system32\drivers\RTKVHD64.sys

22:27:50.0301 1416 IntcAzAudAddService - ok

22:27:51.0425 1416 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys

22:27:51.0440 1416 intelide - ok

22:27:51.0674 1416 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

22:27:51.0674 1416 intelppm - ok

22:27:51.0705 1416 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll

22:27:51.0705 1416 IPBusEnum - ok

22:27:51.0799 1416 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys

22:27:51.0799 1416 IpFilterDriver - ok

22:27:52.0142 1416 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll

22:27:52.0173 1416 iphlpsvc - ok

22:27:52.0236 1416 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys

22:27:52.0236 1416 IPMIDRV - ok

22:27:52.0439 1416 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

22:27:52.0454 1416 IPNAT - ok

22:27:52.0517 1416 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

22:27:52.0517 1416 IRENUM - ok

22:27:52.0595 1416 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys

22:27:52.0610 1416 isapnp - ok

22:27:52.0907 1416 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys

22:27:52.0969 1416 iScsiPrt - ok

22:27:53.0047 1416 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys

22:27:53.0047 1416 kbdclass - ok

22:27:53.0125 1416 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys

22:27:53.0125 1416 kbdhid - ok

22:27:53.0187 1416 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

22:27:53.0187 1416 KeyIso - ok

22:27:53.0203 1416 KMService - ok

22:27:53.0250 1416 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys

22:27:53.0250 1416 KSecDD - ok

22:27:53.0265 1416 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys

22:27:53.0265 1416 KSecPkg - ok

22:27:53.0328 1416 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

22:27:53.0328 1416 ksthunk - ok

22:27:53.0453 1416 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll

22:27:53.0468 1416 KtmRm - ok

22:27:53.0577 1416 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll

22:27:53.0577 1416 LanmanServer - ok

22:27:53.0640 1416 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll

22:27:53.0640 1416 LanmanWorkstation - ok

22:27:53.0858 1416 LightScribeService (83d8be94e1cbcbe2ea8372db1a95a159) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

22:27:53.0874 1416 LightScribeService - ok

22:27:53.0999 1416 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

22:27:53.0999 1416 lltdio - ok

22:27:54.0092 1416 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll

22:27:54.0092 1416 lltdsvc - ok

22:27:54.0139 1416 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll

22:27:54.0139 1416 lmhosts - ok

22:27:54.0217 1416 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

22:27:54.0217 1416 LSI_FC - ok

22:27:54.0264 1416 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

22:27:54.0264 1416 LSI_SAS - ok

22:27:54.0279 1416 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

22:27:54.0279 1416 LSI_SAS2 - ok

22:27:54.0295 1416 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

22:27:54.0295 1416 LSI_SCSI - ok

22:27:54.0373 1416 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

22:27:54.0373 1416 luafv - ok

22:27:54.0498 1416 lvpepf64 (4a503882318bb2f59218d401614e6af6) C:\Windows\system32\DRIVERS\lv302a64.sys

22:27:54.0498 1416 lvpepf64 - ok

22:27:54.0591 1416 LVPr2M64 (ded333dbdbbcc3555a6e6244522e2f1a) C:\Windows\system32\DRIVERS\LVPr2M64.sys

22:27:54.0591 1416 LVPr2M64 - ok

22:27:54.0591 1416 LVPr2Mon (ded333dbdbbcc3555a6e6244522e2f1a) C:\Windows\system32\DRIVERS\LVPr2M64.sys

22:27:54.0607 1416 LVPr2Mon - ok

22:27:54.0779 1416 LVPrcS64 (a35679e56e78091e1042a2d7adbf2958) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

22:27:54.0779 1416 LVPrcS64 - ok

22:27:54.0888 1416 LVRS64 (125ae13c293889001b8456cf3eb04a40) C:\Windows\system32\DRIVERS\lvrs64.sys

22:27:54.0888 1416 LVRS64 - ok

22:27:54.0919 1416 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll

22:27:54.0919 1416 Mcx2Svc - ok

22:27:54.0981 1416 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

22:27:54.0981 1416 megasas - ok

22:27:55.0044 1416 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

22:27:55.0075 1416 MegaSR - ok

22:27:55.0215 1416 MEMSWEEP2 (d70476ad02d6fd75282b196d3b58831d) C:\Windows\system32\9665.tmp

22:27:55.0215 1416 MEMSWEEP2 - ok

22:27:55.0262 1416 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll

22:27:55.0262 1416 MMCSS - ok

22:27:55.0262 1416 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

22:27:55.0278 1416 Modem - ok

22:27:55.0387 1416 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

22:27:55.0387 1416 monitor - ok

22:27:55.0481 1416 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys

22:27:55.0481 1416 mouclass - ok

22:27:55.0543 1416 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

22:27:55.0559 1416 mouhid - ok

22:27:55.0605 1416 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys

22:27:55.0605 1416 mountmgr - ok

22:27:55.0777 1416 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

22:27:55.0777 1416 MozillaMaintenance - ok

22:27:55.0824 1416 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys

22:27:55.0824 1416 mpio - ok

22:27:55.0980 1416 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

22:27:55.0995 1416 mpsdrv - ok

22:27:56.0058 1416 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys

22:27:56.0073 1416 MRxDAV - ok

22:27:56.0136 1416 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys

22:27:56.0136 1416 mrxsmb - ok

22:27:56.0370 1416 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys

22:27:56.0401 1416 mrxsmb10 - ok

22:27:56.0463 1416 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

22:27:56.0463 1416 mrxsmb20 - ok

22:27:56.0510 1416 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys

22:27:56.0510 1416 msahci - ok

22:27:56.0541 1416 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys

22:27:56.0557 1416 msdsm - ok

22:27:56.0651 1416 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe

22:27:56.0651 1416 MSDTC - ok

22:27:57.0056 1416 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

22:27:57.0103 1416 Msfs - ok

22:27:57.0134 1416 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

22:27:57.0150 1416 mshidkmdf - ok

22:27:57.0290 1416 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys

22:27:57.0290 1416 msisadrv - ok

22:27:57.0415 1416 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll

22:27:57.0415 1416 MSiSCSI - ok

22:27:57.0415 1416 msiserver - ok

22:27:57.0446 1416 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

22:27:57.0446 1416 MSKSSRV - ok

22:27:57.0462 1416 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

22:27:57.0462 1416 MSPCLOCK - ok

22:27:57.0462 1416 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

22:27:57.0477 1416 MSPQM - ok

22:27:57.0540 1416 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys

22:27:57.0540 1416 MsRPC - ok

22:27:57.0571 1416 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys

22:27:57.0571 1416 mssmbios - ok

22:27:57.0571 1416 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

22:27:57.0587 1416 MSTEE - ok

22:27:57.0587 1416 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

22:27:57.0587 1416 MTConfig - ok

22:27:57.0618 1416 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

22:27:57.0618 1416 Mup - ok

22:27:57.0680 1416 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll

22:27:57.0680 1416 napagent - ok

22:27:57.0743 1416 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

22:27:57.0758 1416 NativeWifiP - ok

22:27:57.0805 1416 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys

22:27:57.0821 1416 NDIS - ok

22:27:57.0852 1416 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

22:27:57.0852 1416 NdisCap - ok

22:27:57.0883 1416 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

22:27:57.0883 1416 NdisTapi - ok

22:27:57.0930 1416 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys

22:27:57.0930 1416 Ndisuio - ok

22:27:57.0977 1416 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys

22:27:57.0977 1416 NdisWan - ok

22:27:58.0023 1416 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys

22:27:58.0023 1416 NDProxy - ok

22:27:58.0039 1416 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

22:27:58.0039 1416 NetBIOS - ok

22:27:58.0086 1416 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys

22:27:58.0086 1416 NetBT - ok

22:27:58.0133 1416 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

22:27:58.0133 1416 Netlogon - ok

22:27:58.0445 1416 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll

22:27:58.0460 1416 Netman - ok

22:27:58.0632 1416 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:27:58.0632 1416 NetMsmqActivator - ok

22:27:58.0632 1416 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:27:58.0632 1416 NetPipeActivator - ok

22:27:58.0928 1416 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll

22:27:58.0975 1416 netprofm - ok

22:27:59.0256 1416 netr28x (5758fd37bf31e759f8610311e4d08eca) C:\Windows\system32\DRIVERS\netr28x.sys

22:27:59.0271 1416 netr28x - ok

22:27:59.0864 1416 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:27:59.0864 1416 NetTcpActivator - ok

22:27:59.0864 1416 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:27:59.0864 1416 NetTcpPortSharing - ok

22:28:00.0051 1416 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

22:28:00.0067 1416 nfrd960 - ok

22:28:00.0192 1416 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll

22:28:00.0207 1416 NlaSvc - ok

22:28:00.0301 1416 NPF (c31fa031335eff434b2d94278e74bcce) C:\Windows\system32\drivers\npf.sys

22:28:00.0301 1416 NPF - ok

22:28:00.0395 1416 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

22:28:00.0410 1416 Npfs - ok

22:28:00.0504 1416 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll

22:28:00.0504 1416 nsi - ok

22:28:00.0551 1416 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

22:28:00.0551 1416 nsiproxy - ok

22:28:01.0221 1416 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys

22:28:01.0331 1416 Ntfs - ok

22:28:01.0409 1416 nTuneService - ok

22:28:01.0986 1416 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

22:28:02.0001 1416 Null - ok

22:28:05.0012 1416 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys

22:28:05.0090 1416 nvlddmkm - ok

22:28:05.0355 1416 NVR0Dev (241a095631570a9cef4f126c87605c60) C:\Windows\nvoclk64.sys

22:28:05.0355 1416 NVR0Dev - ok

22:28:05.0543 1416 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys

22:28:05.0543 1416 nvraid - ok

22:28:05.0589 1416 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys

22:28:05.0589 1416 nvstor - ok

22:28:06.0089 1416 nvsvc (32ff8ee6dcee5c0cb91ff892fb1ca364) C:\Windows\system32\nvvsvc.exe

22:28:06.0104 1416 nvsvc - ok

22:28:07.0337 1416 nvUpdatusService (bd012dc22c78be1071bc21eb125d782f) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

22:28:07.0352 1416 nvUpdatusService - ok

22:28:09.0458 1416 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys

22:28:09.0458 1416 nv_agp - ok

22:28:09.0567 1416 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys

22:28:09.0583 1416 ohci1394 - ok

22:28:09.0692 1416 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

22:28:09.0692 1416 ose - ok

22:28:13.0140 1416 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

22:28:13.0265 1416 osppsvc - ok

22:28:13.0733 1416 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll

22:28:13.0889 1416 p2pimsvc - ok

22:28:14.0185 1416 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll

22:28:14.0310 1416 p2psvc - ok

22:28:14.0357 1416 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

22:28:14.0372 1416 Parport - ok

22:28:14.0403 1416 Partizan - ok

22:28:14.0466 1416 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys

22:28:14.0466 1416 partmgr - ok

22:28:14.0591 1416 pbfilter (7c0582921913d00180ec2b8518ba135c) C:\Program Files\PeerBlock\pbfilter.sys

22:28:14.0591 1416 pbfilter - ok

22:28:14.0684 1416 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll

22:28:14.0700 1416 PcaSvc - ok

22:28:15.0168 1416 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys

22:28:15.0168 1416 pci - ok

22:28:15.0246 1416 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys

22:28:15.0277 1416 pciide - ok

22:28:15.0402 1416 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

22:28:15.0417 1416 pcmcia - ok

22:28:16.0088 1416 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

22:28:16.0104 1416 pcw - ok

22:28:16.0291 1416 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

22:28:16.0322 1416 PEAUTH - ok

22:28:17.0024 1416 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll

22:28:17.0087 1416 PeerDistSvc - ok

22:28:17.0321 1416 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe

22:28:17.0321 1416 PerfHost - ok

22:28:17.0352 1416 PEVSystemStart - ok

22:28:18.0303 1416 PID_PEPI (ae0b94363da0f60d42b9d05b352f61ed) C:\Windows\system32\DRIVERS\LV302V64.SYS

22:28:18.0319 1416 PID_PEPI - ok

22:28:19.0037 1416 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll

22:28:19.0068 1416 pla - ok

22:28:19.0427 1416 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll

22:28:19.0442 1416 PlugPlay - ok

22:28:19.0598 1416 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll

22:28:19.0614 1416 PNRPAutoReg - ok

22:28:19.0785 1416 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll

22:28:19.0785 1416 PNRPsvc - ok

22:28:19.0988 1416 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys

22:28:19.0988 1416 Point64 - ok

22:28:20.0316 1416 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll

22:28:20.0331 1416 PolicyAgent - ok

22:28:20.0456 1416 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll

22:28:20.0472 1416 Power - ok

22:28:20.0597 1416 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys

22:28:20.0597 1416 PptpMiniport - ok

22:28:20.0768 1416 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

22:28:20.0768 1416 Processor - ok

22:28:20.0940 1416 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll

22:28:20.0955 1416 ProfSvc - ok

22:28:21.0033 1416 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

22:28:21.0033 1416 ProtectedStorage - ok

22:28:21.0189 1416 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys

22:28:21.0205 1416 Psched - ok

22:28:21.0501 1416 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

22:28:21.0548 1416 ql2300 - ok

22:28:21.0798 1416 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

22:28:21.0798 1416 ql40xx - ok

22:28:21.0876 1416 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll

22:28:21.0876 1416 QWAVE - ok

22:28:21.0938 1416 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

22:28:21.0938 1416 QWAVEdrv - ok

22:28:22.0250 1416 RalinkRegistryWriter (f502a4b72524d21c5ca7183e61fb522e) C:\Program Files (x86)\Ralink\Common\RaRegistry.exe

22:28:22.0250 1416 RalinkRegistryWriter - ok

22:28:22.0781 1416 RalinkRegistryWriter64 (56b2eed5f1f150519dfac03aa9825af5) C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe

22:28:22.0781 1416 RalinkRegistryWriter64 - ok

22:28:23.0342 1416 RaMediaServer (cbc738221e5b80c4566e4ac0dc16cc8c) C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe

22:28:23.0498 1416 RaMediaServer - ok

22:28:24.0216 1416 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

22:28:24.0216 1416 RasAcd - ok

22:28:24.0481 1416 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

22:28:24.0481 1416 RasAgileVpn - ok

22:28:24.0840 1416 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll

22:28:24.0840 1416 RasAuto - ok

22:28:25.0105 1416 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys

22:28:25.0105 1416 Rasl2tp - ok

22:28:25.0167 1416 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll

22:28:25.0183 1416 RasMan - ok

22:28:25.0245 1416 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

22:28:25.0245 1416 RasPppoe - ok

22:28:25.0277 1416 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

22:28:25.0277 1416 RasSstp - ok

22:28:25.0308 1416 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys

22:28:25.0308 1416 rdbss - ok

22:28:25.0308 1416 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

22:28:25.0308 1416 rdpbus - ok

22:28:25.0323 1416 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

22:28:25.0323 1416 RDPCDD - ok

22:28:25.0417 1416 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys

22:28:25.0433 1416 RDPDR - ok

22:28:25.0495 1416 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

22:28:25.0511 1416 RDPENCDD - ok

22:28:25.0511 1416 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

22:28:25.0511 1416 RDPREFMP - ok

22:28:25.0604 1416 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys

22:28:25.0604 1416 RdpVideoMiniport - ok

22:28:25.0729 1416 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys

22:28:25.0729 1416 RDPWD - ok

22:28:25.0979 1416 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys

22:28:26.0010 1416 rdyboost - ok

22:28:26.0197 1416 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll

22:28:26.0197 1416 RemoteAccess - ok

22:28:26.0400 1416 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll

22:28:26.0400 1416 RemoteRegistry - ok

22:28:26.0587 1416 RimUsb (5790bca445cc40df8b38c2c48608aac2) C:\Windows\system32\Drivers\RimUsb_AMD64.sys

22:28:26.0618 1416 RimUsb - ok

22:28:26.0930 1416 rpcapd (a780d3eaa74582ea1deb6bd9c7a3d9c9) C:\Program Files (x86)\WinPcap\rpcapd.exe

22:28:27.0008 1416 rpcapd - ok

22:28:27.0117 1416 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll

22:28:27.0133 1416 RpcEptMapper - ok

22:28:27.0601 1416 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe

22:28:27.0601 1416 RpcLocator - ok

22:28:27.0757 1416 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll

22:28:27.0757 1416 RpcSs - ok

22:28:27.0851 1416 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

22:28:27.0851 1416 rspndr - ok

22:28:27.0929 1416 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys

22:28:27.0929 1416 RTL8167 - ok

22:28:28.0506 1416 RTL8187 (333224d4d25f9bcca488e08345083e1c) C:\Windows\system32\DRIVERS\rtl8187.sys

22:28:28.0537 1416 RTL8187 - ok

22:28:28.0615 1416 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys

22:28:28.0631 1416 s3cap - ok

22:28:28.0709 1416 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

22:28:28.0709 1416 SamSs - ok

22:28:28.0740 1416 SAVRKBootTasks - ok

22:28:28.0849 1416 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys

22:28:28.0865 1416 sbp2port - ok

22:28:29.0130 1416 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll

22:28:29.0130 1416 SCardSvr - ok

22:28:29.0255 1416 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys

22:28:29.0255 1416 scfilter - ok

22:28:29.0894 1416 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll

22:28:29.0925 1416 Schedule - ok

22:28:30.0237 1416 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll

22:28:30.0237 1416 SCPolicySvc - ok

22:28:30.0456 1416 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll

22:28:30.0487 1416 SDRSVC - ok

22:28:30.0612 1416 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

22:28:30.0612 1416 secdrv - ok

22:28:30.0674 1416 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll

22:28:30.0690 1416 seclogon - ok

22:28:30.0846 1416 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll

22:28:30.0846 1416 SENS - ok

22:28:30.0939 1416 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll

22:28:30.0939 1416 SensrSvc - ok

22:28:31.0017 1416 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

22:28:31.0017 1416 Serenum - ok

22:28:31.0314 1416 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

22:28:31.0314 1416 Serial - ok

22:28:31.0470 1416 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

22:28:31.0485 1416 sermouse - ok

22:28:31.0704 1416 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll

22:28:31.0719 1416 SessionEnv - ok

22:28:31.0797 1416 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys

22:28:31.0813 1416 sffdisk - ok

22:28:31.0860 1416 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys

22:28:31.0875 1416 sffp_mmc - ok

22:28:31.0891 1416 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys

22:28:31.0907 1416 sffp_sd - ok

22:28:31.0969 1416 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

22:28:31.0985 1416 sfloppy - ok

22:28:32.0234 1416 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll

22:28:32.0250 1416 ShellHWDetection - ok

22:28:32.0406 1416 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

22:28:32.0421 1416 SiSRaid2 - ok

22:28:32.0515 1416 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

22:28:32.0515 1416 SiSRaid4 - ok

22:28:32.0702 1416 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

22:28:32.0702 1416 Smb - ok

22:28:32.0905 1416 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe

22:28:32.0921 1416 SNMPTRAP - ok

22:28:33.0077 1416 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

22:28:33.0139 1416 spldr - ok

22:28:33.0529 1416 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe

22:28:33.0545 1416 Spooler - ok

22:28:36.0228 1416 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe

22:28:36.0290 1416 sppsvc - ok

22:28:36.0883 1416 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll

22:28:36.0883 1416 sppuinotify - ok

22:28:37.0289 1416 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys

22:28:37.0289 1416 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb

22:28:37.0289 1416 sptd ( LockedFile.Multi.Generic ) - warning

22:28:37.0289 1416 sptd - detected LockedFile.Multi.Generic (1)

22:28:37.0647 1416 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys

22:28:37.0679 1416 srv - ok

22:28:38.0006 1416 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys

22:28:38.0053 1416 srv2 - ok

22:28:38.0069 1416 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys

22:28:38.0069 1416 srvnet - ok

22:28:38.0131 1416 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll

22:28:38.0131 1416 SSDPSRV - ok

22:28:38.0209 1416 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll

22:28:38.0209 1416 SstpSvc - ok

22:28:38.0958 1416 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

22:28:38.0989 1416 StarWindServiceAE - ok

22:28:39.0270 1416 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

22:28:39.0270 1416 Stereo Service - ok

22:28:39.0332 1416 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

22:28:39.0332 1416 stexstor - ok

22:28:39.0660 1416 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll

22:28:39.0675 1416 stisvc - ok

22:28:39.0769 1416 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys

22:28:39.0785 1416 storflt - ok

22:28:39.0831 1416 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys

22:28:39.0831 1416 storvsc - ok

22:28:39.0878 1416 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys

22:28:39.0878 1416 swenum - ok

22:28:40.0253 1416 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll

22:28:40.0268 1416 swprv - ok

22:28:40.0315 1416 Synth3dVsc - ok

22:28:40.0736 1416 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll

22:28:40.0814 1416 SysMain - ok

22:28:41.0360 1416 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll

22:28:41.0360 1416 TabletInputService - ok

22:28:41.0485 1416 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll

22:28:41.0485 1416 TapiSrv - ok

22:28:41.0719 1416 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll

22:28:41.0719 1416 TBS - ok

22:28:43.0185 1416 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys

22:28:43.0295 1416 Tcpip - ok

22:28:45.0167 1416 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys

22:28:45.0182 1416 TCPIP6 - ok

22:28:45.0775 1416 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys

22:28:45.0775 1416 tcpipreg - ok

22:28:45.0806 1416 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

22:28:45.0806 1416 TDPIPE - ok

22:28:45.0962 1416 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys

22:28:45.0962 1416 TDTCP - ok

22:28:45.0993 1416 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys

22:28:45.0993 1416 tdx - ok

22:28:46.0056 1416 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys

22:28:46.0056 1416 TermDD - ok

22:28:46.0555 1416 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll

22:28:46.0602 1416 TermService - ok

22:28:46.0617 1416 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll

22:28:46.0617 1416 Themes - ok

22:28:46.0633 1416 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll

22:28:46.0633 1416 THREADORDER - ok

22:28:46.0680 1416 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll

22:28:46.0680 1416 TrkWks - ok

22:28:46.0773 1416 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe

22:28:46.0773 1416 TrustedInstaller - ok

22:28:46.0820 1416 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys

22:28:46.0820 1416 tssecsrv - ok

22:28:46.0867 1416 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys

22:28:46.0867 1416 TsUsbFlt - ok

22:28:46.0898 1416 tsusbhub - ok

22:28:46.0945 1416 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys

22:28:46.0945 1416 tunnel - ok

22:28:46.0992 1416 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

22:28:46.0992 1416 uagp35 - ok

22:28:47.0039 1416 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys

22:28:47.0039 1416 udfs - ok

22:28:47.0070 1416 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe

22:28:47.0085 1416 UI0Detect - ok

22:28:47.0117 1416 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys

22:28:47.0117 1416 uliagpkx - ok

22:28:47.0179 1416 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys

22:28:47.0179 1416 umbus - ok

22:28:47.0304 1416 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

22:28:47.0319 1416 UmPass - ok

22:28:47.0429 1416 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll

22:28:47.0444 1416 UmRdpService - ok

22:28:47.0507 1416 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll

22:28:47.0507 1416 upnphost - ok

22:28:47.0553 1416 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys

22:28:47.0569 1416 USBAAPL64 - ok

22:28:47.0631 1416 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys

22:28:47.0631 1416 usbaudio - ok

22:28:47.0725 1416 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys

22:28:47.0741 1416 usbccgp - ok

22:28:47.0787 1416 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys

22:28:47.0787 1416 usbcir - ok

22:28:47.0850 1416 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys

22:28:47.0850 1416 usbehci - ok

22:28:47.0959 1416 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys

22:28:47.0959 1416 usbhub - ok

22:28:47.0990 1416 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys

22:28:47.0990 1416 usbohci - ok

22:28:48.0006 1416 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

22:28:48.0006 1416 usbprint - ok

22:28:48.0053 1416 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS

22:28:48.0053 1416 USBSTOR - ok

22:28:48.0084 1416 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys

22:28:48.0084 1416 usbuhci - ok

22:28:48.0099 1416 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll

22:28:48.0099 1416 UxSms - ok

22:28:48.0131 1416 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

22:28:48.0131 1416 VaultSvc - ok

22:28:48.0209 1416 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys

22:28:48.0224 1416 vdrvroot - ok

22:28:49.0129 1416 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe

22:28:49.0145 1416 vds - ok

22:28:49.0269 1416 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

22:28:49.0269 1416 vga - ok

22:28:49.0316 1416 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

22:28:49.0316 1416 VgaSave - ok

22:28:49.0347 1416 VGPU - ok

22:28:49.0847 1416 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys

22:28:49.0909 1416 vhdmp - ok

22:28:49.0971 1416 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys

22:28:49.0971 1416 viaide - ok

22:28:49.0987 1416 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys

22:28:50.0003 1416 vmbus - ok

22:28:50.0003 1416 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys

22:28:50.0003 1416 VMBusHID - ok

22:28:50.0034 1416 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys

22:28:50.0034 1416 volmgr - ok

22:28:50.0174 1416 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys

22:28:50.0190 1416 volmgrx - ok

22:28:50.0455 1416 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys

22:28:50.0486 1416 volsnap - ok

22:28:50.0580 1416 vpcbus (b4a73ca4ef9a02b9738cea9ad5fe5917) C:\Windows\system32\DRIVERS\vpchbus.sys

22:28:50.0580 1416 vpcbus - ok

22:28:50.0627 1416 vpcnfltr (e675fb2b48c54f09895482e2253b289c) C:\Windows\system32\DRIVERS\vpcnfltr.sys

22:28:50.0642 1416 vpcnfltr - ok

22:28:50.0658 1416 vpcusb (5fb42082b0d19a0268705f1dd343df20) C:\Windows\system32\DRIVERS\vpcusb.sys

22:28:50.0673 1416 vpcusb - ok

22:28:50.0783 1416 vpcvmm (207b6539799cc1c112661a9b620dd233) C:\Windows\system32\drivers\vpcvmm.sys

22:28:50.0783 1416 vpcvmm - ok

22:28:50.0829 1416 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

22:28:50.0829 1416 vsmraid - ok

22:28:51.0313 1416 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe

22:28:51.0344 1416 VSS - ok

22:28:52.0077 1416 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys

22:28:52.0093 1416 vwifibus - ok

22:28:52.0124 1416 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys

22:28:52.0124 1416 vwififlt - ok

22:28:52.0155 1416 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys

22:28:52.0155 1416 vwifimp - ok

22:28:52.0421 1416 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll

22:28:52.0452 1416 W32Time - ok

22:28:52.0467 1416 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

22:28:52.0467 1416 WacomPen - ok

22:28:52.0670 1416 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

22:28:52.0686 1416 WANARP - ok

22:28:52.0701 1416 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

22:28:52.0717 1416 Wanarpv6 - ok

22:28:53.0669 1416 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe

22:28:53.0715 1416 WatAdminSvc - ok

22:28:54.0854 1416 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe

22:28:54.0901 1416 wbengine - ok

22:28:55.0166 1416 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll

22:28:55.0166 1416 WbioSrvc - ok

22:28:55.0244 1416 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll

22:28:55.0260 1416 wcncsvc - ok

22:28:55.0353 1416 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll

22:28:55.0353 1416 WcsPlugInService - ok

22:28:55.0478 1416 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

22:28:55.0478 1416 Wd - ok

22:28:55.0603 1416 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

22:28:55.0619 1416 Wdf01000 - ok

22:28:55.0665 1416 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll

22:28:55.0665 1416 WdiServiceHost - ok

22:28:55.0665 1416 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll

22:28:55.0681 1416 WdiSystemHost - ok

22:28:55.0712 1416 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll

22:28:55.0728 1416 WebClient - ok

22:28:55.0759 1416 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll

22:28:55.0759 1416 Wecsvc - ok

22:28:55.0775 1416 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll

22:28:55.0775 1416 wercplsupport - ok

22:28:55.0790 1416 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll

22:28:55.0806 1416 WerSvc - ok

22:28:55.0837 1416 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

22:28:55.0837 1416 WfpLwf - ok

22:28:55.0853 1416 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

22:28:55.0853 1416 WIMMount - ok

22:28:55.0884 1416 WinDefend - ok

22:28:55.0899 1416 WinHttpAutoProxySvc - ok

22:28:55.0962 1416 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll

22:28:55.0962 1416 Winmgmt - ok

22:28:56.0539 1416 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll

22:28:56.0601 1416 WinRM - ok

22:28:56.0726 1416 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys

22:28:56.0726 1416 WinUsb - ok

22:28:56.0835 1416 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll

22:28:56.0851 1416 Wlansvc - ok

22:28:56.0913 1416 WmBEnum (680a7846370000d20d7e74917d5b7936) C:\Windows\system32\drivers\WmBEnum.sys

22:28:56.0913 1416 WmBEnum - ok

22:28:56.0929 1416 WmFilter (14c35ba8189c6f65d839163aa285e954) C:\Windows\system32\drivers\WmFilter.sys

22:28:56.0929 1416 WmFilter - ok

22:28:56.0960 1416 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys

22:28:56.0960 1416 WmiAcpi - ok

22:28:57.0007 1416 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe

22:28:57.0007 1416 wmiApSrv - ok

22:28:57.0054 1416 WMPNetworkSvc - ok

22:28:57.0116 1416 WmVirHid (8488dd91a3ee54a8e29f02ad7bb8201e) C:\Windows\system32\drivers\WmVirHid.sys

22:28:57.0116 1416 WmVirHid - ok

22:28:57.0147 1416 WmXlCore (14802b3a30aa849c97cb968ccc813bf3) C:\Windows\system32\drivers\WmXlCore.sys

22:28:57.0147 1416 WmXlCore - ok

22:28:57.0194 1416 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll

22:28:57.0194 1416 WPCSvc - ok

22:28:57.0241 1416 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll

22:28:57.0241 1416 WPDBusEnum - ok

22:28:57.0257 1416 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

22:28:57.0257 1416 ws2ifsl - ok

22:28:57.0288 1416 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll

22:28:57.0288 1416 wscsvc - ok

22:28:57.0335 1416 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys

22:28:57.0350 1416 WSDPrintDevice - ok

22:28:57.0350 1416 WSearch - ok

22:28:58.0614 1416 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll

22:28:58.0676 1416 wuauserv - ok

22:28:59.0066 1416 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys

22:28:59.0066 1416 WudfPf - ok

22:28:59.0097 1416 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys

22:28:59.0097 1416 WUDFRd - ok

22:28:59.0144 1416 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll

22:28:59.0160 1416 wudfsvc - ok

22:28:59.0191 1416 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll

22:28:59.0207 1416 WwanSvc - ok

22:28:59.0238 1416 xusb21 (2c6bc21b2d5b58d8b1d638c1704cb494) C:\Windows\system32\DRIVERS\xusb21.sys

22:28:59.0238 1416 xusb21 - ok

22:28:59.0285 1416 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0

22:29:00.0236 1416 \Device\Harddisk0\DR0 - ok

22:29:00.0236 1416 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk1\DR1

22:29:00.0283 1416 \Device\Harddisk1\DR1 - ok

22:29:00.0283 1416 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk2\DR2

22:29:00.0767 1416 \Device\Harddisk2\DR2 - ok

22:29:00.0782 1416 Boot (0x1200) (a1cbd61da0a402972c7bdba51c9332a0) \Device\Harddisk0\DR0\Partition0

22:29:00.0798 1416 \Device\Harddisk0\DR0\Partition0 - ok

22:29:00.0798 1416 Boot (0x1200) (eff0407c7525c8f554f2eb706344797f) \Device\Harddisk0\DR0\Partition1

22:29:00.0813 1416 \Device\Harddisk0\DR0\Partition1 - ok

22:29:00.0813 1416 Boot (0x1200) (251fb1f81f048e35ce470cbe51b546ce) \Device\Harddisk1\DR1\Partition0

22:29:00.0813 1416 \Device\Harddisk1\DR1\Partition0 - ok

22:29:00.0813 1416 Boot (0x1200) (36413a580209b2e35ecf1abda637f22b) \Device\Harddisk2\DR2\Partition0

22:29:00.0829 1416 \Device\Harddisk2\DR2\Partition0 - ok

22:29:00.0829 1416 ============================================================

22:29:00.0829 1416 Scan finished

22:29:00.0829 1416 ============================================================

22:29:00.0829 0772 Detected object count: 1

22:29:00.0829 0772 Actual detected object count: 1

22:29:17.0646 0772 sptd ( LockedFile.Multi.Generic ) - skipped by user

22:29:17.0646 0772 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

22:29:21.0920 3892 Deinitialize success

Im not sure but i believe the sptd file is related to a virtual cd program i use, should i delete it?

[Gurgg]

Combofix will launch but doesnt run in safe or nomal mode, and it doesnt seem to be spitting a log

Here is my checkup:

Results of screen317's Security Check version 0.99.24

Windows 7 x64 (UAC is disabled!)

Internet Explorer 9

``````````````````````````````

Antivirus/Firewall Check:

WMI entry may not exist for antivirus; attempting automatic update.

```````````````````````````````

Anti-malware/Other Utilities Check:

Sophos Anti-Rootkit 1.5.4

Java 6 Update 21

Out of date Java installed!

Adobe Reader X (10.1.3)

Mozilla Firefox (x86 en-US..)

````````````````````````````````

Process Check:

objlist.exe by Laurent

``````````End of Log````````````

[Gurgg]

Sorry to continually post (i cant seem to find an edit function)

I have removed my dvd emulator and tdss no longer shows errors, im not sure if it is necesary but here is the most current log:

23:16:54.0231 3792 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31

23:16:54.0543 3792 ============================================================

23:16:54.0543 3792 Current date / time: 2012/05/29 23:16:54.0543

23:16:54.0543 3792 SystemInfo:

23:16:54.0543 3792

23:16:54.0543 3792 OS Version: 6.1.7601 ServicePack: 1.0

23:16:54.0543 3792 Product type: Workstation

23:16:54.0543 3792 ComputerName: TJ-PC

23:16:54.0543 3792 UserName: TJ

23:16:54.0543 3792 Windows directory: C:\Windows

23:16:54.0543 3792 System windows directory: C:\Windows

23:16:54.0543 3792 Running under WOW64

23:16:54.0543 3792 Processor architecture: Intel x64

23:16:54.0543 3792 Number of processors: 4

23:16:54.0543 3792 Page size: 0x1000

23:16:54.0543 3792 Boot type: Normal boot

23:16:54.0543 3792 ============================================================

23:16:55.0760 3792 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

23:16:55.0775 3792 Drive \Device\Harddisk1\DR1 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

23:16:55.0775 3792 Drive \Device\Harddisk2\DR2 - Size: 0xF4FFE00 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'

23:16:55.0791 3792 ============================================================

23:16:55.0791 3792 \Device\Harddisk0\DR0:

23:16:55.0791 3792 MBR partitions:

23:16:55.0791 3792 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000

23:16:55.0791 3792 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800

23:16:55.0791 3792 \Device\Harddisk1\DR1:

23:16:55.0791 3792 MBR partitions:

23:16:55.0791 3792 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000

23:16:55.0791 3792 \Device\Harddisk2\DR2:

23:16:55.0791 3792 MBR partitions:

23:16:55.0791 3792 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x63, BlocksNum 0x7A59D

23:16:55.0791 3792 ============================================================

23:16:55.0822 3792 C: <-> \Device\Harddisk0\DR0\Partition1

23:16:55.0838 3792 D: <-> \Device\Harddisk1\DR1\Partition0

23:16:55.0838 3792 ============================================================

23:16:55.0838 3792 Initialize success

23:16:55.0838 3792 ============================================================

23:16:56.0883 3852 ============================================================

23:16:56.0883 3852 Scan started

23:16:56.0883 3852 Mode: Manual;

23:16:56.0883 3852 ============================================================

23:16:58.0443 3852 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys

23:16:58.0443 3852 1394ohci - ok

23:16:58.0552 3852 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys

23:16:58.0552 3852 ACPI - ok

23:16:58.0583 3852 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys

23:16:58.0599 3852 AcpiPmi - ok

23:16:58.0770 3852 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

23:16:58.0770 3852 AdobeARMservice - ok

23:16:59.0722 3852 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

23:16:59.0769 3852 AdobeFlashPlayerUpdateSvc - ok

23:17:00.0050 3852 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

23:17:00.0081 3852 adp94xx - ok

23:17:00.0455 3852 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

23:17:00.0502 3852 adpahci - ok

23:17:00.0642 3852 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

23:17:00.0642 3852 adpu320 - ok

23:17:00.0736 3852 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll

23:17:00.0752 3852 AeLookupSvc - ok

23:17:01.0110 3852 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys

23:17:01.0142 3852 AFD - ok

23:17:01.0282 3852 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys

23:17:01.0298 3852 agp440 - ok

23:17:01.0438 3852 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe

23:17:01.0454 3852 ALG - ok

23:17:01.0500 3852 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys

23:17:01.0516 3852 aliide - ok

23:17:01.0547 3852 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys

23:17:01.0547 3852 amdide - ok

23:17:01.0610 3852 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

23:17:01.0610 3852 AmdK8 - ok

23:17:01.0656 3852 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

23:17:01.0656 3852 AmdPPM - ok

23:17:01.0750 3852 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys

23:17:01.0750 3852 amdsata - ok

23:17:01.0828 3852 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

23:17:01.0859 3852 amdsbs - ok

23:17:01.0890 3852 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys

23:17:01.0906 3852 amdxata - ok

23:17:02.0046 3852 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys

23:17:02.0046 3852 AppID - ok

23:17:02.0093 3852 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll

23:17:02.0109 3852 AppIDSvc - ok

23:17:02.0156 3852 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll

23:17:02.0156 3852 Appinfo - ok

23:17:02.0296 3852 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

23:17:02.0312 3852 Apple Mobile Device - ok

23:17:02.0436 3852 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll

23:17:02.0452 3852 AppMgmt - ok

23:17:02.0499 3852 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

23:17:02.0514 3852 arc - ok

23:17:02.0530 3852 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

23:17:02.0530 3852 arcsas - ok

23:17:02.0686 3852 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

23:17:02.0748 3852 aspnet_state - ok

23:17:02.0811 3852 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

23:17:02.0826 3852 AsyncMac - ok

23:17:02.0889 3852 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys

23:17:02.0904 3852 atapi - ok

23:17:03.0170 3852 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll

23:17:03.0201 3852 AudioEndpointBuilder - ok

23:17:03.0201 3852 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll

23:17:03.0216 3852 AudioSrv - ok

23:17:03.0357 3852 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll

23:17:03.0372 3852 AxInstSV - ok

23:17:03.0575 3852 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

23:17:03.0575 3852 b06bdrv - ok

23:17:03.0809 3852 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

23:17:03.0809 3852 b57nd60a - ok

23:17:03.0934 3852 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll

23:17:03.0950 3852 BDESVC - ok

23:17:04.0012 3852 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

23:17:04.0012 3852 Beep - ok

23:17:04.0355 3852 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll

23:17:04.0386 3852 BITS - ok

23:17:04.0464 3852 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

23:17:04.0464 3852 blbdrive - ok

23:17:04.0542 3852 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys

23:17:04.0542 3852 bowser - ok

23:17:04.0574 3852 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

23:17:04.0589 3852 BrFiltLo - ok

23:17:04.0605 3852 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

23:17:04.0605 3852 BrFiltUp - ok

23:17:04.0652 3852 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys

23:17:04.0698 3852 BridgeMP - ok

23:17:04.0761 3852 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll

23:17:04.0761 3852 Browser - ok

23:17:05.0073 3852 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

23:17:05.0073 3852 Brserid - ok

23:17:05.0120 3852 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

23:17:05.0120 3852 BrSerWdm - ok

23:17:05.0151 3852 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

23:17:05.0151 3852 BrUsbMdm - ok

23:17:05.0182 3852 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

23:17:05.0182 3852 BrUsbSer - ok

23:17:05.0276 3852 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

23:17:05.0291 3852 BTHMODEM - ok

23:17:05.0447 3852 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll

23:17:05.0463 3852 bthserv - ok

23:17:05.0603 3852 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

23:17:05.0603 3852 cdfs - ok

23:17:05.0822 3852 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys

23:17:05.0822 3852 cdrom - ok

23:17:05.0946 3852 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll

23:17:05.0946 3852 CertPropSvc - ok

23:17:06.0040 3852 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

23:17:06.0056 3852 circlass - ok

23:17:06.0321 3852 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

23:17:06.0336 3852 CLFS - ok

23:17:06.0586 3852 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

23:17:06.0617 3852 clr_optimization_v2.0.50727_32 - ok

23:17:06.0695 3852 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

23:17:06.0695 3852 clr_optimization_v2.0.50727_64 - ok

23:17:06.0945 3852 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

23:17:07.0366 3852 clr_optimization_v4.0.30319_32 - ok

23:17:07.0491 3852 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

23:17:07.0569 3852 clr_optimization_v4.0.30319_64 - ok

23:17:07.0662 3852 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

23:17:07.0678 3852 CmBatt - ok

23:17:07.0725 3852 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys

23:17:07.0740 3852 cmdide - ok

23:17:07.0881 3852 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys

23:17:07.0896 3852 CNG - ok

23:17:07.0974 3852 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

23:17:07.0990 3852 Compbatt - ok

23:17:08.0099 3852 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys

23:17:08.0099 3852 CompositeBus - ok

23:17:08.0130 3852 COMSysApp - ok

23:17:08.0146 3852 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

23:17:08.0162 3852 crcdisk - ok

23:17:08.0208 3852 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll

23:17:08.0208 3852 CryptSvc - ok

23:17:08.0286 3852 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys

23:17:08.0286 3852 CSC - ok

23:17:08.0396 3852 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll

23:17:08.0411 3852 CscService - ok

23:17:08.0489 3852 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys

23:17:08.0505 3852 dc3d - ok

23:17:08.0645 3852 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll

23:17:08.0645 3852 DcomLaunch - ok

23:17:08.0692 3852 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll

23:17:08.0692 3852 defragsvc - ok

23:17:08.0739 3852 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys

23:17:08.0739 3852 DfsC - ok

23:17:08.0848 3852 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll

23:17:08.0864 3852 Dhcp - ok

23:17:08.0879 3852 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

23:17:08.0879 3852 discache - ok

23:17:08.0910 3852 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

23:17:08.0910 3852 Disk - ok

23:17:08.0957 3852 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll

23:17:08.0988 3852 Dnscache - ok

23:17:09.0113 3852 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll

23:17:09.0113 3852 dot3svc - ok

23:17:09.0144 3852 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll

23:17:09.0144 3852 DPS - ok

23:17:09.0207 3852 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

23:17:09.0207 3852 drmkaud - ok

23:17:09.0300 3852 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys

23:17:09.0300 3852 DXGKrnl - ok

23:17:09.0347 3852 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll

23:17:09.0347 3852 EapHost - ok

23:17:09.0971 3852 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

23:17:10.0065 3852 ebdrv - ok

23:17:10.0283 3852 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe

23:17:10.0283 3852 EFS - ok

23:17:10.0455 3852 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe

23:17:10.0455 3852 ehRecvr - ok

23:17:10.0548 3852 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe

23:17:10.0548 3852 ehSched - ok

23:17:10.0658 3852 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

23:17:10.0658 3852 elxstor - ok

23:17:10.0704 3852 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys

23:17:10.0720 3852 ErrDev - ok

23:17:10.0767 3852 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll

23:17:10.0767 3852 EventSystem - ok

23:17:10.0814 3852 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

23:17:10.0814 3852 exfat - ok

23:17:10.0845 3852 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

23:17:10.0845 3852 fastfat - ok

23:17:11.0048 3852 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe

23:17:11.0079 3852 Fax - ok

23:17:11.0110 3852 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

23:17:11.0110 3852 fdc - ok

23:17:11.0126 3852 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll

23:17:11.0126 3852 fdPHost - ok

23:17:11.0141 3852 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll

23:17:11.0141 3852 FDResPub - ok

23:17:11.0188 3852 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

23:17:11.0188 3852 FileInfo - ok

23:17:11.0188 3852 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

23:17:11.0188 3852 Filetrace - ok

23:17:11.0204 3852 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

23:17:11.0204 3852 flpydisk - ok

23:17:11.0250 3852 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys

23:17:11.0250 3852 FltMgr - ok

23:17:11.0344 3852 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll

23:17:11.0360 3852 FontCache - ok

23:17:11.0422 3852 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

23:17:11.0422 3852 FontCache3.0.0.0 - ok

23:17:11.0453 3852 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

23:17:11.0469 3852 FsDepends - ok

23:17:11.0500 3852 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys

23:17:11.0500 3852 Fs_Rec - ok

23:17:11.0609 3852 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys

23:17:11.0609 3852 fvevol - ok

23:17:11.0625 3852 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

23:17:11.0625 3852 gagp30kx - ok

23:17:11.0687 3852 GIVEIO - ok

23:17:11.0859 3852 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll

23:17:11.0890 3852 gpsvc - ok

23:17:11.0968 3852 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

23:17:11.0968 3852 hcw85cir - ok

23:17:12.0046 3852 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys

23:17:12.0046 3852 HdAudAddService - ok

23:17:12.0077 3852 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys

23:17:12.0077 3852 HDAudBus - ok

23:17:12.0077 3852 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

23:17:12.0093 3852 HidBatt - ok

23:17:12.0093 3852 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

23:17:12.0093 3852 HidBth - ok

23:17:12.0108 3852 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

23:17:12.0108 3852 HidIr - ok

23:17:12.0124 3852 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll

23:17:12.0124 3852 hidserv - ok

23:17:12.0140 3852 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys

23:17:12.0140 3852 HidUsb - ok

23:17:12.0202 3852 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll

23:17:12.0202 3852 hkmsvc - ok

23:17:12.0249 3852 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll

23:17:12.0249 3852 HomeGroupListener - ok

23:17:12.0311 3852 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll

23:17:12.0311 3852 HomeGroupProvider - ok

23:17:12.0327 3852 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys

23:17:12.0342 3852 HpSAMD - ok

23:17:12.0389 3852 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys

23:17:12.0389 3852 HTCAND64 - ok

23:17:12.0467 3852 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys

23:17:12.0467 3852 htcnprot - ok

23:17:12.0623 3852 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys

23:17:12.0623 3852 HTTP - ok

23:17:12.0670 3852 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys

23:17:12.0670 3852 hwpolicy - ok

23:17:12.0701 3852 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys

23:17:12.0701 3852 i8042prt - ok

23:17:12.0779 3852 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys

23:17:12.0779 3852 iaStorV - ok

23:17:13.0060 3852 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

23:17:13.0122 3852 idsvc - ok

23:17:13.0185 3852 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

23:17:13.0185 3852 iirsp - ok

23:17:13.0372 3852 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll

23:17:13.0388 3852 IKEEXT - ok

23:17:13.0528 3852 IntcAzAudAddService (bfbabcb231628a4551dbb10d0ea25d62) C:\Windows\system32\drivers\RTKVHD64.sys

23:17:13.0528 3852 IntcAzAudAddService - ok

23:17:13.0778 3852 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys

23:17:13.0778 3852 intelide - ok

23:17:13.0856 3852 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

23:17:13.0856 3852 intelppm - ok

23:17:13.0887 3852 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll

23:17:13.0887 3852 IPBusEnum - ok

23:17:13.0918 3852 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys

23:17:13.0918 3852 IpFilterDriver - ok

23:17:14.0043 3852 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll

23:17:14.0058 3852 iphlpsvc - ok

23:17:14.0090 3852 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys

23:17:14.0105 3852 IPMIDRV - ok

23:17:14.0168 3852 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

23:17:14.0168 3852 IPNAT - ok

23:17:14.0183 3852 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

23:17:14.0183 3852 IRENUM - ok

23:17:14.0199 3852 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys

23:17:14.0199 3852 isapnp - ok

23:17:14.0230 3852 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys

23:17:14.0230 3852 iScsiPrt - ok

23:17:14.0261 3852 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys

23:17:14.0261 3852 kbdclass - ok

23:17:14.0277 3852 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys

23:17:14.0277 3852 kbdhid - ok

23:17:14.0308 3852 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

23:17:14.0308 3852 KeyIso - ok

23:17:14.0339 3852 KMService - ok

23:17:14.0355 3852 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys

23:17:14.0355 3852 KSecDD - ok

23:17:14.0370 3852 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys

23:17:14.0370 3852 KSecPkg - ok

23:17:14.0386 3852 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

23:17:14.0386 3852 ksthunk - ok

23:17:14.0448 3852 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll

23:17:14.0464 3852 KtmRm - ok

23:17:14.0511 3852 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll

23:17:14.0511 3852 LanmanServer - ok

23:17:14.0558 3852 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll

23:17:14.0558 3852 LanmanWorkstation - ok

23:17:14.0667 3852 LightScribeService (83d8be94e1cbcbe2ea8372db1a95a159) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

23:17:14.0667 3852 LightScribeService - ok

23:17:14.0698 3852 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

23:17:14.0698 3852 lltdio - ok

23:17:14.0745 3852 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll

23:17:14.0745 3852 lltdsvc - ok

23:17:14.0760 3852 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll

23:17:14.0760 3852 lmhosts - ok

23:17:14.0776 3852 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

23:17:14.0776 3852 LSI_FC - ok

23:17:14.0792 3852 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

23:17:14.0807 3852 LSI_SAS - ok

23:17:14.0807 3852 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

23:17:14.0807 3852 LSI_SAS2 - ok

23:17:14.0823 3852 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

23:17:14.0823 3852 LSI_SCSI - ok

23:17:14.0838 3852 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

23:17:14.0838 3852 luafv - ok

23:17:14.0885 3852 lvpepf64 (4a503882318bb2f59218d401614e6af6) C:\Windows\system32\DRIVERS\lv302a64.sys

23:17:14.0885 3852 lvpepf64 - ok

23:17:14.0932 3852 LVPr2M64 (ded333dbdbbcc3555a6e6244522e2f1a) C:\Windows\system32\DRIVERS\LVPr2M64.sys

23:17:14.0932 3852 LVPr2M64 - ok

23:17:14.0932 3852 LVPr2Mon (ded333dbdbbcc3555a6e6244522e2f1a) C:\Windows\system32\DRIVERS\LVPr2M64.sys

23:17:14.0932 3852 LVPr2Mon - ok

23:17:15.0041 3852 LVPrcS64 (a35679e56e78091e1042a2d7adbf2958) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

23:17:15.0057 3852 LVPrcS64 - ok

23:17:15.0369 3852 LVRS64 (125ae13c293889001b8456cf3eb04a40) C:\Windows\system32\DRIVERS\lvrs64.sys

23:17:15.0369 3852 LVRS64 - ok

23:17:15.0447 3852 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll

23:17:15.0447 3852 Mcx2Svc - ok

23:17:15.0525 3852 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

23:17:15.0572 3852 megasas - ok

23:17:15.0759 3852 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

23:17:15.0759 3852 MegaSR - ok

23:17:15.0852 3852 MEMSWEEP2 (d70476ad02d6fd75282b196d3b58831d) C:\Windows\system32\9665.tmp

23:17:15.0868 3852 MEMSWEEP2 - ok

23:17:15.0899 3852 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll

23:17:15.0899 3852 MMCSS - ok

23:17:15.0899 3852 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

23:17:15.0899 3852 Modem - ok

23:17:15.0946 3852 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

23:17:15.0946 3852 monitor - ok

23:17:16.0008 3852 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys

23:17:16.0008 3852 mouclass - ok

23:17:16.0040 3852 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

23:17:16.0040 3852 mouhid - ok

23:17:16.0086 3852 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys

23:17:16.0086 3852 mountmgr - ok

23:17:16.0227 3852 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

23:17:16.0227 3852 MozillaMaintenance - ok

23:17:16.0258 3852 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys

23:17:16.0258 3852 mpio - ok

23:17:16.0289 3852 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

23:17:16.0305 3852 mpsdrv - ok

23:17:16.0336 3852 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys

23:17:16.0336 3852 MRxDAV - ok

23:17:16.0414 3852 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys

23:17:16.0414 3852 mrxsmb - ok

23:17:16.0554 3852 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys

23:17:16.0554 3852 mrxsmb10 - ok

23:17:16.0601 3852 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

23:17:16.0601 3852 mrxsmb20 - ok

23:17:16.0648 3852 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys

23:17:16.0664 3852 msahci - ok

23:17:16.0679 3852 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys

23:17:16.0679 3852 msdsm - ok

23:17:16.0710 3852 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe

23:17:16.0710 3852 MSDTC - ok

23:17:16.0742 3852 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

23:17:16.0742 3852 Msfs - ok

23:17:16.0773 3852 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

23:17:16.0788 3852 mshidkmdf - ok

23:17:16.0788 3852 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys

23:17:16.0788 3852 msisadrv - ok

23:17:16.0820 3852 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll

23:17:16.0835 3852 MSiSCSI - ok

23:17:16.0835 3852 msiserver - ok

23:17:16.0851 3852 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

23:17:16.0851 3852 MSKSSRV - ok

23:17:16.0866 3852 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

23:17:16.0866 3852 MSPCLOCK - ok

23:17:16.0882 3852 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

23:17:16.0882 3852 MSPQM - ok

23:17:16.0976 3852 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys

23:17:16.0991 3852 MsRPC - ok

23:17:17.0038 3852 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys

23:17:17.0038 3852 mssmbios - ok

23:17:17.0100 3852 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

23:17:17.0100 3852 MSTEE - ok

23:17:17.0100 3852 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

23:17:17.0100 3852 MTConfig - ok

23:17:17.0163 3852 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

23:17:17.0163 3852 Mup - ok

23:17:17.0256 3852 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll

23:17:17.0272 3852 napagent - ok

23:17:17.0366 3852 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

23:17:17.0366 3852 NativeWifiP - ok

23:17:17.0600 3852 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys

23:17:17.0631 3852 NDIS - ok

23:17:17.0678 3852 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

23:17:17.0678 3852 NdisCap - ok

23:17:17.0709 3852 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

23:17:17.0709 3852 NdisTapi - ok

23:17:17.0740 3852 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys

23:17:17.0740 3852 Ndisuio - ok

23:17:17.0818 3852 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys

23:17:17.0818 3852 NdisWan - ok

23:17:17.0849 3852 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys

23:17:17.0849 3852 NDProxy - ok

23:17:17.0880 3852 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

23:17:17.0880 3852 NetBIOS - ok

23:17:17.0990 3852 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys

23:17:17.0990 3852 NetBT - ok

23:17:18.0036 3852 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

23:17:18.0036 3852 Netlogon - ok

23:17:18.0099 3852 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll

23:17:18.0099 3852 Netman - ok

23:17:18.0177 3852 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

23:17:18.0192 3852 NetMsmqActivator - ok

23:17:18.0208 3852 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

23:17:18.0208 3852 NetPipeActivator - ok

23:17:18.0270 3852 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll

23:17:18.0286 3852 netprofm - ok

23:17:18.0489 3852 netr28x (5758fd37bf31e759f8610311e4d08eca) C:\Windows\system32\DRIVERS\netr28x.sys

23:17:18.0489 3852 netr28x - ok

23:17:18.0707 3852 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

23:17:18.0707 3852 NetTcpActivator - ok

23:17:18.0707 3852 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

23:17:18.0707 3852 NetTcpPortSharing - ok

23:17:18.0894 3852 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

23:17:18.0894 3852 nfrd960 - ok

23:17:19.0019 3852 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll

23:17:19.0019 3852 NlaSvc - ok

23:17:19.0082 3852 NPF (c31fa031335eff434b2d94278e74bcce) C:\Windows\system32\drivers\npf.sys

23:17:19.0082 3852 NPF - ok

23:17:19.0128 3852 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

23:17:19.0128 3852 Npfs - ok

23:17:19.0175 3852 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll

23:17:19.0175 3852 nsi - ok

23:17:19.0191 3852 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

23:17:19.0191 3852 nsiproxy - ok

23:17:19.0425 3852 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys

23:17:19.0440 3852 Ntfs - ok

23:17:19.0534 3852 nTuneService - ok

23:17:19.0612 3852 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

23:17:19.0612 3852 Null - ok

23:17:21.0422 3852 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys

23:17:21.0500 3852 nvlddmkm - ok

23:17:21.0624 3852 NVR0Dev (241a095631570a9cef4f126c87605c60) C:\Windows\nvoclk64.sys

23:17:21.0624 3852 NVR0Dev - ok

23:17:21.0765 3852 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys

23:17:21.0765 3852 nvraid - ok

23:17:21.0796 3852 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys

23:17:21.0812 3852 nvstor - ok

23:17:21.0890 3852 nvsvc (32ff8ee6dcee5c0cb91ff892fb1ca364) C:\Windows\system32\nvvsvc.exe

23:17:21.0905 3852 nvsvc - ok

23:17:22.0248 3852 nvUpdatusService (bd012dc22c78be1071bc21eb125d782f) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

23:17:22.0280 3852 nvUpdatusService - ok

23:17:22.0467 3852 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys

23:17:22.0467 3852 nv_agp - ok

23:17:22.0482 3852 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys

23:17:22.0482 3852 ohci1394 - ok

23:17:22.0623 3852 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

23:17:22.0623 3852 ose - ok

23:17:23.0247 3852 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

23:17:23.0356 3852 osppsvc - ok

23:17:23.0481 3852 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll

23:17:23.0496 3852 p2pimsvc - ok

23:17:23.0528 3852 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll

23:17:23.0543 3852 p2psvc - ok

23:17:23.0574 3852 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

23:17:23.0574 3852 Parport - ok

23:17:23.0606 3852 Partizan - ok

23:17:23.0637 3852 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys

23:17:23.0652 3852 partmgr - ok

23:17:23.0730 3852 pbfilter (7c0582921913d00180ec2b8518ba135c) C:\Program Files\PeerBlock\pbfilter.sys

23:17:23.0730 3852 pbfilter - ok

23:17:23.0808 3852 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll

23:17:23.0808 3852 PcaSvc - ok

23:17:23.0855 3852 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys

23:17:23.0855 3852 pci - ok

23:17:23.0871 3852 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys

23:17:23.0871 3852 pciide - ok

23:17:23.0902 3852 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

23:17:23.0902 3852 pcmcia - ok

23:17:23.0902 3852 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

23:17:23.0902 3852 pcw - ok

23:17:23.0949 3852 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

23:17:23.0949 3852 PEAUTH - ok

23:17:24.0058 3852 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll

23:17:24.0074 3852 PeerDistSvc - ok

23:17:24.0152 3852 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe

23:17:24.0214 3852 PerfHost - ok

23:17:24.0479 3852 PEVSystemStart (f042ee4c8d66248d9b86dcf52abae416) C:\32788R22FWJFW\pev.3XE

23:17:24.0495 3852 PEVSystemStart - ok

23:17:25.0166 3852 PID_PEPI (ae0b94363da0f60d42b9d05b352f61ed) C:\Windows\system32\DRIVERS\LV302V64.SYS

23:17:25.0181 3852 PID_PEPI - ok

23:17:25.0649 3852 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll

23:17:25.0680 3852 pla - ok

23:17:25.0836 3852 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll

23:17:25.0836 3852 PlugPlay - ok

23:17:25.0868 3852 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll

23:17:25.0868 3852 PNRPAutoReg - ok

23:17:25.0899 3852 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll

23:17:25.0899 3852 PNRPsvc - ok

23:17:25.0961 3852 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys

23:17:25.0961 3852 Point64 - ok

23:17:26.0055 3852 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll

23:17:26.0070 3852 PolicyAgent - ok

23:17:26.0102 3852 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll

23:17:26.0102 3852 Power - ok

23:17:26.0148 3852 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys

23:17:26.0148 3852 PptpMiniport - ok

23:17:26.0180 3852 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

23:17:26.0180 3852 Processor - ok

23:17:26.0414 3852 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll

23:17:26.0429 3852 ProfSvc - ok

23:17:26.0476 3852 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

23:17:26.0476 3852 ProtectedStorage - ok

23:17:26.0554 3852 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys

23:17:26.0554 3852 Psched - ok

23:17:26.0913 3852 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

23:17:26.0960 3852 ql2300 - ok

23:17:27.0069 3852 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

23:17:27.0084 3852 ql40xx - ok

23:17:27.0147 3852 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll

23:17:27.0147 3852 QWAVE - ok

23:17:27.0178 3852 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

23:17:27.0178 3852 QWAVEdrv - ok

23:17:27.0381 3852 RalinkRegistryWriter (f502a4b72524d21c5ca7183e61fb522e) C:\Program Files (x86)\Ralink\Common\RaRegistry.exe

23:17:27.0381 3852 RalinkRegistryWriter - ok

23:17:27.0490 3852 RalinkRegistryWriter64 (56b2eed5f1f150519dfac03aa9825af5) C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe

23:17:27.0490 3852 RalinkRegistryWriter64 - ok

23:17:27.0599 3852 RaMediaServer (cbc738221e5b80c4566e4ac0dc16cc8c) C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe

23:17:27.0599 3852 RaMediaServer - ok

23:17:28.0083 3852 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

23:17:28.0083 3852 RasAcd - ok

23:17:28.0223 3852 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

23:17:28.0239 3852 RasAgileVpn - ok

23:17:28.0332 3852 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll

23:17:28.0348 3852 RasAuto - ok

23:17:28.0379 3852 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys

23:17:28.0379 3852 Rasl2tp - ok

23:17:28.0410 3852 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll

23:17:28.0410 3852 RasMan - ok

23:17:28.0457 3852 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

23:17:28.0457 3852 RasPppoe - ok

23:17:28.0535 3852 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

23:17:28.0535 3852 RasSstp - ok

23:17:28.0551 3852 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys

23:17:28.0566 3852 rdbss - ok

23:17:28.0566 3852 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

23:17:28.0566 3852 rdpbus - ok

23:17:28.0582 3852 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

23:17:28.0582 3852 RDPCDD - ok

23:17:28.0629 3852 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys

23:17:28.0629 3852 RDPDR - ok

23:17:28.0644 3852 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

23:17:28.0644 3852 RDPENCDD - ok

23:17:28.0660 3852 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

23:17:28.0660 3852 RDPREFMP - ok

23:17:28.0722 3852 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys

23:17:28.0722 3852 RdpVideoMiniport - ok

23:17:28.0816 3852 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys

23:17:28.0832 3852 RDPWD - ok

23:17:28.0910 3852 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys

23:17:28.0925 3852 rdyboost - ok

23:17:28.0956 3852 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll

23:17:28.0956 3852 RemoteAccess - ok

23:17:28.0988 3852 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll

23:17:28.0988 3852 RemoteRegistry - ok

23:17:29.0034 3852 RimUsb (5790bca445cc40df8b38c2c48608aac2) C:\Windows\system32\Drivers\RimUsb_AMD64.sys

23:17:29.0034 3852 RimUsb - ok

23:17:29.0175 3852 rpcapd (a780d3eaa74582ea1deb6bd9c7a3d9c9) C:\Program Files (x86)\WinPcap\rpcapd.exe

23:17:29.0175 3852 rpcapd - ok

23:17:29.0206 3852 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll

23:17:29.0206 3852 RpcEptMapper - ok

23:17:29.0222 3852 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe

23:17:29.0222 3852 RpcLocator - ok

23:17:29.0424 3852 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll

23:17:29.0424 3852 RpcSs - ok

23:17:29.0456 3852 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

23:17:29.0456 3852 rspndr - ok

23:17:29.0549 3852 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys

23:17:29.0549 3852 RTL8167 - ok

23:17:29.0612 3852 RTL8187 (333224d4d25f9bcca488e08345083e1c) C:\Windows\system32\DRIVERS\rtl8187.sys

23:17:29.0612 3852 RTL8187 - ok

23:17:29.0690 3852 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys

23:17:29.0690 3852 s3cap - ok

23:17:29.0768 3852 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

23:17:29.0768 3852 SamSs - ok

23:17:29.0814 3852 SAVRKBootTasks - ok

23:17:29.0846 3852 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys

23:17:29.0846 3852 sbp2port - ok

23:17:29.0877 3852 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll

23:17:29.0908 3852 SCardSvr - ok

23:17:29.0955 3852 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys

23:17:29.0955 3852 scfilter - ok

23:17:30.0251 3852 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll

23:17:30.0267 3852 Schedule - ok

23:17:30.0345 3852 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll

23:17:30.0345 3852 SCPolicySvc - ok

23:17:30.0454 3852 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll

23:17:30.0470 3852 SDRSVC - ok

23:17:30.0516 3852 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

23:17:30.0516 3852 secdrv - ok

23:17:30.0548 3852 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll

23:17:30.0563 3852 seclogon - ok

23:17:30.0579 3852 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll

23:17:30.0579 3852 SENS - ok

23:17:30.0594 3852 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll

23:17:30.0594 3852 SensrSvc - ok

23:17:30.0610 3852 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

23:17:30.0610 3852 Serenum - ok

23:17:30.0626 3852 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

23:17:30.0626 3852 Serial - ok

23:17:30.0657 3852 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

23:17:30.0657 3852 sermouse - ok

23:17:30.0719 3852 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll

23:17:30.0735 3852 SessionEnv - ok

23:17:30.0750 3852 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys

23:17:30.0750 3852 sffdisk - ok

23:17:30.0750 3852 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys

23:17:30.0766 3852 sffp_mmc - ok

23:17:30.0766 3852 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys

23:17:30.0766 3852 sffp_sd - ok

23:17:30.0782 3852 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

23:17:30.0782 3852 sfloppy - ok

23:17:30.0813 3852 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll

23:17:30.0828 3852 ShellHWDetection - ok

23:17:30.0844 3852 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

23:17:30.0844 3852 SiSRaid2 - ok

23:17:30.0860 3852 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

23:17:30.0860 3852 SiSRaid4 - ok

23:17:30.0875 3852 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

23:17:30.0875 3852 Smb - ok

23:17:30.0891 3852 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe

23:17:30.0891 3852 SNMPTRAP - ok

23:17:30.0891 3852 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

23:17:30.0906 3852 spldr - ok

23:17:30.0969 3852 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe

23:17:31.0016 3852 Spooler - ok

23:17:31.0359 3852 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe

23:17:31.0421 3852 sppsvc - ok

23:17:31.0936 3852 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll

23:17:31.0936 3852 sppuinotify - ok

23:17:32.0186 3852 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys

23:17:32.0201 3852 srv - ok

23:17:32.0420 3852 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys

23:17:32.0435 3852 srv2 - ok

23:17:32.0466 3852 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys

23:17:32.0482 3852 srvnet - ok

23:17:32.0576 3852 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll

23:17:32.0576 3852 SSDPSRV - ok

23:17:32.0591 3852 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll

23:17:32.0591 3852 SstpSvc - ok

23:17:32.0794 3852 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

23:17:32.0794 3852 StarWindServiceAE - ok

23:17:33.0168 3852 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

23:17:33.0168 3852 Stereo Service - ok

23:17:33.0215 3852 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

23:17:33.0215 3852 stexstor - ok

23:17:33.0402 3852 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll

23:17:33.0434 3852 stisvc - ok

23:17:33.0512 3852 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys

23:17:33.0527 3852 storflt - ok

23:17:33.0543 3852 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys

23:17:33.0543 3852 storvsc - ok

23:17:33.0558 3852 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys

23:17:33.0558 3852 swenum - ok

23:17:33.0699 3852 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll

23:17:33.0714 3852 swprv - ok

23:17:33.0746 3852 Synth3dVsc - ok

23:17:34.0307 3852 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll

23:17:34.0370 3852 SysMain - ok

23:17:34.0666 3852 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll

23:17:34.0666 3852 TabletInputService - ok

23:17:34.0775 3852 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll

23:17:34.0791 3852 TapiSrv - ok

23:17:34.0822 3852 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll

23:17:34.0822 3852 TBS - ok

23:17:35.0165 3852 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys

23:17:35.0181 3852 Tcpip - ok

23:17:36.0351 3852 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys

23:17:36.0366 3852 TCPIP6 - ok

23:17:36.0990 3852 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys

23:17:36.0990 3852 tcpipreg - ok

23:17:37.0037 3852 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

23:17:37.0037 3852 TDPIPE - ok

23:17:37.0068 3852 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys

23:17:37.0068 3852 TDTCP - ok

23:17:37.0131 3852 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys

23:17:37.0146 3852 tdx - ok

23:17:37.0178 3852 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys

23:17:37.0178 3852 TermDD - ok

23:17:37.0349 3852 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll

23:17:37.0349 3852 TermService - ok

23:17:37.0412 3852 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll

23:17:37.0412 3852 Themes - ok

23:17:37.0427 3852 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll

23:17:37.0427 3852 THREADORDER - ok

23:17:37.0443 3852 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll

23:17:37.0443 3852 TrkWks - ok

23:17:37.0490 3852 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe

23:17:37.0490 3852 TrustedInstaller - ok

23:17:37.0536 3852 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys

23:17:37.0552 3852 tssecsrv - ok

23:17:37.0599 3852 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys

23:17:37.0599 3852 TsUsbFlt - ok

23:17:37.0630 3852 tsusbhub - ok

23:17:37.0692 3852 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys

23:17:37.0692 3852 tunnel - ok

23:17:37.0739 3852 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

23:17:37.0755 3852 uagp35 - ok

23:17:37.0786 3852 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys

23:17:37.0786 3852 udfs - ok

23:17:37.0817 3852 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe

23:17:37.0833 3852 UI0Detect - ok

23:17:37.0880 3852 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys

23:17:37.0895 3852 uliagpkx - ok

23:17:37.0926 3852 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys

23:17:37.0926 3852 umbus - ok

23:17:37.0942 3852 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

23:17:37.0942 3852 UmPass - ok

23:17:38.0020 3852 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll

23:17:38.0020 3852 UmRdpService - ok

23:17:38.0067 3852 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll

23:17:38.0067 3852 upnphost - ok

23:17:38.0114 3852 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys

23:17:38.0114 3852 USBAAPL64 - ok

23:17:38.0207 3852 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys

23:17:38.0207 3852 usbaudio - ok

23:17:38.0238 3852 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys

23:17:38.0238 3852 usbccgp - ok

23:17:38.0301 3852 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys

23:17:38.0301 3852 usbcir - ok

23:17:38.0363 3852 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys

23:17:38.0363 3852 usbehci - ok

23:17:38.0472 3852 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys

23:17:38.0488 3852 usbhub - ok

23:17:38.0519 3852 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys

23:17:38.0519 3852 usbohci - ok

23:17:38.0519 3852 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

23:17:38.0519 3852 usbprint - ok

23:17:38.0582 3852 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS

23:17:38.0582 3852 USBSTOR - ok

23:17:38.0597 3852 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys

23:17:38.0597 3852 usbuhci - ok

23:17:38.0613 3852 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll

23:17:38.0613 3852 UxSms - ok

23:17:38.0660 3852 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

23:17:38.0660 3852 VaultSvc - ok

23:17:38.0753 3852 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys

23:17:38.0753 3852 vdrvroot - ok

23:17:38.0925 3852 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe

23:17:38.0925 3852 vds - ok

23:17:38.0956 3852 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

23:17:38.0972 3852 vga - ok

23:17:38.0987 3852 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

23:17:38.0987 3852 VgaSave - ok

23:17:39.0003 3852 VGPU - ok

23:17:39.0065 3852 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys

23:17:39.0065 3852 vhdmp - ok

23:17:39.0112 3852 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys

23:17:39.0112 3852 viaide - ok

23:17:39.0143 3852 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys

23:17:39.0159 3852 vmbus - ok

23:17:39.0159 3852 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys

23:17:39.0159 3852 VMBusHID - ok

23:17:39.0206 3852 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys

23:17:39.0206 3852 volmgr - ok

23:17:39.0252 3852 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys

23:17:39.0252 3852 volmgrx - ok

23:17:39.0284 3852 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys

23:17:39.0284 3852 volsnap - ok

23:17:39.0330 3852 vpcbus (b4a73ca4ef9a02b9738cea9ad5fe5917) C:\Windows\system32\DRIVERS\vpchbus.sys

23:17:39.0330 3852 vpcbus - ok

23:17:39.0377 3852 vpcnfltr (e675fb2b48c54f09895482e2253b289c) C:\Windows\system32\DRIVERS\vpcnfltr.sys

23:17:39.0377 3852 vpcnfltr - ok

23:17:39.0408 3852 vpcusb (5fb42082b0d19a0268705f1dd343df20) C:\Windows\system32\DRIVERS\vpcusb.sys

23:17:39.0424 3852 vpcusb - ok

23:17:39.0518 3852 vpcvmm (207b6539799cc1c112661a9b620dd233) C:\Windows\system32\drivers\vpcvmm.sys

23:17:39.0518 3852 vpcvmm - ok

23:17:39.0564 3852 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

23:17:39.0564 3852 vsmraid - ok

23:17:39.0814 3852 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe

23:17:39.0845 3852 VSS - ok

23:17:40.0017 3852 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys

23:17:40.0017 3852 vwifibus - ok

23:17:40.0048 3852 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys

23:17:40.0048 3852 vwififlt - ok

23:17:40.0079 3852 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys

23:17:40.0079 3852 vwifimp - ok

23:17:40.0126 3852 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll

23:17:40.0157 3852 W32Time - ok

23:17:40.0173 3852 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

23:17:40.0173 3852 WacomPen - ok

23:17:40.0220 3852 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

23:17:40.0235 3852 WANARP - ok

23:17:40.0235 3852 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

23:17:40.0235 3852 Wanarpv6 - ok

23:17:40.0344 3852 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe

23:17:40.0376 3852 WatAdminSvc - ok

23:17:40.0485 3852 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe

23:17:40.0500 3852 wbengine - ok

23:17:40.0703 3852 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll

23:17:40.0719 3852 WbioSrvc - ok

23:17:40.0766 3852 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll

23:17:40.0781 3852 wcncsvc - ok

23:17:40.0797 3852 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll

23:17:40.0797 3852 WcsPlugInService - ok

23:17:40.0828 3852 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

23:17:40.0828 3852 Wd - ok

23:17:40.0890 3852 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

23:17:40.0890 3852 Wdf01000 - ok

23:17:40.0922 3852 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll

23:17:40.0922 3852 WdiServiceHost - ok

23:17:40.0922 3852 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll

23:17:40.0922 3852 WdiSystemHost - ok

23:17:41.0000 3852 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll

23:17:41.0000 3852 WebClient - ok

23:17:41.0046 3852 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll

23:17:41.0062 3852 Wecsvc - ok

23:17:41.0078 3852 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll

23:17:41.0093 3852 wercplsupport - ok

23:17:41.0109 3852 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll

23:17:41.0109 3852 WerSvc - ok

23:17:41.0140 3852 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

23:17:41.0140 3852 WfpLwf - ok

23:17:41.0171 3852 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

23:17:41.0187 3852 WIMMount - ok

23:17:41.0218 3852 WinDefend - ok

23:17:41.0234 3852 WinHttpAutoProxySvc - ok

23:17:41.0280 3852 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll

23:17:41.0280 3852 Winmgmt - ok

23:17:41.0842 3852 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll

23:17:41.0889 3852 WinRM - ok

23:17:42.0107 3852 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys

23:17:42.0107 3852 WinUsb - ok

23:17:42.0185 3852 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll

23:17:42.0185 3852 Wlansvc - ok

23:17:42.0232 3852 WmBEnum (680a7846370000d20d7e74917d5b7936) C:\Windows\system32\drivers\WmBEnum.sys

23:17:42.0232 3852 WmBEnum - ok

23:17:42.0248 3852 WmFilter (14c35ba8189c6f65d839163aa285e954) C:\Windows\system32\drivers\WmFilter.sys

23:17:42.0263 3852 WmFilter - ok

23:17:42.0279 3852 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys

23:17:42.0294 3852 WmiAcpi - ok

23:17:42.0341 3852 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe

23:17:42.0341 3852 wmiApSrv - ok

23:17:42.0388 3852 WMPNetworkSvc - ok

23:17:42.0435 3852 WmVirHid (8488dd91a3ee54a8e29f02ad7bb8201e) C:\Windows\system32\drivers\WmVirHid.sys

23:17:42.0435 3852 WmVirHid - ok

23:17:42.0450 3852 WmXlCore (14802b3a30aa849c97cb968ccc813bf3) C:\Windows\system32\drivers\WmXlCore.sys

23:17:42.0450 3852 WmXlCore - ok

23:17:42.0466 3852 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll

23:17:42.0482 3852 WPCSvc - ok

23:17:42.0513 3852 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll

23:17:42.0513 3852 WPDBusEnum - ok

23:17:42.0528 3852 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

23:17:42.0528 3852 ws2ifsl - ok

23:17:42.0575 3852 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll

23:17:42.0575 3852 wscsvc - ok

23:17:42.0622 3852 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys

23:17:42.0622 3852 WSDPrintDevice - ok

23:17:42.0638 3852 WSearch - ok

23:17:43.0808 3852 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll

23:17:43.0854 3852 wuauserv - ok

23:17:44.0400 3852 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys

23:17:44.0400 3852 WudfPf - ok

23:17:44.0494 3852 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys

23:17:44.0494 3852 WUDFRd - ok

23:17:44.0525 3852 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll

23:17:44.0525 3852 wudfsvc - ok

23:17:44.0556 3852 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll

23:17:44.0572 3852 WwanSvc - ok

23:17:44.0603 3852 xusb21 (2c6bc21b2d5b58d8b1d638c1704cb494) C:\Windows\system32\DRIVERS\xusb21.sys

23:17:44.0603 3852 xusb21 - ok

23:17:44.0666 3852 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0

23:17:45.0492 3852 \Device\Harddisk0\DR0 - ok

23:17:45.0508 3852 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk1\DR1

23:17:45.0555 3852 \Device\Harddisk1\DR1 - ok

23:17:45.0555 3852 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk2\DR2

23:17:45.0555 3852 \Device\Harddisk2\DR2 - ok

23:17:45.0570 3852 Boot (0x1200) (a1cbd61da0a402972c7bdba51c9332a0) \Device\Harddisk0\DR0\Partition0

23:17:45.0570 3852 \Device\Harddisk0\DR0\Partition0 - ok

23:17:45.0586 3852 Boot (0x1200) (eff0407c7525c8f554f2eb706344797f) \Device\Harddisk0\DR0\Partition1

23:17:45.0617 3852 \Device\Harddisk0\DR0\Partition1 - ok

23:17:45.0617 3852 Boot (0x1200) (251fb1f81f048e35ce470cbe51b546ce) \Device\Harddisk1\DR1\Partition0

23:17:45.0617 3852 \Device\Harddisk1\DR1\Partition0 - ok

23:17:45.0617 3852 Boot (0x1200) (36413a580209b2e35ecf1abda637f22b) \Device\Harddisk2\DR2\Partition0

23:17:45.0617 3852 \Device\Harddisk2\DR2\Partition0 - ok

23:17:45.0617 3852 ============================================================

23:17:45.0617 3852 Scan finished

23:17:45.0617 3852 ============================================================

23:17:45.0633 3844 Detected object count: 0

23:17:45.0633 3844 Actual detected object count: 0

23:17:48.0612 3780 Deinitialize success

[D-FRED-BROWN]

Im not sure but i believe the sptd file is related to a virtual cd program i use, should i delete it?

You are correct, it's a legitimate file.

Regarding ComboFix, see if you can do the following:

Please download and run the following tool to help allow other programs to run. (courtesy of BleepingComputer.com)

There are 3 different versions. If one of them won't run then download and try to run the other one.

Vista and Win7 users need to right click and choose Run as Admin

You only need to get one of them to run, not all of them.

rkill.exe

rkill.com

rkill.scr

After you have done that, please try to re-run ComboFix. Let me know how things go.

[Gurgg]

Rkill was the first thing i thought of when Combofix wouldn't run. Upon doing more searching since the first night it seems this is a newer version of this infection. I needed my PC desperately and I see you guys have alot going on, so I have reformatted. I really appreciate the time you did spend and I commend you for offering your services to strangers at no charge. Good luck with future infections (it seems there is even a couple mentions of it on here now!)

[D-FRED-BROWN]

No problem. I'm sorry we couldn't help you, but I'm happy to hear the issue is resolved.

[LDTate]

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!