McAfee keeps poping up with trojan detected
Started by
sean.dbtrader
, Aug 15 2012 01:41 PM
#16
Posted 19 August 2012 - 10:58 AM
sean.dbtrader
- Topic Starter
-
- Member
-
- 73 posts
Member
#17
Posted 19 August 2012 - 11:23 AM
WhiteHat
-
- Retired Staff
-
- 1,925 posts
Trusted Helper
Yes, proceed to TDSSKiller.I rebooted and everything seems OK. Should I go ahead with TDS Killer.
#18
Posted 20 August 2012 - 11:44 PM
sean.dbtrader
- Topic Starter
-
- Member
-
- 73 posts
Member
Here are the results of the TDSKiller scan. Unfortunately, the computer still seems to be infected. The oxvpml.exe process located in C:\Users\Sean\AppData\Roaming\Microsoft still shows up in my TaskManager and Avast notifies me many times a day about that process. How do I get rid of it?
13:06:29.0635 4424 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
13:06:30.0015 4424 ============================================================
13:06:30.0015 4424 Current date / time: 2012/08/19 13:06:30.0015
13:06:30.0015 4424 SystemInfo:
13:06:30.0015 4424
13:06:30.0015 4424 OS Version: 6.1.7601 ServicePack: 1.0
13:06:30.0015 4424 Product type: Workstation
13:06:30.0015 4424 ComputerName: DELLXPSWIN7
13:06:30.0016 4424 UserName: Sean
13:06:30.0016 4424 Windows directory: C:\Windows
13:06:30.0016 4424 System windows directory: C:\Windows
13:06:30.0016 4424 Running under WOW64
13:06:30.0016 4424 Processor architecture: Intel x64
13:06:30.0016 4424 Number of processors: 8
13:06:30.0016 4424 Page size: 0x1000
13:06:30.0016 4424 Boot type: Normal boot
13:06:30.0016 4424 ============================================================
13:06:30.0985 4424 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:06:30.0993 4424 Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:06:40.0538 4424 ============================================================
13:06:40.0538 4424 \Device\Harddisk0\DR0:
13:06:40.0538 4424 MBR partitions:
13:06:40.0538 4424 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x13CF000
13:06:40.0538 4424 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13E3000, BlocksNum 0x73323000
13:06:40.0538 4424 \Device\Harddisk1\DR1:
13:06:40.0560 4424 MBR partitions:
13:06:40.0560 4424 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x575452C2
13:06:40.0560 4424 ============================================================
13:06:40.0599 4424 C: <-> \Device\Harddisk0\DR0\Partition2
13:06:40.0633 4424 E: <-> \Device\Harddisk1\DR1\Partition1
13:06:40.0634 4424 ============================================================
13:06:40.0634 4424 Initialize success
13:06:40.0634 4424 ============================================================
13:06:57.0475 3224 ============================================================
13:06:57.0475 3224 Scan started
13:06:57.0475 3224 Mode: Manual; SigCheck; TDLFS;
13:06:57.0475 3224 ============================================================
13:07:00.0823 3224 ================ Scan services =============================
13:07:00.0974 3224 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:07:01.0085 3224 1394ohci - ok
13:07:01.0113 3224 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:07:01.0139 3224 ACPI - ok
13:07:01.0177 3224 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:07:01.0233 3224 AcpiPmi - ok
13:07:01.0318 3224 [ d19c4ee2ac7c47b8f5f84fff1a789d8a ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:07:01.0342 3224 AdobeARMservice - ok
13:07:01.0449 3224 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:07:01.0476 3224 AdobeFlashPlayerUpdateSvc - ok
13:07:01.0503 3224 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:07:01.0536 3224 adp94xx - ok
13:07:01.0552 3224 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:07:01.0567 3224 adpahci - ok
13:07:01.0581 3224 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:07:01.0594 3224 adpu320 - ok
13:07:01.0613 3224 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:07:01.0673 3224 AeLookupSvc - ok
13:07:01.0740 3224 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:07:01.0775 3224 AFD - ok
13:07:01.0806 3224 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:07:01.0841 3224 agp440 - ok
13:07:01.0852 3224 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
13:07:01.0896 3224 ALG - ok
13:07:01.0917 3224 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:07:01.0928 3224 aliide - ok
13:07:01.0961 3224 [ 41a0813f22d3330c0ca71ce5bbd42b12 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:07:01.0993 3224 AMD External Events Utility - ok
13:07:02.0014 3224 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
13:07:02.0025 3224 amdide - ok
13:07:02.0045 3224 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:07:02.0061 3224 AmdK8 - ok
13:07:02.0173 3224 [ 37456be85384e4cc38dc899f07f88c45 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:07:02.0313 3224 amdkmdag - ok
13:07:02.0345 3224 [ 6b4e9261b613b047a9a145f328889968 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
13:07:02.0393 3224 amdkmdap - ok
13:07:02.0414 3224 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:07:02.0463 3224 AmdPPM - ok
13:07:02.0480 3224 [ 6ec6d772eae38dc17c14aed9b178d24b ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:07:02.0493 3224 amdsata - ok
13:07:02.0513 3224 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:07:02.0526 3224 amdsbs - ok
13:07:02.0539 3224 [ 1142a21db581a84ea5597b03a26ebaa0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:07:02.0550 3224 amdxata - ok
13:07:02.0579 3224 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
13:07:02.0634 3224 AppID - ok
13:07:02.0655 3224 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:07:02.0723 3224 AppIDSvc - ok
13:07:02.0755 3224 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:07:02.0787 3224 Appinfo - ok
13:07:02.0822 3224 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
13:07:02.0831 3224 arc - ok
13:07:02.0846 3224 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:07:02.0846 3224 arcsas - ok
13:07:02.0956 3224 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:07:02.0977 3224 aspnet_state - ok
13:07:02.0987 3224 Ast Service - ok
13:07:03.0021 3224 [ df59b8e8df0bd2e0e303778a3806a17d ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
13:07:03.0035 3224 aswFsBlk - ok
13:07:03.0080 3224 [ f8e6ab4f876feff69250f2e0c29ef004 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
13:07:03.0101 3224 aswMonFlt - ok
13:07:03.0131 3224 [ aa92bc4bcba40ca3aa3ffd1be24f0c09 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
13:07:03.0154 3224 aswRdr - ok
13:07:03.0181 3224 [ f06e230e1e8ca9437a6474b7b551cd37 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
13:07:03.0205 3224 aswSnx - ok
13:07:03.0242 3224 [ 3610ca74a69e380424f0452dec5c1317 ] aswSP C:\Windows\system32\drivers\aswSP.sys
13:07:03.0266 3224 aswSP - ok
13:07:03.0297 3224 [ 87de3e31cb0091d22351349869324065 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
13:07:03.0308 3224 aswTdi - ok
13:07:03.0325 3224 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:07:03.0383 3224 AsyncMac - ok
13:07:03.0426 3224 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
13:07:03.0448 3224 atapi - ok
13:07:03.0484 3224 [ fb7602c5c508be281368aae0b61b51c6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
13:07:03.0503 3224 AtiHdmiService - ok
13:07:03.0594 3224 [ 37456be85384e4cc38dc899f07f88c45 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:07:03.0647 3224 atikmdag - ok
13:07:03.0685 3224 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:07:03.0745 3224 AudioEndpointBuilder - ok
13:07:03.0753 3224 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:07:03.0785 3224 AudioSrv - ok
13:07:03.0864 3224 [ 2f7c0f3e39c45e0127fb78b2f18a41f3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:07:03.0883 3224 avast! Antivirus - ok
13:07:03.0916 3224 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:07:03.0974 3224 AxInstSV - ok
13:07:04.0014 3224 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:07:04.0077 3224 b06bdrv - ok
13:07:04.0115 3224 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:07:04.0146 3224 b57nd60a - ok
13:07:04.0165 3224 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:07:04.0179 3224 BDESVC - ok
13:07:04.0187 3224 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:07:04.0250 3224 Beep - ok
13:07:04.0308 3224 [ 82974d6a2fd19445cc5171fc378668a4 ] BFE C:\Windows\System32\bfe.dll
13:07:04.0352 3224 BFE - ok
13:07:04.0396 3224 [ 1ea7969e3271cbc59e1730697dc74682 ] BITS C:\Windows\system32\qmgr.dll
13:07:04.0459 3224 BITS - ok
13:07:04.0474 3224 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:07:04.0489 3224 blbdrive - ok
13:07:04.0519 3224 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:07:04.0539 3224 bowser - ok
13:07:04.0547 3224 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:07:04.0591 3224 BrFiltLo - ok
13:07:04.0613 3224 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:07:04.0628 3224 BrFiltUp - ok
13:07:04.0663 3224 [ 5c2f352a4e961d72518261257aae204b ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
13:07:04.0731 3224 BridgeMP - ok
13:07:04.0760 3224 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
13:07:04.0793 3224 Browser - ok
13:07:04.0809 3224 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:07:04.0838 3224 Brserid - ok
13:07:04.0858 3224 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:07:04.0890 3224 BrSerWdm - ok
13:07:04.0904 3224 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:07:04.0919 3224 BrUsbMdm - ok
13:07:04.0922 3224 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:07:04.0933 3224 BrUsbSer - ok
13:07:04.0939 3224 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:07:04.0955 3224 BTHMODEM - ok
13:07:04.0971 3224 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
13:07:05.0030 3224 bthserv - ok
13:07:05.0175 3224 [ bcb2e1d61e0b31729c5a9ddd09ac5073 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
13:07:05.0317 3224 CarboniteService - ok
13:07:05.0320 3224 catchme - ok
13:07:05.0337 3224 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:07:05.0395 3224 cdfs - ok
13:07:05.0430 3224 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
13:07:05.0471 3224 cdrom - ok
13:07:05.0518 3224 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
13:07:05.0596 3224 CertPropSvc - ok
13:07:05.0611 3224 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:07:05.0637 3224 circlass - ok
13:07:05.0661 3224 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
13:07:05.0686 3224 CLFS - ok
13:07:05.0737 3224 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:07:05.0757 3224 clr_optimization_v2.0.50727_32 - ok
13:07:05.0774 3224 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:07:05.0887 3224 clr_optimization_v2.0.50727_64 - ok
13:07:06.0010 3224 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:07:06.0025 3224 clr_optimization_v4.0.30319_32 - ok
13:07:06.0041 3224 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:07:06.0041 3224 clr_optimization_v4.0.30319_64 - ok
13:07:06.0063 3224 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:07:06.0077 3224 CmBatt - ok
13:07:06.0089 3224 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:07:06.0100 3224 cmdide - ok
13:07:06.0127 3224 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
13:07:06.0165 3224 CNG - ok
13:07:06.0182 3224 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:07:06.0194 3224 Compbatt - ok
13:07:06.0237 3224 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:07:06.0270 3224 CompositeBus - ok
13:07:06.0275 3224 COMSysApp - ok
13:07:06.0290 3224 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:07:06.0301 3224 crcdisk - ok
13:07:06.0336 3224 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:07:06.0394 3224 CryptSvc - ok
13:07:06.0425 3224 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:07:06.0497 3224 DcomLaunch - ok
13:07:06.0516 3224 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
13:07:06.0589 3224 defragsvc - ok
13:07:06.0617 3224 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:07:06.0713 3224 DfsC - ok
13:07:06.0764 3224 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
13:07:06.0808 3224 Dhcp - ok
13:07:06.0821 3224 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
13:07:06.0864 3224 discache - ok
13:07:06.0878 3224 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:07:06.0889 3224 Disk - ok
13:07:06.0920 3224 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:07:06.0980 3224 Dnscache - ok
13:07:07.0065 3224 [ 0840abbbdf438691ee65a20040635cbe ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
13:07:07.0081 3224 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
13:07:07.0081 3224 DockLoginService - detected UnsignedFile.Multi.Generic (1)
13:07:07.0123 3224 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:07:07.0185 3224 dot3svc - ok
13:07:07.0214 3224 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
13:07:07.0281 3224 DPS - ok
13:07:07.0311 3224 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:07:07.0353 3224 drmkaud - ok
13:07:07.0403 3224 [ 50aad2a07bd8b90a8cfb4f6d7a4d165a ] DSI_SiUSBXp_3_1 C:\Windows\system32\drivers\DSI_SiUSBXp_3_1.sys
13:07:07.0428 3224 DSI_SiUSBXp_3_1 - ok
13:07:07.0469 3224 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:07:07.0517 3224 DXGKrnl - ok
13:07:07.0536 3224 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:07:07.0568 3224 EapHost - ok
13:07:07.0631 3224 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:07:07.0711 3224 ebdrv - ok
13:07:07.0741 3224 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
13:07:07.0802 3224 EFS - ok
13:07:07.0847 3224 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:07:07.0891 3224 ehRecvr - ok
13:07:07.0919 3224 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
13:07:07.0933 3224 ehSched - ok
13:07:07.0954 3224 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:07:07.0975 3224 elxstor - ok
13:07:08.0002 3224 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:07:08.0039 3224 ErrDev - ok
13:07:08.0064 3224 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
13:07:08.0100 3224 EventSystem - ok
13:07:08.0104 3224 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
13:07:08.0151 3224 exfat - ok
13:07:08.0171 3224 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:07:08.0215 3224 fastfat - ok
13:07:08.0253 3224 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
13:07:08.0289 3224 Fax - ok
13:07:08.0304 3224 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:07:08.0332 3224 fdc - ok
13:07:08.0346 3224 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:07:08.0376 3224 fdPHost - ok
13:07:08.0388 3224 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:07:08.0447 3224 FDResPub - ok
13:07:08.0464 3224 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:07:08.0475 3224 FileInfo - ok
13:07:08.0478 3224 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:07:08.0508 3224 Filetrace - ok
13:07:08.0581 3224 [ 8669be94f63944e4f899c3950b520241 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
13:07:08.0626 3224 FLEXnet Licensing Service - ok
13:07:08.0641 3224 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:07:08.0654 3224 flpydisk - ok
13:07:08.0695 3224 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:07:08.0711 3224 FltMgr - ok
13:07:08.0761 3224 [ b4447f606bb19fd8ad0bafb59b90f5d9 ] FontCache C:\Windows\system32\FntCache.dll
13:07:08.0834 3224 FontCache - ok
13:07:08.0881 3224 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:07:08.0901 3224 FontCache3.0.0.0 - ok
13:07:08.0917 3224 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:07:08.0929 3224 FsDepends - ok
13:07:08.0958 3224 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:07:08.0969 3224 Fs_Rec - ok
13:07:09.0003 3224 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:07:09.0019 3224 fvevol - ok
13:07:09.0029 3224 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:07:09.0041 3224 gagp30kx - ok
13:07:09.0092 3224 [ d3316f6e3c011435f36e3d6e49b3196c ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
13:07:09.0112 3224 GoToAssist - ok
13:07:09.0133 3224 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
13:07:09.0159 3224 gpsvc - ok
13:07:09.0227 3224 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:07:09.0249 3224 gupdate - ok
13:07:09.0252 3224 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:07:09.0261 3224 gupdatem - ok
13:07:09.0294 3224 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:07:09.0306 3224 gusvc - ok
13:07:09.0321 3224 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:07:09.0336 3224 hcw85cir - ok
13:07:09.0369 3224 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
13:07:09.0424 3224 HDAudBus - ok
13:07:09.0463 3224 [ b6ac71aaa2b10848f57fc49d55a651af ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
13:07:09.0473 3224 HECIx64 - ok
13:07:09.0486 3224 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:07:09.0513 3224 HidBatt - ok
13:07:09.0528 3224 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:07:09.0556 3224 HidBth - ok
13:07:09.0582 3224 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:07:09.0613 3224 HidIr - ok
13:07:09.0642 3224 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\System32\hidserv.dll
13:07:09.0688 3224 hidserv - ok
13:07:09.0717 3224 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:07:09.0731 3224 HidUsb - ok
13:07:09.0762 3224 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:07:09.0832 3224 hkmsvc - ok
13:07:09.0863 3224 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:07:09.0910 3224 HomeGroupListener - ok
13:07:09.0947 3224 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:07:09.0987 3224 HomeGroupProvider - ok
13:07:10.0021 3224 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:07:10.0035 3224 HpSAMD - ok
13:07:10.0076 3224 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:07:10.0129 3224 HTTP - ok
13:07:10.0154 3224 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:07:10.0165 3224 hwpolicy - ok
13:07:10.0200 3224 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:07:10.0214 3224 i8042prt - ok
13:07:10.0245 3224 [ 631fa8935163b01fc0c02966cb3adb92 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
13:07:10.0276 3224 iaStor - ok
13:07:10.0342 3224 [ 7493ea4de41348f7d3edbf9db298f56a ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
13:07:10.0360 3224 IAStorDataMgrSvc - ok
13:07:10.0401 3224 [ 3df4395a7cf8b7a72a5f4606366b8c2d ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:07:10.0426 3224 iaStorV - ok
13:07:10.0454 3224 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:07:10.0477 3224 idsvc - ok
13:07:10.0490 3224 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:07:10.0502 3224 iirsp - ok
13:07:10.0546 3224 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
13:07:10.0606 3224 IKEEXT - ok
13:07:10.0668 3224 [ ee64207f2f5c20bfe5f73db2566c4601 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:07:10.0733 3224 IntcAzAudAddService - ok
13:07:10.0746 3224 [ 49072edbc5c2f964917d1b585c90ed0a ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
13:07:10.0760 3224 IntcDAud - ok
13:07:10.0774 3224 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
13:07:10.0786 3224 intelide - ok
13:07:10.0815 3224 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:07:10.0841 3224 intelppm - ok
13:07:10.0952 3224 [ 1a263bd87c082fa7ab38093014c8fc79 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
13:07:10.0971 3224 IntuitUpdateService - ok
13:07:11.0056 3224 [ 1663a135865f0ba6e853353e98e67f2a ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
13:07:11.0074 3224 IntuitUpdateServiceV4 - ok
13:07:11.0100 3224 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:07:11.0154 3224 IPBusEnum - ok
13:07:11.0184 3224 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:07:11.0241 3224 IpFilterDriver - ok
13:07:11.0284 3224 [ a34a587fffd45fa649fba6d03784d257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:07:11.0362 3224 iphlpsvc - ok
13:07:11.0381 3224 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:07:11.0406 3224 IPMIDRV - ok
13:07:11.0419 3224 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:07:11.0481 3224 IPNAT - ok
13:07:11.0510 3224 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:07:11.0527 3224 IRENUM - ok
13:07:11.0551 3224 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:07:11.0562 3224 isapnp - ok
13:07:11.0595 3224 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:07:11.0623 3224 iScsiPrt - ok
13:07:11.0641 3224 [ 9d7ea8c7215d8d4ae7be110eee61085d ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
13:07:11.0654 3224 k57nd60a - ok
13:07:11.0662 3224 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:07:11.0673 3224 kbdclass - ok
13:07:11.0699 3224 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:07:11.0712 3224 kbdhid - ok
13:07:11.0715 3224 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
13:07:11.0729 3224 KeyIso - ok
13:07:11.0758 3224 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:07:11.0769 3224 KSecDD - ok
13:07:11.0777 3224 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:07:11.0790 3224 KSecPkg - ok
13:07:11.0800 3224 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:07:11.0827 3224 ksthunk - ok
13:07:11.0849 3224 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
13:07:11.0899 3224 KtmRm - ok
13:07:11.0929 3224 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\System32\srvsvc.dll
13:07:11.0960 3224 LanmanServer - ok
13:07:11.0991 3224 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:07:12.0022 3224 LanmanWorkstation - ok
13:07:12.0039 3224 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:07:12.0085 3224 lltdio - ok
13:07:12.0111 3224 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:07:12.0142 3224 lltdsvc - ok
13:07:12.0158 3224 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:07:12.0186 3224 lmhosts - ok
13:07:12.0197 3224 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:07:12.0210 3224 LSI_FC - ok
13:07:12.0224 3224 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:07:12.0236 3224 LSI_SAS - ok
13:07:12.0250 3224 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:07:12.0261 3224 LSI_SAS2 - ok
13:07:12.0279 3224 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:07:12.0291 3224 LSI_SCSI - ok
13:07:12.0305 3224 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
13:07:12.0337 3224 luafv - ok
13:07:12.0353 3224 McMPFSvc - ok
13:07:12.0385 3224 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:07:12.0408 3224 Mcx2Svc - ok
13:07:12.0425 3224 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:07:12.0437 3224 megasas - ok
13:07:12.0447 3224 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:07:12.0462 3224 MegaSR - ok
13:07:12.0531 3224 [ 7c4c76b39d5525c4a465e0be32528e19 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
13:07:12.0552 3224 Microsoft Office Groove Audit Service - ok
13:07:12.0566 3224 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
13:07:12.0618 3224 MMCSS - ok
13:07:12.0637 3224 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:07:12.0679 3224 Modem - ok
13:07:12.0704 3224 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:07:12.0735 3224 monitor - ok
13:07:12.0761 3224 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
13:07:12.0788 3224 mouclass - ok
13:07:12.0794 3224 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:07:12.0808 3224 mouhid - ok
13:07:12.0840 3224 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:07:12.0852 3224 mountmgr - ok
13:07:12.0890 3224 [ 96aa8ba23142cc8e2b30f3cae0c80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:07:12.0912 3224 MozillaMaintenance - ok
13:07:12.0945 3224 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:07:12.0972 3224 mpio - ok
13:07:12.0984 3224 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:07:13.0012 3224 mpsdrv - ok
13:07:13.0029 3224 mrtRate - ok
13:07:13.0065 3224 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:07:13.0119 3224 MRxDAV - ok
13:07:13.0152 3224 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:07:13.0184 3224 mrxsmb - ok
13:07:13.0200 3224 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:07:13.0214 3224 mrxsmb10 - ok
13:07:13.0249 3224 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:07:13.0272 3224 mrxsmb20 - ok
13:07:13.0287 3224 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:07:13.0298 3224 msahci - ok
13:07:13.0329 3224 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:07:13.0357 3224 msdsm - ok
13:07:13.0375 3224 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
13:07:13.0407 3224 MSDTC - ok
13:07:13.0441 3224 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:07:13.0469 3224 Msfs - ok
13:07:13.0477 3224 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:07:13.0518 3224 mshidkmdf - ok
13:07:13.0535 3224 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:07:13.0546 3224 msisadrv - ok
13:07:13.0570 3224 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:07:13.0605 3224 MSiSCSI - ok
13:07:13.0607 3224 msiserver - ok
13:07:13.0632 3224 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:07:13.0699 3224 MSKSSRV - ok
13:07:13.0722 3224 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:07:13.0750 3224 MSPCLOCK - ok
13:07:13.0765 3224 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:07:13.0824 3224 MSPQM - ok
13:07:13.0859 3224 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:07:13.0874 3224 MsRPC - ok
13:07:13.0908 3224 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:07:13.0931 3224 mssmbios - ok
13:07:14.0019 3224 MSSQL$SQLEXPRESS - ok
13:07:14.0061 3224 [ c06ea83f6fc2959e897c117255b6b1d5 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
13:07:14.0081 3224 MSSQLServerADHelper - ok
13:07:14.0098 3224 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:07:14.0154 3224 MSTEE - ok
13:07:14.0266 3224 [ 95dc808a9a177f575de9fd49f7d97312 ] msvsmon80 C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x64\msvsmon.exe
13:07:14.0356 3224 msvsmon80 - ok
13:07:14.0533 3224 [ cb4a082af58d1a0969f931816d5cfb05 ] msvsmon90 C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
13:07:14.0635 3224 msvsmon90 - ok
13:07:14.0651 3224 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:07:14.0663 3224 MTConfig - ok
13:07:14.0675 3224 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:07:14.0685 3224 Mup - ok
13:07:14.0725 3224 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
13:07:14.0778 3224 napagent - ok
13:07:14.0804 3224 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:07:14.0836 3224 NativeWifiP - ok
13:07:14.0896 3224 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers\ndis.sys
13:07:14.0935 3224 NDIS - ok
13:07:14.0945 3224 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:07:14.0973 3224 NdisCap - ok
13:07:14.0992 3224 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:07:15.0050 3224 NdisTapi - ok
13:07:15.0095 3224 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:07:15.0142 3224 Ndisuio - ok
13:07:15.0176 3224 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:07:15.0232 3224 NdisWan - ok
13:07:15.0274 3224 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:07:15.0319 3224 NDProxy - ok
13:07:15.0322 3224 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:07:15.0363 3224 NetBIOS - ok
13:07:15.0397 3224 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:07:15.0444 3224 NetBT - ok
13:07:15.0457 3224 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
13:07:15.0470 3224 Netlogon - ok
13:07:15.0501 3224 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
13:07:15.0586 3224 Netman - ok
13:07:15.0625 3224 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:07:15.0637 3224 NetMsmqActivator - ok
13:07:15.0652 3224 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:07:15.0664 3224 NetPipeActivator - ok
13:07:15.0681 3224 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
13:07:15.0738 3224 netprofm - ok
13:07:15.0741 3224 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:07:15.0751 3224 NetTcpActivator - ok
13:07:15.0754 3224 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:07:15.0764 3224 NetTcpPortSharing - ok
13:07:15.0792 3224 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:07:15.0818 3224 nfrd960 - ok
13:07:15.0848 3224 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:07:15.0918 3224 NlaSvc - ok
13:07:15.0935 3224 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:07:15.0962 3224 Npfs - ok
13:07:15.0969 3224 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:07:16.0012 3224 nsi - ok
13:07:16.0033 3224 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:07:16.0060 3224 nsiproxy - ok
13:07:16.0117 3224 [ 05d78aa5cb5f3f5c31160bdb955d0b7c ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:07:16.0161 3224 Ntfs - ok
13:07:16.0168 3224 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
13:07:16.0212 3224 Null - ok
13:07:16.0243 3224 [ 5d9fd91f3d38dc9da01e3cb5fa89cd48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:07:16.0270 3224 nvraid - ok
13:07:16.0304 3224 [ f7cd50fe7139f07e77da8ac8033d1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:07:16.0332 3224 nvstor - ok
13:07:16.0371 3224 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:07:16.0394 3224 nv_agp - ok
13:07:16.0445 3224 [ 1f0e05dff4f5a833168e49be1256f002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:07:16.0478 3224 odserv - ok
13:07:16.0501 3224 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:07:16.0522 3224 ohci1394 - ok
13:07:16.0539 3224 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:07:16.0555 3224 ose - ok
13:07:16.0586 3224 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:07:16.0629 3224 p2pimsvc - ok
13:07:16.0649 3224 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:07:16.0668 3224 p2psvc - ok
13:07:16.0682 3224 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:07:16.0696 3224 Parport - ok
13:07:16.0719 3224 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:07:16.0731 3224 partmgr - ok
13:07:16.0744 3224 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:07:16.0777 3224 PcaSvc - ok
13:07:16.0799 3224 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
13:07:16.0813 3224 pci - ok
13:07:16.0829 3224 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
13:07:16.0846 3224 pciide - ok
13:07:16.0865 3224 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:07:16.0879 3224 pcmcia - ok
13:07:16.0890 3224 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:07:16.0901 3224 pcw - ok
13:07:16.0919 3224 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:07:16.0970 3224 PEAUTH - ok
13:07:17.0056 3224 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:07:17.0105 3224 PerfHost - ok
13:07:17.0161 3224 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
13:07:17.0218 3224 pla - ok
13:07:17.0268 3224 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:07:17.0345 3224 PlugPlay - ok
13:07:17.0358 3224 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:07:17.0394 3224 PNRPAutoReg - ok
13:07:17.0404 3224 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:07:17.0424 3224 PNRPsvc - ok
13:07:17.0460 3224 [ b8d8ec78b0f9ed8e220506181274f3d3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
13:07:17.0472 3224 Point64 - ok
13:07:17.0491 3224 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:07:17.0532 3224 PolicyAgent - ok
13:07:17.0560 3224 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
13:07:17.0626 3224 Power - ok
13:07:17.0665 3224 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:07:17.0725 3224 PptpMiniport - ok
13:07:17.0739 3224 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:07:17.0766 3224 Processor - ok
13:07:17.0787 3224 [ 5c78838b4d166d1a27db3a8a820c799a ] ProfSvc C:\Windows\system32\profsvc.dll
13:07:17.0843 3224 ProfSvc - ok
13:07:17.0846 3224 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:07:17.0860 3224 ProtectedStorage - ok
13:07:17.0908 3224 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:07:17.0959 3224 Psched - ok
13:07:17.0995 3224 [ 4712cc14e720ecccc0aa16949d18aaf1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
13:07:18.0005 3224 PxHlpa64 - ok
13:07:18.0088 3224 [ 291e76c02c0994e4e6f1f97a4bcf6c0e ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
13:07:18.0099 3224 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - warning
13:07:18.0099 3224 QBCFMonitorService - detected UnsignedFile.Multi.Generic (1)
13:07:18.0162 3224 [ 6bee1814470dc12fa20c53dfc3c97ebb ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
13:07:18.0188 3224 QBFCService ( UnsignedFile.Multi.Generic ) - warning
13:07:18.0188 3224 QBFCService - detected UnsignedFile.Multi.Generic (1)
13:07:18.0252 3224 [ 1f3eb5363f467aad7ca467ae26d0e8c4 ] QBVSS C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
13:07:18.0300 3224 QBVSS ( UnsignedFile.Multi.Generic ) - warning
13:07:18.0300 3224 QBVSS - detected UnsignedFile.Multi.Generic (1)
13:07:18.0333 3224 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:07:18.0377 3224 ql2300 - ok
13:07:18.0394 3224 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:07:18.0407 3224 ql40xx - ok
13:07:18.0423 3224 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
13:07:18.0443 3224 QWAVE - ok
13:07:18.0454 3224 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:07:18.0472 3224 QWAVEdrv - ok
13:07:18.0518 3224 [ a55e7d0d873b2c97585b3b5926ac6ade ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
13:07:18.0544 3224 RapiMgr - ok
13:07:18.0557 3224 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:07:18.0586 3224 RasAcd - ok
13:07:18.0602 3224 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:07:18.0630 3224 RasAgileVpn - ok
13:07:18.0649 3224 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
13:07:18.0666 3224 RasAuto - ok
13:07:18.0697 3224 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:07:18.0772 3224 Rasl2tp - ok
13:07:18.0804 3224 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
13:07:18.0836 3224 RasMan - ok
13:07:18.0846 3224 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:07:18.0874 3224 RasPppoe - ok
13:07:18.0886 3224 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:07:18.0915 3224 RasSstp - ok
13:07:18.0955 3224 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:07:19.0015 3224 rdbss - ok
13:07:19.0031 3224 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:07:19.0045 3224 rdpbus - ok
13:07:19.0071 3224 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:07:19.0100 3224 RDPCDD - ok
13:07:19.0108 3224 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:07:19.0150 3224 RDPENCDD - ok
13:07:19.0166 3224 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:07:19.0193 3224 RDPREFMP - ok
13:07:19.0223 3224 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:07:19.0245 3224 RDPWD - ok
13:07:19.0289 3224 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:07:19.0306 3224 rdyboost - ok
13:07:19.0337 3224 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:07:19.0402 3224 RemoteAccess - ok
13:07:19.0417 3224 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:07:19.0486 3224 RemoteRegistry - ok
13:07:19.0606 3224 [ 05fc44d32a144925eae45570029fd6e1 ] RoxMediaDB10 c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
13:07:19.0645 3224 RoxMediaDB10 - ok
13:07:19.0661 3224 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:07:19.0692 3224 RpcEptMapper - ok
13:07:19.0707 3224 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
13:07:19.0722 3224 RpcLocator - ok
13:07:19.0831 3224 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\System32\rpcss.dll
13:07:19.0885 3224 RpcSs - ok
13:07:19.0997 3224 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:07:20.0038 3224 rspndr - ok
13:07:20.0103 3224 [ a332db1dac07e95667a57aaeec236c37 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
13:07:20.0140 3224 RTL8192su - ok
13:07:20.0143 3224 RxFilter - ok
13:07:20.0156 3224 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
13:07:20.0170 3224 SamSs - ok
13:07:20.0199 3224 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:07:20.0226 3224 sbp2port - ok
13:07:20.0240 3224 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:07:20.0271 3224 SCardSvr - ok
13:07:20.0300 3224 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:07:20.0360 3224 scfilter - ok
13:07:20.0397 3224 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
13:07:20.0460 3224 Schedule - ok
13:07:20.0491 3224 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
13:07:20.0539 3224 SCPolicySvc - ok
13:07:20.0565 3224 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:07:20.0608 3224 SDRSVC - ok
13:07:20.0704 3224 [ 16a252022535b680046f6e34e136d378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
13:07:20.0736 3224 SeaPort - ok
13:07:20.0744 3224 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:07:20.0761 3224 secdrv - ok
13:07:20.0808 3224 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
13:07:20.0862 3224 seclogon - ok
13:07:20.0892 3224 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\system32\sens.dll
13:07:20.0937 3224 SENS - ok
13:07:20.0945 3224 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:07:20.0961 3224 SensrSvc - ok
13:07:20.0978 3224 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:07:21.0009 3224 Serenum - ok
13:07:21.0025 3224 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:07:21.0053 3224 Serial - ok
13:07:21.0097 3224 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:07:21.0123 3224 sermouse - ok
13:07:21.0156 3224 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:07:21.0227 3224 SessionEnv - ok
13:07:21.0252 3224 SessionLauncher - ok
13:07:21.0283 3224 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:07:21.0332 3224 sffdisk - ok
13:07:21.0359 3224 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:07:21.0379 3224 sffp_mmc - ok
13:07:21.0412 3224 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:07:21.0442 3224 sffp_sd - ok
13:07:21.0463 3224 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:07:21.0477 3224 sfloppy - ok
13:07:21.0518 3224 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:07:21.0567 3224 ShellHWDetection - ok
13:07:21.0578 3224 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:07:21.0590 3224 SiSRaid2 - ok
13:07:21.0605 3224 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:07:21.0618 3224 SiSRaid4 - ok
13:07:21.0749 3224 [ 0f97e7a47a52f4a36969f0fc319654c2 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:07:21.0817 3224 Skype C2C Service - ok
13:07:21.0864 3224 [ c70aebd3608ed9fcea2a1bae83567ffc ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:07:21.0894 3224 SkypeUpdate - ok
13:07:21.0901 3224 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:07:21.0950 3224 Smb - ok
13:07:21.0971 3224 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:07:22.0002 3224 SNMPTRAP - ok
13:07:22.0017 3224 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:07:22.0029 3224 spldr - ok
13:07:22.0057 3224 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\Windows\System32\spoolsv.exe
13:07:22.0106 3224 Spooler - ok
13:07:22.0183 3224 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
13:07:22.0276 3224 sppsvc - ok
13:07:22.0292 3224 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:07:22.0326 3224 sppuinotify - ok
13:07:22.0352 3224 [ d630b6f2e8379b6f10dc16e82a426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
13:07:22.0370 3224 sprtsvc_DellSupportCenter - ok
13:07:22.0450 3224 [ b2ec3e1deac5f0a764bd3486d213a0af ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
13:07:22.0475 3224 SQLBrowser - ok
13:07:22.0555 3224 [ 3c432a96363097870995e2a3c8b66abd ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:07:22.0578 3224 SQLWriter - ok
13:07:22.0611 3224 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
13:07:22.0658 3224 srv - ok
13:07:22.0697 3224 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:07:22.0734 3224 srv2 - ok
13:07:22.0771 3224 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:07:22.0801 3224 srvnet - ok
13:07:22.0826 3224 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:07:22.0902 3224 SSDPSRV - ok
13:07:22.0902 3224 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:07:22.0938 3224 SstpSvc - ok
13:07:22.0953 3224 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:07:22.0965 3224 stexstor - ok
13:07:23.0000 3224 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
13:07:23.0052 3224 stisvc - ok
13:07:23.0086 3224 [ ff5eb78af7dfb68c2fb363537aaf753e ] stllssvr c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
13:07:23.0107 3224 stllssvr - ok
13:07:23.0136 3224 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:07:23.0156 3224 swenum - ok
13:07:23.0171 3224 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
13:07:23.0206 3224 swprv - ok
13:07:23.0263 3224 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
13:07:23.0349 3224 SysMain - ok
13:07:23.0375 3224 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:07:23.0411 3224 TabletInputService - ok
13:07:23.0443 3224 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:07:23.0489 3224 TapiSrv - ok
13:07:23.0499 3224 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
13:07:23.0529 3224 TBS - ok
13:07:23.0587 3224 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:07:23.0632 3224 Tcpip - ok
13:07:23.0662 3224 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:07:23.0689 3224 TCPIP6 - ok
13:07:23.0725 3224 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:07:23.0782 3224 tcpipreg - ok
13:07:23.0804 3224 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:07:23.0857 3224 TDPIPE - ok
13:07:23.0882 3224 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:07:23.0910 3224 TDTCP - ok
13:07:23.0926 3224 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:07:23.0957 3224 tdx - ok
13:07:24.0057 3224 [ 1a35e7079c650d9eb17b55e4ff4c0dcd ] TeamViewer5 C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
13:07:24.0109 3224 TeamViewer5 - ok
13:07:24.0124 3224 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:07:24.0136 3224 TermDD - ok
13:07:24.0174 3224 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
13:07:24.0226 3224 TermService - ok
13:07:24.0244 3224 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
13:07:24.0279 3224 Themes - ok
13:07:24.0307 3224 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
13:07:24.0354 3224 THREADORDER - ok
13:07:24.0362 3224 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
13:07:24.0407 3224 TrkWks - ok
13:07:24.0465 3224 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:07:24.0531 3224 TrustedInstaller - ok
13:07:24.0570 3224 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:07:24.0625 3224 tssecsrv - ok
13:07:24.0676 3224 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:07:24.0702 3224 TsUsbFlt - ok
13:07:24.0721 3224 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:07:24.0769 3224 tunnel - ok
13:07:24.0782 3224 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:07:24.0795 3224 uagp35 - ok
13:07:24.0822 3224 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:07:24.0866 3224 udfs - ok
13:07:24.0883 3224 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:07:24.0899 3224 UI0Detect - ok
13:07:24.0922 3224 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:07:24.0935 3224 uliagpkx - ok
13:07:24.0975 3224 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:07:25.0011 3224 umbus - ok
13:07:25.0051 3224 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:07:25.0083 3224 UmPass - ok
13:07:25.0109 3224 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
13:07:25.0153 3224 upnphost - ok
13:07:25.0204 3224 uprhnik - ok
13:07:25.0250 3224 [ 82e8f44688e6fac57b5b7c6fc7adbc2a ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
13:07:25.0277 3224 usbaudio - ok
13:07:25.0314 3224 [ 481dff26b4dca8f4cbac1f7dce1d6829 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
13:07:25.0358 3224 usbccgp - ok
13:07:25.0392 3224 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:07:25.0423 3224 usbcir - ok
13:07:25.0452 3224 [ 74ee782b1d9c241efe425565854c661c ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:07:25.0494 3224 usbehci - ok
13:07:25.0514 3224 [ dc96bd9ccb8403251bcf25047573558e ] usbhub C:\Windows\system32\drivers\usbhub.sys
13:07:25.0530 3224 usbhub - ok
13:07:25.0540 3224 [ 58e546bbaf87664fc57e0f6081e4f609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:07:25.0558 3224 usbohci - ok
13:07:25.0583 3224 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:07:25.0627 3224 usbprint - ok
13:07:25.0662 3224 [ d76510cfa0fc09023077f22c2f979d86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:07:25.0712 3224 USBSTOR - ok
13:07:25.0735 3224 [ 81fb2216d3a60d1284455d511797db3d ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:07:25.0749 3224 usbuhci - ok
13:07:25.0784 3224 [ 70d05ee263568a742d14e1876df80532 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
13:07:25.0830 3224 usb_rndisx - ok
13:07:25.0856 3224 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
13:07:25.0889 3224 UxSms - ok
13:07:25.0898 3224 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
13:07:25.0912 3224 VaultSvc - ok
13:07:25.0923 3224 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:07:25.0934 3224 vdrvroot - ok
13:07:25.0970 3224 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
13:07:26.0013 3224 vds - ok
13:07:26.0023 3224 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:07:26.0035 3224 vga - ok
13:07:26.0050 3224 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
13:07:26.0081 3224 VgaSave - ok
13:07:26.0112 3224 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:07:26.0126 3224 vhdmp - ok
13:07:26.0150 3224 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:07:26.0161 3224 viaide - ok
13:07:26.0179 3224 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:07:26.0191 3224 volmgr - ok
13:07:26.0225 3224 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:07:26.0255 3224 volmgrx - ok
13:07:26.0267 3224 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:07:26.0281 3224 volsnap - ok
13:07:26.0302 3224 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:07:26.0314 3224 vsmraid - ok
13:07:26.0361 3224 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
13:07:26.0435 3224 VSS - ok
13:07:26.0455 3224 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:07:26.0496 3224 vwifibus - ok
13:07:26.0513 3224 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:07:26.0531 3224 vwififlt - ok
13:07:26.0548 3224 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
13:07:26.0594 3224 vwifimp - ok
13:07:26.0629 3224 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
13:07:26.0673 3224 W32Time - ok
13:07:26.0677 3224 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:07:26.0705 3224 WacomPen - ok
13:07:26.0740 3224 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:07:26.0808 3224 WANARP - ok
13:07:26.0826 3224 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:07:26.0852 3224 Wanarpv6 - ok
13:07:26.0913 3224 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:07:26.0963 3224 WatAdminSvc - ok
13:07:27.0007 3224 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
13:07:27.0052 3224 wbengine - ok
13:07:27.0074 3224 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:07:27.0089 3224 WbioSrvc - ok
13:07:27.0120 3224 [ 8bda6db43aa54e8bb5e0794541ddc209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
13:07:27.0162 3224 WcesComm - ok
13:07:27.0201 3224 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:07:27.0248 3224 wcncsvc - ok
13:07:27.0262 3224 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:07:27.0279 3224 WcsPlugInService - ok
13:07:27.0289 3224 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:07:27.0300 3224 Wd - ok
13:07:27.0315 3224 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:07:27.0334 3224 Wdf01000 - ok
13:07:27.0340 3224 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:07:27.0379 3224 WdiServiceHost - ok
13:07:27.0381 3224 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:07:27.0402 3224 WdiSystemHost - ok
13:07:27.0436 3224 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:07:27.0468 3224 WebClient - ok
13:07:27.0482 3224 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:07:27.0532 3224 Wecsvc - ok
13:07:27.0535 3224 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:07:27.0570 3224 wercplsupport - ok
13:07:27.0585 3224 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:07:27.0613 3224 WerSvc - ok
13:07:27.0621 3224 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:07:27.0647 3224 WfpLwf - ok
13:07:27.0668 3224 [ b14ef15bd757fa488f9c970eee9c0d35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
13:07:27.0680 3224 WimFltr - ok
13:07:27.0693 3224 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:07:27.0704 3224 WIMMount - ok
13:07:27.0732 3224 WinDefend - ok
13:07:27.0756 3224 WinHttpAutoProxySvc - ok
13:07:27.0802 3224 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:07:27.0859 3224 Winmgmt - ok
13:07:27.0920 3224 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
13:07:27.0984 3224 WinRM - ok
13:07:28.0013 3224 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
13:07:28.0051 3224 Wlansvc - ok
13:07:28.0145 3224 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:07:28.0191 3224 wlidsvc - ok
13:07:28.0236 3224 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:07:28.0261 3224 WmiAcpi - ok
13:07:28.0286 3224 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:07:28.0302 3224 wmiApSrv - ok
13:07:28.0313 3224 WMPNetworkSvc - ok
13:07:28.0330 3224 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:07:28.0362 3224 WPCSvc - ok
13:07:28.0391 3224 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:07:28.0424 3224 WPDBusEnum - ok
13:07:28.0435 3224 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:07:28.0494 3224 ws2ifsl - ok
13:07:28.0519 3224 [ e8b1fe6669397d1772d8196df0e57a9e ] wscsvc C:\Windows\system32\wscsvc.dll
13:07:28.0538 3224 wscsvc - ok
13:07:28.0540 3224 WSearch - ok
13:07:28.0616 3224 [ d9ef901dca379cfe914e9fa13b73b4c4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:07:28.0678 3224 wuauserv - ok
13:07:28.0716 3224 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:07:28.0787 3224 WudfPf - ok
13:07:28.0819 3224 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:07:28.0882 3224 WUDFRd - ok
13:07:28.0909 3224 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:07:28.0938 3224 wudfsvc - ok
13:07:28.0953 3224 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
13:07:28.0991 3224 WwanSvc - ok
13:07:29.0014 3224 ================ Scan global ===============================
13:07:29.0043 3224 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
13:07:29.0079 3224 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
13:07:29.0094 3224 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
13:07:29.0119 3224 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
13:07:29.0159 3224 (014a9cb92514e27c0107614df764bc06) C:\Windows\system32\services.exe
13:07:29.0169 3224 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
13:07:29.0169 3224 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
13:07:29.0170 3224 ================ Scan MBR ==================================
13:07:29.0183 3224 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
13:07:29.0455 3224 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
13:07:29.0455 3224 \Device\Harddisk0\DR0 - detected TDSS File System (1)
13:07:29.0473 3224 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
13:07:29.0785 3224 \Device\Harddisk1\DR1 - ok
13:07:29.0786 3224 ================ Scan VBR ==================================
13:07:29.0789 3224 Boot (0x1200) (d302e33527a1e4732ae055badd6e5490) \Device\Harddisk0\DR0\Partition1
13:07:29.0791 3224 \Device\Harddisk0\DR0\Partition1 - ok
13:07:29.0803 3224 Boot (0x1200) (27f5ec5118734c0658f8d84a4f405b64) \Device\Harddisk0\DR0\Partition2
13:07:29.0806 3224 \Device\Harddisk0\DR0\Partition2 - ok
13:07:29.0811 3224 Boot (0x1200) (1777836f81cfeb339b564c0d3f0b91c9) \Device\Harddisk1\DR1\Partition1
13:07:29.0815 3224 \Device\Harddisk1\DR1\Partition1 - ok
13:07:29.0816 3224 ============================================================
13:07:29.0816 3224 Scan finished
13:07:29.0816 3224 ============================================================
13:07:29.0830 5344 Detected object count: 6
13:07:29.0830 5344 Actual detected object count: 6
13:07:41.0984 5344 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
13:07:41.0984 5344 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:07:41.0985 5344 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - skipped by user
13:07:41.0985 5344 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:07:41.0987 5344 QBFCService ( UnsignedFile.Multi.Generic ) - skipped by user
13:07:41.0987 5344 QBFCService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:07:41.0989 5344 QBVSS ( UnsignedFile.Multi.Generic ) - skipped by user
13:07:41.0989 5344 QBVSS ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:07:42.0046 5344 C:\Windows\system32\services.exe - copied to quarantine
13:07:57.0107 5344 Backup copy found, using it..
13:07:57.0145 5344 C:\Windows\system32\services.exe - will be cured on reboot
13:07:57.0145 5344 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure
13:07:57.0145 5344 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
13:07:57.0145 5344 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
13:08:03.0837 1420 Deinitialize success
13:06:29.0635 4424 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
13:06:30.0015 4424 ============================================================
13:06:30.0015 4424 Current date / time: 2012/08/19 13:06:30.0015
13:06:30.0015 4424 SystemInfo:
13:06:30.0015 4424
13:06:30.0015 4424 OS Version: 6.1.7601 ServicePack: 1.0
13:06:30.0015 4424 Product type: Workstation
13:06:30.0015 4424 ComputerName: DELLXPSWIN7
13:06:30.0016 4424 UserName: Sean
13:06:30.0016 4424 Windows directory: C:\Windows
13:06:30.0016 4424 System windows directory: C:\Windows
13:06:30.0016 4424 Running under WOW64
13:06:30.0016 4424 Processor architecture: Intel x64
13:06:30.0016 4424 Number of processors: 8
13:06:30.0016 4424 Page size: 0x1000
13:06:30.0016 4424 Boot type: Normal boot
13:06:30.0016 4424 ============================================================
13:06:30.0985 4424 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:06:30.0993 4424 Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:06:40.0538 4424 ============================================================
13:06:40.0538 4424 \Device\Harddisk0\DR0:
13:06:40.0538 4424 MBR partitions:
13:06:40.0538 4424 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x13CF000
13:06:40.0538 4424 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13E3000, BlocksNum 0x73323000
13:06:40.0538 4424 \Device\Harddisk1\DR1:
13:06:40.0560 4424 MBR partitions:
13:06:40.0560 4424 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x575452C2
13:06:40.0560 4424 ============================================================
13:06:40.0599 4424 C: <-> \Device\Harddisk0\DR0\Partition2
13:06:40.0633 4424 E: <-> \Device\Harddisk1\DR1\Partition1
13:06:40.0634 4424 ============================================================
13:06:40.0634 4424 Initialize success
13:06:40.0634 4424 ============================================================
13:06:57.0475 3224 ============================================================
13:06:57.0475 3224 Scan started
13:06:57.0475 3224 Mode: Manual; SigCheck; TDLFS;
13:06:57.0475 3224 ============================================================
13:07:00.0823 3224 ================ Scan services =============================
13:07:00.0974 3224 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:07:01.0085 3224 1394ohci - ok
13:07:01.0113 3224 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:07:01.0139 3224 ACPI - ok
13:07:01.0177 3224 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:07:01.0233 3224 AcpiPmi - ok
13:07:01.0318 3224 [ d19c4ee2ac7c47b8f5f84fff1a789d8a ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:07:01.0342 3224 AdobeARMservice - ok
13:07:01.0449 3224 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:07:01.0476 3224 AdobeFlashPlayerUpdateSvc - ok
13:07:01.0503 3224 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:07:01.0536 3224 adp94xx - ok
13:07:01.0552 3224 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:07:01.0567 3224 adpahci - ok
13:07:01.0581 3224 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:07:01.0594 3224 adpu320 - ok
13:07:01.0613 3224 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:07:01.0673 3224 AeLookupSvc - ok
13:07:01.0740 3224 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:07:01.0775 3224 AFD - ok
13:07:01.0806 3224 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:07:01.0841 3224 agp440 - ok
13:07:01.0852 3224 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
13:07:01.0896 3224 ALG - ok
13:07:01.0917 3224 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:07:01.0928 3224 aliide - ok
13:07:01.0961 3224 [ 41a0813f22d3330c0ca71ce5bbd42b12 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:07:01.0993 3224 AMD External Events Utility - ok
13:07:02.0014 3224 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
13:07:02.0025 3224 amdide - ok
13:07:02.0045 3224 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:07:02.0061 3224 AmdK8 - ok
13:07:02.0173 3224 [ 37456be85384e4cc38dc899f07f88c45 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:07:02.0313 3224 amdkmdag - ok
13:07:02.0345 3224 [ 6b4e9261b613b047a9a145f328889968 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
13:07:02.0393 3224 amdkmdap - ok
13:07:02.0414 3224 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:07:02.0463 3224 AmdPPM - ok
13:07:02.0480 3224 [ 6ec6d772eae38dc17c14aed9b178d24b ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:07:02.0493 3224 amdsata - ok
13:07:02.0513 3224 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:07:02.0526 3224 amdsbs - ok
13:07:02.0539 3224 [ 1142a21db581a84ea5597b03a26ebaa0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:07:02.0550 3224 amdxata - ok
13:07:02.0579 3224 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
13:07:02.0634 3224 AppID - ok
13:07:02.0655 3224 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:07:02.0723 3224 AppIDSvc - ok
13:07:02.0755 3224 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:07:02.0787 3224 Appinfo - ok
13:07:02.0822 3224 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
13:07:02.0831 3224 arc - ok
13:07:02.0846 3224 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:07:02.0846 3224 arcsas - ok
13:07:02.0956 3224 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:07:02.0977 3224 aspnet_state - ok
13:07:02.0987 3224 Ast Service - ok
13:07:03.0021 3224 [ df59b8e8df0bd2e0e303778a3806a17d ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
13:07:03.0035 3224 aswFsBlk - ok
13:07:03.0080 3224 [ f8e6ab4f876feff69250f2e0c29ef004 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
13:07:03.0101 3224 aswMonFlt - ok
13:07:03.0131 3224 [ aa92bc4bcba40ca3aa3ffd1be24f0c09 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
13:07:03.0154 3224 aswRdr - ok
13:07:03.0181 3224 [ f06e230e1e8ca9437a6474b7b551cd37 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
13:07:03.0205 3224 aswSnx - ok
13:07:03.0242 3224 [ 3610ca74a69e380424f0452dec5c1317 ] aswSP C:\Windows\system32\drivers\aswSP.sys
13:07:03.0266 3224 aswSP - ok
13:07:03.0297 3224 [ 87de3e31cb0091d22351349869324065 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
13:07:03.0308 3224 aswTdi - ok
13:07:03.0325 3224 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:07:03.0383 3224 AsyncMac - ok
13:07:03.0426 3224 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
13:07:03.0448 3224 atapi - ok
13:07:03.0484 3224 [ fb7602c5c508be281368aae0b61b51c6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
13:07:03.0503 3224 AtiHdmiService - ok
13:07:03.0594 3224 [ 37456be85384e4cc38dc899f07f88c45 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:07:03.0647 3224 atikmdag - ok
13:07:03.0685 3224 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:07:03.0745 3224 AudioEndpointBuilder - ok
13:07:03.0753 3224 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:07:03.0785 3224 AudioSrv - ok
13:07:03.0864 3224 [ 2f7c0f3e39c45e0127fb78b2f18a41f3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:07:03.0883 3224 avast! Antivirus - ok
13:07:03.0916 3224 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:07:03.0974 3224 AxInstSV - ok
13:07:04.0014 3224 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:07:04.0077 3224 b06bdrv - ok
13:07:04.0115 3224 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:07:04.0146 3224 b57nd60a - ok
13:07:04.0165 3224 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:07:04.0179 3224 BDESVC - ok
13:07:04.0187 3224 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:07:04.0250 3224 Beep - ok
13:07:04.0308 3224 [ 82974d6a2fd19445cc5171fc378668a4 ] BFE C:\Windows\System32\bfe.dll
13:07:04.0352 3224 BFE - ok
13:07:04.0396 3224 [ 1ea7969e3271cbc59e1730697dc74682 ] BITS C:\Windows\system32\qmgr.dll
13:07:04.0459 3224 BITS - ok
13:07:04.0474 3224 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:07:04.0489 3224 blbdrive - ok
13:07:04.0519 3224 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:07:04.0539 3224 bowser - ok
13:07:04.0547 3224 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:07:04.0591 3224 BrFiltLo - ok
13:07:04.0613 3224 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:07:04.0628 3224 BrFiltUp - ok
13:07:04.0663 3224 [ 5c2f352a4e961d72518261257aae204b ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
13:07:04.0731 3224 BridgeMP - ok
13:07:04.0760 3224 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
13:07:04.0793 3224 Browser - ok
13:07:04.0809 3224 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:07:04.0838 3224 Brserid - ok
13:07:04.0858 3224 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:07:04.0890 3224 BrSerWdm - ok
13:07:04.0904 3224 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:07:04.0919 3224 BrUsbMdm - ok
13:07:04.0922 3224 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:07:04.0933 3224 BrUsbSer - ok
13:07:04.0939 3224 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:07:04.0955 3224 BTHMODEM - ok
13:07:04.0971 3224 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
13:07:05.0030 3224 bthserv - ok
13:07:05.0175 3224 [ bcb2e1d61e0b31729c5a9ddd09ac5073 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
13:07:05.0317 3224 CarboniteService - ok
13:07:05.0320 3224 catchme - ok
13:07:05.0337 3224 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:07:05.0395 3224 cdfs - ok
13:07:05.0430 3224 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
13:07:05.0471 3224 cdrom - ok
13:07:05.0518 3224 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
13:07:05.0596 3224 CertPropSvc - ok
13:07:05.0611 3224 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:07:05.0637 3224 circlass - ok
13:07:05.0661 3224 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
13:07:05.0686 3224 CLFS - ok
13:07:05.0737 3224 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:07:05.0757 3224 clr_optimization_v2.0.50727_32 - ok
13:07:05.0774 3224 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:07:05.0887 3224 clr_optimization_v2.0.50727_64 - ok
13:07:06.0010 3224 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:07:06.0025 3224 clr_optimization_v4.0.30319_32 - ok
13:07:06.0041 3224 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:07:06.0041 3224 clr_optimization_v4.0.30319_64 - ok
13:07:06.0063 3224 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:07:06.0077 3224 CmBatt - ok
13:07:06.0089 3224 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:07:06.0100 3224 cmdide - ok
13:07:06.0127 3224 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
13:07:06.0165 3224 CNG - ok
13:07:06.0182 3224 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:07:06.0194 3224 Compbatt - ok
13:07:06.0237 3224 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:07:06.0270 3224 CompositeBus - ok
13:07:06.0275 3224 COMSysApp - ok
13:07:06.0290 3224 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:07:06.0301 3224 crcdisk - ok
13:07:06.0336 3224 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:07:06.0394 3224 CryptSvc - ok
13:07:06.0425 3224 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:07:06.0497 3224 DcomLaunch - ok
13:07:06.0516 3224 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
13:07:06.0589 3224 defragsvc - ok
13:07:06.0617 3224 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:07:06.0713 3224 DfsC - ok
13:07:06.0764 3224 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
13:07:06.0808 3224 Dhcp - ok
13:07:06.0821 3224 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
13:07:06.0864 3224 discache - ok
13:07:06.0878 3224 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:07:06.0889 3224 Disk - ok
13:07:06.0920 3224 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:07:06.0980 3224 Dnscache - ok
13:07:07.0065 3224 [ 0840abbbdf438691ee65a20040635cbe ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
13:07:07.0081 3224 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
13:07:07.0081 3224 DockLoginService - detected UnsignedFile.Multi.Generic (1)
13:07:07.0123 3224 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:07:07.0185 3224 dot3svc - ok
13:07:07.0214 3224 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
13:07:07.0281 3224 DPS - ok
13:07:07.0311 3224 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:07:07.0353 3224 drmkaud - ok
13:07:07.0403 3224 [ 50aad2a07bd8b90a8cfb4f6d7a4d165a ] DSI_SiUSBXp_3_1 C:\Windows\system32\drivers\DSI_SiUSBXp_3_1.sys
13:07:07.0428 3224 DSI_SiUSBXp_3_1 - ok
13:07:07.0469 3224 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:07:07.0517 3224 DXGKrnl - ok
13:07:07.0536 3224 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:07:07.0568 3224 EapHost - ok
13:07:07.0631 3224 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:07:07.0711 3224 ebdrv - ok
13:07:07.0741 3224 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
13:07:07.0802 3224 EFS - ok
13:07:07.0847 3224 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:07:07.0891 3224 ehRecvr - ok
13:07:07.0919 3224 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
13:07:07.0933 3224 ehSched - ok
13:07:07.0954 3224 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:07:07.0975 3224 elxstor - ok
13:07:08.0002 3224 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:07:08.0039 3224 ErrDev - ok
13:07:08.0064 3224 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
13:07:08.0100 3224 EventSystem - ok
13:07:08.0104 3224 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
13:07:08.0151 3224 exfat - ok
13:07:08.0171 3224 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:07:08.0215 3224 fastfat - ok
13:07:08.0253 3224 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
13:07:08.0289 3224 Fax - ok
13:07:08.0304 3224 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:07:08.0332 3224 fdc - ok
13:07:08.0346 3224 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:07:08.0376 3224 fdPHost - ok
13:07:08.0388 3224 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:07:08.0447 3224 FDResPub - ok
13:07:08.0464 3224 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:07:08.0475 3224 FileInfo - ok
13:07:08.0478 3224 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:07:08.0508 3224 Filetrace - ok
13:07:08.0581 3224 [ 8669be94f63944e4f899c3950b520241 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
13:07:08.0626 3224 FLEXnet Licensing Service - ok
13:07:08.0641 3224 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:07:08.0654 3224 flpydisk - ok
13:07:08.0695 3224 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:07:08.0711 3224 FltMgr - ok
13:07:08.0761 3224 [ b4447f606bb19fd8ad0bafb59b90f5d9 ] FontCache C:\Windows\system32\FntCache.dll
13:07:08.0834 3224 FontCache - ok
13:07:08.0881 3224 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:07:08.0901 3224 FontCache3.0.0.0 - ok
13:07:08.0917 3224 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:07:08.0929 3224 FsDepends - ok
13:07:08.0958 3224 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:07:08.0969 3224 Fs_Rec - ok
13:07:09.0003 3224 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:07:09.0019 3224 fvevol - ok
13:07:09.0029 3224 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:07:09.0041 3224 gagp30kx - ok
13:07:09.0092 3224 [ d3316f6e3c011435f36e3d6e49b3196c ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
13:07:09.0112 3224 GoToAssist - ok
13:07:09.0133 3224 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
13:07:09.0159 3224 gpsvc - ok
13:07:09.0227 3224 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:07:09.0249 3224 gupdate - ok
13:07:09.0252 3224 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:07:09.0261 3224 gupdatem - ok
13:07:09.0294 3224 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:07:09.0306 3224 gusvc - ok
13:07:09.0321 3224 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:07:09.0336 3224 hcw85cir - ok
13:07:09.0369 3224 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
13:07:09.0424 3224 HDAudBus - ok
13:07:09.0463 3224 [ b6ac71aaa2b10848f57fc49d55a651af ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
13:07:09.0473 3224 HECIx64 - ok
13:07:09.0486 3224 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:07:09.0513 3224 HidBatt - ok
13:07:09.0528 3224 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:07:09.0556 3224 HidBth - ok
13:07:09.0582 3224 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:07:09.0613 3224 HidIr - ok
13:07:09.0642 3224 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\System32\hidserv.dll
13:07:09.0688 3224 hidserv - ok
13:07:09.0717 3224 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:07:09.0731 3224 HidUsb - ok
13:07:09.0762 3224 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:07:09.0832 3224 hkmsvc - ok
13:07:09.0863 3224 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:07:09.0910 3224 HomeGroupListener - ok
13:07:09.0947 3224 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:07:09.0987 3224 HomeGroupProvider - ok
13:07:10.0021 3224 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:07:10.0035 3224 HpSAMD - ok
13:07:10.0076 3224 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:07:10.0129 3224 HTTP - ok
13:07:10.0154 3224 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:07:10.0165 3224 hwpolicy - ok
13:07:10.0200 3224 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:07:10.0214 3224 i8042prt - ok
13:07:10.0245 3224 [ 631fa8935163b01fc0c02966cb3adb92 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
13:07:10.0276 3224 iaStor - ok
13:07:10.0342 3224 [ 7493ea4de41348f7d3edbf9db298f56a ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
13:07:10.0360 3224 IAStorDataMgrSvc - ok
13:07:10.0401 3224 [ 3df4395a7cf8b7a72a5f4606366b8c2d ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:07:10.0426 3224 iaStorV - ok
13:07:10.0454 3224 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:07:10.0477 3224 idsvc - ok
13:07:10.0490 3224 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:07:10.0502 3224 iirsp - ok
13:07:10.0546 3224 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
13:07:10.0606 3224 IKEEXT - ok
13:07:10.0668 3224 [ ee64207f2f5c20bfe5f73db2566c4601 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:07:10.0733 3224 IntcAzAudAddService - ok
13:07:10.0746 3224 [ 49072edbc5c2f964917d1b585c90ed0a ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
13:07:10.0760 3224 IntcDAud - ok
13:07:10.0774 3224 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
13:07:10.0786 3224 intelide - ok
13:07:10.0815 3224 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:07:10.0841 3224 intelppm - ok
13:07:10.0952 3224 [ 1a263bd87c082fa7ab38093014c8fc79 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
13:07:10.0971 3224 IntuitUpdateService - ok
13:07:11.0056 3224 [ 1663a135865f0ba6e853353e98e67f2a ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
13:07:11.0074 3224 IntuitUpdateServiceV4 - ok
13:07:11.0100 3224 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:07:11.0154 3224 IPBusEnum - ok
13:07:11.0184 3224 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:07:11.0241 3224 IpFilterDriver - ok
13:07:11.0284 3224 [ a34a587fffd45fa649fba6d03784d257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:07:11.0362 3224 iphlpsvc - ok
13:07:11.0381 3224 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:07:11.0406 3224 IPMIDRV - ok
13:07:11.0419 3224 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:07:11.0481 3224 IPNAT - ok
13:07:11.0510 3224 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:07:11.0527 3224 IRENUM - ok
13:07:11.0551 3224 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:07:11.0562 3224 isapnp - ok
13:07:11.0595 3224 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:07:11.0623 3224 iScsiPrt - ok
13:07:11.0641 3224 [ 9d7ea8c7215d8d4ae7be110eee61085d ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
13:07:11.0654 3224 k57nd60a - ok
13:07:11.0662 3224 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:07:11.0673 3224 kbdclass - ok
13:07:11.0699 3224 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:07:11.0712 3224 kbdhid - ok
13:07:11.0715 3224 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
13:07:11.0729 3224 KeyIso - ok
13:07:11.0758 3224 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:07:11.0769 3224 KSecDD - ok
13:07:11.0777 3224 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:07:11.0790 3224 KSecPkg - ok
13:07:11.0800 3224 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:07:11.0827 3224 ksthunk - ok
13:07:11.0849 3224 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
13:07:11.0899 3224 KtmRm - ok
13:07:11.0929 3224 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\System32\srvsvc.dll
13:07:11.0960 3224 LanmanServer - ok
13:07:11.0991 3224 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:07:12.0022 3224 LanmanWorkstation - ok
13:07:12.0039 3224 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:07:12.0085 3224 lltdio - ok
13:07:12.0111 3224 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:07:12.0142 3224 lltdsvc - ok
13:07:12.0158 3224 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:07:12.0186 3224 lmhosts - ok
13:07:12.0197 3224 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:07:12.0210 3224 LSI_FC - ok
13:07:12.0224 3224 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:07:12.0236 3224 LSI_SAS - ok
13:07:12.0250 3224 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:07:12.0261 3224 LSI_SAS2 - ok
13:07:12.0279 3224 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:07:12.0291 3224 LSI_SCSI - ok
13:07:12.0305 3224 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
13:07:12.0337 3224 luafv - ok
13:07:12.0353 3224 McMPFSvc - ok
13:07:12.0385 3224 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:07:12.0408 3224 Mcx2Svc - ok
13:07:12.0425 3224 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:07:12.0437 3224 megasas - ok
13:07:12.0447 3224 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:07:12.0462 3224 MegaSR - ok
13:07:12.0531 3224 [ 7c4c76b39d5525c4a465e0be32528e19 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
13:07:12.0552 3224 Microsoft Office Groove Audit Service - ok
13:07:12.0566 3224 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
13:07:12.0618 3224 MMCSS - ok
13:07:12.0637 3224 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:07:12.0679 3224 Modem - ok
13:07:12.0704 3224 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:07:12.0735 3224 monitor - ok
13:07:12.0761 3224 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
13:07:12.0788 3224 mouclass - ok
13:07:12.0794 3224 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:07:12.0808 3224 mouhid - ok
13:07:12.0840 3224 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:07:12.0852 3224 mountmgr - ok
13:07:12.0890 3224 [ 96aa8ba23142cc8e2b30f3cae0c80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:07:12.0912 3224 MozillaMaintenance - ok
13:07:12.0945 3224 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:07:12.0972 3224 mpio - ok
13:07:12.0984 3224 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:07:13.0012 3224 mpsdrv - ok
13:07:13.0029 3224 mrtRate - ok
13:07:13.0065 3224 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:07:13.0119 3224 MRxDAV - ok
13:07:13.0152 3224 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:07:13.0184 3224 mrxsmb - ok
13:07:13.0200 3224 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:07:13.0214 3224 mrxsmb10 - ok
13:07:13.0249 3224 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:07:13.0272 3224 mrxsmb20 - ok
13:07:13.0287 3224 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:07:13.0298 3224 msahci - ok
13:07:13.0329 3224 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:07:13.0357 3224 msdsm - ok
13:07:13.0375 3224 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
13:07:13.0407 3224 MSDTC - ok
13:07:13.0441 3224 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:07:13.0469 3224 Msfs - ok
13:07:13.0477 3224 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:07:13.0518 3224 mshidkmdf - ok
13:07:13.0535 3224 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:07:13.0546 3224 msisadrv - ok
13:07:13.0570 3224 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:07:13.0605 3224 MSiSCSI - ok
13:07:13.0607 3224 msiserver - ok
13:07:13.0632 3224 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:07:13.0699 3224 MSKSSRV - ok
13:07:13.0722 3224 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:07:13.0750 3224 MSPCLOCK - ok
13:07:13.0765 3224 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:07:13.0824 3224 MSPQM - ok
13:07:13.0859 3224 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:07:13.0874 3224 MsRPC - ok
13:07:13.0908 3224 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:07:13.0931 3224 mssmbios - ok
13:07:14.0019 3224 MSSQL$SQLEXPRESS - ok
13:07:14.0061 3224 [ c06ea83f6fc2959e897c117255b6b1d5 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
13:07:14.0081 3224 MSSQLServerADHelper - ok
13:07:14.0098 3224 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:07:14.0154 3224 MSTEE - ok
13:07:14.0266 3224 [ 95dc808a9a177f575de9fd49f7d97312 ] msvsmon80 C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x64\msvsmon.exe
13:07:14.0356 3224 msvsmon80 - ok
13:07:14.0533 3224 [ cb4a082af58d1a0969f931816d5cfb05 ] msvsmon90 C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
13:07:14.0635 3224 msvsmon90 - ok
13:07:14.0651 3224 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:07:14.0663 3224 MTConfig - ok
13:07:14.0675 3224 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:07:14.0685 3224 Mup - ok
13:07:14.0725 3224 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
13:07:14.0778 3224 napagent - ok
13:07:14.0804 3224 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:07:14.0836 3224 NativeWifiP - ok
13:07:14.0896 3224 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers\ndis.sys
13:07:14.0935 3224 NDIS - ok
13:07:14.0945 3224 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:07:14.0973 3224 NdisCap - ok
13:07:14.0992 3224 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:07:15.0050 3224 NdisTapi - ok
13:07:15.0095 3224 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:07:15.0142 3224 Ndisuio - ok
13:07:15.0176 3224 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:07:15.0232 3224 NdisWan - ok
13:07:15.0274 3224 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:07:15.0319 3224 NDProxy - ok
13:07:15.0322 3224 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:07:15.0363 3224 NetBIOS - ok
13:07:15.0397 3224 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:07:15.0444 3224 NetBT - ok
13:07:15.0457 3224 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
13:07:15.0470 3224 Netlogon - ok
13:07:15.0501 3224 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
13:07:15.0586 3224 Netman - ok
13:07:15.0625 3224 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:07:15.0637 3224 NetMsmqActivator - ok
13:07:15.0652 3224 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:07:15.0664 3224 NetPipeActivator - ok
13:07:15.0681 3224 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
13:07:15.0738 3224 netprofm - ok
13:07:15.0741 3224 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:07:15.0751 3224 NetTcpActivator - ok
13:07:15.0754 3224 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:07:15.0764 3224 NetTcpPortSharing - ok
13:07:15.0792 3224 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:07:15.0818 3224 nfrd960 - ok
13:07:15.0848 3224 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:07:15.0918 3224 NlaSvc - ok
13:07:15.0935 3224 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:07:15.0962 3224 Npfs - ok
13:07:15.0969 3224 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:07:16.0012 3224 nsi - ok
13:07:16.0033 3224 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:07:16.0060 3224 nsiproxy - ok
13:07:16.0117 3224 [ 05d78aa5cb5f3f5c31160bdb955d0b7c ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:07:16.0161 3224 Ntfs - ok
13:07:16.0168 3224 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
13:07:16.0212 3224 Null - ok
13:07:16.0243 3224 [ 5d9fd91f3d38dc9da01e3cb5fa89cd48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:07:16.0270 3224 nvraid - ok
13:07:16.0304 3224 [ f7cd50fe7139f07e77da8ac8033d1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:07:16.0332 3224 nvstor - ok
13:07:16.0371 3224 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:07:16.0394 3224 nv_agp - ok
13:07:16.0445 3224 [ 1f0e05dff4f5a833168e49be1256f002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:07:16.0478 3224 odserv - ok
13:07:16.0501 3224 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:07:16.0522 3224 ohci1394 - ok
13:07:16.0539 3224 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:07:16.0555 3224 ose - ok
13:07:16.0586 3224 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:07:16.0629 3224 p2pimsvc - ok
13:07:16.0649 3224 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:07:16.0668 3224 p2psvc - ok
13:07:16.0682 3224 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:07:16.0696 3224 Parport - ok
13:07:16.0719 3224 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:07:16.0731 3224 partmgr - ok
13:07:16.0744 3224 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:07:16.0777 3224 PcaSvc - ok
13:07:16.0799 3224 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
13:07:16.0813 3224 pci - ok
13:07:16.0829 3224 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
13:07:16.0846 3224 pciide - ok
13:07:16.0865 3224 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:07:16.0879 3224 pcmcia - ok
13:07:16.0890 3224 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:07:16.0901 3224 pcw - ok
13:07:16.0919 3224 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:07:16.0970 3224 PEAUTH - ok
13:07:17.0056 3224 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:07:17.0105 3224 PerfHost - ok
13:07:17.0161 3224 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
13:07:17.0218 3224 pla - ok
13:07:17.0268 3224 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:07:17.0345 3224 PlugPlay - ok
13:07:17.0358 3224 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:07:17.0394 3224 PNRPAutoReg - ok
13:07:17.0404 3224 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:07:17.0424 3224 PNRPsvc - ok
13:07:17.0460 3224 [ b8d8ec78b0f9ed8e220506181274f3d3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
13:07:17.0472 3224 Point64 - ok
13:07:17.0491 3224 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:07:17.0532 3224 PolicyAgent - ok
13:07:17.0560 3224 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
13:07:17.0626 3224 Power - ok
13:07:17.0665 3224 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:07:17.0725 3224 PptpMiniport - ok
13:07:17.0739 3224 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:07:17.0766 3224 Processor - ok
13:07:17.0787 3224 [ 5c78838b4d166d1a27db3a8a820c799a ] ProfSvc C:\Windows\system32\profsvc.dll
13:07:17.0843 3224 ProfSvc - ok
13:07:17.0846 3224 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:07:17.0860 3224 ProtectedStorage - ok
13:07:17.0908 3224 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:07:17.0959 3224 Psched - ok
13:07:17.0995 3224 [ 4712cc14e720ecccc0aa16949d18aaf1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
13:07:18.0005 3224 PxHlpa64 - ok
13:07:18.0088 3224 [ 291e76c02c0994e4e6f1f97a4bcf6c0e ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
13:07:18.0099 3224 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - warning
13:07:18.0099 3224 QBCFMonitorService - detected UnsignedFile.Multi.Generic (1)
13:07:18.0162 3224 [ 6bee1814470dc12fa20c53dfc3c97ebb ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
13:07:18.0188 3224 QBFCService ( UnsignedFile.Multi.Generic ) - warning
13:07:18.0188 3224 QBFCService - detected UnsignedFile.Multi.Generic (1)
13:07:18.0252 3224 [ 1f3eb5363f467aad7ca467ae26d0e8c4 ] QBVSS C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
13:07:18.0300 3224 QBVSS ( UnsignedFile.Multi.Generic ) - warning
13:07:18.0300 3224 QBVSS - detected UnsignedFile.Multi.Generic (1)
13:07:18.0333 3224 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:07:18.0377 3224 ql2300 - ok
13:07:18.0394 3224 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:07:18.0407 3224 ql40xx - ok
13:07:18.0423 3224 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
13:07:18.0443 3224 QWAVE - ok
13:07:18.0454 3224 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:07:18.0472 3224 QWAVEdrv - ok
13:07:18.0518 3224 [ a55e7d0d873b2c97585b3b5926ac6ade ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
13:07:18.0544 3224 RapiMgr - ok
13:07:18.0557 3224 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:07:18.0586 3224 RasAcd - ok
13:07:18.0602 3224 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:07:18.0630 3224 RasAgileVpn - ok
13:07:18.0649 3224 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
13:07:18.0666 3224 RasAuto - ok
13:07:18.0697 3224 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:07:18.0772 3224 Rasl2tp - ok
13:07:18.0804 3224 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
13:07:18.0836 3224 RasMan - ok
13:07:18.0846 3224 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:07:18.0874 3224 RasPppoe - ok
13:07:18.0886 3224 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:07:18.0915 3224 RasSstp - ok
13:07:18.0955 3224 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:07:19.0015 3224 rdbss - ok
13:07:19.0031 3224 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:07:19.0045 3224 rdpbus - ok
13:07:19.0071 3224 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:07:19.0100 3224 RDPCDD - ok
13:07:19.0108 3224 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:07:19.0150 3224 RDPENCDD - ok
13:07:19.0166 3224 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:07:19.0193 3224 RDPREFMP - ok
13:07:19.0223 3224 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:07:19.0245 3224 RDPWD - ok
13:07:19.0289 3224 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:07:19.0306 3224 rdyboost - ok
13:07:19.0337 3224 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:07:19.0402 3224 RemoteAccess - ok
13:07:19.0417 3224 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:07:19.0486 3224 RemoteRegistry - ok
13:07:19.0606 3224 [ 05fc44d32a144925eae45570029fd6e1 ] RoxMediaDB10 c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
13:07:19.0645 3224 RoxMediaDB10 - ok
13:07:19.0661 3224 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:07:19.0692 3224 RpcEptMapper - ok
13:07:19.0707 3224 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
13:07:19.0722 3224 RpcLocator - ok
13:07:19.0831 3224 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\System32\rpcss.dll
13:07:19.0885 3224 RpcSs - ok
13:07:19.0997 3224 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:07:20.0038 3224 rspndr - ok
13:07:20.0103 3224 [ a332db1dac07e95667a57aaeec236c37 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
13:07:20.0140 3224 RTL8192su - ok
13:07:20.0143 3224 RxFilter - ok
13:07:20.0156 3224 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
13:07:20.0170 3224 SamSs - ok
13:07:20.0199 3224 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:07:20.0226 3224 sbp2port - ok
13:07:20.0240 3224 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:07:20.0271 3224 SCardSvr - ok
13:07:20.0300 3224 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:07:20.0360 3224 scfilter - ok
13:07:20.0397 3224 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
13:07:20.0460 3224 Schedule - ok
13:07:20.0491 3224 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
13:07:20.0539 3224 SCPolicySvc - ok
13:07:20.0565 3224 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:07:20.0608 3224 SDRSVC - ok
13:07:20.0704 3224 [ 16a252022535b680046f6e34e136d378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
13:07:20.0736 3224 SeaPort - ok
13:07:20.0744 3224 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:07:20.0761 3224 secdrv - ok
13:07:20.0808 3224 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
13:07:20.0862 3224 seclogon - ok
13:07:20.0892 3224 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\system32\sens.dll
13:07:20.0937 3224 SENS - ok
13:07:20.0945 3224 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:07:20.0961 3224 SensrSvc - ok
13:07:20.0978 3224 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:07:21.0009 3224 Serenum - ok
13:07:21.0025 3224 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:07:21.0053 3224 Serial - ok
13:07:21.0097 3224 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:07:21.0123 3224 sermouse - ok
13:07:21.0156 3224 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:07:21.0227 3224 SessionEnv - ok
13:07:21.0252 3224 SessionLauncher - ok
13:07:21.0283 3224 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:07:21.0332 3224 sffdisk - ok
13:07:21.0359 3224 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:07:21.0379 3224 sffp_mmc - ok
13:07:21.0412 3224 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:07:21.0442 3224 sffp_sd - ok
13:07:21.0463 3224 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:07:21.0477 3224 sfloppy - ok
13:07:21.0518 3224 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:07:21.0567 3224 ShellHWDetection - ok
13:07:21.0578 3224 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:07:21.0590 3224 SiSRaid2 - ok
13:07:21.0605 3224 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:07:21.0618 3224 SiSRaid4 - ok
13:07:21.0749 3224 [ 0f97e7a47a52f4a36969f0fc319654c2 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:07:21.0817 3224 Skype C2C Service - ok
13:07:21.0864 3224 [ c70aebd3608ed9fcea2a1bae83567ffc ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:07:21.0894 3224 SkypeUpdate - ok
13:07:21.0901 3224 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:07:21.0950 3224 Smb - ok
13:07:21.0971 3224 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:07:22.0002 3224 SNMPTRAP - ok
13:07:22.0017 3224 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:07:22.0029 3224 spldr - ok
13:07:22.0057 3224 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\Windows\System32\spoolsv.exe
13:07:22.0106 3224 Spooler - ok
13:07:22.0183 3224 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
13:07:22.0276 3224 sppsvc - ok
13:07:22.0292 3224 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:07:22.0326 3224 sppuinotify - ok
13:07:22.0352 3224 [ d630b6f2e8379b6f10dc16e82a426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
13:07:22.0370 3224 sprtsvc_DellSupportCenter - ok
13:07:22.0450 3224 [ b2ec3e1deac5f0a764bd3486d213a0af ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
13:07:22.0475 3224 SQLBrowser - ok
13:07:22.0555 3224 [ 3c432a96363097870995e2a3c8b66abd ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:07:22.0578 3224 SQLWriter - ok
13:07:22.0611 3224 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
13:07:22.0658 3224 srv - ok
13:07:22.0697 3224 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:07:22.0734 3224 srv2 - ok
13:07:22.0771 3224 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:07:22.0801 3224 srvnet - ok
13:07:22.0826 3224 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:07:22.0902 3224 SSDPSRV - ok
13:07:22.0902 3224 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:07:22.0938 3224 SstpSvc - ok
13:07:22.0953 3224 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:07:22.0965 3224 stexstor - ok
13:07:23.0000 3224 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
13:07:23.0052 3224 stisvc - ok
13:07:23.0086 3224 [ ff5eb78af7dfb68c2fb363537aaf753e ] stllssvr c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
13:07:23.0107 3224 stllssvr - ok
13:07:23.0136 3224 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:07:23.0156 3224 swenum - ok
13:07:23.0171 3224 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
13:07:23.0206 3224 swprv - ok
13:07:23.0263 3224 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
13:07:23.0349 3224 SysMain - ok
13:07:23.0375 3224 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:07:23.0411 3224 TabletInputService - ok
13:07:23.0443 3224 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:07:23.0489 3224 TapiSrv - ok
13:07:23.0499 3224 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
13:07:23.0529 3224 TBS - ok
13:07:23.0587 3224 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:07:23.0632 3224 Tcpip - ok
13:07:23.0662 3224 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:07:23.0689 3224 TCPIP6 - ok
13:07:23.0725 3224 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:07:23.0782 3224 tcpipreg - ok
13:07:23.0804 3224 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:07:23.0857 3224 TDPIPE - ok
13:07:23.0882 3224 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:07:23.0910 3224 TDTCP - ok
13:07:23.0926 3224 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:07:23.0957 3224 tdx - ok
13:07:24.0057 3224 [ 1a35e7079c650d9eb17b55e4ff4c0dcd ] TeamViewer5 C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
13:07:24.0109 3224 TeamViewer5 - ok
13:07:24.0124 3224 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:07:24.0136 3224 TermDD - ok
13:07:24.0174 3224 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
13:07:24.0226 3224 TermService - ok
13:07:24.0244 3224 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
13:07:24.0279 3224 Themes - ok
13:07:24.0307 3224 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
13:07:24.0354 3224 THREADORDER - ok
13:07:24.0362 3224 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
13:07:24.0407 3224 TrkWks - ok
13:07:24.0465 3224 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:07:24.0531 3224 TrustedInstaller - ok
13:07:24.0570 3224 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:07:24.0625 3224 tssecsrv - ok
13:07:24.0676 3224 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:07:24.0702 3224 TsUsbFlt - ok
13:07:24.0721 3224 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:07:24.0769 3224 tunnel - ok
13:07:24.0782 3224 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:07:24.0795 3224 uagp35 - ok
13:07:24.0822 3224 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:07:24.0866 3224 udfs - ok
13:07:24.0883 3224 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:07:24.0899 3224 UI0Detect - ok
13:07:24.0922 3224 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:07:24.0935 3224 uliagpkx - ok
13:07:24.0975 3224 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:07:25.0011 3224 umbus - ok
13:07:25.0051 3224 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:07:25.0083 3224 UmPass - ok
13:07:25.0109 3224 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
13:07:25.0153 3224 upnphost - ok
13:07:25.0204 3224 uprhnik - ok
13:07:25.0250 3224 [ 82e8f44688e6fac57b5b7c6fc7adbc2a ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
13:07:25.0277 3224 usbaudio - ok
13:07:25.0314 3224 [ 481dff26b4dca8f4cbac1f7dce1d6829 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
13:07:25.0358 3224 usbccgp - ok
13:07:25.0392 3224 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:07:25.0423 3224 usbcir - ok
13:07:25.0452 3224 [ 74ee782b1d9c241efe425565854c661c ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:07:25.0494 3224 usbehci - ok
13:07:25.0514 3224 [ dc96bd9ccb8403251bcf25047573558e ] usbhub C:\Windows\system32\drivers\usbhub.sys
13:07:25.0530 3224 usbhub - ok
13:07:25.0540 3224 [ 58e546bbaf87664fc57e0f6081e4f609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:07:25.0558 3224 usbohci - ok
13:07:25.0583 3224 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:07:25.0627 3224 usbprint - ok
13:07:25.0662 3224 [ d76510cfa0fc09023077f22c2f979d86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:07:25.0712 3224 USBSTOR - ok
13:07:25.0735 3224 [ 81fb2216d3a60d1284455d511797db3d ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:07:25.0749 3224 usbuhci - ok
13:07:25.0784 3224 [ 70d05ee263568a742d14e1876df80532 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
13:07:25.0830 3224 usb_rndisx - ok
13:07:25.0856 3224 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
13:07:25.0889 3224 UxSms - ok
13:07:25.0898 3224 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
13:07:25.0912 3224 VaultSvc - ok
13:07:25.0923 3224 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:07:25.0934 3224 vdrvroot - ok
13:07:25.0970 3224 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
13:07:26.0013 3224 vds - ok
13:07:26.0023 3224 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:07:26.0035 3224 vga - ok
13:07:26.0050 3224 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
13:07:26.0081 3224 VgaSave - ok
13:07:26.0112 3224 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:07:26.0126 3224 vhdmp - ok
13:07:26.0150 3224 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:07:26.0161 3224 viaide - ok
13:07:26.0179 3224 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:07:26.0191 3224 volmgr - ok
13:07:26.0225 3224 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:07:26.0255 3224 volmgrx - ok
13:07:26.0267 3224 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:07:26.0281 3224 volsnap - ok
13:07:26.0302 3224 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:07:26.0314 3224 vsmraid - ok
13:07:26.0361 3224 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
13:07:26.0435 3224 VSS - ok
13:07:26.0455 3224 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:07:26.0496 3224 vwifibus - ok
13:07:26.0513 3224 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:07:26.0531 3224 vwififlt - ok
13:07:26.0548 3224 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
13:07:26.0594 3224 vwifimp - ok
13:07:26.0629 3224 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
13:07:26.0673 3224 W32Time - ok
13:07:26.0677 3224 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:07:26.0705 3224 WacomPen - ok
13:07:26.0740 3224 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:07:26.0808 3224 WANARP - ok
13:07:26.0826 3224 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:07:26.0852 3224 Wanarpv6 - ok
13:07:26.0913 3224 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:07:26.0963 3224 WatAdminSvc - ok
13:07:27.0007 3224 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
13:07:27.0052 3224 wbengine - ok
13:07:27.0074 3224 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:07:27.0089 3224 WbioSrvc - ok
13:07:27.0120 3224 [ 8bda6db43aa54e8bb5e0794541ddc209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
13:07:27.0162 3224 WcesComm - ok
13:07:27.0201 3224 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:07:27.0248 3224 wcncsvc - ok
13:07:27.0262 3224 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:07:27.0279 3224 WcsPlugInService - ok
13:07:27.0289 3224 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:07:27.0300 3224 Wd - ok
13:07:27.0315 3224 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:07:27.0334 3224 Wdf01000 - ok
13:07:27.0340 3224 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:07:27.0379 3224 WdiServiceHost - ok
13:07:27.0381 3224 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:07:27.0402 3224 WdiSystemHost - ok
13:07:27.0436 3224 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:07:27.0468 3224 WebClient - ok
13:07:27.0482 3224 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:07:27.0532 3224 Wecsvc - ok
13:07:27.0535 3224 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:07:27.0570 3224 wercplsupport - ok
13:07:27.0585 3224 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:07:27.0613 3224 WerSvc - ok
13:07:27.0621 3224 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:07:27.0647 3224 WfpLwf - ok
13:07:27.0668 3224 [ b14ef15bd757fa488f9c970eee9c0d35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
13:07:27.0680 3224 WimFltr - ok
13:07:27.0693 3224 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:07:27.0704 3224 WIMMount - ok
13:07:27.0732 3224 WinDefend - ok
13:07:27.0756 3224 WinHttpAutoProxySvc - ok
13:07:27.0802 3224 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:07:27.0859 3224 Winmgmt - ok
13:07:27.0920 3224 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
13:07:27.0984 3224 WinRM - ok
13:07:28.0013 3224 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
13:07:28.0051 3224 Wlansvc - ok
13:07:28.0145 3224 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:07:28.0191 3224 wlidsvc - ok
13:07:28.0236 3224 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:07:28.0261 3224 WmiAcpi - ok
13:07:28.0286 3224 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:07:28.0302 3224 wmiApSrv - ok
13:07:28.0313 3224 WMPNetworkSvc - ok
13:07:28.0330 3224 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:07:28.0362 3224 WPCSvc - ok
13:07:28.0391 3224 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:07:28.0424 3224 WPDBusEnum - ok
13:07:28.0435 3224 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:07:28.0494 3224 ws2ifsl - ok
13:07:28.0519 3224 [ e8b1fe6669397d1772d8196df0e57a9e ] wscsvc C:\Windows\system32\wscsvc.dll
13:07:28.0538 3224 wscsvc - ok
13:07:28.0540 3224 WSearch - ok
13:07:28.0616 3224 [ d9ef901dca379cfe914e9fa13b73b4c4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:07:28.0678 3224 wuauserv - ok
13:07:28.0716 3224 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:07:28.0787 3224 WudfPf - ok
13:07:28.0819 3224 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:07:28.0882 3224 WUDFRd - ok
13:07:28.0909 3224 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:07:28.0938 3224 wudfsvc - ok
13:07:28.0953 3224 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
13:07:28.0991 3224 WwanSvc - ok
13:07:29.0014 3224 ================ Scan global ===============================
13:07:29.0043 3224 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
13:07:29.0079 3224 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
13:07:29.0094 3224 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
13:07:29.0119 3224 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
13:07:29.0159 3224 (014a9cb92514e27c0107614df764bc06) C:\Windows\system32\services.exe
13:07:29.0169 3224 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
13:07:29.0169 3224 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
13:07:29.0170 3224 ================ Scan MBR ==================================
13:07:29.0183 3224 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
13:07:29.0455 3224 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
13:07:29.0455 3224 \Device\Harddisk0\DR0 - detected TDSS File System (1)
13:07:29.0473 3224 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
13:07:29.0785 3224 \Device\Harddisk1\DR1 - ok
13:07:29.0786 3224 ================ Scan VBR ==================================
13:07:29.0789 3224 Boot (0x1200) (d302e33527a1e4732ae055badd6e5490) \Device\Harddisk0\DR0\Partition1
13:07:29.0791 3224 \Device\Harddisk0\DR0\Partition1 - ok
13:07:29.0803 3224 Boot (0x1200) (27f5ec5118734c0658f8d84a4f405b64) \Device\Harddisk0\DR0\Partition2
13:07:29.0806 3224 \Device\Harddisk0\DR0\Partition2 - ok
13:07:29.0811 3224 Boot (0x1200) (1777836f81cfeb339b564c0d3f0b91c9) \Device\Harddisk1\DR1\Partition1
13:07:29.0815 3224 \Device\Harddisk1\DR1\Partition1 - ok
13:07:29.0816 3224 ============================================================
13:07:29.0816 3224 Scan finished
13:07:29.0816 3224 ============================================================
13:07:29.0830 5344 Detected object count: 6
13:07:29.0830 5344 Actual detected object count: 6
13:07:41.0984 5344 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
13:07:41.0984 5344 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:07:41.0985 5344 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - skipped by user
13:07:41.0985 5344 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:07:41.0987 5344 QBFCService ( UnsignedFile.Multi.Generic ) - skipped by user
13:07:41.0987 5344 QBFCService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:07:41.0989 5344 QBVSS ( UnsignedFile.Multi.Generic ) - skipped by user
13:07:41.0989 5344 QBVSS ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:07:42.0046 5344 C:\Windows\system32\services.exe - copied to quarantine
13:07:57.0107 5344 Backup copy found, using it..
13:07:57.0145 5344 C:\Windows\system32\services.exe - will be cured on reboot
13:07:57.0145 5344 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure
13:07:57.0145 5344 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
13:07:57.0145 5344 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
13:08:03.0837 1420 Deinitialize success
#19
Posted 21 August 2012 - 11:17 AM
WhiteHat
-
- Retired Staff
-
- 1,925 posts
Trusted Helper
Hi,
I need to check if TDSSKiller replaced the infected services.exe by a clean copy before I do something else.
Please, check if ComboFix created the report in C:\ComboFix.txt
NEXT
Run TDSSKiller again and post the log.
I need to check if TDSSKiller replaced the infected services.exe by a clean copy before I do something else.
13:07:42.0046 5344 C:\Windows\system32\services.exe - copied to quarantine
13:07:57.0107 5344 Backup copy found, using it..
13:07:57.0145 5344 C:\Windows\system32\services.exe - will be cured on reboot
Please, check if ComboFix created the report in C:\ComboFix.txt
NEXT
Run TDSSKiller again and post the log.
#20
Posted 21 August 2012 - 11:59 AM
sean.dbtrader
- Topic Starter
-
- Member
-
- 73 posts
Member
There was no ComboFix report. I don't think it completed successfully.
#21
Posted 21 August 2012 - 12:40 PM
WhiteHat
-
- Retired Staff
-
- 1,925 posts
Trusted Helper
Ok, run TDSSKiller again and post the log.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
