Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Virus & Other Malware Removal Virus & Other Malware Removal
Search Search
Search for:
Tech Support Guy > > >

Solved: Been locking up, then Bluescreened... Help!?


(!)

norgalis's Avatar
norgalis norgalis is offline
Computer Specs
Member with 113 posts.
THREAD STARTER
 
Join Date: Jul 2006
Experience: Beginner
01-Jul-2012, 09:59 PM #16
K, that was the log I posted. Here are the threats found, exported to a txt file...

C:\TDSSKiller_Quarantine\28.06.2012_13.58.34\tdlfs0000\tsk0003.dta Win32/Olmarik.ADZ trojan
C:\TDSSKiller_Quarantine\28.06.2012_13.58.34\tdlfs0000\tsk0005.dta Win32/Olmarik.AFK trojan
C:\TDSSKiller_Quarantine\28.06.2012_13.58.34\tdlfs0000\tsk0006.dta Win64/Olmarik.Q trojan
C:\TDSSKiller_Quarantine\28.06.2012_13.58.34\tdlfs0000\tsk0007.dta Win64/Olmarik.Q trojan
C:\TDSSKiller_Quarantine\28.06.2012_13.58.34\tdlfs0000\tsk0008.dta Win64/Olmarik.A trojan
C:\TDSSKiller_Quarantine\28.06.2012_13.58.34\tdlfs0000\tsk0009.dta a variant of Win32/Olmarik.ATI trojan
C:\TDSSKiller_Quarantine\28.06.2012_13.58.34\tdlfs0000\tsk0011.dta probably a variant of Win32/Agent.GVKNWIR trojan
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
Malware Removal Specialist with 1,727 posts.
 
Join Date: May 2011
02-Jul-2012, 06:36 AM #17
Great! Those look good. How is your system running?
norgalis's Avatar
norgalis norgalis is offline
Computer Specs
Member with 113 posts.
THREAD STARTER
 
Join Date: Jul 2006
Experience: Beginner
02-Jul-2012, 11:50 AM #18
I will reboot now, and see if I lock up!
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
Malware Removal Specialist with 1,727 posts.
 
Join Date: May 2011
02-Jul-2012, 12:34 PM #19
Ok let me know.
norgalis's Avatar
norgalis norgalis is offline
Computer Specs
Member with 113 posts.
THREAD STARTER
 
Join Date: Jul 2006
Experience: Beginner
03-Jul-2012, 11:31 AM #20
I'm sorry to say, it just froze again! I needed to hold the power button to shut off & restart. It froze just a few seconds after logging into the desktop, as usual. Any ideas as to what that could mean?

Thank you for your help
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
Malware Removal Specialist with 1,727 posts.
 
Join Date: May 2011
03-Jul-2012, 01:12 PM #21
The problem with the type of infection that you had on your system is the damage that it does besides being utterly annoying. We may be dealing with trying to fix the damage created at this point. With any luck it is not too extensive. If you need to do any of the following in Safe Mode with Networking that is fine...

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.
----------
norgalis's Avatar
norgalis norgalis is offline
Computer Specs
Member with 113 posts.
THREAD STARTER
 
Join Date: Jul 2006
Experience: Beginner
03-Jul-2012, 09:43 PM #22
Ah, I see - I'm hoping it's not too bad. Here's the log...

Farbar Service Scanner Version: 02-07-2012
Ran by Owner (administrator) on 03-07-2012 at 19:42:12
Running from "C:\Users\Owner\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
Malware Removal Specialist with 1,727 posts.
 
Join Date: May 2011
04-Jul-2012, 11:08 AM #23
Hi,

That log looks ok.

Download Windows Repair (all in one) from this site

Install and then run the program. Start with Step 2 >> Step 3 >> Step 4

On the Start Repairs tab, select Advanced Mode and click Start



Select the items Checked in the screen shot below (remove the checks from the rest ) and check Restart System When Finished.


----------

Once complete please let me know if the system is still locking up.
norgalis's Avatar
norgalis norgalis is offline
Computer Specs
Member with 113 posts.
THREAD STARTER
 
Join Date: Jul 2006
Experience: Beginner
05-Jul-2012, 12:35 PM #24
It finished & restarted. It still locks up...

What happens is the PC will make it to the Windows Login screen, then freeze (sometimes I'll be able to log in, then it freezes promptly in windows).

So I hold the power button & restart it, the 2nd time it's usually ok. Any ideas?
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
Malware Removal Specialist with 1,727 posts.
 
Join Date: May 2011
05-Jul-2012, 02:23 PM #25
Hi,

Please run a new scan with TDSSKiller and post the new log.
norgalis's Avatar
norgalis norgalis is offline
Computer Specs
Member with 113 posts.
THREAD STARTER
 
Join Date: Jul 2006
Experience: Beginner
05-Jul-2012, 08:42 PM #26
Yes sir, here it is - I followed your instructions from last time & checked the box again.

18:40:05.0918 6440 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
18:40:06.0428 6440 ============================================================
18:40:06.0428 6440 Current date / time: 2012/07/05 18:40:06.0428
18:40:06.0428 6440 SystemInfo:
18:40:06.0428 6440
18:40:06.0428 6440 OS Version: 6.1.7601 ServicePack: 1.0
18:40:06.0428 6440 Product type: Workstation
18:40:06.0428 6440 ComputerName: OWNER-PC
18:40:06.0428 6440 UserName: Owner
18:40:06.0428 6440 Windows directory: C:\Windows
18:40:06.0428 6440 System windows directory: C:\Windows
18:40:06.0428 6440 Running under WOW64
18:40:06.0428 6440 Processor architecture: Intel x64
18:40:06.0428 6440 Number of processors: 3
18:40:06.0428 6440 Page size: 0x1000
18:40:06.0428 6440 Boot type: Normal boot
18:40:06.0428 6440 ============================================================
18:40:08.0168 6440 Drive \Device\Harddisk0\DR0 - Size: 0x45DECD2000 (279.48 Gb), SectorSize: 0x200, Cylinders: 0x8E83, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:40:08.0168 6440 Drive \Device\Harddisk1\DR1 - Size: 0x3CDD2200 (0.95 Gb), SectorSize: 0x200, Cylinders: 0x7C, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:40:08.0178 6440 ============================================================
18:40:08.0178 6440 \Device\Harddisk0\DR0:
18:40:08.0178 6440 MBR partitions:
18:40:08.0178 6440 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x22EEEBC3
18:40:08.0178 6440 \Device\Harddisk1\DR1:
18:40:08.0178 6440 MBR partitions:
18:40:08.0178 6440 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x6, StartLBA 0xF7, BlocksNum 0x1E6B69
18:40:08.0178 6440 ============================================================
18:40:08.0238 6440 C: <-> \Device\Harddisk0\DR0\Partition0
18:40:08.0238 6440 ============================================================
18:40:08.0238 6440 Initialize success
18:40:08.0238 6440 ============================================================
18:40:23.0909 7788 ============================================================
18:40:23.0909 7788 Scan started
18:40:23.0909 7788 Mode: Manual; TDLFS;
18:40:23.0909 7788 ============================================================
18:40:26.0260 7788 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:40:26.0260 7788 1394ohci - ok
18:40:26.0290 7788 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:40:26.0310 7788 ACPI - ok
18:40:26.0320 7788 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:40:26.0330 7788 AcpiPmi - ok
18:40:26.0470 7788 AdobeActiveFileMonitor9.0 (1474f121c3df1232d3e7239c03691ee6) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
18:40:26.0490 7788 AdobeActiveFileMonitor9.0 - ok
18:40:26.0560 7788 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:40:26.0570 7788 AdobeARMservice - ok
18:40:26.0730 7788 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:40:26.0730 7788 AdobeFlashPlayerUpdateSvc - ok
18:40:26.0770 7788 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
18:40:26.0790 7788 adp94xx - ok
18:40:26.0810 7788 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
18:40:26.0830 7788 adpahci - ok
18:40:26.0850 7788 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
18:40:26.0860 7788 adpu320 - ok
18:40:26.0910 7788 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:40:26.0910 7788 AeLookupSvc - ok
18:40:26.0980 7788 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:40:26.0990 7788 AFD - ok
18:40:27.0020 7788 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:40:27.0030 7788 agp440 - ok
18:40:27.0230 7788 Akamai (29584f02a43e427c4227e3b1d9ff1b22) c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll
18:40:27.0230 7788 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll. md5: 29584f02a43e427c4227e3b1d9ff1b22
18:40:27.0240 7788 Akamai ( HiddenFile.Multi.Generic ) - warning
18:40:27.0240 7788 Akamai - detected HiddenFile.Multi.Generic (1)
18:40:27.0360 7788 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:40:27.0370 7788 ALG - ok
18:40:27.0450 7788 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:40:27.0470 7788 aliide - ok
18:40:27.0600 7788 ALSysIO - ok
18:40:27.0620 7788 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:40:27.0630 7788 amdide - ok
18:40:27.0690 7788 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
18:40:27.0690 7788 AmdK8 - ok
18:40:27.0720 7788 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:40:27.0720 7788 AmdPPM - ok
18:40:27.0760 7788 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:40:27.0780 7788 amdsata - ok
18:40:27.0810 7788 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
18:40:27.0820 7788 amdsbs - ok
18:40:27.0830 7788 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:40:27.0830 7788 amdxata - ok
18:40:27.0880 7788 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:40:27.0890 7788 AppID - ok
18:40:27.0930 7788 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:40:27.0940 7788 AppIDSvc - ok
18:40:27.0960 7788 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:40:27.0970 7788 Appinfo - ok
18:40:28.0080 7788 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:40:28.0090 7788 Apple Mobile Device - ok
18:40:28.0130 7788 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
18:40:28.0150 7788 arc - ok
18:40:28.0170 7788 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
18:40:28.0180 7788 arcsas - ok
18:40:28.0210 7788 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:40:28.0220 7788 AsyncMac - ok
18:40:28.0220 7788 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:40:28.0220 7788 atapi - ok
18:40:28.0470 7788 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:40:28.0510 7788 AudioEndpointBuilder - ok
18:40:28.0510 7788 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:40:28.0520 7788 AudioSrv - ok
18:40:28.0540 7788 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:40:28.0550 7788 AxInstSV - ok
18:40:28.0600 7788 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
18:40:28.0620 7788 b06bdrv - ok
18:40:28.0670 7788 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:40:28.0690 7788 b57nd60a - ok
18:40:28.0780 7788 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
18:40:28.0790 7788 BcmSqlStartupSvc - ok
18:40:28.0800 7788 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:40:28.0810 7788 BDESVC - ok
18:40:28.0840 7788 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:40:28.0840 7788 Beep - ok
18:40:28.0910 7788 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:40:28.0930 7788 BFE - ok
18:40:28.0990 7788 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
18:40:29.0060 7788 BITS - ok
18:40:29.0110 7788 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:40:29.0120 7788 blbdrive - ok
18:40:29.0220 7788 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
18:40:29.0240 7788 Bonjour Service - ok
18:40:29.0260 7788 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:40:29.0270 7788 bowser - ok
18:40:29.0350 7788 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
18:40:29.0390 7788 BrFiltLo - ok
18:40:29.0410 7788 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
18:40:29.0410 7788 BrFiltUp - ok
18:40:29.0470 7788 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
18:40:29.0480 7788 BridgeMP - ok
18:40:29.0500 7788 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:40:29.0520 7788 Browser - ok
18:40:29.0560 7788 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:40:29.0570 7788 Brserid - ok
18:40:29.0590 7788 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:40:29.0610 7788 BrSerWdm - ok
18:40:29.0630 7788 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:40:29.0640 7788 BrUsbMdm - ok
18:40:29.0650 7788 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:40:29.0670 7788 BrUsbSer - ok
18:40:29.0690 7788 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
18:40:29.0700 7788 BTHMODEM - ok
18:40:29.0730 7788 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:40:29.0740 7788 bthserv - ok
18:40:29.0750 7788 catchme - ok
18:40:29.0770 7788 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:40:29.0780 7788 cdfs - ok
18:40:29.0820 7788 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:40:29.0830 7788 cdrom - ok
18:40:29.0890 7788 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:40:29.0900 7788 CertPropSvc - ok
18:40:29.0920 7788 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
18:40:29.0940 7788 circlass - ok
18:40:29.0970 7788 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:40:29.0990 7788 CLFS - ok
18:40:30.0080 7788 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:40:30.0100 7788 clr_optimization_v2.0.50727_32 - ok
18:40:30.0180 7788 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:40:30.0210 7788 clr_optimization_v2.0.50727_64 - ok
18:40:30.0270 7788 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:40:30.0290 7788 clr_optimization_v4.0.30319_32 - ok
18:40:30.0310 7788 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:40:30.0320 7788 clr_optimization_v4.0.30319_64 - ok
18:40:30.0350 7788 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
18:40:30.0360 7788 CmBatt - ok
18:40:30.0370 7788 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:40:30.0390 7788 cmdide - ok
18:40:30.0440 7788 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:40:30.0460 7788 CNG - ok
18:40:30.0480 7788 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
18:40:30.0480 7788 Compbatt - ok
18:40:30.0520 7788 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
18:40:30.0520 7788 CompositeBus - ok
18:40:30.0530 7788 COMSysApp - ok
18:40:30.0610 7788 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
18:40:30.0640 7788 crcdisk - ok
18:40:30.0700 7788 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:40:30.0710 7788 CryptSvc - ok
18:40:30.0820 7788 DAUpdaterSvc (914a7156b0c0f10be645a02e13f576b2) C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
18:40:30.0830 7788 DAUpdaterSvc - ok
18:40:30.0910 7788 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:40:30.0920 7788 DcomLaunch - ok
18:40:30.0990 7788 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:40:31.0000 7788 defragsvc - ok
18:40:31.0030 7788 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:40:31.0040 7788 DfsC - ok
18:40:31.0060 7788 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:40:31.0070 7788 Dhcp - ok
18:40:31.0080 7788 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:40:31.0090 7788 discache - ok
18:40:31.0110 7788 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
18:40:31.0120 7788 Disk - ok
18:40:31.0160 7788 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:40:31.0170 7788 Dnscache - ok
18:40:31.0180 7788 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:40:31.0190 7788 dot3svc - ok
18:40:31.0250 7788 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
18:40:31.0260 7788 Dot4 - ok
18:40:31.0270 7788 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
18:40:31.0270 7788 Dot4Print - ok
18:40:31.0340 7788 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
18:40:31.0350 7788 dot4usb - ok
18:40:31.0370 7788 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:40:31.0380 7788 DPS - ok
18:40:31.0410 7788 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:40:31.0420 7788 drmkaud - ok
18:40:31.0480 7788 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:40:31.0510 7788 DXGKrnl - ok
18:40:31.0550 7788 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:40:31.0560 7788 EapHost - ok
18:40:31.0670 7788 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
18:40:31.0750 7788 ebdrv - ok
18:40:31.0880 7788 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:40:31.0900 7788 EFS - ok
18:40:31.0990 7788 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:40:32.0010 7788 ehRecvr - ok
18:40:32.0040 7788 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:40:32.0040 7788 ehSched - ok
18:40:32.0120 7788 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
18:40:32.0140 7788 elxstor - ok
18:40:32.0160 7788 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:40:32.0170 7788 ErrDev - ok
18:40:32.0230 7788 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:40:32.0240 7788 EventSystem - ok
18:40:32.0280 7788 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:40:32.0280 7788 exfat - ok
18:40:32.0310 7788 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:40:32.0320 7788 fastfat - ok
18:40:32.0360 7788 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:40:32.0380 7788 Fax - ok
18:40:32.0410 7788 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
18:40:32.0420 7788 fdc - ok
18:40:32.0450 7788 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:40:32.0460 7788 fdPHost - ok
18:40:32.0470 7788 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:40:32.0490 7788 FDResPub - ok
18:40:32.0490 7788 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:40:32.0500 7788 FileInfo - ok
18:40:32.0540 7788 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:40:32.0540 7788 Filetrace - ok
18:40:32.0660 7788 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:40:32.0690 7788 FLEXnet Licensing Service - ok
18:40:32.0720 7788 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
18:40:32.0730 7788 flpydisk - ok
18:40:32.0760 7788 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:40:32.0770 7788 FltMgr - ok
18:40:32.0820 7788 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:40:32.0850 7788 FontCache - ok
18:40:32.0970 7788 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:40:32.0990 7788 FontCache3.0.0.0 - ok
18:40:33.0040 7788 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:40:33.0040 7788 FsDepends - ok
18:40:33.0100 7788 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
18:40:33.0110 7788 fssfltr - ok
18:40:33.0240 7788 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
18:40:33.0280 7788 fsssvc - ok
18:40:33.0450 7788 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:40:33.0460 7788 Fs_Rec - ok
18:40:33.0690 7788 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:40:33.0710 7788 fvevol - ok
18:40:33.0760 7788 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
18:40:33.0840 7788 gagp30kx - ok
18:40:33.0880 7788 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:40:33.0890 7788 GEARAspiWDM - ok
18:40:33.0940 7788 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:40:33.0960 7788 gpsvc - ok
18:40:34.0080 7788 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:34.0090 7788 gupdate - ok
18:40:34.0110 7788 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:34.0110 7788 gupdatem - ok
18:40:34.0130 7788 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:40:34.0140 7788 hcw85cir - ok
18:40:34.0200 7788 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:40:34.0220 7788 HdAudAddService - ok
18:40:34.0260 7788 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:40:34.0270 7788 HDAudBus - ok
18:40:34.0290 7788 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
18:40:34.0310 7788 HidBatt - ok
18:40:34.0330 7788 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
18:40:34.0340 7788 HidBth - ok
18:40:34.0350 7788 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
18:40:34.0370 7788 HidIr - ok
18:40:34.0400 7788 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
18:40:34.0420 7788 hidserv - ok
18:40:34.0480 7788 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:40:34.0480 7788 HidUsb - ok
18:40:34.0540 7788 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:40:34.0550 7788 hkmsvc - ok
18:40:34.0600 7788 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:40:34.0610 7788 HomeGroupListener - ok
18:40:34.0650 7788 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:40:34.0660 7788 HomeGroupProvider - ok
18:40:34.0800 7788 hpqcxs08 (5da42d24712e00728cea2342a65009b2) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:40:34.0810 7788 hpqcxs08 - ok
18:40:34.0830 7788 hpqddsvc (d86a39bf100069444d026d22d9a6e555) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:40:34.0840 7788 hpqddsvc - ok
18:40:34.0870 7788 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:40:34.0880 7788 HpSAMD - ok
18:40:34.0950 7788 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
18:40:34.0980 7788 HPSLPSVC - ok
18:40:35.0020 7788 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:40:35.0040 7788 HTTP - ok
18:40:35.0050 7788 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:40:35.0050 7788 hwpolicy - ok
18:40:35.0090 7788 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:40:35.0100 7788 i8042prt - ok
18:40:35.0141 7788 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:40:35.0161 7788 iaStorV - ok
18:40:35.0341 7788 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:40:35.0361 7788 idsvc - ok
18:40:35.0391 7788 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
18:40:35.0401 7788 iirsp - ok
18:40:35.0461 7788 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:40:35.0481 7788 IKEEXT - ok
18:40:35.0581 7788 IntcAzAudAddService (26407a11d7e222afb7ce32700abbd9d1) C:\Windows\system32\drivers\RTKVHD64.sys
18:40:35.0641 7788 IntcAzAudAddService - ok
18:40:35.0821 7788 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:40:35.0831 7788 intelide - ok
18:40:35.0861 7788 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
18:40:35.0881 7788 intelppm - ok
18:40:35.0911 7788 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:40:35.0921 7788 IPBusEnum - ok
18:40:35.0951 7788 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:40:35.0961 7788 IpFilterDriver - ok
18:40:36.0001 7788 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:40:36.0011 7788 iphlpsvc - ok
18:40:36.0041 7788 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:40:36.0051 7788 IPMIDRV - ok
18:40:36.0071 7788 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:40:36.0071 7788 IPNAT - ok
18:40:36.0191 7788 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
18:40:36.0221 7788 iPod Service - ok
18:40:36.0251 7788 irda (05360b1ea5a2abf620d1d96ebd8bd8f1) C:\Windows\system32\DRIVERS\irda.sys
18:40:36.0261 7788 irda - ok
18:40:36.0281 7788 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:40:36.0301 7788 IRENUM - ok
18:40:36.0321 7788 Irmon (3848384ab383f0a8f506c4370635c1f9) C:\Windows\System32\irmon.dll
18:40:36.0341 7788 Irmon - ok
18:40:36.0391 7788 irsir (d2ca12736624ba636f8357dc3ef0757e) C:\Windows\system32\DRIVERS\irsir.sys
18:40:36.0401 7788 irsir - ok
18:40:36.0431 7788 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:40:36.0441 7788 isapnp - ok
18:40:36.0461 7788 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:40:36.0471 7788 iScsiPrt - ok
18:40:36.0501 7788 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:40:36.0521 7788 kbdclass - ok
18:40:36.0541 7788 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:40:36.0551 7788 kbdhid - ok
18:40:36.0591 7788 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:40:36.0601 7788 KeyIso - ok
18:40:36.0611 7788 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:40:36.0621 7788 KSecDD - ok
18:40:36.0631 7788 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:40:36.0641 7788 KSecPkg - ok
18:40:36.0651 7788 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:40:36.0661 7788 ksthunk - ok
18:40:36.0701 7788 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:40:36.0721 7788 KtmRm - ok
18:40:36.0781 7788 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
18:40:36.0801 7788 LanmanServer - ok
18:40:36.0841 7788 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:40:36.0851 7788 LanmanWorkstation - ok
18:40:37.0001 7788 Lavasoft Kernexplorer (9a7fa6371f68335fd3c3d6488bc5a9f8) C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys
18:40:37.0001 7788 Lavasoft Kernexplorer - ok
18:40:37.0061 7788 Linksys_adapter_H (584528bf596a54b2bf6be5067adda44a) C:\Windows\system32\DRIVERS\AE2500w764.sys
18:40:37.0091 7788 Linksys_adapter_H - ok
18:40:37.0151 7788 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:40:37.0161 7788 lltdio - ok
18:40:37.0201 7788 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:40:37.0221 7788 lltdsvc - ok
18:40:37.0241 7788 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:40:37.0251 7788 lmhosts - ok
18:40:37.0281 7788 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
18:40:37.0331 7788 LSI_FC - ok
18:40:37.0391 7788 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
18:40:37.0401 7788 LSI_SAS - ok
18:40:37.0421 7788 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
18:40:37.0431 7788 LSI_SAS2 - ok
18:40:37.0451 7788 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
18:40:37.0461 7788 LSI_SCSI - ok
18:40:37.0491 7788 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:40:37.0501 7788 luafv - ok
18:40:37.0531 7788 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
18:40:37.0531 7788 MBAMProtector - ok
18:40:37.0621 7788 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:40:37.0651 7788 MBAMService - ok
18:40:37.0691 7788 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:40:37.0701 7788 Mcx2Svc - ok
18:40:37.0711 7788 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
18:40:37.0731 7788 megasas - ok
18:40:37.0751 7788 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
18:40:37.0761 7788 MegaSR - ok
18:40:37.0801 7788 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:40:37.0811 7788 MMCSS - ok
18:40:37.0821 7788 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:40:37.0831 7788 Modem - ok
18:40:37.0851 7788 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:40:37.0851 7788 monitor - ok
18:40:37.0861 7788 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:40:37.0871 7788 mouclass - ok
18:40:37.0901 7788 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:40:37.0911 7788 mouhid - ok
18:40:37.0921 7788 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:40:37.0931 7788 mountmgr - ok
18:40:38.0071 7788 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:40:38.0081 7788 MozillaMaintenance - ok
18:40:38.0111 7788 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:40:38.0121 7788 mpio - ok
18:40:38.0151 7788 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:40:38.0151 7788 mpsdrv - ok
18:40:38.0211 7788 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:40:38.0231 7788 MpsSvc - ok
18:40:38.0251 7788 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:40:38.0271 7788 MRxDAV - ok
18:40:38.0311 7788 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:40:38.0311 7788 mrxsmb - ok
18:40:38.0361 7788 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:40:38.0371 7788 mrxsmb10 - ok
18:40:38.0381 7788 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:40:38.0391 7788 mrxsmb20 - ok
18:40:38.0401 7788 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:40:38.0421 7788 msahci - ok
18:40:38.0451 7788 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:40:38.0461 7788 msdsm - ok
18:40:38.0491 7788 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:40:38.0491 7788 MSDTC - ok
18:40:38.0511 7788 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:40:38.0511 7788 Msfs - ok
18:40:38.0521 7788 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:40:38.0521 7788 mshidkmdf - ok
18:40:38.0531 7788 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:40:38.0531 7788 msisadrv - ok
18:40:38.0571 7788 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:40:38.0581 7788 MSiSCSI - ok
18:40:38.0581 7788 msiserver - ok
18:40:38.0641 7788 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:40:38.0661 7788 MSKSSRV - ok
18:40:38.0691 7788 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:40:38.0721 7788 MSPCLOCK - ok
18:40:38.0741 7788 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:40:38.0741 7788 MSPQM - ok
18:40:38.0771 7788 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:40:38.0781 7788 MsRPC - ok
18:40:38.0801 7788 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
18:40:38.0801 7788 mssmbios - ok
18:40:38.0881 7788 MSSQL$MSSMLBIZ - ok
18:40:38.0911 7788 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
18:40:38.0931 7788 MSSQLServerADHelper - ok
18:40:38.0951 7788 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:40:38.0951 7788 MSTEE - ok
18:40:38.0991 7788 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
18:40:39.0011 7788 MTConfig - ok
18:40:39.0031 7788 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:40:39.0031 7788 Mup - ok
18:40:39.0081 7788 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:40:39.0091 7788 napagent - ok
18:40:39.0131 7788 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:40:39.0151 7788 NativeWifiP - ok
18:40:39.0191 7788 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:40:39.0221 7788 NDIS - ok
18:40:39.0251 7788 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:40:39.0261 7788 NdisCap - ok
18:40:39.0301 7788 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:40:39.0311 7788 NdisTapi - ok
18:40:39.0331 7788 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:40:39.0351 7788 Ndisuio - ok
18:40:39.0421 7788 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:40:39.0471 7788 NdisWan - ok
18:40:39.0521 7788 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:40:39.0531 7788 NDProxy - ok
18:40:39.0661 7788 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
18:40:39.0671 7788 Net Driver HPZ12 - ok
18:40:39.0681 7788 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:40:39.0681 7788 NetBIOS - ok
18:40:39.0701 7788 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:40:39.0711 7788 NetBT - ok
18:40:39.0751 7788 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:40:39.0751 7788 Netlogon - ok
18:40:39.0801 7788 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:40:39.0821 7788 Netman - ok
18:40:39.0841 7788 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:40:39.0851 7788 netprofm - ok
18:40:40.0001 7788 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:40:40.0011 7788 NetTcpPortSharing - ok
18:40:40.0051 7788 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
18:40:40.0061 7788 nfrd960 - ok
18:40:40.0211 7788 NitroDriverReadSpool2 (a79d2a51e9743262d35258d515ce773e) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
18:40:40.0221 7788 NitroDriverReadSpool2 - ok
18:40:40.0291 7788 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:40:40.0311 7788 NlaSvc - ok
18:40:40.0391 7788 nlsX86cc (fac20f9060ff9c74af0c8a002bb04ae7) C:\Windows\SysWOW64\NLSSRV32.EXE
18:40:40.0401 7788 nlsX86cc - ok
18:40:40.0471 7788 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:40:40.0481 7788 Npfs - ok
18:40:40.0491 7788 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:40:40.0501 7788 nsi - ok
18:40:40.0511 7788 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:40:40.0531 7788 nsiproxy - ok
18:40:40.0601 7788 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:40:40.0641 7788 Ntfs - ok
18:40:40.0801 7788 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
18:40:40.0801 7788 NuidFltr - ok
18:40:40.0811 7788 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:40:40.0811 7788 Null - ok
18:40:40.0871 7788 NVHDA (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
18:40:40.0881 7788 NVHDA - ok
18:40:41.0261 7788 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:40:41.0651 7788 nvlddmkm - ok
18:40:41.0761 7788 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:40:41.0781 7788 nvraid - ok
18:40:41.0831 7788 nvsmu (e58d81fb8616d0cb55c1e36aa0b213c9) C:\Windows\system32\DRIVERS\nvsmu.sys
18:40:41.0831 7788 nvsmu - ok
18:40:41.0851 7788 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:40:41.0851 7788 nvstor - ok
18:40:41.0931 7788 NVSvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
18:40:41.0971 7788 NVSvc - ok
18:40:42.0141 7788 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
18:40:42.0191 7788 nvUpdatusService - ok
18:40:42.0351 7788 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:40:42.0361 7788 nv_agp - ok
18:40:42.0461 7788 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:40:42.0481 7788 odserv - ok
18:40:42.0491 7788 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:40:42.0501 7788 ohci1394 - ok
18:40:42.0551 7788 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:40:42.0561 7788 ose - ok
18:40:42.0611 7788 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:40:42.0621 7788 p2pimsvc - ok
18:40:42.0641 7788 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:40:42.0661 7788 p2psvc - ok
18:40:42.0681 7788 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
18:40:42.0691 7788 Parport - ok
18:40:42.0731 7788 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:40:42.0741 7788 partmgr - ok
18:40:42.0751 7788 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:40:42.0761 7788 PcaSvc - ok
18:40:42.0781 7788 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:40:42.0791 7788 pci - ok
18:40:42.0801 7788 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:40:42.0801 7788 pciide - ok
18:40:42.0831 7788 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
18:40:42.0841 7788 pcmcia - ok
18:40:42.0851 7788 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:40:42.0851 7788 pcw - ok
18:40:42.0881 7788 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:40:42.0901 7788 PEAUTH - ok
18:40:42.0991 7788 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:40:43.0001 7788 PerfHost - ok
18:40:43.0051 7788 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:40:43.0091 7788 pla - ok
18:40:43.0151 7788 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:40:43.0171 7788 PlugPlay - ok
18:40:43.0241 7788 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
18:40:43.0251 7788 Pml Driver HPZ12 - ok
18:40:43.0261 7788 PnkBstrA - ok
18:40:43.0271 7788 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:40:43.0301 7788 PNRPAutoReg - ok
18:40:43.0321 7788 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:40:43.0331 7788 PNRPsvc - ok
18:40:43.0391 7788 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
18:40:43.0401 7788 Point64 - ok
18:40:43.0471 7788 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:40:43.0481 7788 PolicyAgent - ok
18:40:43.0531 7788 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:40:43.0541 7788 Power - ok
18:40:43.0591 7788 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:40:43.0601 7788 PptpMiniport - ok
18:40:43.0621 7788 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
18:40:43.0631 7788 Processor - ok
18:40:43.0681 7788 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:40:43.0691 7788 ProfSvc - ok
18:40:43.0721 7788 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:40:43.0721 7788 ProtectedStorage - ok
18:40:43.0741 7788 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:40:43.0751 7788 Psched - ok
18:40:43.0801 7788 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:40:43.0801 7788 PxHlpa64 - ok
18:40:43.0871 7788 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
18:40:43.0911 7788 ql2300 - ok
18:40:44.0041 7788 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
18:40:44.0041 7788 ql40xx - ok
18:40:44.0091 7788 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:40:44.0111 7788 QWAVE - ok
18:40:44.0121 7788 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:40:44.0141 7788 QWAVEdrv - ok
18:40:44.0161 7788 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:40:44.0171 7788 RasAcd - ok
18:40:44.0211 7788 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:40:44.0221 7788 RasAgileVpn - ok
18:40:44.0231 7788 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:40:44.0251 7788 RasAuto - ok
18:40:44.0261 7788 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:40:44.0281 7788 Rasl2tp - ok
18:40:44.0301 7788 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:40:44.0321 7788 RasMan - ok
18:40:44.0331 7788 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:40:44.0351 7788 RasPppoe - ok
18:40:44.0361 7788 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:40:44.0381 7788 RasSstp - ok
18:40:44.0391 7788 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:40:44.0411 7788 rdbss - ok
18:40:44.0431 7788 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
18:40:44.0441 7788 rdpbus - ok
18:40:44.0461 7788 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:40:44.0461 7788 RDPCDD - ok
18:40:44.0471 7788 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:40:44.0471 7788 RDPENCDD - ok
18:40:44.0481 7788 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:40:44.0481 7788 RDPREFMP - ok
18:40:44.0521 7788 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:40:44.0531 7788 RDPWD - ok
18:40:44.0591 7788 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:40:44.0601 7788 rdyboost - ok
18:40:44.0661 7788 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:40:44.0671 7788 RemoteAccess - ok
18:40:44.0681 7788 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:40:44.0691 7788 RemoteRegistry - ok
18:40:44.0711 7788 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:40:44.0721 7788 RpcEptMapper - ok
18:40:44.0751 7788 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:40:44.0751 7788 RpcLocator - ok
18:40:44.0781 7788 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:40:44.0781 7788 RpcSs - ok
18:40:44.0811 7788 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:40:44.0821 7788 rspndr - ok
18:40:44.0871 7788 rt61x64 (60eb8a87357ca5b088b422d1e55a2405) C:\Windows\system32\DRIVERS\WMP54Gv41x64.sys
18:40:44.0891 7788 rt61x64 - ok
18:40:44.0931 7788 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:40:44.0931 7788 SamSs - ok
18:40:44.0961 7788 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:40:44.0971 7788 sbp2port - ok
18:40:45.0021 7788 SBRE (fd833bee2fd9befdc0afd1941a306d9e) C:\Windows\system32\drivers\SBREdrv.sys
18:40:45.0031 7788 SBRE - ok
18:40:45.0081 7788 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:40:45.0091 7788 SCardSvr - ok
18:40:45.0101 7788 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:40:45.0121 7788 scfilter - ok
18:40:45.0151 7788 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:40:45.0181 7788 Schedule - ok
18:40:45.0221 7788 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:40:45.0221 7788 SCPolicySvc - ok
18:40:45.0241 7788 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:40:45.0251 7788 SDRSVC - ok
18:40:45.0321 7788 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:40:45.0331 7788 secdrv - ok
18:40:45.0341 7788 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:40:45.0351 7788 seclogon - ok
18:40:45.0361 7788 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
18:40:45.0371 7788 SENS - ok
18:40:45.0391 7788 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:40:45.0411 7788 SensrSvc - ok
18:40:45.0451 7788 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:40:45.0461 7788 Serenum - ok
18:40:45.0491 7788 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:40:45.0501 7788 Serial - ok
18:40:45.0531 7788 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
18:40:45.0541 7788 sermouse - ok
18:40:45.0581 7788 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:40:45.0591 7788 SessionEnv - ok
18:40:45.0601 7788 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:40:45.0621 7788 sffdisk - ok
18:40:45.0631 7788 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:40:45.0651 7788 sffp_mmc - ok
18:40:45.0661 7788 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:40:45.0671 7788 sffp_sd - ok
18:40:45.0691 7788 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
18:40:45.0711 7788 sfloppy - ok
18:40:45.0771 7788 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:40:45.0781 7788 SharedAccess - ok
18:40:45.0801 7788 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:40:45.0821 7788 ShellHWDetection - ok
18:40:45.0841 7788 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
18:40:45.0851 7788 SiSRaid2 - ok
18:40:45.0881 7788 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
18:40:45.0891 7788 SiSRaid4 - ok
18:40:45.0931 7788 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:40:45.0951 7788 Smb - ok
18:40:46.0001 7788 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:40:46.0011 7788 SNMPTRAP - ok
18:40:46.0021 7788 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:40:46.0021 7788 spldr - ok
18:40:46.0041 7788 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:40:46.0071 7788 Spooler - ok
18:40:46.0162 7788 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:40:46.0242 7788 sppsvc - ok
18:40:46.0362 7788 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:40:46.0372 7788 sppuinotify - ok
18:40:46.0472 7788 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys
18:40:46.0472 7788 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2
18:40:46.0472 7788 sptd ( LockedFile.Multi.Generic ) - warning
18:40:46.0472 7788 sptd - detected LockedFile.Multi.Generic (1)
18:40:46.0562 7788 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
18:40:46.0562 7788 SQLBrowser - ok
18:40:46.0622 7788 SQLWriter (3c432a96363097870995e2a3c8b66abd) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:40:46.0642 7788 SQLWriter - ok
18:40:46.0702 7788 SRS_SSCFilter (83be26217fd07b3613d151d24aaa9beb) C:\Windows\system32\drivers\srs_sscfilter_amd64.sys
18:40:46.0712 7788 SRS_SSCFilter - ok
18:40:46.0762 7788 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:40:46.0782 7788 srv - ok
18:40:46.0802 7788 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:40:46.0822 7788 srv2 - ok
18:40:46.0832 7788 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:40:46.0842 7788 srvnet - ok
18:40:46.0892 7788 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:40:46.0902 7788 SSDPSRV - ok
18:40:46.0912 7788 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:40:46.0932 7788 SstpSvc - ok
18:40:46.0972 7788 Steam Client Service - ok
18:40:47.0092 7788 Stereo Service (9e1222c417291bc836210743624a8e5e) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:40:47.0112 7788 Stereo Service - ok
18:40:47.0142 7788 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
18:40:47.0152 7788 stexstor - ok
18:40:47.0202 7788 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
18:40:47.0212 7788 StillCam - ok
18:40:47.0282 7788 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:40:47.0322 7788 stisvc - ok
18:40:47.0332 7788 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
18:40:47.0342 7788 swenum - ok
18:40:47.0402 7788 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
18:40:47.0422 7788 SwitchBoard - ok
18:40:47.0442 7788 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:40:47.0462 7788 swprv - ok
18:40:47.0512 7788 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:40:47.0562 7788 SysMain - ok
18:40:47.0672 7788 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:40:47.0692 7788 TabletInputService - ok
18:40:47.0702 7788 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:40:47.0712 7788 TapiSrv - ok
18:40:47.0752 7788 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:40:47.0762 7788 TBS - ok
18:40:47.0892 7788 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:40:47.0932 7788 Tcpip - ok
18:40:48.0052 7788 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:40:48.0062 7788 TCPIP6 - ok
18:40:48.0132 7788 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:40:48.0132 7788 tcpipreg - ok
18:40:48.0182 7788 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:40:48.0192 7788 TDPIPE - ok
18:40:48.0232 7788 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:40:48.0252 7788 TDTCP - ok
18:40:48.0272 7788 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:40:48.0282 7788 tdx - ok
18:40:48.0302 7788 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
18:40:48.0322 7788 TermDD - ok
18:40:48.0352 7788 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:40:48.0382 7788 TermService - ok
18:40:48.0392 7788 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:40:48.0402 7788 Themes - ok
18:40:48.0442 7788 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:40:48.0442 7788 THREADORDER - ok
18:40:48.0452 7788 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:40:48.0462 7788 TrkWks - ok
18:40:48.0532 7788 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:40:48.0542 7788 TrustedInstaller - ok
18:40:48.0552 7788 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:40:48.0572 7788 tssecsrv - ok
18:40:48.0602 7788 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:40:48.0612 7788 TsUsbFlt - ok
18:40:48.0622 7788 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
18:40:48.0632 7788 TsUsbGD - ok
18:40:48.0672 7788 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:40:48.0672 7788 tunnel - ok
18:40:48.0702 7788 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
18:40:48.0702 7788 uagp35 - ok
18:40:48.0742 7788 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:40:48.0752 7788 udfs - ok
18:40:48.0802 7788 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:40:48.0812 7788 UI0Detect - ok
18:40:48.0832 7788 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:40:48.0842 7788 uliagpkx - ok
18:40:48.0862 7788 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
18:40:48.0882 7788 umbus - ok
18:40:48.0902 7788 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
18:40:48.0922 7788 UmPass - ok
18:40:48.0962 7788 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:40:48.0972 7788 upnphost - ok
18:40:49.0022 7788 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
18:40:49.0042 7788 USBAAPL64 - ok
18:40:49.0072 7788 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:40:49.0082 7788 usbccgp - ok
18:40:49.0142 7788 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:40:49.0142 7788 usbcir - ok
18:40:49.0182 7788 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:40:49.0192 7788 usbehci - ok
18:40:49.0202 7788 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:40:49.0222 7788 usbhub - ok
18:40:49.0242 7788 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
18:40:49.0252 7788 usbohci - ok
18:40:49.0272 7788 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:40:49.0292 7788 usbprint - ok
18:40:49.0362 7788 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:40:49.0372 7788 usbscan - ok
18:40:49.0392 7788 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:40:49.0402 7788 USBSTOR - ok
18:40:49.0432 7788 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
18:40:49.0442 7788 usbuhci - ok
18:40:49.0462 7788 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:40:49.0472 7788 UxSms - ok
18:40:49.0512 7788 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:40:49.0512 7788 VaultSvc - ok
18:40:49.0522 7788 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:40:49.0522 7788 vdrvroot - ok
18:40:49.0552 7788 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:40:49.0572 7788 vds - ok
18:40:49.0602 7788 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:40:49.0622 7788 vga - ok
18:40:49.0632 7788 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:40:49.0652 7788 VgaSave - ok
18:40:49.0682 7788 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:40:49.0692 7788 vhdmp - ok
18:40:49.0702 7788 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:40:49.0712 7788 viaide - ok
18:40:49.0732 7788 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:40:49.0742 7788 volmgr - ok
18:40:49.0752 7788 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:40:49.0772 7788 volmgrx - ok
18:40:49.0822 7788 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:40:49.0832 7788 volsnap - ok
18:40:49.0862 7788 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
18:40:49.0872 7788 vsmraid - ok
18:40:49.0952 7788 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:40:49.0992 7788 VSS - ok
18:40:50.0122 7788 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:40:50.0162 7788 vwifibus - ok
18:40:50.0172 7788 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:40:50.0182 7788 vwififlt - ok
18:40:50.0192 7788 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:40:50.0212 7788 W32Time - ok
18:40:50.0232 7788 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
18:40:50.0252 7788 WacomPen - ok
18:40:50.0282 7788 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:40:50.0292 7788 WANARP - ok
18:40:50.0302 7788 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:40:50.0302 7788 Wanarpv6 - ok
18:40:50.0352 7788 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:40:50.0382 7788 WatAdminSvc - ok
18:40:50.0432 7788 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:40:50.0472 7788 wbengine - ok
18:40:50.0532 7788 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:40:50.0552 7788 WbioSrvc - ok
18:40:50.0562 7788 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:40:50.0582 7788 wcncsvc - ok
18:40:50.0592 7788 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:40:50.0612 7788 WcsPlugInService - ok
18:40:50.0642 7788 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
18:40:50.0642 7788 Wd - ok
18:40:50.0682 7788 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:40:50.0712 7788 Wdf01000 - ok
18:40:50.0722 7788 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:40:50.0732 7788 WdiServiceHost - ok
18:40:50.0732 7788 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:40:50.0732 7788 WdiSystemHost - ok
18:40:50.0752 7788 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:40:50.0762 7788 WebClient - ok
18:40:50.0782 7788 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:40:50.0802 7788 Wecsvc - ok
18:40:50.0852 7788 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:40:50.0862 7788 wercplsupport - ok
18:40:50.0872 7788 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:40:50.0882 7788 WerSvc - ok
18:40:50.0922 7788 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:40:50.0932 7788 WfpLwf - ok
18:40:50.0952 7788 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:40:50.0962 7788 WIMMount - ok
18:40:51.0022 7788 WinDefend - ok
18:40:51.0032 7788 WinHttpAutoProxySvc - ok
18:40:51.0092 7788 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:40:51.0102 7788 Winmgmt - ok
18:40:51.0162 7788 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:40:51.0212 7788 WinRM - ok
18:40:51.0442 7788 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:40:51.0452 7788 WinUsb - ok
18:40:51.0492 7788 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:40:51.0512 7788 Wlansvc - ok
18:40:51.0612 7788 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:40:51.0622 7788 wlcrasvc - ok
18:40:51.0772 7788 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:40:51.0822 7788 wlidsvc - ok
18:40:51.0912 7788 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:40:51.0912 7788 WmiAcpi - ok
18:40:51.0972 7788 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:40:51.0972 7788 wmiApSrv - ok
18:40:52.0032 7788 WMPNetworkSvc - ok
18:40:52.0142 7788 wordpressApache (82cb2dfa2a9bab64cb3a0c8b93085611) C:\PROGRA~1\BITNAM~1\apache2\bin\httpd.exe
18:40:52.0162 7788 wordpressApache - ok
18:40:52.0372 7788 wordpressMySQL (57541a9ab9366fb63326086aa74aa14c) C:\Program Files\BitNami WordPress Stack\mysql\bin\mysqld.exe
18:40:52.0512 7788 wordpressMySQL - ok
18:40:52.0652 7788 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:40:52.0662 7788 WPCSvc - ok
18:40:52.0682 7788 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:40:52.0682 7788 WPDBusEnum - ok
18:40:52.0732 7788 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:40:52.0742 7788 ws2ifsl - ok
18:40:52.0752 7788 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
18:40:52.0762 7788 wscsvc - ok
18:40:52.0762 7788 WSearch - ok
18:40:52.0852 7788 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
18:40:52.0912 7788 wuauserv - ok
18:40:53.0012 7788 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:40:53.0012 7788 WudfPf - ok
18:40:53.0032 7788 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:40:53.0042 7788 WUDFRd - ok
18:40:53.0052 7788 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:40:53.0062 7788 wudfsvc - ok
18:40:53.0082 7788 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:40:53.0132 7788 WwanSvc - ok
18:40:53.0192 7788 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
18:40:53.0212 7788 yukonw7 - ok
18:40:53.0242 7788 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:40:53.0452 7788 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:40:53.0452 7788 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:40:53.0452 7788 MBR (0x1B8) (06449e7c4af0550b77e260798769aa40) \Device\Harddisk1\DR1
18:40:53.0612 7788 \Device\Harddisk1\DR1 - ok
18:40:53.0612 7788 Boot (0x1200) (090e8221348536bf8b73adb7e63f4a39) \Device\Harddisk0\DR0\Partition0
18:40:53.0612 7788 \Device\Harddisk0\DR0\Partition0 - ok
18:40:53.0622 7788 Boot (0x1200) (17c56033faead569c7aa6ff267892143) \Device\Harddisk1\DR1\Partition0
18:40:53.0622 7788 \Device\Harddisk1\DR1\Partition0 - ok
18:40:53.0622 7788 ============================================================
18:40:53.0622 7788 Scan finished
18:40:53.0622 7788 ============================================================
18:40:53.0642 4788 Detected object count: 3
18:40:53.0642 4788 Actual detected object count: 3
18:41:08.0914 4788 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
18:41:08.0914 4788 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
18:41:08.0914 4788 sptd ( LockedFile.Multi.Generic ) - skipped by user
18:41:08.0914 4788 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
18:41:08.0914 4788 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
18:41:08.0914 4788 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
Malware Removal Specialist with 1,727 posts.
 
Join Date: May 2011
06-Jul-2012, 07:10 AM #27
Hi,

Please run a new scan with TDSSKiller. When you see \Device\Harddisk0\DR0 ( TDSS File System ) please delete that entry and then post the new log.
norgalis's Avatar
norgalis norgalis is offline
Computer Specs
Member with 113 posts.
THREAD STARTER
 
Join Date: Jul 2006
Experience: Beginner
06-Jul-2012, 03:47 PM #28
Just deleted it, here's the log:

13:40:34.0392 5212 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
13:40:34.0921 5212 ============================================================
13:40:34.0921 5212 Current date / time: 2012/07/06 13:40:34.0921
13:40:34.0921 5212 SystemInfo:
13:40:34.0921 5212
13:40:34.0921 5212 OS Version: 6.1.7601 ServicePack: 1.0
13:40:34.0921 5212 Product type: Workstation
13:40:34.0931 5212 ComputerName: OWNER-PC
13:40:34.0931 5212 UserName: Owner
13:40:34.0931 5212 Windows directory: C:\Windows
13:40:34.0931 5212 System windows directory: C:\Windows
13:40:34.0931 5212 Running under WOW64
13:40:34.0931 5212 Processor architecture: Intel x64
13:40:34.0931 5212 Number of processors: 3
13:40:34.0931 5212 Page size: 0x1000
13:40:34.0931 5212 Boot type: Normal boot
13:40:34.0931 5212 ============================================================
13:40:55.0870 5212 Drive \Device\Harddisk0\DR0 - Size: 0x45DECD2000 (279.48 Gb), SectorSize: 0x200, Cylinders: 0x8E83, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:40:55.0885 5212 Drive \Device\Harddisk1\DR1 - Size: 0x3CDD2200 (0.95 Gb), SectorSize: 0x200, Cylinders: 0x7C, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:40:55.0885 5212 ============================================================
13:40:55.0885 5212 \Device\Harddisk0\DR0:
13:40:55.0963 5212 MBR partitions:
13:40:55.0963 5212 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x22EEEBC3
13:40:55.0963 5212 \Device\Harddisk1\DR1:
13:40:55.0963 5212 MBR partitions:
13:40:55.0963 5212 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x6, StartLBA 0xF7, BlocksNum 0x1E6B69
13:40:55.0963 5212 ============================================================
13:40:56.0119 5212 C: <-> \Device\Harddisk0\DR0\Partition0
13:40:56.0119 5212 ============================================================
13:40:56.0119 5212 Initialize success
13:40:56.0119 5212 ============================================================
13:41:00.0846 1000 ============================================================
13:41:00.0846 1000 Scan started
13:41:00.0846 1000 Mode: Manual;
13:41:00.0846 1000 ============================================================
13:41:09.0176 3964 ============================================================
13:41:09.0176 3964 Scan started
13:41:09.0176 3964 Mode: Manual; TDLFS;
13:41:09.0176 3964 ============================================================
13:41:25.0307 3964 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
13:41:25.0400 3964 1394ohci - ok
13:41:29.0394 3964 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
13:41:29.0472 3964 ACPI - ok
13:41:30.0034 3964 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
13:41:30.0096 3964 AcpiPmi - ok
13:41:34.0433 3964 AdobeActiveFileMonitor9.0 (1474f121c3df1232d3e7239c03691ee6) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
13:41:34.0589 3964 AdobeActiveFileMonitor9.0 - ok
13:41:35.0431 3964 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:41:35.0431 3964 AdobeARMservice - ok
13:41:47.0662 3964 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:41:47.0755 3964 AdobeFlashPlayerUpdateSvc - ok
13:41:52.0451 3964 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
13:41:52.0529 3964 adp94xx - ok
13:41:54.0635 3964 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
13:41:54.0697 3964 adpahci - ok
13:41:55.0321 3964 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
13:41:55.0399 3964 adpu320 - ok
13:41:56.0086 3964 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
13:41:56.0117 3964 AeLookupSvc - ok
13:42:00.0641 3964 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
13:42:00.0688 3964 AFD - ok
13:42:01.0109 3964 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
13:42:01.0140 3964 agp440 - ok
13:42:11.0093 3964 Akamai (29584f02a43e427c4227e3b1d9ff1b22) c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll
13:42:11.0093 3964 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll. md5: 29584f02a43e427c4227e3b1d9ff1b22
13:42:11.0108 3964 Akamai ( HiddenFile.Multi.Generic ) - warning
13:42:11.0108 3964 Akamai - detected HiddenFile.Multi.Generic (1)
13:42:12.0840 3964 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
13:42:12.0949 3964 ALG - ok
13:42:13.0682 3964 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
13:42:13.0729 3964 aliide - ok
13:42:14.0026 3964 ALSysIO - ok
13:42:14.0072 3964 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
13:42:14.0088 3964 amdide - ok
13:42:14.0150 3964 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
13:42:14.0182 3964 AmdK8 - ok
13:42:14.0213 3964 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
13:42:14.0213 3964 AmdPPM - ok
13:42:14.0244 3964 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
13:42:14.0260 3964 amdsata - ok
13:42:14.0291 3964 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
13:42:14.0306 3964 amdsbs - ok
13:42:14.0322 3964 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
13:42:14.0338 3964 amdxata - ok
13:42:14.0384 3964 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
13:42:14.0400 3964 AppID - ok
13:42:14.0431 3964 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
13:42:14.0431 3964 AppIDSvc - ok
13:42:14.0447 3964 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
13:42:14.0462 3964 Appinfo - ok
13:42:14.0665 3964 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:42:14.0806 3964 Apple Mobile Device - ok
13:42:15.0398 3964 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
13:42:15.0430 3964 arc - ok
13:42:16.0054 3964 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
13:42:16.0116 3964 arcsas - ok
13:42:16.0194 3964 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
13:42:16.0241 3964 AsyncMac - ok
13:42:16.0350 3964 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
13:42:16.0350 3964 atapi - ok
13:42:17.0302 3964 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
13:42:17.0333 3964 AudioEndpointBuilder - ok
13:42:17.0348 3964 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
13:42:17.0348 3964 AudioSrv - ok
13:42:17.0582 3964 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
13:42:17.0629 3964 AxInstSV - ok
13:42:19.0064 3964 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
13:42:19.0127 3964 b06bdrv - ok
13:42:19.0642 3964 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
13:42:19.0657 3964 b57nd60a - ok
13:42:20.0141 3964 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
13:42:20.0141 3964 BcmSqlStartupSvc - ok
13:42:20.0687 3964 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
13:42:20.0765 3964 BDESVC - ok
13:42:20.0921 3964 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
13:42:20.0968 3964 Beep - ok
13:42:22.0559 3964 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
13:42:22.0590 3964 BFE - ok
13:42:23.0542 3964 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
13:42:23.0573 3964 BITS - ok
13:42:24.0290 3964 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
13:42:24.0384 3964 blbdrive - ok
13:42:25.0242 3964 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
13:42:25.0289 3964 Bonjour Service - ok
13:42:25.0507 3964 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
13:42:25.0616 3964 bowser - ok
13:42:25.0788 3964 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
13:42:25.0835 3964 BrFiltLo - ok
13:42:26.0084 3964 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
13:42:26.0116 3964 BrFiltUp - ok
13:42:26.0677 3964 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
13:42:26.0755 3964 BridgeMP - ok
13:42:27.0223 3964 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
13:42:27.0286 3964 Browser - ok
13:42:27.0722 3964 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
13:42:27.0847 3964 Brserid - ok
13:42:28.0003 3964 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
13:42:28.0050 3964 BrSerWdm - ok
13:42:28.0222 3964 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
13:42:28.0222 3964 BrUsbMdm - ok
13:42:28.0518 3964 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
13:42:28.0612 3964 BrUsbSer - ok
13:42:28.0799 3964 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
13:42:28.0830 3964 BTHMODEM - ok
13:42:29.0111 3964 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
13:42:29.0158 3964 bthserv - ok
13:42:29.0236 3964 catchme - ok
13:42:29.0423 3964 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
13:42:29.0470 3964 cdfs - ok
13:42:29.0735 3964 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
13:42:29.0782 3964 cdrom - ok
13:42:29.0984 3964 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
13:42:30.0016 3964 CertPropSvc - ok
13:42:30.0203 3964 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
13:42:30.0250 3964 circlass - ok
13:42:31.0092 3964 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
13:42:31.0108 3964 CLFS - ok
13:42:31.0685 3964 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:42:31.0700 3964 clr_optimization_v2.0.50727_32 - ok
13:42:32.0387 3964 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:42:32.0543 3964 clr_optimization_v2.0.50727_64 - ok
13:42:32.0824 3964 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:42:32.0839 3964 clr_optimization_v4.0.30319_32 - ok
13:42:32.0855 3964 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:42:32.0870 3964 clr_optimization_v4.0.30319_64 - ok
13:42:32.0902 3964 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
13:42:32.0917 3964 CmBatt - ok
13:42:32.0948 3964 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
13:42:32.0964 3964 cmdide - ok
13:42:33.0167 3964 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
13:42:33.0182 3964 CNG - ok
13:42:33.0214 3964 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
13:42:33.0245 3964 Compbatt - ok
13:42:33.0292 3964 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
13:42:33.0292 3964 CompositeBus - ok
13:42:33.0307 3964 COMSysApp - ok
13:42:33.0323 3964 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
13:42:33.0354 3964 crcdisk - ok
13:42:33.0557 3964 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
13:42:33.0588 3964 CryptSvc - ok
13:42:33.0900 3964 DAUpdaterSvc (914a7156b0c0f10be645a02e13f576b2) C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
13:42:33.0947 3964 DAUpdaterSvc - ok
13:42:34.0134 3964 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
13:42:34.0165 3964 DcomLaunch - ok
13:42:34.0212 3964 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
13:42:34.0259 3964 defragsvc - ok
13:42:34.0415 3964 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
13:42:34.0508 3964 DfsC - ok
13:42:34.0571 3964 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
13:42:34.0602 3964 Dhcp - ok
13:42:34.0618 3964 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
13:42:34.0618 3964 discache - ok
13:42:34.0649 3964 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
13:42:34.0649 3964 Disk - ok
13:42:34.0696 3964 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
13:42:34.0696 3964 Dnscache - ok
13:42:34.0727 3964 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
13:42:34.0727 3964 dot3svc - ok
13:42:34.0805 3964 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
13:42:34.0820 3964 Dot4 - ok
13:42:34.0852 3964 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
13:42:34.0852 3964 Dot4Print - ok
13:42:34.0961 3964 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
13:42:35.0008 3964 dot4usb - ok
13:42:35.0070 3964 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
13:42:35.0086 3964 DPS - ok
13:42:35.0117 3964 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
13:42:35.0117 3964 drmkaud - ok
13:42:35.0242 3964 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
13:42:35.0242 3964 DXGKrnl - ok
13:42:35.0366 3964 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
13:42:35.0382 3964 EapHost - ok
13:42:35.0772 3964 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
13:42:35.0866 3964 ebdrv - ok
13:42:36.0287 3964 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
13:42:36.0302 3964 EFS - ok
13:42:36.0396 3964 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
13:42:36.0427 3964 ehRecvr - ok
13:42:36.0458 3964 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
13:42:36.0474 3964 ehSched - ok
13:42:36.0692 3964 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
13:42:36.0708 3964 elxstor - ok
13:42:36.0739 3964 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
13:42:36.0739 3964 ErrDev - ok
13:42:36.0833 3964 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
13:42:36.0848 3964 EventSystem - ok
13:42:36.0926 3964 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
13:42:36.0942 3964 exfat - ok
13:42:37.0295 3964 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
13:42:37.0324 3964 fastfat - ok
13:42:37.0490 3964 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
13:42:37.0513 3964 Fax - ok
13:42:37.0551 3964 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
13:42:37.0567 3964 fdc - ok
13:42:37.0594 3964 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
13:42:37.0603 3964 fdPHost - ok
13:42:37.0613 3964 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
13:42:37.0629 3964 FDResPub - ok
13:42:37.0637 3964 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
13:42:37.0645 3964 FileInfo - ok
13:42:37.0654 3964 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
13:42:37.0663 3964 Filetrace - ok
13:42:37.0886 3964 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
13:42:37.0918 3964 FLEXnet Licensing Service - ok
13:42:37.0940 3964 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
13:42:37.0956 3964 flpydisk - ok
13:42:37.0989 3964 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
13:42:37.0997 3964 FltMgr - ok
13:42:38.0044 3964 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
13:42:38.0098 3964 FontCache - ok
13:42:38.0269 3964 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:42:38.0279 3964 FontCache3.0.0.0 - ok
13:42:38.0541 3964 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
13:42:38.0555 3964 FsDepends - ok
13:42:38.0735 3964 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
13:42:38.0753 3964 fssfltr - ok
13:42:39.0749 3964 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
13:42:39.0808 3964 fsssvc - ok
13:42:40.0245 3964 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
13:42:40.0283 3964 Fs_Rec - ok
13:42:40.0385 3964 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
13:42:40.0427 3964 fvevol - ok
13:42:40.0531 3964 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
13:42:40.0549 3964 gagp30kx - ok
13:42:40.0772 3964 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:42:40.0773 3964 GEARAspiWDM - ok
13:42:40.0998 3964 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
13:42:41.0029 3964 gpsvc - ok
13:42:41.0417 3964 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:42:41.0437 3964 gupdate - ok
13:42:41.0459 3964 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:42:41.0460 3964 gupdatem - ok
13:42:41.0477 3964 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
13:42:41.0494 3964 hcw85cir - ok
13:42:41.0550 3964 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
13:42:41.0567 3964 HdAudAddService - ok
13:42:41.0615 3964 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
13:42:41.0623 3964 HDAudBus - ok
13:42:41.0648 3964 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
13:42:41.0657 3964 HidBatt - ok
13:42:41.0680 3964 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
13:42:41.0689 3964 HidBth - ok
13:42:41.0704 3964 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
13:42:41.0721 3964 HidIr - ok
13:42:41.0743 3964 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
13:42:41.0760 3964 hidserv - ok
13:42:41.0784 3964 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
13:42:41.0792 3964 HidUsb - ok
13:42:41.0827 3964 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
13:42:41.0844 3964 hkmsvc - ok
13:42:41.0860 3964 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
13:42:41.0869 3964 HomeGroupListener - ok
13:42:41.0908 3964 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
13:42:41.0916 3964 HomeGroupProvider - ok
13:42:42.0246 3964 hpqcxs08 (5da42d24712e00728cea2342a65009b2) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
13:42:42.0276 3964 hpqcxs08 - ok
13:42:42.0671 3964 hpqddsvc (d86a39bf100069444d026d22d9a6e555) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
13:42:42.0690 3964 hpqddsvc - ok
13:42:42.0927 3964 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
13:42:42.0965 3964 HpSAMD - ok
13:42:43.0201 3964 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
13:42:43.0235 3964 HPSLPSVC - ok
13:42:43.0445 3964 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
13:42:43.0533 3964 HTTP - ok
13:42:43.0543 3964 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
13:42:43.0544 3964 hwpolicy - ok
13:42:43.0581 3964 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
13:42:43.0589 3964 i8042prt - ok
13:42:43.0640 3964 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
13:42:43.0656 3964 iaStorV - ok
13:42:44.0131 3964 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:42:44.0165 3964 idsvc - ok
13:42:44.0419 3964 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
13:42:44.0435 3964 iirsp - ok
13:42:44.0712 3964 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
13:42:44.0854 3964 IKEEXT - ok
13:42:45.0104 3964 IntcAzAudAddService (26407a11d7e222afb7ce32700abbd9d1) C:\Windows\system32\drivers\RTKVHD64.sys
13:42:45.0121 3964 IntcAzAudAddService - ok
13:42:45.0648 3964 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
13:42:45.0682 3964 intelide - ok
13:42:45.0731 3964 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
13:42:45.0748 3964 intelppm - ok
13:42:45.0868 3964 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
13:42:45.0911 3964 IPBusEnum - ok
13:42:46.0035 3964 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:42:46.0052 3964 IpFilterDriver - ok
13:42:46.0331 3964 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
13:42:46.0376 3964 iphlpsvc - ok
13:42:46.0526 3964 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
13:42:46.0567 3964 IPMIDRV - ok
13:42:46.0579 3964 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
13:42:46.0646 3964 IPNAT - ok
13:42:46.0808 3964 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
13:42:46.0830 3964 iPod Service - ok
13:42:46.0866 3964 irda (05360b1ea5a2abf620d1d96ebd8bd8f1) C:\Windows\system32\DRIVERS\irda.sys
13:42:46.0874 3964 irda - ok
13:42:46.0887 3964 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
13:42:46.0904 3964 IRENUM - ok
13:42:46.0977 3964 Irmon (3848384ab383f0a8f506c4370635c1f9) C:\Windows\System32\irmon.dll
13:42:47.0010 3964 Irmon - ok
13:42:47.0129 3964 irsir (d2ca12736624ba636f8357dc3ef0757e) C:\Windows\system32\DRIVERS\irsir.sys
13:42:47.0150 3964 irsir - ok
13:42:47.0263 3964 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
13:42:47.0281 3964 isapnp - ok
13:42:47.0397 3964 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
13:42:47.0414 3964 iScsiPrt - ok
13:42:47.0503 3964 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
13:42:47.0504 3964 kbdclass - ok
13:42:47.0578 3964 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
13:42:47.0589 3964 kbdhid - ok
13:42:47.0631 3964 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:42:47.0633 3964 KeyIso - ok
13:42:47.0672 3964 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
13:42:47.0680 3964 KSecDD - ok
13:42:47.0694 3964 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
13:42:47.0702 3964 KSecPkg - ok
13:42:47.0709 3964 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
13:42:47.0726 3964 ksthunk - ok
13:42:47.0763 3964 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
13:42:47.0779 3964 KtmRm - ok
13:42:47.0838 3964 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
13:42:47.0854 3964 LanmanServer - ok
13:42:47.0958 3964 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
13:42:47.0980 3964 LanmanWorkstation - ok
13:42:48.0297 3964 Lavasoft Kernexplorer (9a7fa6371f68335fd3c3d6488bc5a9f8) C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys
13:42:48.0425 3964 Lavasoft Kernexplorer - ok
13:42:48.0890 3964 Linksys_adapter_H (584528bf596a54b2bf6be5067adda44a) C:\Windows\system32\DRIVERS\AE2500w764.sys
13:42:48.0897 3964 Linksys_adapter_H - ok
13:42:49.0248 3964 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
13:42:49.0280 3964 lltdio - ok
13:42:49.0419 3964 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
13:42:49.0444 3964 lltdsvc - ok
13:42:49.0464 3964 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
13:42:49.0481 3964 lmhosts - ok
13:42:49.0518 3964 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
13:42:49.0535 3964 LSI_FC - ok
13:42:49.0547 3964 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
13:42:49.0564 3964 LSI_SAS - ok
13:42:49.0578 3964 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
13:42:49.0586 3964 LSI_SAS2 - ok
13:42:49.0615 3964 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
13:42:49.0632 3964 LSI_SCSI - ok
13:42:49.0666 3964 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
13:42:49.0674 3964 luafv - ok
13:42:49.0708 3964 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
13:42:49.0709 3964 MBAMProtector - ok
13:42:49.0926 3964 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:42:49.0948 3964 MBAMService - ok
13:42:50.0235 3964 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
13:42:50.0266 3964 Mcx2Svc - ok
13:42:50.0688 3964 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
13:42:50.0718 3964 megasas - ok
13:42:51.0003 3964 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
13:42:51.0029 3964 MegaSR - ok
13:42:51.0201 3964 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
13:42:51.0301 3964 MMCSS - ok
13:42:51.0430 3964 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
13:42:51.0438 3964 Modem - ok
13:42:51.0749 3964 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
13:42:51.0750 3964 monitor - ok
13:42:52.0012 3964 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
13:42:52.0013 3964 mouclass - ok
13:42:52.0134 3964 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
13:42:52.0163 3964 mouhid - ok
13:42:52.0174 3964 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
13:42:52.0181 3964 mountmgr - ok
13:42:52.0493 3964 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:42:52.0512 3964 MozillaMaintenance - ok
13:42:52.0920 3964 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
13:42:52.0970 3964 mpio - ok
13:42:53.0088 3964 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
13:42:53.0103 3964 mpsdrv - ok
13:42:53.0233 3964 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
13:42:53.0300 3964 MpsSvc - ok
13:42:53.0367 3964 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
13:42:53.0376 3964 MRxDAV - ok
13:42:53.0414 3964 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:42:53.0430 3964 mrxsmb - ok
13:42:53.0492 3964 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:42:53.0508 3964 mrxsmb10 - ok
13:42:53.0529 3964 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:42:53.0538 3964 mrxsmb20 - ok
13:42:53.0551 3964 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
13:42:53.0568 3964 msahci - ok
13:42:53.0598 3964 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
13:42:53.0607 3964 msdsm - ok
13:42:53.0634 3964 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
13:42:53.0643 3964 MSDTC - ok
13:42:53.0695 3964 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
13:42:53.0760 3964 Msfs - ok
13:42:53.0770 3964 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
13:42:53.0771 3964 mshidkmdf - ok
13:42:53.0778 3964 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
13:42:53.0786 3964 msisadrv - ok
13:42:53.0899 3964 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
13:42:53.0927 3964 MSiSCSI - ok
13:42:53.0930 3964 msiserver - ok
13:42:53.0979 3964 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
13:42:53.0988 3964 MSKSSRV - ok
13:42:54.0018 3964 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
13:42:54.0018 3964 MSPCLOCK - ok
13:42:54.0042 3964 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
13:42:54.0043 3964 MSPQM - ok
13:42:54.0074 3964 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
13:42:54.0091 3964 MsRPC - ok
13:42:54.0107 3964 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
13:42:54.0107 3964 mssmbios - ok
13:42:54.0221 3964 MSSQL$MSSMLBIZ - ok
13:42:54.0358 3964 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
13:42:54.0376 3964 MSSQLServerADHelper - ok
13:42:54.0444 3964 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
13:42:54.0444 3964 MSTEE - ok
13:42:54.0469 3964 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
13:42:54.0477 3964 MTConfig - ok
13:42:54.0501 3964 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
13:42:54.0517 3964 Mup - ok
13:42:54.0592 3964 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
13:42:54.0651 3964 napagent - ok
13:42:54.0843 3964 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
13:42:54.0860 3964 NativeWifiP - ok
13:42:54.0948 3964 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
13:42:54.0972 3964 NDIS - ok
13:42:55.0010 3964 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
13:42:55.0018 3964 NdisCap - ok
13:42:55.0056 3964 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
13:42:55.0064 3964 NdisTapi - ok
13:42:55.0083 3964 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
13:42:55.0100 3964 Ndisuio - ok
13:42:55.0116 3964 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
13:42:55.0133 3964 NdisWan - ok
13:42:55.0144 3964 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
13:42:55.0153 3964 NDProxy - ok
13:42:55.0244 3964 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
13:42:55.0252 3964 Net Driver HPZ12 - ok
13:42:55.0264 3964 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
13:42:55.0281 3964 NetBIOS - ok
13:42:55.0324 3964 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
13:42:55.0348 3964 NetBT - ok
13:42:55.0460 3964 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:42:55.0462 3964 Netlogon - ok
13:42:55.0843 3964 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
13:42:55.0872 3964 Netman - ok
13:42:55.0893 3964 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
13:42:55.0909 3964 netprofm - ok
13:42:56.0317 3964 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:42:56.0348 3964 NetTcpPortSharing - ok
13:42:56.0689 3964 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
13:42:56.0752 3964 nfrd960 - ok
13:42:57.0592 3964 NitroDriverReadSpool2 (a79d2a51e9743262d35258d515ce773e) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
13:42:57.0611 3964 NitroDriverReadSpool2 - ok
13:42:57.0947 3964 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
13:42:57.0976 3964 NlaSvc - ok
13:42:58.0173 3964 nlsX86cc (fac20f9060ff9c74af0c8a002bb04ae7) C:\Windows\SysWOW64\NLSSRV32.EXE
13:42:58.0175 3964 nlsX86cc - ok
13:42:58.0270 3964 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
13:42:58.0328 3964 Npfs - ok
13:42:58.0372 3964 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
13:42:58.0381 3964 nsi - ok
13:42:58.0456 3964 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
13:42:58.0456 3964 nsiproxy - ok
13:42:58.0574 3964 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
13:42:58.0637 3964 Ntfs - ok
13:42:59.0066 3964 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
13:42:59.0067 3964 NuidFltr - ok
13:42:59.0113 3964 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
13:42:59.0113 3964 Null - ok
13:42:59.0248 3964 NVHDA (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
13:42:59.0249 3964 NVHDA - ok
13:43:00.0772 3964 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:43:00.0849 3964 nvlddmkm - ok
13:43:02.0434 3964 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
13:43:02.0456 3964 nvraid - ok
13:43:02.0764 3964 nvsmu (e58d81fb8616d0cb55c1e36aa0b213c9) C:\Windows\system32\DRIVERS\nvsmu.sys
13:43:02.0765 3964 nvsmu - ok
13:43:02.0839 3964 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
13:43:02.0861 3964 nvstor - ok
13:43:02.0966 3964 NVSvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
13:43:02.0998 3964 NVSvc - ok
13:43:03.0332 3964 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
13:43:03.0382 3964 nvUpdatusService - ok
13:43:03.0898 3964 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
13:43:03.0938 3964 nv_agp - ok
13:43:04.0481 3964 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:43:04.0501 3964 odserv - ok
13:43:04.0518 3964 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
13:43:04.0526 3964 ohci1394 - ok
13:43:04.0872 3964 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:43:04.0954 3964 ose - ok
13:43:05.0258 3964 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
13:43:05.0295 3964 p2pimsvc - ok
13:43:05.0632 3964 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
13:43:05.0666 3964 p2psvc - ok
13:43:05.0833 3964 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
13:43:05.0883 3964 Parport - ok
13:43:06.0097 3964 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
13:43:06.0166 3964 partmgr - ok
13:43:06.0190 3964 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
13:43:06.0206 3964 PcaSvc - ok
13:43:06.0240 3964 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
13:43:06.0256 3964 pci - ok
13:43:06.0270 3964 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
13:43:06.0286 3964 pciide - ok
13:43:06.0384 3964 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
13:43:06.0414 3964 pcmcia - ok
13:43:06.0451 3964 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
13:43:06.0483 3964 pcw - ok
13:43:06.0631 3964 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
13:43:06.0650 3964 PEAUTH - ok
13:43:07.0043 3964 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
13:43:07.0063 3964 PerfHost - ok
13:43:07.0211 3964 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
13:43:07.0253 3964 pla - ok
13:43:07.0589 3964 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
13:43:07.0614 3964 PlugPlay - ok
13:43:07.0777 3964 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
13:43:07.0819 3964 Pml Driver HPZ12 - ok
13:43:07.0834 3964 PnkBstrA - ok
13:43:07.0865 3964 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
13:43:07.0906 3964 PNRPAutoReg - ok
13:43:08.0171 3964 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
13:43:08.0174 3964 PNRPsvc - ok
13:43:08.0272 3964 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
13:43:08.0280 3964 Point64 - ok
13:43:08.0518 3964 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
13:43:08.0580 3964 PolicyAgent - ok
13:43:08.0757 3964 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
13:43:08.0766 3964 Power - ok
13:43:09.0217 3964 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
13:43:09.0273 3964 PptpMiniport - ok
13:43:09.0433 3964 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
13:43:09.0459 3964 Processor - ok
13:43:09.0780 3964 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
13:43:09.0795 3964 ProfSvc - ok
13:43:09.0827 3964 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:43:09.0828 3964 ProtectedStorage - ok
13:43:09.0858 3964 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
13:43:09.0866 3964 Psched - ok
13:43:10.0129 3964 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
13:43:10.0247 3964 PxHlpa64 - ok
13:43:11.0205 3964 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
13:43:11.0285 3964 ql2300 - ok
13:43:11.0978 3964 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
13:43:12.0000 3964 ql40xx - ok
13:43:12.0424 3964 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
13:43:12.0448 3964 QWAVE - ok
13:43:12.0774 3964 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
13:43:12.0816 3964 QWAVEdrv - ok
13:43:13.0023 3964 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
13:43:13.0059 3964 RasAcd - ok
13:43:13.0291 3964 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
13:43:13.0391 3964 RasAgileVpn - ok
13:43:13.0507 3964 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
13:43:13.0586 3964 RasAuto - ok
13:43:13.0603 3964 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:43:13.0628 3964 Rasl2tp - ok
13:43:13.0732 3964 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
13:43:13.0772 3964 RasMan - ok
13:43:14.0676 3964 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
13:43:14.0720 3964 RasPppoe - ok
13:43:14.0836 3964 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
13:43:14.0857 3964 RasSstp - ok
13:43:15.0143 3964 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
13:43:15.0336 3964 rdbss - ok
13:43:15.0450 3964 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
13:43:15.0467 3964 rdpbus - ok
13:43:15.0522 3964 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:43:15.0523 3964 RDPCDD - ok
13:43:15.0583 3964 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
13:43:15.0583 3964 RDPENCDD - ok
13:43:15.0603 3964 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
13:43:15.0604 3964 RDPREFMP - ok
13:43:15.0755 3964 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
13:43:15.0786 3964 RDPWD - ok
13:43:16.0921 3964 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
13:43:16.0938 3964 rdyboost - ok
13:43:17.0441 3964 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
13:43:17.0474 3964 RemoteAccess - ok
13:43:17.0870 3964 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
13:43:17.0892 3964 RemoteRegistry - ok
13:43:18.0086 3964 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
13:43:18.0107 3964 RpcEptMapper - ok
13:43:18.0221 3964 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
13:43:18.0245 3964 RpcLocator - ok
13:43:20.0093 3964 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
13:43:20.0098 3964 RpcSs - ok
13:43:20.0580 3964 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
13:43:20.0600 3964 rspndr - ok
13:43:21.0767 3964 rt61x64 (60eb8a87357ca5b088b422d1e55a2405) C:\Windows\system32\DRIVERS\WMP54Gv41x64.sys
13:43:21.0886 3964 rt61x64 - ok
13:43:22.0136 3964 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:43:22.0137 3964 SamSs - ok
13:43:22.0536 3964 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
13:43:22.0592 3964 sbp2port - ok
13:43:23.0043 3964 SBRE (fd833bee2fd9befdc0afd1941a306d9e) C:\Windows\system32\drivers\SBREdrv.sys
13:43:23.0043 3964 SBRE - ok
13:43:23.0535 3964 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
13:43:23.0589 3964 SCardSvr - ok
13:43:23.0659 3964 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
13:43:23.0684 3964 scfilter - ok
13:43:24.0245 3964 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
13:43:24.0508 3964 Schedule - ok
13:43:24.0590 3964 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
13:43:24.0591 3964 SCPolicySvc - ok
13:43:25.0579 3964 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
13:43:25.0629 3964 SDRSVC - ok
13:43:27.0068 3964 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
13:43:27.0117 3964 secdrv - ok
13:43:27.0696 3964 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
13:43:27.0743 3964 seclogon - ok
13:43:28.0150 3964 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
13:43:28.0207 3964 SENS - ok
13:43:28.0765 3964 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
13:43:28.0804 3964 SensrSvc - ok
13:43:29.0140 3964 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
13:43:29.0205 3964 Serenum - ok
13:43:30.0527 3964 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
13:43:30.0581 3964 Serial - ok
13:43:30.0983 3964 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
13:43:31.0018 3964 sermouse - ok
13:43:32.0501 3964 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
13:43:32.0536 3964 SessionEnv - ok
13:43:32.0927 3964 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
13:43:33.0006 3964 sffdisk - ok
13:43:33.0188 3964 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
13:43:33.0235 3964 sffp_mmc - ok
13:43:33.0382 3964 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
13:43:33.0457 3964 sffp_sd - ok
13:43:33.0582 3964 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
13:43:33.0636 3964 sfloppy - ok
13:43:36.0908 3964 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
13:43:36.0949 3964 SharedAccess - ok
13:43:38.0037 3964 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
13:43:38.0084 3964 ShellHWDetection - ok
13:43:38.0201 3964 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
13:43:38.0227 3964 SiSRaid2 - ok
13:43:38.0745 3964 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
13:43:38.0794 3964 SiSRaid4 - ok
13:43:39.0076 3964 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
13:43:39.0148 3964 Smb - ok
13:43:39.0298 3964 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
13:43:39.0374 3964 SNMPTRAP - ok
13:43:40.0013 3964 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
13:43:40.0021 3964 spldr - ok
13:43:44.0170 3964 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
13:43:44.0223 3964 Spooler - ok
13:43:48.0344 3964 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
13:43:48.0445 3964 sppsvc - ok
13:43:49.0163 3964 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
13:43:49.0210 3964 sppuinotify - ok
13:43:50.0237 3964 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys
13:43:50.0237 3964 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2
13:43:50.0238 3964 sptd ( LockedFile.Multi.Generic ) - warning
13:43:50.0238 3964 sptd - detected LockedFile.Multi.Generic (1)
13:43:50.0851 3964 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
13:43:50.0880 3964 SQLBrowser - ok
13:43:51.0205 3964 SQLWriter (3c432a96363097870995e2a3c8b66abd) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:43:51.0229 3964 SQLWriter - ok
13:43:52.0058 3964 SRS_SSCFilter (83be26217fd07b3613d151d24aaa9beb) C:\Windows\system32\drivers\srs_sscfilter_amd64.sys
13:43:52.0088 3964 SRS_SSCFilter - ok
13:43:52.0566 3964 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
13:43:52.0603 3964 srv - ok
13:43:52.0880 3964 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
13:43:52.0949 3964 srv2 - ok
13:43:53.0239 3964 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
13:43:53.0269 3964 srvnet - ok
13:43:53.0433 3964 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
13:43:53.0465 3964 SSDPSRV - ok
13:43:53.0552 3964 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
13:43:53.0565 3964 SstpSvc - ok
13:43:53.0785 3964 Steam Client Service - ok
13:43:54.0261 3964 Stereo Service (9e1222c417291bc836210743624a8e5e) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:43:54.0336 3964 Stereo Service - ok
13:43:54.0416 3964 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
13:43:54.0441 3964 stexstor - ok
13:43:54.0584 3964 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
13:43:54.0600 3964 StillCam - ok
13:43:54.0985 3964 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
13:43:55.0048 3964 stisvc - ok
13:43:55.0094 3964 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
13:43:55.0095 3964 swenum - ok
13:43:55.0631 3964 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:43:55.0669 3964 SwitchBoard - ok
13:43:56.0069 3964 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
13:43:56.0074 3964 swprv - ok
13:43:57.0184 3964 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
13:43:57.0254 3964 SysMain - ok
13:43:57.0569 3964 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
13:43:57.0587 3964 TabletInputService - ok
13:43:57.0656 3964 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
13:43:57.0680 3964 TapiSrv - ok
13:43:57.0750 3964 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
13:43:57.0752 3964 TBS - ok
13:43:58.0040 3964 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
13:43:58.0116 3964 Tcpip - ok
13:43:58.0593 3964 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
13:43:58.0604 3964 TCPIP6 - ok
13:43:59.0091 3964 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
13:43:59.0109 3964 tcpipreg - ok
13:43:59.0227 3964 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
13:43:59.0257 3964 TDPIPE - ok
13:43:59.0368 3964 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
13:43:59.0389 3964 TDTCP - ok
13:43:59.0489 3964 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
13:43:59.0518 3964 tdx - ok
13:43:59.0558 3964 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
13:43:59.0559 3964 TermDD - ok
13:43:59.0748 3964 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
13:43:59.0807 3964 TermService - ok
13:43:59.0918 3964 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
13:43:59.0935 3964 Themes - ok
13:43:59.0975 3964 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
13:43:59.0977 3964 THREADORDER - ok
13:44:00.0005 3964 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
13:44:00.0020 3964 TrkWks - ok
13:44:00.0113 3964 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
13:44:00.0114 3964 TrustedInstaller - ok
13:44:00.0163 3964 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:44:00.0174 3964 tssecsrv - ok
13:44:00.0220 3964 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
13:44:00.0228 3964 TsUsbFlt - ok
13:44:00.0332 3964 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
13:44:00.0340 3964 TsUsbGD - ok
13:44:00.0431 3964 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
13:44:00.0465 3964 tunnel - ok
13:44:00.0504 3964 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
13:44:00.0529 3964 uagp35 - ok
13:44:00.0679 3964 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
13:44:00.0703 3964 udfs - ok
13:44:00.0789 3964 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
13:44:00.0811 3964 UI0Detect - ok
13:44:00.0850 3964 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
13:44:00.0867 3964 uliagpkx - ok
13:44:00.0948 3964 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
13:44:00.0962 3964 umbus - ok
13:44:01.0029 3964 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
13:44:01.0053 3964 UmPass - ok
13:44:01.0202 3964 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
13:44:01.0247 3964 upnphost - ok
13:44:01.0344 3964 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
13:44:01.0413 3964 USBAAPL64 - ok
13:44:01.0462 3964 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
13:44:01.0470 3964 usbccgp - ok
13:44:01.0550 3964 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
13:44:01.0558 3964 usbcir - ok
13:44:01.0630 3964 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
13:44:01.0643 3964 usbehci - ok
13:44:01.0685 3964 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
13:44:01.0725 3964 usbhub - ok
13:44:01.0793 3964 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
13:44:01.0810 3964 usbohci - ok
13:44:01.0871 3964 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
13:44:01.0895 3964 usbprint - ok
13:44:01.0983 3964 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
13:44:02.0000 3964 usbscan - ok
13:44:02.0101 3964 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:44:02.0150 3964 USBSTOR - ok
13:44:02.0223 3964 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
13:44:02.0231 3964 usbuhci - ok
13:44:02.0281 3964 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
13:44:02.0306 3964 UxSms - ok
13:44:02.0356 3964 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:44:02.0357 3964 VaultSvc - ok
13:44:02.0383 3964 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
13:44:02.0399 3964 vdrvroot - ok
13:44:02.0800 3964 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
13:44:02.0834 3964 vds - ok
13:44:02.0898 3964 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
13:44:02.0920 3964 vga - ok
13:44:02.0974 3964 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
13:44:02.0990 3964 VgaSave - ok
13:44:03.0067 3964 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
13:44:03.0122 3964 vhdmp - ok
13:44:03.0159 3964 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
13:44:03.0192 3964 viaide - ok
13:44:03.0249 3964 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
13:44:03.0275 3964 volmgr - ok
13:44:03.0364 3964 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
13:44:03.0402 3964 volmgrx - ok
13:44:03.0545 3964 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
13:44:03.0569 3964 volsnap - ok
13:44:03.0681 3964 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
13:44:03.0731 3964 vsmraid - ok
13:44:03.0999 3964 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
13:44:04.0079 3964 VSS - ok
13:44:04.0268 3964 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
13:44:04.0277 3964 vwifibus - ok
13:44:04.0306 3964 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
13:44:04.0331 3964 vwififlt - ok
13:44:04.0420 3964 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
13:44:04.0473 3964 W32Time - ok
13:44:04.0516 3964 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
13:44:04.0530 3964 WacomPen - ok
13:44:04.0588 3964 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
13:44:04.0605 3964 WANARP - ok
13:44:04.0615 3964 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
13:44:04.0616 3964 Wanarpv6 - ok
13:44:04.0822 3964 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
13:44:04.0881 3964 WatAdminSvc - ok
13:44:05.0089 3964 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
13:44:05.0180 3964 wbengine - ok
13:44:05.0365 3964 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
13:44:05.0382 3964 WbioSrvc - ok
13:44:05.0447 3964 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
13:44:05.0473 3964 wcncsvc - ok
13:44:05.0508 3964 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
13:44:05.0525 3964 WcsPlugInService - ok
13:44:05.0633 3964 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
13:44:05.0648 3964 Wd - ok
13:44:05.0679 3964 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
13:44:05.0710 3964 Wdf01000 - ok
13:44:05.0781 3964 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
13:44:05.0803 3964 WdiServiceHost - ok
13:44:05.0806 3964 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
13:44:05.0809 3964 WdiSystemHost - ok
13:44:05.0925 3964 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
13:44:05.0972 3964 WebClient - ok
13:44:06.0016 3964 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
13:44:06.0032 3964 Wecsvc - ok
13:44:06.0049 3964 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
13:44:06.0058 3964 wercplsupport - ok
13:44:06.0100 3964 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
13:44:06.0121 3964 WerSvc - ok
13:44:06.0205 3964 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
13:44:06.0213 3964 WfpLwf - ok
13:44:06.0224 3964 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
13:44:06.0232 3964 WIMMount - ok
13:44:06.0363 3964 WinDefend - ok
13:44:06.0370 3964 WinHttpAutoProxySvc - ok
13:44:06.0517 3964 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
13:44:06.0525 3964 Winmgmt - ok
13:44:06.0868 3964 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
13:44:06.0945 3964 WinRM - ok
13:44:07.0269 3964 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
13:44:07.0277 3964 WinUsb - ok
13:44:07.0391 3964 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
13:44:07.0421 3964 Wlansvc - ok
13:44:07.0559 3964 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:44:07.0566 3964 wlcrasvc - ok
13:44:07.0991 3964 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:44:08.0063 3964 wlidsvc - ok
13:44:08.0266 3964 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
13:44:08.0266 3964 WmiAcpi - ok
13:44:08.0391 3964 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
13:44:08.0400 3964 wmiApSrv - ok
13:44:08.0501 3964 WMPNetworkSvc - ok
13:44:08.0787 3964 wordpressApache (82cb2dfa2a9bab64cb3a0c8b93085611) C:\PROGRA~1\BITNAM~1\apache2\bin\httpd.exe
13:44:08.0787 3964 wordpressApache - ok
13:44:09.0303 3964 wordpressMySQL (57541a9ab9366fb63326086aa74aa14c) C:\Program Files\BitNami WordPress Stack\mysql\bin\mysqld.exe
13:44:09.0566 3964 wordpressMySQL - ok
13:44:09.0821 3964 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
13:44:09.0896 3964 WPCSvc - ok
13:44:09.0989 3964 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
13:44:10.0009 3964 WPDBusEnum - ok
13:44:10.0125 3964 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
13:44:10.0125 3964 ws2ifsl - ok
13:44:10.0156 3964 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
13:44:10.0164 3964 wscsvc - ok
13:44:10.0167 3964 WSearch - ok
13:44:10.0364 3964 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
13:44:10.0453 3964 wuauserv - ok
13:44:10.0663 3964 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
13:44:10.0672 3964 WudfPf - ok
13:44:10.0701 3964 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:44:10.0709 3964 WUDFRd - ok
13:44:10.0765 3964 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
13:44:10.0777 3964 wudfsvc - ok
13:44:10.0794 3964 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
13:44:10.0810 3964 WwanSvc - ok
13:44:10.0941 3964 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
13:44:10.0957 3964 yukonw7 - ok
13:44:10.0995 3964 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
13:44:12.0269 3964 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
13:44:12.0269 3964 \Device\Harddisk0\DR0 - detected TDSS File System (1)
13:44:12.0276 3964 MBR (0x1B8) (06449e7c4af0550b77e260798769aa40) \Device\Harddisk1\DR1
13:44:12.0440 3964 \Device\Harddisk1\DR1 - ok
13:44:12.0460 3964 Boot (0x1200) (090e8221348536bf8b73adb7e63f4a39) \Device\Harddisk0\DR0\Partition0
13:44:12.0461 3964 \Device\Harddisk0\DR0\Partition0 - ok
13:44:12.0466 3964 Boot (0x1200) (17c56033faead569c7aa6ff267892143) \Device\Harddisk1\DR1\Partition0
13:44:12.0467 3964 \Device\Harddisk1\DR1\Partition0 - ok
13:44:12.0468 3964 ============================================================
13:44:12.0468 3964 Scan finished
13:44:12.0468 3964 ============================================================
13:44:12.0480 5816 Detected object count: 3
13:44:12.0480 5816 Actual detected object count: 3
13:44:21.0687 5816 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
13:44:21.0687 5816 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
13:44:21.0689 5816 sptd ( LockedFile.Multi.Generic ) - skipped by user
13:44:21.0689 5816 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
13:44:21.0804 5816 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
13:44:21.0939 5816 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
13:44:22.0045 5816 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
13:44:23.0004 5816 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
13:44:23.0049 5816 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
13:44:23.0108 5816 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
13:44:23.0136 5816 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
13:44:23.0140 5816 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
13:44:23.0142 5816 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
13:44:23.0147 5816 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
13:44:23.0175 5816 \Device\Harddisk0\DR0\TDLFS\dkmks.tmp - copied to quarantine
13:44:23.0181 5816 \Device\Harddisk0\DR0\TDLFS\r.dll - copied to quarantine
13:44:23.0185 5816 \Device\Harddisk0\DR0\TDLFS\socks.dll - copied to quarantine
13:44:23.0185 5816 \Device\Harddisk0\DR0\TDLFS - deleted
13:44:23.0185 5816 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
13:44:35.0028 1012 ============================================================
13:44:35.0028 1012 Scan started
13:44:35.0028 1012 Mode: Manual; TDLFS;
13:44:35.0028 1012 ============================================================
13:44:37.0868 1012 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
13:44:37.0869 1012 1394ohci - ok
13:44:38.0049 1012 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
13:44:38.0051 1012 ACPI - ok
13:44:38.0077 1012 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
13:44:38.0077 1012 AcpiPmi - ok
13:44:38.0504 1012 AdobeActiveFileMonitor9.0 (1474f121c3df1232d3e7239c03691ee6) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
13:44:38.0506 1012 AdobeActiveFileMonitor9.0 - ok
13:44:38.0755 1012 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:44:38.0756 1012 AdobeARMservice - ok
13:44:39.0397 1012 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:44:39.0399 1012 AdobeFlashPlayerUpdateSvc - ok
13:44:39.0679 1012 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
13:44:39.0682 1012 adp94xx - ok
13:44:40.0088 1012 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
13:44:40.0090 1012 adpahci - ok
13:44:40.0900 1012 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
13:44:40.0902 1012 adpu320 - ok
13:44:41.0489 1012 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
13:44:41.0490 1012 AeLookupSvc - ok
13:44:41.0688 1012 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
13:44:41.0691 1012 AFD - ok
13:44:41.0720 1012 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
13:44:41.0720 1012 agp440 - ok
13:44:43.0687 1012 Akamai (29584f02a43e427c4227e3b1d9ff1b22) c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll
13:44:43.0687 1012 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll. md5: 29584f02a43e427c4227e3b1d9ff1b22
13:44:43.0696 1012 Akamai ( HiddenFile.Multi.Generic ) - warning
13:44:43.0696 1012 Akamai - detected HiddenFile.Multi.Generic (1)
13:44:44.0297 1012 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
13:44:44.0298 1012 ALG - ok
13:44:44.0875 1012 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
13:44:44.0875 1012 aliide - ok
13:44:45.0980 1012 ALSysIO - ok
13:44:46.0154 1012 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
13:44:46.0155 1012 amdide - ok
13:44:46.0426 1012 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
13:44:46.0427 1012 AmdK8 - ok
13:44:46.0446 1012 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
13:44:46.0447 1012 AmdPPM - ok
13:44:46.0585 1012 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
13:44:46.0585 1012 amdsata - ok
13:44:47.0563 1012 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
13:44:47.0565 1012 amdsbs - ok
13:44:47.0584 1012 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
13:44:47.0585 1012 amdxata - ok
13:44:47.0751 1012 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
13:44:47.0753 1012 AppID - ok
13:44:47.0884 1012 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
13:44:47.0885 1012 AppIDSvc - ok
13:44:48.0048 1012 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
13:44:48.0048 1012 Appinfo - ok
13:44:48.0215 1012 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:44:48.0216 1012 Apple Mobile Device - ok
13:44:48.0474 1012 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
13:44:48.0475 1012 arc - ok
13:44:48.0554 1012 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
13:44:48.0554 1012 arcsas - ok
13:44:48.0671 1012 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
13:44:48.0672 1012 AsyncMac - ok
13:44:48.0808 1012 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
13:44:48.0808 1012 atapi - ok
13:44:48.0968 1012 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
13:44:48.0972 1012 AudioEndpointBuilder - ok
13:44:48.0980 1012 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
13:44:48.0984 1012 AudioSrv - ok
13:44:49.0104 1012 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
13:44:49.0106 1012 AxInstSV - ok
13:44:49.0236 1012 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
13:44:49.0239 1012 b06bdrv - ok
13:44:50.0220 1012 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
13:44:50.0222 1012 b57nd60a - ok
13:44:51.0266 1012 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
13:44:51.0267 1012 BcmSqlStartupSvc - ok
13:44:51.0582 1012 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
13:44:51.0583 1012 BDESVC - ok
13:44:51.0702 1012 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
13:44:51.0702 1012 Beep - ok
13:44:51.0874 1012 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
13:44:51.0879 1012 BFE - ok
13:44:52.0742 1012 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
13:44:52.0748 1012 BITS - ok
13:44:53.0046 1012 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
13:44:53.0047 1012 blbdrive - ok
13:44:53.0723 1012 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
13:44:53.0726 1012 Bonjour Service - ok
13:44:54.0020 1012 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
13:44:54.0020 1012 bowser - ok
13:44:54.0083 1012 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
13:44:54.0084 1012 BrFiltLo - ok
13:44:54.0097 1012 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
13:44:54.0098 1012 BrFiltUp - ok
13:44:54.0253 1012 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
13:44:54.0254 1012 BridgeMP - ok
13:44:54.0489 1012 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
13:44:54.0490 1012 Browser - ok
13:44:54.0653 1012 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
13:44:54.0655 1012 Brserid - ok
13:44:54.0779 1012 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
13:44:54.0779 1012 BrSerWdm - ok
13:44:54.0849 1012 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
13:44:54.0849 1012 BrUsbMdm - ok
13:44:54.0882 1012 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
13:44:54.0882 1012 BrUsbSer - ok
13:44:55.0017 1012 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
13:44:55.0018 1012 BTHMODEM - ok
13:44:55.0514 1012 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
13:44:55.0515 1012 bthserv - ok
13:44:55.0520 1012 catchme - ok
13:44:55.0780 1012 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
13:44:55.0781 1012 cdfs - ok
13:44:55.0796 1012 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
13:44:55.0797 1012 cdrom - ok
13:44:55.0894 1012 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
13:44:55.0895 1012 CertPropSvc - ok
13:44:56.0111 1012 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
13:44:56.0112 1012 circlass - ok
13:44:56.0560 1012 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
13:44:56.0562 1012 CLFS - ok
13:44:56.0803 1012 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:44:56.0804 1012 clr_optimization_v2.0.50727_32 - ok
13:44:57.0465 1012 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:44:57.0466 1012 clr_optimization_v2.0.50727_64 - ok
13:44:57.0865 1012 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:44:57.0866 1012 clr_optimization_v4.0.30319_32 - ok
13:44:58.0115 1012 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:44:58.0117 1012 clr_optimization_v4.0.30319_64 - ok
13:44:58.0235 1012 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
13:44:58.0236 1012 CmBatt - ok
13:44:58.0364 1012 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
13:44:58.0364 1012 cmdide - ok
13:44:58.0955 1012 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
13:44:58.0958 1012 CNG - ok
13:44:58.0992 1012 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
13:44:58.0992 1012 Compbatt - ok
13:44:59.0156 1012 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
13:44:59.0157 1012 CompositeBus - ok
13:44:59.0160 1012 COMSysApp - ok
13:44:59.0399 1012 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
13:44:59.0399 1012 crcdisk - ok
13:44:59.0427 1012 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
13:44:59.0429 1012 CryptSvc - ok
13:45:00.0150 1012 DAUpdaterSvc (914a7156b0c0f10be645a02e13f576b2) C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
13:45:00.0151 1012 DAUpdaterSvc - ok
13:45:00.0456 1012 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
13:45:00.0460 1012 DcomLaunch - ok
13:45:01.0364 1012 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
13:45:01.0366 1012 defragsvc - ok
13:45:01.0585 1012 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
13:45:01.0585 1012 DfsC - ok
13:45:02.0474 1012 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
13:45:02.0476 1012 Dhcp - ok
13:45:02.0494 1012 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
13:45:02.0495 1012 discache - ok
13:45:03.0073 1012 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
13:45:03.0074 1012 Disk - ok
13:45:03.0476 1012 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
13:45:03.0478 1012 Dnscache - ok
13:45:03.0664 1012 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
13:45:03.0666 1012 dot3svc - ok
13:45:03.0751 1012 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
13:45:03.0752 1012 Dot4 - ok
13:45:03.0762 1012 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
13:45:03.0763 1012 Dot4Print - ok
13:45:03.0865 1012 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
13:45:03.0865 1012 dot4usb - ok
13:45:03.0885 1012 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
13:45:03.0887 1012 DPS - ok
13:45:03.0991 1012 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
13:45:03.0992 1012 drmkaud - ok
13:45:04.0676 1012 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
13:45:04.0682 1012 DXGKrnl - ok
13:45:05.0329 1012 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
13:45:05.0330 1012 EapHost - ok
13:45:08.0596 1012 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
13:45:08.0615 1012 ebdrv - ok
13:45:09.0063 1012 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
13:45:09.0064 1012 EFS - ok
13:45:09.0459 1012 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
13:45:09.0464 1012 ehRecvr - ok
13:45:09.0699 1012 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
13:45:09.0700 1012 ehSched - ok
13:45:10.0596 1012 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
13:45:10.0599 1012 elxstor - ok
13:45:10.0624 1012 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
13:45:10.0624 1012 ErrDev - ok
13:45:10.0928 1012 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
13:45:10.0931 1012 EventSystem - ok
13:45:11.0030 1012 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
13:45:11.0031 1012 exfat - ok
13:45:11.0075 1012 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
13:45:11.0076 1012 fastfat - ok
13:45:11.0105 1012 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
13:45:11.0110 1012 Fax - ok
13:45:11.0387 1012 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
13:45:11.0456 1012 fdc - ok
13:45:11.0537 1012 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
13:45:11.0538 1012 fdPHost - ok
13:45:11.0547 1012 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
13:45:11.0548 1012 FDResPub - ok
13:45:11.0555 1012 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
13:45:11.0555 1012 FileInfo - ok
13:45:11.0564 1012 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
13:45:11.0564 1012 Filetrace - ok
13:45:12.0418 1012 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
13:45:12.0424 1012 FLEXnet Licensing Service - ok
13:45:12.0629 1012 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
13:45:12.0630 1012 flpydisk - ok
13:45:13.0077 1012 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
13:45:13.0078 1012 FltMgr - ok
13:45:13.0867 1012 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
13:45:13.0875 1012 FontCache - ok
13:45:14.0111 1012 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:45:14.0112 1012 FontCache3.0.0.0 - ok
13:45:14.0463 1012 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
13:45:14.0464 1012 FsDepends - ok
13:45:14.0573 1012 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
13:45:14.0574 1012 fssfltr - ok
13:45:14.0807 1012 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
13:45:14.0817 1012 fsssvc - ok
13:45:15.0501 1012 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
13:45:15.0501 1012 Fs_Rec - ok
13:45:15.0886 1012 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
13:45:15.0887 1012 fvevol - ok
13:45:16.0365 1012 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
13:45:16.0366 1012 gagp30kx - ok
13:45:16.0551 1012 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:45:16.0551 1012 GEARAspiWDM - ok
13:45:17.0038 1012 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
13:45:17.0043 1012 gpsvc - ok
13:45:17.0484 1012 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:45:17.0485 1012 gupdate - ok
13:45:17.0489 1012 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:45:17.0490 1012 gupdatem - ok
13:45:17.0525 1012 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
13:45:17.0526 1012 hcw85cir - ok
13:45:17.0940 1012 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
13:45:17.0942 1012 HdAudAddService - ok
13:45:18.0336 1012 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
13:45:18.0337 1012 HDAudBus - ok
13:45:18.0503 1012 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
13:45:18.0504 1012 HidBatt - ok
13:45:18.0865 1012 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
13:45:18.0865 1012 HidBth - ok
13:45:18.0892 1012 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
13:45:18.0893 1012 HidIr - ok
13:45:19.0075 1012 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
13:45:19.0076 1012 hidserv - ok
13:45:19.0195 1012 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
13:45:19.0195 1012 HidUsb - ok
13:45:19.0232 1012 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
13:45:19.0233 1012 hkmsvc - ok
13:45:19.0248 1012 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
13:45:19.0251 1012 HomeGroupListener - ok
13:45:19.0337 1012 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
13:45:19.0340 1012 HomeGroupProvider - ok
13:45:20.0604 1012 hpqcxs08 (5da42d24712e00728cea2342a65009b2) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
13:45:20.0606 1012 hpqcxs08 - ok
13:45:20.0622 1012 hpqddsvc (d86a39bf100069444d026d22d9a6e555) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
13:45:20.0624 1012 hpqddsvc - ok
13:45:20.0652 1012 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
13:45:20.0653 1012 HpSAMD - ok
13:45:20.0896 1012 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
13:45:20.0903 1012 HPSLPSVC - ok
13:45:21.0558 1012 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
13:45:21.0563 1012 HTTP - ok
13:45:21.0572 1012 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
13:45:21.0572 1012 hwpolicy - ok
13:45:21.0853 1012 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
13:45:21.0854 1012 i8042prt - ok
13:45:21.0952 1012 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
13:45:21.0954 1012 iaStorV - ok
13:45:22.0351 1012 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:45:22.0356 1012 idsvc - ok
13:45:22.0537 1012 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
13:45:22.0538 1012 iirsp - ok
13:45:22.0631 1012 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
13:45:22.0637 1012 IKEEXT - ok
13:45:23.0323 1012 IntcAzAudAddService (26407a11d7e222afb7ce32700abbd9d1) C:\Windows\system32\drivers\RTKVHD64.sys
13:45:23.0340 1012 IntcAzAudAddService - ok
13:45:23.0678 1012 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
13:45:23.0678 1012 intelide - ok
13:45:23.0777 1012 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
13:45:23.0778 1012 intelppm - ok
13:45:23.0848 1012 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
13:45:23.0849 1012 IPBusEnum - ok
13:45:24.0321 1012 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:45:24.0322 1012 IpFilterDriver - ok
13:45:25.0507 1012 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
13:45:25.0511 1012 iphlpsvc - ok
13:45:25.0865 1012 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
13:45:25.0866 1012 IPMIDRV - ok
13:45:26.0123 1012 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
13:45:26.0124 1012 IPNAT - ok
13:45:26.0351 1012 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
13:45:26.0357 1012 iPod Service - ok
13:45:26.0484 1012 irda (05360b1ea5a2abf620d1d96ebd8bd8f1) C:\Windows\system32\DRIVERS\irda.sys
13:45:26.0485 1012 irda - ok
13:45:26.0673 1012 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
13:45:26.0674 1012 IRENUM - ok
13:45:26.0820 1012 Irmon (3848384ab383f0a8f506c4370635c1f9) C:\Windows\System32\irmon.dll
13:45:26.0821 1012 Irmon - ok
13:45:26.0877 1012 irsir (d2ca12736624ba636f8357dc3ef0757e) C:\Windows\system32\DRIVERS\irsir.sys
13:45:26.0877 1012 irsir - ok
13:45:26.0981 1012 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
13:45:26.0982 1012 isapnp - ok
13:45:27.0260 1012 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
13:45:27.0261 1012 iScsiPrt - ok
13:45:27.0278 1012 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
13:45:27.0329 1012 kbdclass - ok
13:45:27.0418 1012 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
13:45:27.0418 1012 kbdhid - ok
13:45:27.0480 1012 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:45:27.0482 1012 KeyIso - ok
13:45:27.0490 1012 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
13:45:27.0491 1012 KSecDD - ok
13:45:28.0363 1012 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
13:45:28.0364 1012 KSecPkg - ok
13:45:28.0409 1012 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
13:45:28.0410 1012 ksthunk - ok
13:45:28.0754 1012 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
13:45:28.0758 1012 KtmRm - ok
13:45:28.0990 1012 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
13:45:28.0993 1012 LanmanServer - ok
13:45:29.0046 1012 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
13:45:29.0049 1012 LanmanWorkstation - ok
13:45:29.0309 1012 Lavasoft Kernexplorer (9a7fa6371f68335fd3c3d6488bc5a9f8) C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys
13:45:29.0310 1012 Lavasoft Kernexplorer - ok
13:45:29.0548 1012 Linksys_adapter_H (584528bf596a54b2bf6be5067adda44a) C:\Windows\system32\DRIVERS\AE2500w764.sys
13:45:29.0556 1012 Linksys_adapter_H - ok
13:45:29.0891 1012 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
13:45:29.0891 1012 lltdio - ok
13:45:30.0110 1012 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
13:45:30.0113 1012 lltdsvc - ok
13:45:30.0268 1012 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
13:45:30.0269 1012 lmhosts - ok
13:45:30.0339 1012 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
13:45:30.0340 1012 LSI_FC - ok
13:45:30.0505 1012 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
13:45:30.0506 1012 LSI_SAS - ok
13:45:30.0552 1012 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
13:45:30.0553 1012 LSI_SAS2 - ok
13:45:30.0700 1012 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
13:45:30.0702 1012 LSI_SCSI - ok
13:45:30.0716 1012 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
13:45:30.0717 1012 luafv - ok
13:45:30.0912 1012 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
13:45:30.0912 1012 MBAMProtector - ok
13:45:31.0237 1012 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:45:31.0242 1012 MBAMService - ok
13:45:31.0494 1012 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
13:45:31.0496 1012 Mcx2Svc - ok
13:45:31.0561 1012 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
13:45:31.0561 1012 megasas - ok
13:45:31.0675 1012 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
13:45:31.0677 1012 MegaSR - ok
13:45:31.0729 1012 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
13:45:31.0730 1012 MMCSS - ok
13:45:31.0825 1012 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
13:45:31.0825 1012 Modem - ok
13:45:31.0844 1012 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
13:45:31.0845 1012 monitor - ok
13:45:31.0857 1012 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
13:45:31.0857 1012 mouclass - ok
13:45:31.0863 1012 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
13:45:31.0864 1012 mouhid - ok
13:45:32.0005 1012 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
13:45:32.0006 1012 mountmgr - ok
13:45:32.0239 1012 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:45:32.0240 1012 MozillaMaintenance - ok
13:45:32.0296 1012 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
13:45:32.0297 1012 mpio - ok
13:45:32.0330 1012 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
13:45:32.0331 1012 mpsdrv - ok
13:45:32.0494 1012 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
13:45:32.0500 1012 MpsSvc - ok
13:45:33.0099 1012 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
13:45:33.0100 1012 MRxDAV - ok
13:45:33.0271 1012 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:45:33.0273 1012 mrxsmb - ok
13:45:33.0558 1012 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:45:33.0560 1012 mrxsmb10 - ok
13:45:33.0588 1012 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:45:33.0589 1012 mrxsmb20 - ok
13:45:33.0748 1012 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
13:45:33.0749 1012 msahci - ok
13:45:33.0990 1012 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
13:45:33.0991 1012 msdsm - ok
13:45:34.0258 1012 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
13:45:34.0259 1012 MSDTC - ok
13:45:34.0384 1012 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
13:45:34.0385 1012 Msfs - ok
13:45:34.0445 1012 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
13:45:34.0446 1012 mshidkmdf - ok
13:45:34.0553 1012 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
13:45:34.0554 1012 msisadrv - ok
13:45:34.0972 1012 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
13:45:34.0974 1012 MSiSCSI - ok
13:45:34.0977 1012 msiserver - ok
13:45:35.0062 1012 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
13:45:35.0063 1012 MSKSSRV - ok
13:45:35.0165 1012 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
13:45:35.0165 1012 MSPCLOCK - ok
13:45:35.0216 1012 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
13:45:35.0216 1012 MSPQM - ok
13:45:36.0134 1012 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
13:45:36.0136 1012 MsRPC - ok
13:45:36.0194 1012 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
13:45:36.0195 1012 mssmbios - ok
13:45:36.0512 1012 MSSQL$MSSMLBIZ - ok
13:45:36.0541 1012 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
13:45:36.0541 1012 MSSQLServerADHelper - ok
13:45:36.0582 1012 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
13:45:36.0582 1012 MSTEE - ok
13:45:36.0676 1012 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
13:45:36.0677 1012 MTConfig - ok
13:45:36.0698 1012 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
13:45:36.0699 1012 Mup - ok
13:45:36.0755 1012 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
13:45:36.0760 1012 napagent - ok
13:45:36.0888 1012 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
13:45:36.0890 1012 NativeWifiP - ok
13:45:37.0258 1012 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
13:45:37.0264 1012 NDIS - ok
13:45:37.0453 1012 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
13:45:37.0454 1012 NdisCap - ok
13:45:37.0637 1012 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
13:45:37.0637 1012 NdisTapi - ok
13:45:37.0689 1012 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
13:45:37.0689 1012 Ndisuio - ok
13:45:37.0817 1012 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
13:45:37.0818 1012 NdisWan - ok
13:45:37.0833 1012 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
13:45:37.0834 1012 NDProxy - ok
13:45:38.0012 1012 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
13:45:38.0013 1012 Net Driver HPZ12 - ok
13:45:38.0047 1012 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
13:45:38.0048 1012 NetBIOS - ok
13:45:38.0136 1012 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
13:45:38.0138 1012 NetBT - ok
13:45:38.0237 1012 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:45:38.0238 1012 Netlogon - ok
13:45:38.0351 1012 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
13:45:38.0354 1012 Netman - ok
13:45:38.0603 1012 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
13:45:38.0607 1012 netprofm - ok
13:45:39.0095 1012 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:45:39.0096 1012 NetTcpPortSharing - ok
13:45:39.0418 1012 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
13:45:39.0419 1012 nfrd960 - ok
13:45:40.0149 1012 NitroDriverReadSpool2 (a79d2a51e9743262d35258d515ce773e) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
13:45:40.0152 1012 NitroDriverReadSpool2 - ok
13:45:40.0557 1012 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
13:45:40.0560 1012 NlaSvc - ok
13:45:41.0655 1012 nlsX86cc (fac20f9060ff9c74af0c8a002bb04ae7) C:\Windows\SysWOW64\NLSSRV32.EXE
13:45:41.0656 1012 nlsX86cc - ok
13:45:42.0059 1012 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
13:45:42.0059 1012 Npfs - ok
13:45:42.0159 1012 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
13:45:42.0161 1012 nsi - ok
13:45:42.0303 1012 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
13:45:42.0304 1012 nsiproxy - ok
13:45:42.0776 1012 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
13:45:42.0786 1012 Ntfs - ok
13:45:43.0108 1012 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
13:45:43.0108 1012 NuidFltr - ok
13:45:43.0199 1012 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
13:45:43.0199 1012 Null - ok
13:45:43.0297 1012 NVHDA (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
13:45:43.0299 1012 NVHDA - ok
13:45:45.0075 1012 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:45:45.0152 1012 nvlddmkm - ok
13:45:46.0929 1012 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
13:45:46.0930 1012 nvraid - ok
13:45:47.0047 1012 nvsmu (e58d81fb8616d0cb55c1e36aa0b213c9) C:\Windows\system32\DRIVERS\nvsmu.sys
13:45:47.0048 1012 nvsmu - ok
13:45:47.0342 1012 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
13:45:47.0344 1012 nvstor - ok
13:45:48.0600 1012 NVSvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
13:45:48.0608 1012 NVSvc - ok
13:45:49.0489 1012 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
13:45:49.0502 1012 nvUpdatusService - ok
13:45:49.0963 1012 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
13:45:49.0964 1012 nv_agp - ok
13:45:51.0354 1012 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:45:51.0357 1012 odserv - ok
13:45:52.0018 1012 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
13:45:52.0018 1012 ohci1394 - ok
13:45:52.0335 1012 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:45:52.0336 1012 ose - ok
13:45:52.0876 1012 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
13:45:52.0879 1012 p2pimsvc - ok
13:45:53.0332 1012 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
13:45:53.0336 1012 p2psvc - ok
13:45:53.0981 1012 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
13:45:53.0982 1012 Parport - ok
13:45:54.0155 1012 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
13:45:54.0156 1012 partmgr - ok
13:45:54.0238 1012 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
13:45:54.0241 1012 PcaSvc - ok
13:45:54.0297 1012 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
13:45:54.0298 1012 pci - ok
13:45:54.0318 1012 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
13:45:54.0318 1012 pciide - ok
13:45:55.0191 1012 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
13:45:55.0192 1012 pcmcia - ok
13:45:55.0213 1012 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
13:45:55.0214 1012 pcw - ok
13:45:55.0239 1012 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
13:45:55.0243 1012 PEAUTH - ok
13:45:55.0477 1012 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
13:45:55.0478 1012 PerfHost - ok
13:45:55.0913 1012 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
13:45:55.0924 1012 pla - ok
13:45:56.0214 1012 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
13:45:56.0218 1012 PlugPlay - ok
13:45:56.0383 1012 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
13:45:56.0385 1012 Pml Driver HPZ12 - ok
13:45:56.0388 1012 PnkBstrA - ok
13:45:56.0472 1012 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
13:45:56.0474 1012 PNRPAutoReg - ok
13:45:56.0621 1012 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
13:45:56.0624 1012 PNRPsvc - ok
13:45:56.0852 1012 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
13:45:56.0853 1012 Point64 - ok
13:45:56.0957 1012 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
13:45:56.0961 1012 PolicyAgent - ok
13:45:57.0036 1012 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
13:45:57.0040 1012 Power - ok
13:45:57.0079 1012 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
13:45:57.0080 1012 PptpMiniport - ok
13:45:57.0149 1012 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
13:45:57.0150 1012 Processor - ok
13:45:57.0210 1012 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
13:45:57.0213 1012 ProfSvc - ok
13:45:57.0250 1012 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:45:57.0252 1012 ProtectedStorage - ok
13:45:57.0290 1012 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
13:45:57.0291 1012 Psched - ok
13:45:57.0358 1012 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
13:45:57.0359 1012 PxHlpa64 - ok
13:45:57.0499 1012 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
13:45:57.0508 1012 ql2300 - ok
13:45:58.0208 1012 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
13:45:58.0209 1012 ql40xx - ok
13:45:58.0725 1012 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
13:45:58.0728 1012 QWAVE - ok
13:45:58.0742 1012 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
13:45:58.0743 1012 QWAVEdrv - ok
13:45:58.0768 1012 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
13:45:58.0768 1012 RasAcd - ok
13:45:58.0882 1012 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
13:45:58.0883 1012 RasAgileVpn - ok
13:45:59.0093 1012 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
13:45:59.0095 1012 RasAuto - ok
13:45:59.0154 1012 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:45:59.0155 1012 Rasl2tp - ok
13:45:59.0174 1012 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
13:45:59.0178 1012 RasMan - ok
13:45:59.0189 1012 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
13:45:59.0190 1012 RasPppoe - ok
13:45:59.0201 1012 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
13:45:59.0202 1012 RasSstp - ok
13:45:59.0217 1012 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
13:45:59.0219 1012 rdbss - ok
13:45:59.0280 1012 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
13:45:59.0281 1012 rdpbus - ok
13:45:59.0355 1012 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:45:59.0356 1012 RDPCDD - ok
13:45:59.0477 1012 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
13:45:59.0477 1012 RDPENCDD - ok
13:45:59.0506 1012 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
13:45:59.0507 1012 RDPREFMP - ok
13:45:59.0716 1012 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
13:45:59.0717 1012 RDPWD - ok
13:45:59.0743 1012 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
13:45:59.0744 1012 rdyboost - ok
13:45:59.0827 1012 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
13:45:59.0828 1012 RemoteAccess - ok
13:45:59.0889 1012 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
13:45:59.0891 1012 RemoteRegistry - ok
13:45:59.0904 1012 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
13:45:59.0906 1012 RpcEptMapper - ok
13:45:59.0942 1012 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
13:45:59.0944 1012 RpcLocator - ok
13:46:00.0066 1012 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
13:46:00.0071 1012 RpcSs - ok
13:46:00.0110 1012 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
13:46:00.0111 1012 rspndr - ok
13:46:00.0212 1012 rt61x64 (60eb8a87357ca5b088b422d1e55a2405) C:\Windows\system32\DRIVERS\WMP54Gv41x64.sys
13:46:00.0215 1012 rt61x64 - ok
13:46:00.0273 1012 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:46:00.0274 1012 SamSs - ok
13:46:00.0303 1012 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
13:46:00.0305 1012 sbp2port - ok
13:46:00.0367 1012 SBRE (fd833bee2fd9befdc0afd1941a306d9e) C:\Windows\system32\drivers\SBREdrv.sys
13:46:00.0368 1012 SBRE - ok
13:46:00.0402 1012 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
13:46:00.0405 1012 SCardSvr - ok
13:46:00.0414 1012 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
13:46:00.0414 1012 scfilter - ok
13:46:00.0450 1012 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
13:46:00.0459 1012 Schedule - ok
13:46:00.0533 1012 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
13:46:00.0534 1012 SCPolicySvc - ok
13:46:00.0611 1012 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
13:46:00.0614 1012 SDRSVC - ok
13:46:00.0703 1012 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
13:46:00.0704 1012 secdrv - ok
13:46:00.0717 1012 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
13:46:00.0719 1012 seclogon - ok
13:46:00.0726 1012 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
13:46:00.0728 1012 SENS - ok
13:46:00.0740 1012 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
13:46:00.0742 1012 SensrSvc - ok
13:46:00.0750 1012 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
13:46:00.0751 1012 Serenum - ok
13:46:00.0761 1012 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
13:46:00.0761 1012 Serial - ok
13:46:00.0822 1012 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
13:46:00.0822 1012 sermouse - ok
13:46:00.0851 1012 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
13:46:00.0853 1012 SessionEnv - ok
13:46:00.0927 1012 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
13:46:00.0927 1012 sffdisk - ok
13:46:00.0951 1012 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
13:46:00.0952 1012 sffp_mmc - ok
13:46:00.0965 1012 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
13:46:00.0966 1012 sffp_sd - ok
13:46:01.0011 1012 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
13:46:01.0011 1012 sfloppy - ok
13:46:01.0154 1012 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
13:46:01.0157 1012 SharedAccess - ok
13:46:01.0174 1012 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
13:46:01.0178 1012 ShellHWDetection - ok
13:46:01.0226 1012 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
13:46:01.0227 1012 SiSRaid2 - ok
13:46:01.0261 1012 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
13:46:01.0262 1012 SiSRaid4 - ok
13:46:01.0280 1012 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
13:46:01.0281 1012 Smb - ok
13:46:01.0340 1012 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
13:46:01.0342 1012 SNMPTRAP - ok
13:46:01.0354 1012 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
13:46:01.0355 1012 spldr - ok
13:46:01.0381 1012 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
13:46:01.0386 1012 Spooler - ok
13:46:01.0487 1012 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
13:46:01.0509 1012 sppsvc - ok
13:46:01.0630 1012 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
13:46:01.0633 1012 sppuinotify - ok
13:46:02.0271 1012 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys
13:46:02.0271 1012 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2
13:46:02.0273 1012 sptd ( LockedFile.Multi.Generic ) - warning
13:46:02.0273 1012 sptd - detected LockedFile.Multi.Generic (1)
13:46:02.0828 1012 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
13:46:02.0830 1012 SQLBrowser - ok
13:46:03.0272 1012 SQLWriter (3c432a96363097870995e2a3c8b66abd) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:46:03.0273 1012 SQLWriter - ok
13:46:03.0784 1012 SRS_SSCFilter (83be26217fd07b3613d151d24aaa9beb) C:\Windows\system32\drivers\srs_sscfilter_amd64.sys
13:46:03.0786 1012 SRS_SSCFilter - ok
13:46:04.0124 1012 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
13:46:04.0127 1012 srv - ok
13:46:04.0146 1012 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
13:46:04.0149 1012 srv2 - ok
13:46:04.0166 1012 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
13:46:04.0167 1012 srvnet - ok
13:46:04.0324 1012 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
13:46:04.0327 1012 SSDPSRV - ok
13:46:04.0346 1012 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
13:46:04.0348 1012 SstpSvc - ok
13:46:04.0466 1012 Steam Client Service - ok
13:46:04.0726 1012 Stereo Service (9e1222c417291bc836210743624a8e5e) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:46:04.0728 1012 Stereo Service - ok
13:46:04.0964 1012 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
13:46:04.0964 1012 stexstor - ok
13:46:05.0006 1012 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
13:46:05.0007 1012 StillCam - ok
13:46:05.0139 1012 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
13:46:05.0144 1012 stisvc - ok
13:46:05.0160 1012 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
13:46:05.0161 1012 swenum - ok
13:46:05.0261 1012 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:46:05.0265 1012 SwitchBoard - ok
13:46:05.0370 1012 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
13:46:05.0374 1012 swprv - ok
13:46:05.0600 1012 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
13:46:05.0612 1012 SysMain - ok
13:46:05.0905 1012 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
13:46:05.0907 1012 TabletInputService - ok
13:46:05.0918 1012 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
13:46:05.0921 1012 TapiSrv - ok
13:46:05.0930 1012 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
13:46:05.0933 1012 TBS - ok
13:46:06.0091 1012 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
13:46:06.0103 1012 Tcpip - ok
13:46:06.0399 1012 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
13:46:06.0411 1012 TCPIP6 - ok
13:46:06.0628 1012 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
13:46:06.0629 1012 tcpipreg - ok
13:46:06.0668 1012 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
13:46:06.0668 1012 TDPIPE - ok
13:46:06.0717 1012 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
13:46:06.0718 1012 TDTCP - ok
13:46:06.0745 1012 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
13:46:06.0746 1012 tdx - ok
13:46:06.0760 1012 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
13:46:06.0761 1012 TermDD - ok
13:46:06.0935 1012 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
13:46:06.0941 1012 TermService - ok
13:46:06.0954 1012 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
13:46:06.0956 1012 Themes - ok
13:46:07.0057 1012 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
13:46:07.0059 1012 THREADORDER - ok
13:46:07.0089 1012 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
13:46:07.0092 1012 TrkWks - ok
13:46:07.0222 1012 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
13:46:07.0223 1012 TrustedInstaller - ok
13:46:07.0243 1012 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:46:07.0244 1012 tssecsrv - ok
13:46:07.0273 1012 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
13:46:07.0273 1012 TsUsbFlt - ok
13:46:07.0339 1012 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
13:46:07.0340 1012 TsUsbGD - ok
13:46:07.0399 1012 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
13:46:07.0401 1012 tunnel - ok
13:46:07.0440 1012 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
13:46:07.0441 1012 uagp35 - ok
13:46:07.0551 1012 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
13:46:07.0553 1012 udfs - ok
13:46:07.0589 1012 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
13:46:07.0591 1012 UI0Detect - ok
13:46:07.0603 1012 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
13:46:07.0604 1012 uliagpkx - ok
13:46:07.0636 1012 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
13:46:07.0637 1012 umbus - ok
13:46:07.0681 1012 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
13:46:07.0681 1012 UmPass - ok
13:46:07.0717 1012 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
13:46:07.0721 1012 upnphost - ok
13:46:07.0810 1012 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
13:46:07.0810 1012 USBAAPL64 - ok
13:46:07.0899 1012 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
13:46:07.0900 1012 usbccgp - ok
13:46:07.0928 1012 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
13:46:07.0929 1012 usbcir - ok
13:46:08.0009 1012 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
13:46:08.0009 1012 usbehci - ok
13:46:08.0211 1012 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
13:46:08.0214 1012 usbhub - ok
13:46:08.0238 1012 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
13:46:08.0239 1012 usbohci - ok
13:46:08.0280 1012 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
13:46:08.0280 1012 usbprint - ok
13:46:08.0461 1012 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
13:46:08.0462 1012 usbscan - ok
13:46:08.0621 1012 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:46:08.0622 1012 USBSTOR - ok
13:46:08.0673 1012 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
13:46:08.0673 1012 usbuhci - ok
13:46:08.0718 1012 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
13:46:08.0720 1012 UxSms - ok
13:46:08.0785 1012 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:46:08.0786 1012 VaultSvc - ok
13:46:08.0836 1012 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
13:46:08.0837 1012 vdrvroot - ok
13:46:08.0882 1012 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
13:46:08.0887 1012 vds - ok
13:46:08.0916 1012 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
13:46:08.0917 1012 vga - ok
13:46:08.0983 1012 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
13:46:08.0984 1012 VgaSave - ok
13:46:09.0010 1012 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
13:46:09.0011 1012 vhdmp - ok
13:46:09.0021 1012 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
13:46:09.0022 1012 viaide - ok
13:46:09.0046 1012 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
13:46:09.0047 1012 volmgr - ok
13:46:09.0068 1012 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
13:46:09.0071 1012 volmgrx - ok
13:46:09.0222 1012 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
13:46:09.0225 1012 volsnap - ok
13:46:09.0244 1012 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
13:46:09.0245 1012 vsmraid - ok
13:46:09.0319 1012 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
13:46:09.0330 1012 VSS - ok
13:46:09.0655 1012 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
13:46:09.0656 1012 vwifibus - ok
13:46:09.0678 1012 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
13:46:09.0679 1012 vwififlt - ok
13:46:09.0838 1012 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
13:46:09.0842 1012 W32Time - ok
13:46:09.0927 1012 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
13:46:09.0928 1012 WacomPen - ok
13:46:09.0987 1012 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
13:46:09.0987 1012 WANARP - ok
13:46:09.0991 1012 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
13:46:09.0992 1012 Wanarpv6 - ok
13:46:10.0038 1012 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
13:46:10.0045 1012 WatAdminSvc - ok
13:46:10.0208 1012 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
13:46:10.0219 1012 wbengine - ok
13:46:10.0487 1012 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
13:46:10.0490 1012 WbioSrvc - ok
13:46:10.0512 1012 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
13:46:10.0515 1012 wcncsvc - ok
13:46:10.0589 1012 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
13:46:10.0591 1012 WcsPlugInService - ok
13:46:10.0663 1012 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
13:46:10.0663 1012 Wd - ok
13:46:10.0879 1012 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
13:46:10.0883 1012 Wdf01000 - ok
13:46:10.0900 1012 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
13:46:10.0902 1012 WdiServiceHost - ok
13:46:10.0906 1012 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
13:46:10.0908 1012 WdiSystemHost - ok
13:46:10.0945 1012 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
13:46:10.0948 1012 WebClient - ok
13:46:10.0963 1012 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
13:46:10.0966 1012 Wecsvc - ok
13:46:10.0980 1012 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
13:46:10.0982 1012 wercplsupport - ok
13:46:10.0993 1012 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
13:46:10.0995 1012 WerSvc - ok
13:46:11.0019 1012 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
13:46:11.0020 1012 WfpLwf - ok
13:46:11.0046 1012 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
13:46:11.0046 1012 WIMMount - ok
13:46:11.0102 1012 WinDefend - ok
13:46:11.0108 1012 WinHttpAutoProxySvc - ok
13:46:11.0173 1012 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
13:46:11.0174 1012 Winmgmt - ok
13:46:11.0262 1012 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
13:46:11.0277 1012 WinRM - ok
13:46:12.0193 1012 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
13:46:12.0194 1012 WinUsb - ok
13:46:12.0299 1012 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
13:46:12.0306 1012 Wlansvc - ok
13:46:12.0407 1012 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:46:12.0408 1012 wlcrasvc - ok
13:46:13.0335 1012 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:46:13.0349 1012 wlidsvc - ok
13:46:13.0656 1012 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
13:46:13.0657 1012 WmiAcpi - ok
13:46:13.0866 1012 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
13:46:13.0868 1012 wmiApSrv - ok
13:46:13.0954 1012 WMPNetworkSvc - ok
13:46:14.0164 1012 wordpressApache (82cb2dfa2a9bab64cb3a0c8b93085611) C:\PROGRA~1\BITNAM~1\apache2\bin\httpd.exe
13:46:14.0165 1012 wordpressApache - ok
13:46:14.0840 1012 wordpressMySQL (57541a9ab9366fb63326086aa74aa14c) C:\Program Files\BitNami WordPress Stack\mysql\bin\mysqld.exe
13:46:14.0876 1012 wordpressMySQL - ok
13:46:15.0156 1012 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
13:46:15.0158 1012 WPCSvc - ok
13:46:15.0506 1012 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
13:46:15.0508 1012 WPDBusEnum - ok
13:46:15.0691 1012 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
13:46:15.0691 1012 ws2ifsl - ok
13:46:15.0764 1012 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
13:46:15.0766 1012 wscsvc - ok
13:46:15.0769 1012 WSearch - ok
13:46:16.0058 1012 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
13:46:16.0075 1012 wuauserv - ok
13:46:16.0850 1012 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
13:46:16.0851 1012 WudfPf - ok
13:46:17.0066 1012 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:46:17.0068 1012 WUDFRd - ok
13:46:17.0169 1012 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
13:46:17.0172 1012 wudfsvc - ok
13:46:17.0253 1012 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
13:46:17.0257 1012 WwanSvc - ok
13:46:17.0351 1012 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
13:46:17.0354 1012 yukonw7 - ok
13:46:17.0374 1012 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
13:46:20.0003 1012 \Device\Harddisk0\DR0 - ok
13:46:20.0010 1012 MBR (0x1B8) (06449e7c4af0550b77e260798769aa40) \Device\Harddisk1\DR1
13:46:20.0169 1012 \Device\Harddisk1\DR1 - ok
13:46:20.0172 1012 Boot (0x1200) (090e8221348536bf8b73adb7e63f4a39) \Device\Harddisk0\DR0\Partition0
13:46:20.0173 1012 \Device\Harddisk0\DR0\Partition0 - ok
13:46:20.0178 1012 Boot (0x1200) (17c56033faead569c7aa6ff267892143) \Device\Harddisk1\DR1\Partition0
13:46:20.0180 1012 \Device\Harddisk1\DR1\Partition0 - ok
13:46:20.0180 1012 ============================================================
13:46:20.0180 1012 Scan finished
13:46:20.0180 1012 ============================================================
13:46:20.0192 5536 Detected object count: 2
13:46:20.0192 5536 Actual detected object count: 2
13:46:26.0807 5536 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
13:46:26.0807 5536 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
13:46:26.0809 5536 sptd ( LockedFile.Multi.Generic ) - skipped by user
13:46:26.0809 5536 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
13:46:29.0615 4108 Deinitialize success
Mark1956's Avatar
Malware Removal Specialist with 14,108 posts.
 
Join Date: May 2011
Location: Spain
Experience: Advanced
07-Jul-2012, 08:25 AM #29
Hi Norgalis, my name is Mark and I am jumping in while Jeffce is off-line moving house.

In view of all the scans that have been run, which are now coming up clean, I suspect there may either be some file damage or there is a hardware fault.

Please confirm for me, when you ran the Windows Repair tool did you complete the Disk Check and System File Checker? If not please go back and run them both.

I would like to see the logs from both of those scans.


Follow this guide to find the chkdsk log. NOTE: You need to do the search for wininit not chkdsk.
Windows 7 Disk Check log
Once the log is in view then click on Copy in the right hand pane and select "Copy details as text".
You can then right click on the message box on this forum and select Paste and the log will appear.

Next:
Click on Start and type cmd into the search box. Right click on cmd in the popup menu and select Run as Administrator.
Copy & Paste:
findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >%userprofile%\Desktop\sfcdetails.txt

at the command prompt and press Enter. This will place a sfcdetails.txt file on your desktop with the SFC scan details from the CBS.LOG. Zip up the file and attach it to your next post.
norgalis's Avatar
norgalis norgalis is offline
Computer Specs
Member with 113 posts.
THREAD STARTER
 
Join Date: Jul 2006
Experience: Beginner
07-Jul-2012, 05:02 PM #30
thank you, here it is
Is this the correct ChkDsk log?

Log Name: Application
Source: Microsoft-Windows-Wininit
Date: 7/4/2012 3:35:19 PM
Event ID: 1001
Task Category: None
Level: Information
Keywords: Classic
User: N/A
Computer: Owner-PC
Description:


Checking file system on C:
The type of the file system is NTFS.


One of your disks needs to be checked for consistency. You
may cancel the disk check, but it is strongly recommended
that you continue.
Windows will now check the disk.

CHKDSK is verifying files (stage 1 of 3)...
362496 file records processed.

File verification completed.
870 large file records processed.

0 bad file records processed.

0 EA records processed.

90 reparse records processed.

CHKDSK is verifying indexes (stage 2 of 3)...
451360 index entries processed.

Index verification completed.
0 unindexed files scanned.

0 unindexed files recovered.

CHKDSK is verifying security descriptors (stage 3 of 3)...
362496 file SDs/SIDs processed.

Cleaning up 5404 unused index entries from index $SII of file 0x9.
Cleaning up 5404 unused index entries from index $SDH of file 0x9.
Cleaning up 5404 unused security descriptors.
Security descriptor verification completed.
44433 data files processed.

CHKDSK is verifying Usn Journal...
108753904 USN bytes processed.

Usn Journal verification completed.
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
Windows has made corrections to the file system.

293041633 KB total disk space.
251195376 KB in 296916 files.
171596 KB in 44434 indexes.
0 KB in bad sectors.
548645 KB in use by the system.
65536 KB occupied by the log file.
41126016 KB available on disk.

4096 bytes in each allocation unit.
73260408 total allocation units on disk.
10281504 allocation units available on disk.

Internal Info:
00 88 05 00 71 35 05 00 d3 8d 09 00 00 00 00 00 ....q5..........
f9 16 00 00 5a 00 00 00 00 00 00 00 00 00 00 00 ....Z...........
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................

Windows has finished checking your disk.
Please wait while your computer restarts.

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Wininit" Guid="{206f6dea-d3c5-4d10-bc72-989f03c8b84b}" EventSourceName="Wininit" />
<EventID Qualifiers="16384">1001</EventID>
<Version>0</Version>
<Level>4</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2012-07-04T22:35:19.000000000Z" />
<EventRecordID>43165</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>Owner-PC</Computer>
<Security />
</System>
<EventData>
<Data>

Checking file system on C:
The type of the file system is NTFS.


One of your disks needs to be checked for consistency. You
may cancel the disk check, but it is strongly recommended
that you continue.
Windows will now check the disk.

CHKDSK is verifying files (stage 1 of 3)...
362496 file records processed.

File verification completed.
870 large file records processed.

0 bad file records processed.

0 EA records processed.

90 reparse records processed.

CHKDSK is verifying indexes (stage 2 of 3)...
451360 index entries processed.

Index verification completed.
0 unindexed files scanned.

0 unindexed files recovered.

CHKDSK is verifying security descriptors (stage 3 of 3)...
362496 file SDs/SIDs processed.

Cleaning up 5404 unused index entries from index $SII of file 0x9.
Cleaning up 5404 unused index entries from index $SDH of file 0x9.
Cleaning up 5404 unused security descriptors.
Security descriptor verification completed.
44433 data files processed.

CHKDSK is verifying Usn Journal...
108753904 USN bytes processed.

Usn Journal verification completed.
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
Windows has made corrections to the file system.

293041633 KB total disk space.
251195376 KB in 296916 files.
171596 KB in 44434 indexes.
0 KB in bad sectors.
548645 KB in use by the system.
65536 KB occupied by the log file.
41126016 KB available on disk.

4096 bytes in each allocation unit.
73260408 total allocation units on disk.
10281504 allocation units available on disk.

Internal Info:
00 88 05 00 71 35 05 00 d3 8d 09 00 00 00 00 00 ....q5..........
f9 16 00 00 5a 00 00 00 00 00 00 00 00 00 00 00 ....Z...........
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................

Windows has finished checking your disk.
Please wait while your computer restarts.
</Data>
</EventData>
</Event>

I've also attached the txt file you've asked for.
Attachment Blocked
Attachments in the HJT forum are often designed to solve a specific issue and not meant to be used without instructions specific to your computer. If you want help specific to your computer, please post a HiJackThis Log. If you started this thread, please make sure you are logged in to be able to view attachments.
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.


Tags
bluescreen, freeze, hjt

(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


WELCOME
You Are Using: Server ID
Trusted Website Back to the Top ↑