Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Webpages load very slowly or not at all.

Started by dzwiss , Feb 21 2013 02:12 PM

  • Please log in to reply

#16
Jintan
Posted 24 February 2013 - 05:55 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
I'll mark this up to my lack of familiarity to the new Gmer scan then.


Click here and download Kaspersky's TDSSKiller to your desktop, but as you download it, rename it to larry.com then click that file to run TDSSKiller.

In the display that opens click Start scan. Once that completes, follow any prompts to act on anything it located, including as reboot (Reboot Now) if requested.
When the scan completes it will create a log file on your C drive.

Similar in name to this:

C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt

Your copy will be different - some of those numbers will reflect the date/time it was just run by you there.

Copy/paste those contents back here please. If it does locate malware, but does not prompt for a reboot, go ahead and do reboot.
  • 0

Advertisements

#17
dzwiss
Posted 24 February 2013 - 06:12 PM

dzwiss

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
Here are the results...




19:04:01.0162 5348 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:04:01.0418 5348 ============================================================
19:04:01.0418 5348 Current date / time: 2013/02/24 19:04:01.0418
19:04:01.0418 5348 SystemInfo:
19:04:01.0418 5348
19:04:01.0418 5348 OS Version: 6.0.6002 ServicePack: 2.0
19:04:01.0418 5348 Product type: Workstation
19:04:01.0418 5348 ComputerName: DZWISS-PC
19:04:01.0418 5348 UserName: dzwiss
19:04:01.0418 5348 Windows directory: C:\Windows
19:04:01.0418 5348 System windows directory: C:\Windows
19:04:01.0418 5348 Processor architecture: Intel x86
19:04:01.0418 5348 Number of processors: 2
19:04:01.0418 5348 Page size: 0x1000
19:04:01.0418 5348 Boot type: Normal boot
19:04:01.0418 5348 ============================================================
19:04:01.0768 5348 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:04:01.0770 5348 ============================================================
19:04:01.0770 5348 \Device\Harddisk0\DR0:
19:04:01.0770 5348 MBR partitions:
19:04:01.0770 5348 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x42AD1, BlocksNum 0x19C1151
19:04:01.0770 5348 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A03C22, BlocksNum 0xCF7D427
19:04:01.0771 5348 ============================================================
19:04:01.0773 5348 C: <-> \Device\Harddisk0\DR0\Partition2
19:04:01.0774 5348 D: <-> \Device\Harddisk0\DR0\Partition1
19:04:01.0775 5348 ============================================================
19:04:01.0775 5348 Initialize success
19:04:01.0775 5348 ============================================================
19:04:06.0424 4016 ============================================================
19:04:06.0424 4016 Scan started
19:04:06.0424 4016 Mode: Manual;
19:04:06.0424 4016 ============================================================
19:04:06.0586 4016 ================ Scan system memory ========================
19:04:06.0586 4016 System memory - ok
19:04:06.0586 4016 ================ Scan services =============================
19:04:06.0641 4016 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
19:04:06.0643 4016 ACPI - ok
19:04:06.0654 4016 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:04:06.0655 4016 AdobeARMservice - ok
19:04:06.0667 4016 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:04:06.0670 4016 adp94xx - ok
19:04:06.0684 4016 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:04:06.0686 4016 adpahci - ok
19:04:06.0694 4016 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
19:04:06.0694 4016 adpu160m - ok
19:04:06.0703 4016 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:04:06.0704 4016 adpu320 - ok
19:04:06.0712 4016 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:04:06.0715 4016 AeLookupSvc - ok
19:04:06.0724 4016 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
19:04:06.0726 4016 AFD - ok
19:04:06.0732 4016 [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:04:06.0734 4016 agp440 - ok
19:04:06.0742 4016 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
19:04:06.0743 4016 aic78xx - ok
19:04:06.0748 4016 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
19:04:06.0749 4016 ALG - ok
19:04:06.0758 4016 [ 3A99CB23A2D326FD532618705D6E3048 ] aliide C:\Windows\system32\drivers\aliide.sys
19:04:06.0758 4016 aliide - ok
19:04:06.0764 4016 [ 848F27E5B27C1C253F6CEFDC1A5D8F21 ] amdagp C:\Windows\system32\drivers\amdagp.sys
19:04:06.0764 4016 amdagp - ok
19:04:06.0769 4016 [ 4333C133DBD71C7D7FE4FB1B83F9EE3E ] amdide C:\Windows\system32\drivers\amdide.sys
19:04:06.0771 4016 amdide - ok
19:04:06.0776 4016 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
19:04:06.0777 4016 AmdK7 - ok
19:04:06.0787 4016 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:04:06.0788 4016 AmdK8 - ok
19:04:06.0793 4016 [ F71671248134EA39BFD10401EE5FD825 ] androidusb C:\Windows\system32\Drivers\androidusb.sys
19:04:06.0794 4016 androidusb - ok
19:04:06.0799 4016 [ 48E008CF2EDCF8FC91A9D3507865A51D ] anodlwf C:\Windows\system32\DRIVERS\anodlwf.sys
19:04:06.0799 4016 anodlwf - ok
19:04:06.0811 4016 [ DFAE18C675D71FD06D57DC69D2913975 ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
19:04:06.0812 4016 AppHostSvc - ok
19:04:06.0818 4016 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
19:04:06.0821 4016 Appinfo - ok
19:04:06.0832 4016 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
19:04:06.0832 4016 arc - ok
19:04:06.0838 4016 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:04:06.0839 4016 arcsas - ok
19:04:06.0860 4016 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:04:06.0860 4016 aspnet_state - ok
19:04:06.0869 4016 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:04:06.0870 4016 AsyncMac - ok
19:04:06.0875 4016 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
19:04:06.0875 4016 atapi - ok
19:04:06.0886 4016 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:04:06.0888 4016 AudioEndpointBuilder - ok
19:04:06.0896 4016 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
19:04:06.0901 4016 Audiosrv - ok
19:04:06.0909 4016 [ CD4646067CC7DCBA1907FA0ACF7E3966 ] bcm4sbxp C:\Windows\system32\DRIVERS\bcm4sbxp.sys
19:04:06.0912 4016 bcm4sbxp - ok
19:04:06.0919 4016 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
19:04:06.0919 4016 Beep - ok
19:04:06.0929 4016 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
19:04:06.0932 4016 BFE - ok
19:04:06.0955 4016 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
19:04:06.0964 4016 BITS - ok
19:04:06.0971 4016 blbdrive - ok
19:04:06.0979 4016 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:04:06.0980 4016 bowser - ok
19:04:06.0986 4016 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
19:04:06.0987 4016 BrFiltLo - ok
19:04:06.0992 4016 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
19:04:06.0992 4016 BrFiltUp - ok
19:04:07.0000 4016 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
19:04:07.0002 4016 Browser - ok
19:04:07.0009 4016 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
19:04:07.0010 4016 Brserid - ok
19:04:07.0016 4016 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
19:04:07.0016 4016 BrSerWdm - ok
19:04:07.0022 4016 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
19:04:07.0023 4016 BrUsbMdm - ok
19:04:07.0030 4016 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
19:04:07.0031 4016 BrUsbSer - ok
19:04:07.0036 4016 btaudio - ok
19:04:07.0041 4016 BTDriver - ok
19:04:07.0047 4016 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
19:04:07.0049 4016 BthEnum - ok
19:04:07.0055 4016 [ 9A966A8E86D1771911AE34A20D11BFF3 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:04:07.0057 4016 BTHMODEM - ok
19:04:07.0063 4016 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:04:07.0063 4016 BthPan - ok
19:04:07.0078 4016 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
19:04:07.0082 4016 BTHPORT - ok
19:04:07.0091 4016 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
19:04:07.0092 4016 BthServ - ok
19:04:07.0101 4016 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
19:04:07.0101 4016 BTHUSB - ok
19:04:07.0109 4016 [ F064BE7316889EC0A63F8A91856047A1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
19:04:07.0110 4016 btwaudio - ok
19:04:07.0119 4016 [ 5FFDE57253D665067B0886612817EB11 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
19:04:07.0119 4016 btwavdt - ok
19:04:07.0124 4016 BTWDNDIS - ok
19:04:07.0129 4016 btwhid - ok
19:04:07.0135 4016 [ AB07DC8B05C31A4F95FC73019BE9DB15 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
19:04:07.0136 4016 btwrchid - ok
19:04:07.0144 4016 [ 2241C5BF7BFDB8A501274F6837C6B10A ] BTWUSB C:\Windows\system32\Drivers\btwusb.sys
19:04:07.0145 4016 BTWUSB - ok
19:04:07.0158 4016 catchme - ok
19:04:07.0165 4016 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:04:07.0169 4016 cdfs - ok
19:04:07.0175 4016 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:04:07.0175 4016 cdrom - ok
19:04:07.0183 4016 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
19:04:07.0184 4016 CertPropSvc - ok
19:04:07.0189 4016 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
19:04:07.0192 4016 circlass - ok
19:04:07.0201 4016 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
19:04:07.0203 4016 CLFS - ok
19:04:07.0212 4016 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:04:07.0214 4016 clr_optimization_v2.0.50727_32 - ok
19:04:07.0219 4016 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:04:07.0220 4016 clr_optimization_v4.0.30319_32 - ok
19:04:07.0225 4016 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:04:07.0226 4016 CmBatt - ok
19:04:07.0235 4016 [ DFB94A6FC3A26972B0461AB5F1D8272B ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:04:07.0235 4016 cmdide - ok
19:04:07.0243 4016 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:04:07.0243 4016 Compbatt - ok
19:04:07.0249 4016 COMSysApp - ok
19:04:07.0255 4016 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:04:07.0256 4016 crcdisk - ok
19:04:07.0263 4016 [ 0C629820AAD9C90E456B221C94D640CA ] Creative Labs Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
19:04:07.0264 4016 Creative Labs Licensing Service - ok
19:04:07.0273 4016 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\Windows\system32\CTsvcCDA.exe
19:04:07.0274 4016 Creative Service for CDROM Access - ok
19:04:07.0280 4016 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
19:04:07.0281 4016 Crusoe - ok
19:04:07.0283 4016 Crypkey License - ok
19:04:07.0294 4016 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:04:07.0296 4016 CryptSvc - ok
19:04:07.0303 4016 [ 54FD9AFF52E3959E2B15EBD86644650D ] CSRBC C:\Windows\system32\Drivers\csrbcx86.sys
19:04:07.0304 4016 CSRBC - ok
19:04:07.0321 4016 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:04:07.0329 4016 DcomLaunch - ok
19:04:07.0338 4016 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:04:07.0339 4016 DfsC - ok
19:04:07.0378 4016 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
19:04:07.0392 4016 DFSR - ok
19:04:07.0403 4016 [ 5E36DCB1E2CD7828034F7195A68897CA ] DFUBTUSB C:\Windows\system32\Drivers\frmupgr.sys
19:04:07.0404 4016 DFUBTUSB - ok
19:04:07.0410 4016 [ 73FC5BC52572084EC1241514CF6230A0 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
19:04:07.0411 4016 dg_ssudbus - ok
19:04:07.0421 4016 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
19:04:07.0425 4016 Dhcp - ok
19:04:07.0431 4016 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
19:04:07.0433 4016 disk - ok
19:04:07.0441 4016 [ A53723176D0002FEB486EFF8E17812F2 ] DLABMFSM C:\Windows\system32\DLA\DLABMFSM.SYS
19:04:07.0445 4016 DLABMFSM - ok
19:04:07.0450 4016 [ D4587063ACEA776699251E177D719586 ] DLABOIOM C:\Windows\system32\DLA\DLABOIOM.SYS
19:04:07.0451 4016 DLABOIOM - ok
19:04:07.0456 4016 [ 5230CDB7E715F3A3B4A882E254CDD35D ] DLACDBHM C:\Windows\system32\Drivers\DLACDBHM.SYS
19:04:07.0457 4016 DLACDBHM - ok
19:04:07.0464 4016 [ C950C2E7B9ED1A4FC4A2AC7EC044F1D6 ] DLADResM C:\Windows\system32\DLA\DLADResM.SYS
19:04:07.0465 4016 DLADResM - ok
19:04:07.0471 4016 [ 24400137E387A24410C52A591F3CFB4D ] DLAIFS_M C:\Windows\system32\DLA\DLAIFS_M.SYS
19:04:07.0472 4016 DLAIFS_M - ok
19:04:07.0479 4016 [ 29A303FECEB28641ECEBDAE89EB71C63 ] DLAOPIOM C:\Windows\system32\DLA\DLAOPIOM.SYS
19:04:07.0480 4016 DLAOPIOM - ok
19:04:07.0484 4016 [ C93E33A22A1AE0C5508F3FB1F6D0A50C ] DLAPoolM C:\Windows\system32\DLA\DLAPoolM.SYS
19:04:07.0485 4016 DLAPoolM - ok
19:04:07.0494 4016 [ 77FE51F0F8D86804CB81F6EF6BFB86DD ] DLARTL_M C:\Windows\system32\Drivers\DLARTL_M.SYS
19:04:07.0495 4016 DLARTL_M - ok
19:04:07.0501 4016 [ B953498C35A31E5AC98F49ADBCF3E627 ] DLAUDFAM C:\Windows\system32\DLA\DLAUDFAM.SYS
19:04:07.0502 4016 DLAUDFAM - ok
19:04:07.0510 4016 [ 4897704C093C1F59CE58FC65E1E1EF1E ] DLAUDF_M C:\Windows\system32\DLA\DLAUDF_M.SYS
19:04:07.0511 4016 DLAUDF_M - ok
19:04:07.0517 4016 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:04:07.0520 4016 Dnscache - ok
19:04:07.0528 4016 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:04:07.0530 4016 dot3svc - ok
19:04:07.0537 4016 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
19:04:07.0541 4016 Dot4 - ok
19:04:07.0546 4016 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:04:07.0547 4016 Dot4Print - ok
19:04:07.0552 4016 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
19:04:07.0554 4016 dot4usb - ok
19:04:07.0563 4016 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
19:04:07.0565 4016 DPS - ok
19:04:07.0573 4016 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:04:07.0573 4016 drmkaud - ok
19:04:07.0580 4016 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\Windows\system32\Drivers\DRVMCDB.SYS
19:04:07.0581 4016 DRVMCDB - ok
19:04:07.0586 4016 [ FFC371525AA55D1BAE18715EBCB8797C ] DRVNDDM C:\Windows\system32\Drivers\DRVNDDM.SYS
19:04:07.0587 4016 DRVNDDM - ok
19:04:07.0607 4016 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:04:07.0611 4016 DXGKrnl - ok
19:04:07.0621 4016 [ 7505290504C8E2D172FA378CC0497BCC ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
19:04:07.0623 4016 e1express - ok
19:04:07.0632 4016 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
19:04:07.0633 4016 E1G60 - ok
19:04:07.0640 4016 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
19:04:07.0641 4016 EapHost - ok
19:04:07.0648 4016 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
19:04:07.0649 4016 Ecache - ok
19:04:07.0663 4016 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:04:07.0665 4016 ehRecvr - ok
19:04:07.0672 4016 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
19:04:07.0673 4016 ehSched - ok
19:04:07.0677 4016 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
19:04:07.0678 4016 ehstart - ok
19:04:07.0692 4016 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:04:07.0694 4016 elxstor - ok
19:04:07.0713 4016 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
19:04:07.0717 4016 EMDMgmt - ok
19:04:07.0726 4016 [ B4556F3D468C8DCB0B259D9D866CD4C4 ] enodpl C:\Windows\system32\drivers\enodpl.sys
19:04:07.0727 4016 enodpl - ok
19:04:07.0733 4016 ETUSBW11 - ok
19:04:07.0748 4016 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
19:04:07.0751 4016 EventSystem - ok
19:04:07.0756 4016 evserial - ok
19:04:07.0765 4016 [ 6C0446DEF5C850E9FF67F0BB01B94167 ] evserial7 C:\Windows\system32\DRIVERS\evserial7.sys
19:04:07.0766 4016 evserial7 - ok
19:04:07.0786 4016 [ 33ABDDB21DE2F4BB1B05A5A3A671BD64 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
19:04:07.0794 4016 EvtEng - ok
19:04:07.0804 4016 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
19:04:07.0805 4016 exfat - ok
19:04:07.0812 4016 [ 0DD24DABB0B8C4AC0D8F2EBF0492276A ] fanio C:\Windows\system32\drivers\fanio.sys
19:04:07.0812 4016 fanio - ok
19:04:07.0821 4016 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:04:07.0823 4016 fastfat - ok
19:04:07.0829 4016 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:04:07.0829 4016 fdc - ok
19:04:07.0839 4016 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
19:04:07.0841 4016 fdPHost - ok
19:04:07.0849 4016 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
19:04:07.0851 4016 FDResPub - ok
19:04:07.0863 4016 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:04:07.0864 4016 FileInfo - ok
19:04:07.0875 4016 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:04:07.0875 4016 Filetrace - ok
19:04:07.0881 4016 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:04:07.0882 4016 flpydisk - ok
19:04:07.0893 4016 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:04:07.0897 4016 FltMgr - ok
19:04:07.0922 4016 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
19:04:07.0931 4016 FontCache - ok
19:04:07.0937 4016 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:04:07.0938 4016 FontCache3.0.0.0 - ok
19:04:07.0943 4016 [ D909075FA72C090F27AA926C32CB4612 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
19:04:07.0944 4016 fssfltr - ok
19:04:07.0977 4016 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
19:04:07.0987 4016 fsssvc - ok
19:04:07.0995 4016 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:04:07.0996 4016 Fs_Rec - ok
19:04:08.0002 4016 [ 47B9CF937AC479046DA289BD5A769CE9 ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
19:04:08.0003 4016 FTDIBUS - ok
19:04:08.0008 4016 [ 216B9A2191676034999785C7F94FA5D6 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
19:04:08.0009 4016 FTSER2K - ok
19:04:08.0016 4016 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:04:08.0017 4016 gagp30kx - ok
19:04:08.0030 4016 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
19:04:08.0035 4016 gpsvc - ok
19:04:08.0040 4016 [ 6003BC70F1A8307262BD3C941BDA0B7E ] grmnusb C:\Windows\system32\drivers\grmnusb.sys
19:04:08.0041 4016 grmnusb - ok
19:04:08.0049 4016 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:04:08.0050 4016 gupdate - ok
19:04:08.0055 4016 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:04:08.0063 4016 gupdatem - ok
19:04:08.0075 4016 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:04:08.0076 4016 gusvc - ok
19:04:08.0087 4016 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:04:08.0089 4016 HdAudAddService - ok
19:04:08.0105 4016 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:04:08.0109 4016 HDAudBus - ok
19:04:08.0118 4016 [ FCB3F4BE408F72C1BD81BCABA87FC22F ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:04:08.0118 4016 HidBth - ok
19:04:08.0124 4016 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
19:04:08.0124 4016 HidIr - ok
19:04:08.0130 4016 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
19:04:08.0132 4016 hidserv - ok
19:04:08.0139 4016 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:04:08.0140 4016 HidUsb - ok
19:04:08.0148 4016 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:04:08.0150 4016 hkmsvc - ok
19:04:08.0156 4016 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
19:04:08.0157 4016 HpCISSs - ok
19:04:08.0179 4016 [ 53229DCF431D76434816CD29251168A0 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
19:04:08.0185 4016 HSF_DPV - ok
19:04:08.0198 4016 [ 31F949D452201F2F0AF0C88D7DB512CD ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
19:04:08.0199 4016 HSXHWAZL - ok
19:04:08.0212 4016 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:04:08.0215 4016 HTTP - ok
19:04:08.0221 4016 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
19:04:08.0221 4016 i2omp - ok
19:04:08.0230 4016 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:04:08.0231 4016 i8042prt - ok
19:04:08.0241 4016 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
19:04:08.0243 4016 iaStorV - ok
19:04:08.0249 4016 [ 65188A16FA8D11558EB8417ECE1087C3 ] IdcPHid C:\Windows\system32\DRIVERS\idcphid.sys
19:04:08.0249 4016 IdcPHid - ok
19:04:08.0255 4016 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:04:08.0259 4016 IDriverT - ok
19:04:08.0278 4016 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:04:08.0286 4016 idsvc - ok
19:04:08.0293 4016 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:04:08.0294 4016 iirsp - ok
19:04:08.0306 4016 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
19:04:08.0310 4016 IKEEXT - ok
19:04:08.0319 4016 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
19:04:08.0320 4016 intelide - ok
19:04:08.0326 4016 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:04:08.0328 4016 intelppm - ok
19:04:08.0335 4016 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:04:08.0337 4016 IPBusEnum - ok
19:04:08.0343 4016 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:04:08.0344 4016 IpFilterDriver - ok
19:04:08.0351 4016 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:04:08.0356 4016 iphlpsvc - ok
19:04:08.0361 4016 IpInIp - ok
19:04:08.0367 4016 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
19:04:08.0370 4016 IPMIDRV - ok
19:04:08.0376 4016 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
19:04:08.0377 4016 IPNAT - ok
19:04:08.0382 4016 [ 03D54E7BCF9B77CEAF34DC0057420352 ] iprip C:\Windows\System32\iprip.dll
19:04:08.0386 4016 iprip - ok
19:04:08.0393 4016 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:04:08.0393 4016 IRENUM - ok
19:04:08.0401 4016 [ 2F8ECE2699E7E2070545E9B0960A8ED2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:04:08.0402 4016 isapnp - ok
19:04:08.0410 4016 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
19:04:08.0411 4016 iScsiPrt - ok
19:04:08.0417 4016 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
19:04:08.0419 4016 iteatapi - ok
19:04:08.0425 4016 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
19:04:08.0426 4016 iteraid - ok
19:04:08.0433 4016 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:04:08.0434 4016 kbdclass - ok
19:04:08.0440 4016 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:04:08.0441 4016 kbdhid - ok
19:04:08.0446 4016 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
19:04:08.0449 4016 KeyIso - ok
19:04:08.0463 4016 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:04:08.0465 4016 KSecDD - ok
19:04:08.0479 4016 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
19:04:08.0483 4016 KtmRm - ok
19:04:08.0493 4016 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
19:04:08.0496 4016 LanmanServer - ok
19:04:08.0506 4016 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:04:08.0510 4016 LanmanWorkstation - ok
19:04:08.0518 4016 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:04:08.0519 4016 lltdio - ok
19:04:08.0528 4016 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:04:08.0531 4016 lltdsvc - ok
19:04:08.0537 4016 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:04:08.0539 4016 lmhosts - ok
19:04:08.0549 4016 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:04:08.0552 4016 LSI_FC - ok
19:04:08.0558 4016 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:04:08.0559 4016 LSI_SAS - ok
19:04:08.0565 4016 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:04:08.0565 4016 LSI_SCSI - ok
19:04:08.0574 4016 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
19:04:08.0574 4016 luafv - ok
19:04:08.0580 4016 LVUSBSta - ok
19:04:08.0587 4016 mcdbus - ok
19:04:08.0593 4016 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:04:08.0595 4016 Mcx2Svc - ok
19:04:08.0607 4016 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
19:04:08.0609 4016 MDM - ok
19:04:08.0617 4016 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:04:08.0618 4016 mdmxsdk - ok
19:04:08.0623 4016 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
19:04:08.0624 4016 megasas - ok
19:04:08.0630 4016 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
19:04:08.0635 4016 MMCSS - ok
19:04:08.0640 4016 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
19:04:08.0641 4016 Modem - ok
19:04:08.0647 4016 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:04:08.0649 4016 monitor - ok
19:04:08.0654 4016 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:04:08.0654 4016 mouclass - ok
19:04:08.0661 4016 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:04:08.0661 4016 mouhid - ok
19:04:08.0667 4016 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
19:04:08.0670 4016 MountMgr - ok
19:04:08.0681 4016 [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:04:08.0682 4016 MpFilter - ok
19:04:08.0690 4016 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
19:04:08.0691 4016 mpio - ok
19:04:08.0700 4016 MpKsl7b04ff38 - ok
19:04:08.0708 4016 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:04:08.0709 4016 mpsdrv - ok
19:04:08.0720 4016 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
19:04:08.0724 4016 MpsSvc - ok
19:04:08.0733 4016 [ 42E1562AC94D54CA53BAE4550BD60032 ] mr97310c C:\Windows\system32\DRIVERS\mr97310c.sys
19:04:08.0734 4016 mr97310c - ok
19:04:08.0739 4016 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
19:04:08.0740 4016 Mraid35x - ok
19:04:08.0749 4016 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:04:08.0751 4016 MRxDAV - ok
19:04:08.0759 4016 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:04:08.0761 4016 mrxsmb - ok
19:04:08.0768 4016 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:04:08.0772 4016 mrxsmb10 - ok
19:04:08.0779 4016 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:04:08.0780 4016 mrxsmb20 - ok
19:04:08.0785 4016 [ F0EC3A4E0693A34B148723B4DA31668C ] msahci C:\Windows\system32\drivers\msahci.sys
19:04:08.0786 4016 msahci - ok
19:04:08.0795 4016 [ B03E3F64B70F8031E65EB26DA23DE91A ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS32.exe
19:04:08.0796 4016 MSCamSvc - ok
19:04:08.0805 4016 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:04:08.0806 4016 msdsm - ok
19:04:08.0815 4016 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
19:04:08.0818 4016 MSDTC - ok
19:04:08.0831 4016 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:04:08.0832 4016 Msfs - ok
19:04:08.0841 4016 [ 7A0F9CBDBDB135113B9A3C138E20C85D ] MSHUSBVideo C:\Windows\system32\Drivers\nx6000.sys
19:04:08.0842 4016 MSHUSBVideo - ok
19:04:08.0847 4016 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:04:08.0848 4016 msisadrv - ok
19:04:08.0857 4016 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:04:08.0860 4016 MSiSCSI - ok
19:04:08.0871 4016 msiserver - ok
19:04:08.0884 4016 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:04:08.0885 4016 MSKSSRV - ok
19:04:08.0889 4016 [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:04:08.0891 4016 MsMpSvc - ok
19:04:08.0897 4016 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:04:08.0897 4016 MSPCLOCK - ok
19:04:08.0903 4016 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:04:08.0903 4016 MSPQM - ok
19:04:08.0915 4016 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:04:08.0917 4016 MsRPC - ok
19:04:08.0926 4016 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:04:08.0929 4016 mssmbios - ok
19:04:08.0935 4016 MSSQL$SQLEXPRESS - ok
19:04:08.0943 4016 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
19:04:08.0944 4016 MSSQLServerADHelper - ok
19:04:08.0948 4016 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:04:08.0949 4016 MSTEE - ok
19:04:08.0954 4016 [ 53C99BE119ECC7C65D8AE9CA522D244C ] MUD C:\Windows\system32\DRIVERS\MUD.sys
19:04:08.0955 4016 MUD - ok
19:04:08.0964 4016 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
19:04:08.0965 4016 Mup - ok
19:04:08.0974 4016 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
19:04:08.0981 4016 napagent - ok
19:04:08.0990 4016 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:04:08.0992 4016 NativeWifiP - ok
19:04:09.0004 4016 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:04:09.0012 4016 NDIS - ok
19:04:09.0017 4016 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:04:09.0021 4016 NdisTapi - ok
19:04:09.0027 4016 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:04:09.0027 4016 Ndisuio - ok
19:04:09.0034 4016 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:04:09.0037 4016 NdisWan - ok
19:04:09.0043 4016 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:04:09.0044 4016 NDProxy - ok
19:04:09.0052 4016 [ 51C6D8BFBD4EA5B62A1BA7F4469250D3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:04:09.0054 4016 Net Driver HPZ12 - ok
19:04:09.0060 4016 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:04:09.0060 4016 NetBIOS - ok
19:04:09.0070 4016 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
19:04:09.0071 4016 netbt - ok
19:04:09.0077 4016 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
19:04:09.0081 4016 Netlogon - ok
19:04:09.0089 4016 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
19:04:09.0093 4016 Netman - ok
19:04:09.0099 4016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:04:09.0102 4016 NetMsmqActivator - ok
19:04:09.0108 4016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:04:09.0109 4016 NetPipeActivator - ok
19:04:09.0119 4016 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
19:04:09.0123 4016 netprofm - ok
19:04:09.0128 4016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:04:09.0132 4016 NetTcpActivator - ok
19:04:09.0136 4016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:04:09.0139 4016 NetTcpPortSharing - ok
19:04:09.0172 4016 [ ACC6170D80C69E50145B370023B64ED3 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
19:04:09.0187 4016 NETw3v32 - ok
19:04:09.0229 4016 [ 6522DD40A5F67CED020BD81B856613FB ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
19:04:09.0246 4016 NETw4v32 - ok
19:04:09.0359 4016 [ D4EF7A9767C05905500EC312CB29EF46 ] NETwLv32 C:\Windows\system32\DRIVERS\NETwLv32.sys
19:04:09.0411 4016 NETwLv32 - ok
19:04:09.0419 4016 [ 1C7CA5514D30006AFF35335FE1901CCC ] NetworkX C:\Windows\system32\ckldrv.sys
19:04:09.0420 4016 NetworkX - ok
19:04:09.0425 4016 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:04:09.0426 4016 nfrd960 - ok
19:04:09.0436 4016 [ 832E098BCA8235436FE2D8AE50AC3718 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:04:09.0437 4016 NisDrv - ok
19:04:09.0447 4016 [ E570ECA850F30EB740C2E9699DF3D2BD ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
19:04:09.0450 4016 NisSrv - ok
19:04:09.0460 4016 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:04:09.0463 4016 NlaSvc - ok
19:04:09.0469 4016 NMIndexingService - ok
19:04:09.0477 4016 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:04:09.0478 4016 Npfs - ok
19:04:09.0484 4016 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
19:04:09.0486 4016 nsi - ok
19:04:09.0493 4016 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:04:09.0494 4016 nsiproxy - ok
19:04:09.0522 4016 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:04:09.0529 4016 Ntfs - ok
19:04:09.0544 4016 [ A7DFF9642D510BE1EEC6664CD0369953 ] NtmsSvc C:\Windows\system32\ntmssvc.dll
19:04:09.0549 4016 NtmsSvc - ok
19:04:09.0555 4016 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
19:04:09.0558 4016 ntrigdigi - ok
19:04:09.0564 4016 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
19:04:09.0566 4016 Null - ok
19:04:09.0685 4016 [ 05200C3A9B1370AA2D8C99F1A464168B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:04:09.0737 4016 nvlddmkm - ok
19:04:09.0751 4016 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:04:09.0760 4016 nvraid - ok
19:04:09.0766 4016 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:04:09.0767 4016 nvstor - ok
19:04:09.0776 4016 [ A1DA6D6D706BA55348DB4BA688F37CA5 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:04:09.0780 4016 nvsvc - ok
19:04:09.0786 4016 [ 055081FD5076401C1EE1BCAB08D81911 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:04:09.0790 4016 nv_agp - ok
19:04:09.0801 4016 [ 67FB86EEB94059177642050718D57460 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
19:04:09.0802 4016 NWADI - ok
19:04:09.0810 4016 NwlnkFlt - ok
19:04:09.0815 4016 NwlnkFwd - ok
19:04:09.0825 4016 [ 4E651808B35656AC88A4DCDAF6CC1169 ] NWUSBModem C:\Windows\system32\DRIVERS\nwusbmdm.sys
19:04:09.0827 4016 NWUSBModem - ok
19:04:09.0844 4016 [ 4E651808B35656AC88A4DCDAF6CC1169 ] NWUSBPort C:\Windows\system32\DRIVERS\nwusbser.sys
19:04:09.0847 4016 NWUSBPort - ok
19:04:09.0860 4016 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:04:09.0864 4016 odserv - ok
19:04:09.0879 4016 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
19:04:09.0880 4016 ohci1394 - ok
19:04:09.0888 4016 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:04:09.0889 4016 ose - ok
19:04:09.0912 4016 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
19:04:09.0918 4016 p2pimsvc - ok
19:04:09.0933 4016 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
19:04:09.0942 4016 p2psvc - ok
19:04:09.0949 4016 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
19:04:09.0950 4016 Parport - ok
19:04:09.0957 4016 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:04:09.0959 4016 partmgr - ok
19:04:09.0964 4016 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
19:04:09.0965 4016 Parvdm - ok
19:04:09.0970 4016 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
19:04:09.0972 4016 PcaSvc - ok
19:04:09.0982 4016 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
19:04:09.0983 4016 pci - ok
19:04:09.0989 4016 [ 20B869152448F80AC49CF10264E91F5E ] pciide C:\Windows\system32\DRIVERS\pciide.sys
19:04:09.0991 4016 pciide - ok
19:04:10.0001 4016 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:04:10.0003 4016 pcmcia - ok
19:04:10.0024 4016 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:04:10.0031 4016 PEAUTH - ok
19:04:10.0036 4016 pepifilter - ok
19:04:10.0062 4016 [ F042EE4C8D66248D9B86DCF52ABAE416 ] PEVSystemStart C:\ComboFix\pev.3XE
19:04:10.0064 4016 PEVSystemStart - ok
19:04:10.0071 4016 PID_PEPI - ok
19:04:10.0103 4016 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
19:04:10.0115 4016 pla - ok
19:04:10.0128 4016 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:04:10.0132 4016 PlugPlay - ok
19:04:10.0138 4016 [ 79834AA2FBF9FE81EEBB229024F6F7FC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:04:10.0139 4016 Pml Driver HPZ12 - ok
19:04:10.0148 4016 [ DA19E3401F39C10DF193BE029C7E7BBA ] pnetmdm C:\Windows\system32\DRIVERS\pnetmdm.sys
19:04:10.0149 4016 pnetmdm - ok
19:04:10.0154 4016 [ 831883B107684301F48ACE752C963984 ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
19:04:10.0157 4016 PnkBstrA - ok
19:04:10.0175 4016 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
19:04:10.0181 4016 PNRPAutoReg - ok
19:04:10.0195 4016 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
19:04:10.0201 4016 PNRPsvc - ok
19:04:10.0210 4016 [ 60A044879C4FA76314494F5FDDC43B93 ] Point32 C:\Windows\system32\DRIVERS\point32.sys
19:04:10.0211 4016 Point32 - ok
19:04:10.0221 4016 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:04:10.0227 4016 PolicyAgent - ok
19:04:10.0234 4016 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:04:10.0237 4016 PptpMiniport - ok
19:04:10.0243 4016 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
19:04:10.0243 4016 Processor - ok
19:04:10.0250 4016 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
19:04:10.0256 4016 ProfSvc - ok
19:04:10.0261 4016 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
19:04:10.0263 4016 ProtectedStorage - ok
19:04:10.0268 4016 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
19:04:10.0269 4016 PSched - ok
19:04:10.0277 4016 [ 345A363DEBD9C1F403E62DB744415B34 ] QCEmerald C:\Windows\system32\DRIVERS\LVCE.sys
19:04:10.0278 4016 QCEmerald - ok
19:04:10.0296 4016 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:04:10.0305 4016 ql2300 - ok
19:04:10.0313 4016 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:04:10.0314 4016 ql40xx - ok
19:04:10.0323 4016 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
19:04:10.0327 4016 QWAVE - ok
19:04:10.0332 4016 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:04:10.0336 4016 QWAVEdrv - ok
19:04:10.0374 4016 [ E642B131FB74CAF4BB8A014F31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
19:04:10.0389 4016 R300 - ok
19:04:10.0399 4016 [ EEAC7AAC7EEEDA9DE346BB2E0403F549 ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
19:04:10.0401 4016 RapiMgr - ok
19:04:10.0406 4016 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:04:10.0407 4016 RasAcd - ok
19:04:10.0414 4016 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
19:04:10.0417 4016 RasAuto - ok
19:04:10.0423 4016 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:04:10.0426 4016 Rasl2tp - ok
19:04:10.0435 4016 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
19:04:10.0442 4016 RasMan - ok
19:04:10.0447 4016 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:04:10.0449 4016 RasPppoe - ok
19:04:10.0455 4016 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:04:10.0456 4016 RasSstp - ok
19:04:10.0468 4016 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:04:10.0470 4016 rdbss - ok
19:04:10.0475 4016 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:04:10.0476 4016 RDPCDD - ok
19:04:10.0489 4016 [ 0245418224CFA77BF4B41C2FE0622258 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
19:04:10.0491 4016 rdpdr - ok
19:04:10.0495 4016 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:04:10.0499 4016 RDPENCDD - ok
19:04:10.0508 4016 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:04:10.0509 4016 RDPWD - ok
19:04:10.0523 4016 [ 03D281098CE722210C48E1E8CAFEA260 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
19:04:10.0526 4016 RegSrvc - ok
19:04:10.0537 4016 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:04:10.0539 4016 RemoteAccess - ok
19:04:10.0547 4016 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:04:10.0552 4016 RemoteRegistry - ok
19:04:10.0558 4016 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:04:10.0560 4016 RFCOMM - ok
19:04:10.0566 4016 [ D85E3FA9F5B1F29BB4ED185C450D1470 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
19:04:10.0567 4016 rimmptsk - ok
19:04:10.0572 4016 [ DB8EB01C58C9FADA00C70B1775278AE0 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
19:04:10.0578 4016 rimsptsk - ok
19:04:10.0584 4016 [ 6C1F93C0760C9F79A1869D07233DF39D ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
19:04:10.0585 4016 rismxdp - ok
19:04:10.0589 4016 [ 75E8A6BFA7374ABA833AE92BF41AE4E6 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
19:04:10.0590 4016 ROOTMODEM - ok
19:04:10.0599 4016 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
19:04:10.0601 4016 RpcLocator - ok
19:04:10.0614 4016 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
19:04:10.0622 4016 RpcSs - ok
19:04:10.0630 4016 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:04:10.0631 4016 rspndr - ok
19:04:10.0642 4016 [ 91009D9E321A499056522A83A2074AA0 ] RTL8192U C:\Windows\system32\DRIVERS\dw130c.sys
19:04:10.0645 4016 RTL8192U - ok
19:04:10.0651 4016 samhid - ok
19:04:10.0660 4016 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
19:04:10.0662 4016 SamSs - ok
19:04:10.0667 4016 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:04:10.0668 4016 sbp2port - ok
19:04:10.0674 4016 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:04:10.0680 4016 SCardSvr - ok
19:04:10.0692 4016 [ 11D4171BD7F6776A85553CA1F83F7303 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
19:04:10.0693 4016 SCDEmu - ok
19:04:10.0721 4016 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
19:04:10.0727 4016 Schedule - ok
19:04:10.0732 4016 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
19:04:10.0733 4016 SCPolicySvc - ok
19:04:10.0741 4016 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
19:04:10.0743 4016 sdbus - ok
19:04:10.0751 4016 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:04:10.0754 4016 SDRSVC - ok
19:04:10.0760 4016 SE4BLPT - ok
19:04:10.0770 4016 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
19:04:10.0772 4016 SeaPort - ok
19:04:10.0778 4016 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:04:10.0778 4016 secdrv - ok
19:04:10.0783 4016 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
19:04:10.0786 4016 seclogon - ok
19:04:10.0795 4016 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
19:04:10.0799 4016 SENS - ok
19:04:10.0805 4016 [ B97E1D0E59A128394F24E9F31E227EF2 ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl.sys
19:04:10.0808 4016 Ser2pl - ok
19:04:10.0814 4016 [ 227DF2E68510D25462EE80136722374E ] ser2plms C:\Windows\system32\DRIVERS\ser2plms.sys
19:04:10.0817 4016 ser2plms - ok
19:04:10.0826 4016 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:04:10.0827 4016 Serenum - ok
19:04:10.0833 4016 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
19:04:10.0836 4016 Serial - ok
19:04:10.0846 4016 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:04:10.0847 4016 sermouse - ok
19:04:10.0861 4016 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
19:04:10.0867 4016 SessionEnv - ok
19:04:10.0876 4016 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
19:04:10.0877 4016 sffdisk - ok
19:04:10.0882 4016 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:04:10.0883 4016 sffp_mmc - ok
19:04:10.0890 4016 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
19:04:10.0891 4016 sffp_sd - ok
19:04:10.0896 4016 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:04:10.0897 4016 sfloppy - ok
19:04:10.0913 4016 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:04:10.0916 4016 SharedAccess - ok
19:04:10.0928 4016 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:04:10.0933 4016 ShellHWDetection - ok
19:04:10.0939 4016 [ A275FBB7C99458C12E088DFF3E58EB4D ] simptcp C:\Windows\System32\tcpsvcs.exe
19:04:10.0944 4016 simptcp - ok
19:04:10.0953 4016 [ 08072B2FB92477FC813271A84B3A8698 ] sisagp C:\Windows\system32\drivers\sisagp.sys
19:04:10.0954 4016 sisagp - ok
19:04:10.0959 4016 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
19:04:10.0960 4016 SiSRaid2 - ok
19:04:10.0965 4016 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:04:10.0966 4016 SiSRaid4 - ok
19:04:10.0977 4016 [ 444186C720885429A2354095C1938143 ] slabbus C:\Windows\system32\DRIVERS\slabbus.sys
19:04:10.0978 4016 slabbus - ok
19:04:10.0986 4016 [ ED71F8C82EF11C0DA1C57BE021A2FDC9 ] slabser C:\Windows\system32\DRIVERS\slabser.sys
19:04:10.0987 4016 slabser - ok
19:04:11.0054 4016 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
19:04:11.0077 4016 slsvc - ok
19:04:11.0087 4016 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
19:04:11.0091 4016 SLUINotify - ok
19:04:11.0096 4016 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:04:11.0100 4016 Smb - ok
19:04:11.0109 4016 [ 26BA81BA48C3D9FB292B4B60FDE849F2 ] SNMP C:\Windows\System32\snmp.exe
19:04:11.0112 4016 SNMP - ok
19:04:11.0120 4016 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:04:11.0123 4016 SNMPTRAP - ok
19:04:11.0128 4016 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
19:04:11.0130 4016 spldr - ok
19:04:11.0140 4016 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
19:04:11.0143 4016 Spooler - ok
19:04:11.0149 4016 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
19:04:11.0151 4016 SQLBrowser - ok
19:04:11.0156 4016 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:04:11.0157 4016 SQLWriter - ok
19:04:11.0168 4016 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:04:11.0170 4016 srv - ok
19:04:11.0179 4016 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:04:11.0181 4016 srv2 - ok
19:04:11.0189 4016 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:04:11.0191 4016 srvnet - ok
19:04:11.0198 4016 [ D5DFFEAA1E15D4EFFABB9D9A3068AC5B ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
19:04:11.0199 4016 sscdbus - ok
19:04:11.0204 4016 [ 8A1BE0C347814F482F493AEA619D57F6 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
19:04:11.0204 4016 sscdmdfl - ok
19:04:11.0213 4016 [ 5AB0B1987F682A59B15B78F84C6AD7D0 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
19:04:11.0214 4016 sscdmdm - ok
19:04:11.0220 4016 [ 751E66EB32EFA80633B80F5D7FF0A1D8 ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
19:04:11.0223 4016 sscdserd - ok
19:04:11.0230 4016 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:04:11.0234 4016 SSDPSRV - ok
19:04:11.0243 4016 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:04:11.0246 4016 SstpSvc - ok
19:04:11.0253 4016 [ 7E6DD4B34ACD36AF6C711D2BDE91B040 ] STacSV C:\Windows\system32\STacSV.exe
19:04:11.0258 4016 STacSV - ok
19:04:11.0270 4016 [ 6A2A5E809C2C0178326D92B19EE4AAD3 ] STHDA C:\Windows\system32\drivers\stwrt.sys
19:04:11.0273 4016 STHDA - ok
19:04:11.0288 4016 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
19:04:11.0294 4016 stisvc - ok
19:04:11.0297 4016 stllssvr - ok
19:04:11.0304 4016 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:04:11.0305 4016 swenum - ok
19:04:11.0315 4016 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
19:04:11.0319 4016 swprv - ok
19:04:11.0324 4016 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
19:04:11.0326 4016 Symc8xx - ok
19:04:11.0331 4016 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
19:04:11.0332 4016 Sym_hi - ok
19:04:11.0337 4016 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
19:04:11.0338 4016 Sym_u3 - ok
19:04:11.0361 4016 [ CA0112946ABE906A7A71A543C6D9987E ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
19:04:11.0366 4016 SynTP - ok
19:04:11.0381 4016 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
19:04:11.0388 4016 SysMain - ok
19:04:11.0396 4016 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:04:11.0399 4016 TabletInputService - ok
19:04:11.0404 4016 [ 126D7B3B4C7B724491C604060E1F4E14 ] tandpl C:\Windows\system32\drivers\tandpl.sys
19:04:11.0405 4016 tandpl - ok
19:04:11.0417 4016 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:04:11.0421 4016 TapiSrv - ok
19:04:11.0429 4016 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
19:04:11.0432 4016 TBS - ok
19:04:11.0456 4016 [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:04:11.0462 4016 Tcpip - ok
19:04:11.0485 4016 [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
19:04:11.0491 4016 Tcpip6 - ok
19:04:11.0497 4016 [ CD21572F83F7EC6E2C20C465967BEDD9 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:04:11.0498 4016 tcpipreg - ok
19:04:11.0504 4016 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:04:11.0505 4016 TDPIPE - ok
19:04:11.0514 4016 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:04:11.0515 4016 TDTCP - ok
19:04:11.0520 4016 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:04:11.0521 4016 tdx - ok
19:04:11.0528 4016 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:04:11.0529 4016 TermDD - ok
19:04:11.0545 4016 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
19:04:11.0550 4016 TermService - ok
19:04:11.0560 4016 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
19:04:11.0566 4016 Themes - ok
19:04:11.0575 4016 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
19:04:11.0577 4016 THREADORDER - ok
19:04:11.0583 4016 [ 5E1BC006CB4A26507D4512795CF08373 ] TlntSvr C:\Windows\System32\tlntsvr.exe
19:04:11.0586 4016 TlntSvr - ok
19:04:11.0592 4016 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
19:04:11.0595 4016 TrkWks - ok
19:04:11.0601 4016 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:04:11.0601 4016 TrustedInstaller - ok
19:04:11.0609 4016 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:04:11.0610 4016 tssecsrv - ok
19:04:11.0615 4016 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
19:04:11.0618 4016 tunmp - ok
19:04:11.0624 4016 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:04:11.0626 4016 tunnel - ok
19:04:11.0631 4016 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:04:11.0632 4016 uagp35 - ok
19:04:11.0641 4016 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:04:11.0645 4016 udfs - ok
19:04:11.0655 4016 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:04:11.0659 4016 UI0Detect - ok
19:04:11.0664 4016 UIUSys - ok
19:04:11.0673 4016 [ 6D72EF05921ABDF59FC45C7EBFE7E8DD ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:04:11.0674 4016 uliagpkx - ok
19:04:11.0681 4016 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
19:04:11.0683 4016 uliahci - ok
19:04:11.0694 4016 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
19:04:11.0696 4016 UlSata - ok
19:04:11.0703 4016 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
19:04:11.0704 4016 ulsata2 - ok
19:04:11.0709 4016 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:04:11.0712 4016 umbus - ok
19:04:11.0723 4016 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
19:04:11.0727 4016 upnphost - ok
19:04:11.0745 4016 [ 6D1E41657FDB48F9147598C773297513 ] USA19H C:\Windows\system32\DRIVERS\USA19H2k.sys
19:04:11.0752 4016 USA19H - ok
19:04:11.0758 4016 [ 8A217FC16DD14AB8AD2EAA1F08B3B5C5 ] USA19H2KP C:\Windows\system32\DRIVERS\USA19H2kp.SYS
19:04:11.0759 4016 USA19H2KP - ok
19:04:11.0770 4016 [ 0AF7A803CE54BA5120B0EAB794C58362 ] USA19W C:\Windows\system32\DRIVERS\usa19w2k.sys
19:04:11.0773 4016 USA19W - ok
19:04:11.0778 4016 [ BEB64A97328FD61B00E4AA761DB43C00 ] USA19w2KP C:\Windows\system32\DRIVERS\usa19w2kp.SYS
19:04:11.0779 4016 USA19w2KP - ok
19:04:11.0790 4016 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:04:11.0791 4016 usbaudio - ok
19:04:11.0799 4016 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:04:11.0801 4016 usbccgp - ok
19:04:11.0807 4016 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:04:11.0810 4016 usbcir - ok
19:04:11.0822 4016 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:04:11.0823 4016 usbehci - ok
19:04:11.0841 4016 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:04:11.0843 4016 usbhub - ok
19:04:11.0859 4016 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:04:11.0861 4016 usbohci - ok
19:04:11.0872 4016 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:04:11.0873 4016 usbprint - ok
19:04:11.0878 4016 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:04:11.0882 4016 usbscan - ok
19:04:11.0888 4016 [ D575246188F63DE0ACCF6EAC5FB59E6A ] usbser C:\Windows\system32\DRIVERS\usbser.sys
19:04:11.0891 4016 usbser - ok
19:04:11.0896 4016 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:04:11.0898 4016 USBSTOR - ok
19:04:11.0903 4016 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:04:11.0904 4016 usbuhci - ok
19:04:11.0913 4016 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:04:11.0914 4016 usbvideo - ok
19:04:11.0921 4016 [ 35C9095FA7076466AFBFC5B9EC4B779E ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
19:04:11.0923 4016 usb_rndisx - ok
19:04:11.0928 4016 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
19:04:11.0931 4016 UxSms - ok
19:04:11.0945 4016 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
19:04:11.0952 4016 vds - ok
19:04:11.0957 4016 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:04:11.0958 4016 vga - ok
19:04:11.0963 4016 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
19:04:11.0964 4016 VgaSave - ok
19:04:11.0972 4016 [ D5929A28BDFF4367A12CAF06AF901971 ] viaagp C:\Windows\system32\drivers\viaagp.sys
19:04:11.0973 4016 viaagp - ok
19:04:11.0978 4016 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
19:04:11.0981 4016 ViaC7 - ok
19:04:11.0987 4016 [ 58C8D5AC5C3EEF40E7E704A5CED7987D ] viaide C:\Windows\system32\drivers\viaide.sys
19:04:11.0988 4016 viaide - ok
19:04:11.0993 4016 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:04:11.0994 4016 volmgr - ok
19:04:12.0006 4016 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:04:12.0008 4016 volmgrx - ok
19:04:12.0020 4016 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:04:12.0022 4016 volsnap - ok
19:04:12.0026 4016 VSBC - ok
19:04:12.0035 4016 [ 7E6FA079B8D8ABE9FCE25BA7A2A7CDAF ] VSBC7 C:\Windows\system32\DRIVERS\evsbc7.sys
19:04:12.0035 4016 VSBC7 - ok
19:04:12.0041 4016 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:04:12.0043 4016 vsmraid - ok
19:04:12.0068 4016 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
19:04:12.0077 4016 VSS - ok
19:04:12.0119 4016 [ 719BAC5B5A9C2C1FDF7323FB7E36CA32 ] VX6000 C:\Windows\system32\DRIVERS\VX6000Xp.sys
19:04:12.0134 4016 VX6000 - ok
19:04:12.0146 4016 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
19:04:12.0151 4016 W32Time - ok
19:04:12.0165 4016 [ 9CA92191C8F18E8B491A5B28E63C07B7 ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
19:04:12.0168 4016 W3SVC - ok
19:04:12.0173 4016 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:04:12.0177 4016 WacomPen - ok
19:04:12.0183 4016 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
19:04:12.0184 4016 Wanarp - ok
19:04:12.0189 4016 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:04:12.0190 4016 Wanarpv6 - ok
19:04:12.0200 4016 [ 9CA92191C8F18E8B491A5B28E63C07B7 ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
19:04:12.0203 4016 WAS - ok
19:04:12.0215 4016 [ 3F2B5D989666786E57BB0D8D35B84052 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
19:04:12.0220 4016 WcesComm - ok
19:04:12.0234 4016 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:04:12.0239 4016 wcncsvc - ok
19:04:12.0245 4016 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:04:12.0251 4016 WcsPlugInService - ok
19:04:12.0256 4016 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
19:04:12.0257 4016 Wd - ok
19:04:12.0272 4016 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:04:12.0277 4016 Wdf01000 - ok
19:04:12.0285 4016 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:04:12.0289 4016 WdiServiceHost - ok
19:04:12.0293 4016 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:04:12.0297 4016 WdiSystemHost - ok
19:04:12.0306 4016 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
19:04:12.0313 4016 WebClient - ok
19:04:12.0320 4016 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:04:12.0324 4016 Wecsvc - ok
19:04:12.0332 4016 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:04:12.0335 4016 wercplsupport - ok
19:04:12.0342 4016 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
19:04:12.0348 4016 WerSvc - ok
19:04:12.0365 4016 [ 6D2350BB6E77E800FC4BE4E5B7A2E89A ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
19:04:12.0369 4016 winachsf - ok
19:04:12.0380 4016 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
19:04:12.0381 4016 WinDefend - ok
19:04:12.0389 4016 WinHttpAutoProxySvc - ok
19:04:12.0402 4016 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:04:12.0404 4016 Winmgmt - ok
19:04:12.0430 4016 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
19:04:12.0443 4016 WinRM - ok
19:04:12.0456 4016 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
19:04:12.0457 4016 WinUSB - ok
19:04:12.0472 4016 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:04:12.0478 4016 Wlansvc - ok
19:04:12.0512 4016 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:04:12.0525 4016 wlidsvc - ok
19:04:12.0532 4016 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
19:04:12.0533 4016 WmiAcpi - ok
19:04:12.0547 4016 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:04:12.0549 4016 wmiApSrv - ok
19:04:12.0568 4016 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
19:04:12.0574 4016 WMPNetworkSvc - ok
19:04:12.0585 4016 [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm c:\Program Files\Zune\WMZuneComm.exe
19:04:12.0588 4016 WMZuneComm - ok
19:04:12.0595 4016 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:04:12.0601 4016 WPCSvc - ok
19:04:12.0607 4016 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:04:12.0612 4016 WPDBusEnum - ok
19:04:12.0618 4016 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
19:04:12.0619 4016 WpdUsb - ok
19:04:12.0642 4016 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:04:12.0647 4016 WPFFontCache_v0400 - ok
19:04:12.0656 4016 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:04:12.0657 4016 ws2ifsl - ok
19:04:12.0663 4016 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
19:04:12.0667 4016 wscsvc - ok
19:04:12.0671 4016 WSearch - ok
19:04:12.0714 4016 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
19:04:12.0733 4016 wuauserv - ok
19:04:12.0740 4016 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:04:12.0741 4016 WudfPf - ok
19:04:12.0749 4016 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:04:12.0753 4016 WUDFRd - ok
19:04:12.0758 4016 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:04:12.0762 4016 wudfsvc - ok
19:04:12.0769 4016 [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
19:04:12.0770 4016 XAudio - ok
19:04:12.0782 4016 [ 28DC5D626E036A75A572556F0A6EB1F6 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
19:04:12.0784 4016 XAudioService - ok
19:04:12.0796 4016 [ F5E5F944E63A9B5F6E76C2EBB2AC462F ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
19:04:12.0797 4016 xusb21 - ok
19:04:12.0911 4016 [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc c:\Program Files\Zune\ZuneNss.exe
19:04:12.0950 4016 ZuneNetworkSvc - ok
19:04:12.0963 4016 [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc c:\Program Files\Zune\ZuneWlanCfgSvc.exe
19:04:12.0966 4016 ZuneWlanCfgSvc - ok
19:04:12.0989 4016 ================ Scan global ===============================
19:04:12.0996 4016 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
19:04:13.0017 4016 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
19:04:13.0029 4016 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
19:04:13.0046 4016 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
19:04:13.0050 4016 [Global] - ok
19:04:13.0050 4016 ================ Scan MBR ==================================
19:04:13.0054 4016 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
19:04:13.0139 4016 \Device\Harddisk0\DR0 - ok
19:04:13.0139 4016 ================ Scan VBR ==================================
19:04:13.0142 4016 [ 431B91D36C89D5B516598FCDCB411A09 ] \Device\Harddisk0\DR0\Partition1
19:04:13.0143 4016 \Device\Harddisk0\DR0\Partition1 - ok
19:04:13.0146 4016 [ AEAEC71C9CE0BB59112C6656EFC38A15 ] \Device\Harddisk0\DR0\Partition2
19:04:13.0148 4016 \Device\Harddisk0\DR0\Partition2 - ok
19:04:13.0148 4016 ============================================================
19:04:13.0148 4016 Scan finished
19:04:13.0148 4016 ============================================================
19:04:13.0159 4388 Detected object count: 0
19:04:13.0159 4388 Actual detected object count: 0
  • 0

#18
Jintan
Posted 24 February 2013 - 06:17 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
I only just now picked up you have MS Security Essentials installed. It is disabled?
  • 0

#19
dzwiss
Posted 24 February 2013 - 06:21 PM

dzwiss

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
yes, I have it disabled from the start.
  • 0

#20
Jintan
Posted 24 February 2013 - 06:27 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Reboot to Safe Mode. At startup tap the F8 key about once per half-second, then select Safe Mode from the menu that will appear.

Right click and rename ComboFix.exe to jambo.scr

Click to run jambo.scr. This time also allow it to run for a few hours. Allow it to weed through permissions settings/changes.
  • 0

#21
dzwiss
Posted 24 February 2013 - 06:29 PM

dzwiss

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
run the renamed ComboFix.exe while in safe mode? Or do I restart?
  • 0

#22
Jintan
Posted 24 February 2013 - 06:56 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Go ahead and reboot again to Safe Mode please.
  • 0

#23
dzwiss
Posted 25 February 2013 - 06:47 PM

dzwiss

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
I rebooted in safe mode and renamed combofix.exe then ran it while in safe mode with the same results. It hangs about two minutes into the scan. I did let it sit that way for 10 hours and still no sign of any activity...ie drive light.
  • 0

#24
Jintan
Posted 25 February 2013 - 08:42 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Nothing. No unnoticed remnant antivirus drivers/no malware drivers or altered legit drivers. Just two unknown files and ComboFix won't run.


Please Download MBRCheck.exe to your Desktop. Run the application.

If no infection is found, it will produce a report on the desktop. Post that report in your next reply.

If an infection is found, you will be presented with the following dialog:

Enter 'Y' and hit ENTER for more options, or 'N' to exit:


Type N and press Enter. A report will be produced on the desktop. Post that report in your next reply.

--------

Disable your antivirus program and click here and download the esetsmartinstaller_enu.exe Eset installer. Then click that file to run the scanner.

If you accept the Terms of Use, check the box and click Start. It will take a couple minutes for the scanner to get ready. When the Computer scan settings display shows, check the following boxes:

Remove found threats
Scan unwanted applications

Next to "Current scan targets: Operating memory, Local drives", click the "Change" word. Make sure you place a check next to all disk drives, including any external drives that are attached (no need to check off the floppy or DVD/CD-Rom drives).

Then click the Advanced option, the place a check next to the following (if it is not already checked):

Enable Anti-Stealth technology

Click Start. This scan may take a while, so please be patient.

If infection is found, at the end of the scan click "List of found threats".

In that display, at the bottom, select the option to save the results as a text file, and save that to your desktop. Post that back here please.

Post that log please.
  • 0

#25
dzwiss
Posted 26 February 2013 - 06:18 AM

dzwiss

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
ESETS was clean...no infection found.

Here is the log for MBRCheck:


MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: MP061
Logical Drives Mask: 0x0000001c

Kernel Drivers (total 181):
0x82E08000 \SystemRoot\system32\ntkrnlpa.exe
0x831C2000 \SystemRoot\system32\hal.dll
0x8060D000 \SystemRoot\system32\kdcom.dll
0x80614000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80684000 \SystemRoot\system32\PSHED.dll
0x80695000 \SystemRoot\system32\BOOTVID.dll
0x8069D000 \SystemRoot\system32\CLFS.SYS
0x806DE000 \SystemRoot\system32\CI.dll
0x88809000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8888A000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x88898000 \SystemRoot\system32\drivers\acpi.sys
0x888DE000 \SystemRoot\system32\drivers\WMILIB.SYS
0x888E7000 \SystemRoot\system32\drivers\msisadrv.sys
0x888EF000 \SystemRoot\system32\drivers\pci.sys
0x88916000 \SystemRoot\System32\drivers\partmgr.sys
0x88926000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x88929000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x88933000 \SystemRoot\system32\drivers\volmgr.sys
0x88942000 \SystemRoot\System32\drivers\volmgrx.sys
0x8898C000 \SystemRoot\system32\drivers\intelide.sys
0x88993000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x889A1000 \SystemRoot\system32\DRIVERS\pciide.sys
0x889A8000 \SystemRoot\System32\drivers\mountmgr.sys
0x889B8000 \SystemRoot\system32\drivers\atapi.sys
0x889C0000 \SystemRoot\system32\drivers\ataport.SYS
0x889DE000 \SystemRoot\system32\drivers\msahci.sys
0x807BE000 \SystemRoot\system32\drivers\fltmgr.sys
0x889E7000 \SystemRoot\system32\drivers\fileinfo.sys
0x88A09000 \SystemRoot\system32\DRIVERS\MpFilter.sys
0x88A35000 \SystemRoot\System32\Drivers\DRVMCDB.SYS
0x88A4B000 \SystemRoot\System32\Drivers\ksecdd.sys
0x88ABD000 \SystemRoot\system32\drivers\ndis.sys
0x88BC8000 \SystemRoot\system32\drivers\msrpc.sys
0x88C0D000 \SystemRoot\system32\drivers\NETIO.SYS
0x88C48000 \SystemRoot\System32\drivers\tcpip.sys
0x88D35000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x88E0F000 \SystemRoot\System32\Drivers\Ntfs.sys
0x88F1F000 \SystemRoot\system32\drivers\volsnap.sys
0x88F58000 \SystemRoot\System32\Drivers\spldr.sys
0x88F60000 \SystemRoot\System32\Drivers\mup.sys
0x88F6F000 \SystemRoot\System32\drivers\ecache.sys
0x88F96000 \SystemRoot\system32\drivers\disk.sys
0x88FA7000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x88FC8000 \SystemRoot\system32\drivers\crcdisk.sys
0x88FF1000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x88E00000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x88D50000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x88D5F000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x88E09000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8D409000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x8DB3B000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8DBDB000 \SystemRoot\System32\drivers\watchdog.sys
0x88D68000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8DC01000 \SystemRoot\system32\DRIVERS\NETwLv32.sys
0x8E260000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8E26B000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8E2A9000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8E2B8000 \SystemRoot\system32\DRIVERS\bcm4sbxp.sys
0x8E2C8000 \SystemRoot\system32\DRIVERS\ohci1394.sys
0x8E2D8000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
0x8E2E6000 \SystemRoot\system32\DRIVERS\sdbus.sys
0x8E300000 \SystemRoot\system32\DRIVERS\rimmptsk.sys
0x8E30E000 \SystemRoot\system32\DRIVERS\rimsptsk.sys
0x8E322000 \SystemRoot\system32\DRIVERS\rixdptsk.sys
0x8E373000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8E386000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8E3DA000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8E3DC000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8E3E7000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8E3F2000 \SystemRoot\System32\Drivers\DLACDBHM.SYS
0x8DBE7000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D001000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8D030000 \SystemRoot\system32\DRIVERS\storport.sys
0x8D071000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8D07C000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8D093000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8D09E000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8D0C1000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8D0D0000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8D0E4000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8D0F9000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D109000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8D10B000 \SystemRoot\system32\DRIVERS\ks.sys
0x8D135000 \SystemRoot\system32\DRIVERS\NWADIenum.sys
0x8D169000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8D173000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8D180000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8D1B5000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8E609000 \SystemRoot\system32\drivers\stwrt.sys
0x8E65E000 \SystemRoot\system32\drivers\portcls.sys
0x8E68B000 \SystemRoot\system32\drivers\drmk.sys
0x8E6B0000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8E6B9000 \SystemRoot\System32\Drivers\Null.SYS
0x8E6C0000 \SystemRoot\System32\Drivers\Beep.SYS
0x8E6C7000 \SystemRoot\System32\Drivers\DLARTL_M.SYS
0x8E6D6000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8E6DD000 \SystemRoot\System32\drivers\vga.sys
0x8E6E9000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8E70A000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8E712000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8E71A000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8E725000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8E733000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8E73C000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8E752000 \SystemRoot\system32\DRIVERS\smb.sys
0x8E766000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8E798000 \SystemRoot\system32\drivers\afd.sys
0x8E7E0000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x8E7E9000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8E600000 \SystemRoot\system32\DRIVERS\anodlwf.sys
0x8D1C6000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8D1D4000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8D1E7000 \SystemRoot\System32\Drivers\SCDEmu.SYS
0x8EA09000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8EA45000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8EA4F000 \SystemRoot\system32\ckldrv.sys
0x8EA55000 \??\C:\Windows\system32\drivers\fanio.sys
0x8EA59000 \SystemRoot\System32\Drivers\dfsc.sys
0x8EA70000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8EA7D000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8EA88000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x99C40000 \SystemRoot\System32\win32k.sys
0x8EA90000 \SystemRoot\System32\drivers\Dxapi.sys
0x8EA9A000 \SystemRoot\System32\Drivers\BTHUSB.sys
0x8EAA7000 \SystemRoot\System32\Drivers\bthport.sys
0x8EB27000 \SystemRoot\system32\DRIVERS\rfcomm.sys
0x8EB50000 \SystemRoot\system32\DRIVERS\BthEnum.sys
0x8EB5A000 \SystemRoot\system32\DRIVERS\bthpan.sys
0x8EB74000 \SystemRoot\system32\DRIVERS\bthmodem.sys
0x8EB83000 \SystemRoot\system32\drivers\btwavdt.sys
0x8EBE9000 \SystemRoot\system32\DRIVERS\hidbth.sys
0x88FD1000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x9C407000 \SystemRoot\system32\drivers\btwaudio.sys
0x9C483000 \SystemRoot\system32\DRIVERS\btwrchid.sys
0x9C486000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x9C48E000 \SystemRoot\system32\DRIVERS\point32.sys
0x9C497000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x9C4A0000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x99E60000 \SystemRoot\System32\TSDDD.dll
0x99E80000 \SystemRoot\System32\cdd.dll
0x99E90000 \SystemRoot\System32\ATMFD.DLL
0x9C4B8000 \SystemRoot\system32\drivers\luafv.sys
0x9C4D3000 \SystemRoot\System32\Drivers\DRVNDDM.SYS
0x9C4DE000 \SystemRoot\System32\DLA\DLADResM.SYS
0x9C4DF000 \SystemRoot\System32\DLA\DLAIFS_M.SYS
0x9C4F7000 \SystemRoot\System32\DLA\DLAOPIOM.SYS
0x9C4FC000 \SystemRoot\System32\DLA\DLAPoolM.SYS
0x9C4FE000 \SystemRoot\system32\drivers\WudfPf.sys
0x9C512000 \SystemRoot\System32\DLA\DLABMFSM.SYS
0x9C519000 \SystemRoot\System32\DLA\DLABOIOM.SYS
0x9C520000 \SystemRoot\System32\DLA\DLAUDFAM.SYS
0x9C536000 \SystemRoot\System32\DLA\DLAUDF_M.SYS
0x93E07000 \SystemRoot\system32\drivers\spsys.sys
0x93EB7000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x93EC7000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x93EF1000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x93EFB000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x93F0E000 \SystemRoot\system32\drivers\HTTP.sys
0x93F7B000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x93F98000 \SystemRoot\system32\DRIVERS\bowser.sys
0x93FB1000 \SystemRoot\System32\drivers\mpsdrv.sys
0x93FC6000 \SystemRoot\system32\drivers\mrxdav.sys
0x9C555000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x9C574000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x93FE7000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x9C5AD000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA1604000 \SystemRoot\System32\DRIVERS\srv.sys
0xA1653000 \SystemRoot\system32\drivers\enodpl.sys
0xA1655000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xA1659000 \SystemRoot\System32\Drivers\fastfat.SYS
0xA1681000 \SystemRoot\system32\drivers\peauth.sys
0xA175F000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA1769000 \SystemRoot\system32\DRIVERS\cdfs.sys
0xA177F000 \SystemRoot\system32\drivers\tandpl.sys
0xA1781000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA178D000 \SystemRoot\system32\DRIVERS\xaudio.sys
0xA1795000 \SystemRoot\system32\drivers\tdtcp.sys
0xA17A0000 \SystemRoot\System32\DRIVERS\tssecsrv.sys
0xA17AC000 \SystemRoot\System32\Drivers\RDPWD.SYS
0xA17DF000 \SystemRoot\system32\DRIVERS\monitor.sys
0x777B0000 \Windows\System32\ntdll.dll

Processes (total 89):
0 System Idle Process
4 System
472 C:\Windows\System32\smss.exe
592 csrss.exe
656 C:\Windows\System32\wininit.exe
668 csrss.exe
700 C:\Windows\System32\services.exe
716 C:\Windows\System32\lsass.exe
724 C:\Windows\System32\lsm.exe
868 C:\Windows\System32\winlogon.exe
900 C:\Windows\System32\svchost.exe
964 C:\Windows\System32\nvvsvc.exe
996 C:\Windows\System32\svchost.exe
1060 C:\Program Files\Microsoft Security Client\MsMpEng.exe
1188 C:\Windows\System32\svchost.exe
1228 C:\Windows\System32\svchost.exe
1240 C:\Windows\System32\svchost.exe
1324 C:\Windows\System32\audiodg.exe
1352 C:\Windows\System32\svchost.exe
1372 C:\Windows\System32\SLsvc.exe
1404 C:\Windows\System32\svchost.exe
1472 C:\Windows\System32\rundll32.exe
1712 C:\Windows\explorer.exe
1868 C:\Windows\System32\svchost.exe
200 C:\Windows\System32\spoolsv.exe
300 C:\Windows\System32\taskeng.exe
340 C:\Windows\System32\svchost.exe
812 C:\Windows\System32\taskeng.exe
1428 C:\Windows\System32\wlanext.exe
1772 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
1792 C:\Windows\System32\svchost.exe
1860 C:\Windows\System32\svchost.exe
480 C:\Windows\System32\Crypserv.exe
1360 C:\Windows\System32\svchost.exe
2068 C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
2116 C:\Program Files\Microsoft LifeCam\MSCamS32.exe
2260 C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
2392 C:\Windows\System32\svchost.exe
2408 C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
2504 C:\Windows\System32\svchost.exe
2524 C:\Windows\System32\PnkBstrA.exe
2560 C:\Windows\System32\svchost.exe
2584 C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
2616 C:\Windows\System32\TCPSVCS.EXE
2628 C:\Windows\System32\snmp.exe
2668 C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
2696 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
2736 C:\Windows\System32\stacsv.exe
2944 C:\Windows\System32\svchost.exe
2976 C:\Windows\System32\svchost.exe
3008 C:\Windows\System32\svchost.exe
3024 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
3060 C:\Windows\System32\drivers\XAudio.exe
3076 C:\Program Files\Intel\WiFi\bin\EvtEng.exe
3188 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
3736 C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
3760 C:\Program Files\Common Files\Logitech\QCDriver3\LVComS.exe
3816 C:\Windows\vVX6000.exe
3824 unsecapp.exe
3948 WmiPrvSE.exe
2128 C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
2544 C:\Windows\System32\Wnex7DO.exe
1664 C:\Program Files\Zune\ZuneLauncher.exe
2960 C:\Program Files\Microsoft Security Client\msseces.exe
3260 C:\Windows\System32\rundll32.exe
3412 C:\Windows\System32\rundll32.exe
3408 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1884 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
3776 C:\Program Files\I8kfanGUI\I8kfanGUI.exe
1948 C:\Program Files\Windows Media Player\wmpnscfg.exe
3880 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
1168 C:\Program Files\BodyMedia\Sync\BodyMediaSync.exe
1184 C:\Program Files\Suunto\Moveslink for Movestick Mini\Moveslink.exe
4268 C:\Program Files\Windows Media Player\wmpnetwk.exe
4508 C:\Windows\System32\wbem\unsecapp.exe
4556 C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
5464 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
5960 C:\Windows\System32\svchost.exe
3016 C:\Windows\System32\svchost.exe
1652 C:\Program Files\Zune\ZuneNss.exe
5908 C:\Program Files\Google\Chrome\Application\chrome.exe
5700 C:\Program Files\Google\Chrome\Application\chrome.exe
4748 C:\Program Files\Google\Chrome\Application\chrome.exe
1584 C:\Program Files\Google\Chrome\Application\chrome.exe
5000 C:\Program Files\Google\Chrome\Application\chrome.exe
4624 C:\Program Files\Google\Chrome\Application\chrome.exe
4580 dllhost.exe
772 dllhost.exe
4672 C:\Users\dzwiss\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000003`40784400 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`0855a200 (NTFS)

PhysicalDrive0 Model Number: M4-CT128M4SSD2, Rev: 040H

Size Device Name MBR Status
--------------------------------------------
119 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979


Done!
  • 0

Advertisements

#26
Jintan
Posted 26 February 2013 - 12:55 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Nothing again. Navigate to C:\Windows\System32, and see if you can get a visual on the following files. They may show as odd characters:

[2013/01/29 17:50:41 | 000,000,000 | ---D | M](C:\Windows\System32\?i???i?i?i?i?i?i) -- C:\Windows\System32\ĭ䬵眝ĭĭĭĭĭĭ
[2013/01/29 17:50:41 | 000,000,000 | ---D | C](C:\Windows\System32\?i???i?i?i?i?i?i) -- C:\Windows\System32\ĭ䬵眝ĭĭĭĭĭĭ
  • 0

#27
dzwiss
Posted 26 February 2013 - 01:43 PM

dzwiss

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
I could not find those files visually, however, I did find a empty folder in the System32 directory named:


ĭ䬵眝ĭĭĭĭĭĭ


David
  • 0

#28
Jintan
Posted 26 February 2013 - 03:13 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Sorry - I kept typing file. How did you copy that name to paste it? From the folder's Properties?
  • 0

#29
dzwiss
Posted 26 February 2013 - 03:17 PM

dzwiss

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
I chose the file and then clicked on the name of the file where it allowed me to right click and choose copy, and then I pasted it here.
  • 0

#30
Jintan
Posted 26 February 2013 - 05:39 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Try right clicking it and deleting it. Likely Windows won't let you, but you need to try. Curious - what did the folder name appear to to you? Odd characters, such as squares etc.?

Open Gmer again. Once it finishes it's startup scan, place a check next to 3rd party. Then click Scan. Post that log back here please.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP