Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Internet secuirty keeeps stopping..OTL wont work [Solved]

Started by Harry44 , Jun 16 2013 04:26 AM

  • This topic is locked This topic is locked

#76
godawgs
Posted 12 July 2013 - 09:32 PM

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Please run Gmer again and uncheck the box beside IAT\EAT. The screenshot you posted above shows the IAT/EAT box checked. It should not be checked.
Check the box beside C:\. The screenshot you posted doesn't show any drive checked.
Make sure the box beside Show All is not checked.
Then click the Scan button.
Do Not touch the keyboard or mouse/mousepad or use the computer while the scan is running.
When it is finished click the Save button and save the file to the desktop as Arc.txt
  • 0

Advertisements

#77
Harry44
Posted 14 July 2013 - 05:16 AM

Harry44

    Member

  • Topic Starter
  • Member
  • PipPip
  • 45 posts
I ran it over night but when I went to click on save nothing happens, wont let me save
  • 0

#78
godawgs
Posted 14 July 2013 - 05:49 AM

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
I'm checking that out. I'll be back :)
  • 0

#79
godawgs
Posted 15 July 2013 - 07:15 AM

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Hi Harry,

I've been checking and talking with colleagues. The consensus is that GMER didn't run to completion. That's why the Save Button wasn't available. When the scan finishes you should get a pop up box saying "The scan finished successfully." with an OK button to click.
I spent the day yesterday running GMER on my machine. The screenshot you posted in post#73 shows that GMER was still doing the initial Quick scan and that it was processing the C:\Windows\system32\ks.sys file. That's why the Save button wasn't available.
Gmer can take hours and hours to run to completion even when it runs properly. And on some systems it just won't run properly....don't know why.
I just wanted to look for rootkits with a different tool. But since we know TDSSKiller will run let's run it again. If it doesn't show anything, and I don't think it will, you should be good to go.


Step-1.

Posted Image TDSSKiller

Please read carefully and follow these steps.
Download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters. (See the image below)

    Posted Image
  • Make sure the boxes under Objects to scan are checked like the image below.
  • In the Additionak options section, check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system. (See the image below)

    Posted Image
  • Click OK
  • Click the Start Scan button.

    Posted Image
  • If a suspicious object is detected, the default action will be Skip. DO NOT change the default action, click on Continue. (See the image below)

    Posted Image
  • If malicious objects are found, they will show in the Scan results and offer three (3) options.
  • Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
  • Get the report by clicking Report

    Posted Image
  • Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.


Step-2.

Things For Your Next Post:
Please post the logs in the order requested. Do Not attach the logs unless I request it.
1. The TDSSKiller log
  • 0

#80
Harry44
Posted 15 July 2013 - 03:07 PM

Harry44

    Member

  • Topic Starter
  • Member
  • PipPip
  • 45 posts
22:04:47.0246 5804 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:04:47.0945 5804 ============================================================
22:04:47.0945 5804 Current date / time: 2013/07/15 22:04:47.0945
22:04:47.0945 5804 SystemInfo:
22:04:47.0945 5804
22:04:47.0945 5804 OS Version: 6.0.6002 ServicePack: 2.0
22:04:47.0945 5804 Product type: Workstation
22:04:47.0945 5804 ComputerName: DELL-530
22:04:47.0945 5804 UserName: Chris
22:04:47.0945 5804 Windows directory: C:\Windows
22:04:47.0945 5804 System windows directory: C:\Windows
22:04:47.0946 5804 Processor architecture: Intel x86
22:04:47.0946 5804 Number of processors: 2
22:04:47.0946 5804 Page size: 0x1000
22:04:47.0946 5804 Boot type: Normal boot
22:04:47.0946 5804 ============================================================
22:04:54.0773 5804 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:04:54.0780 5804 ============================================================
22:04:54.0780 5804 \Device\Harddisk0\DR0:
22:04:54.0782 5804 MBR partitions:
22:04:54.0782 5804 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x240A5800
22:04:54.0782 5804 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x240A6000, BlocksNum 0x1388000
22:04:54.0782 5804 ============================================================
22:04:54.0896 5804 C: <-> \Device\Harddisk0\DR0\Partition1
22:04:54.0963 5804 D: <-> \Device\Harddisk0\DR0\Partition2
22:04:54.0963 5804 ============================================================
22:04:54.0963 5804 Initialize success
22:04:54.0963 5804 ============================================================
22:05:05.0206 5880 ============================================================
22:05:05.0206 5880 Scan started
22:05:05.0206 5880 Mode: Manual; SigCheck; TDLFS;
22:05:05.0206 5880 ============================================================
22:05:11.0542 5880 ================ Scan system memory ========================
22:05:11.0543 5880 System memory - ok
22:05:11.0543 5880 ================ Scan services =============================
22:05:12.0700 5880 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
22:05:12.0823 5880 ACPI - ok
22:05:13.0434 5880 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:05:13.0670 5880 AdobeARMservice - ok
22:05:14.0348 5880 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:05:14.0547 5880 AdobeFlashPlayerUpdateSvc - ok
22:05:14.0764 5880 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:05:15.0131 5880 adp94xx - ok
22:05:15.0310 5880 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:05:15.0443 5880 adpahci - ok
22:05:15.0533 5880 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
22:05:15.0548 5880 adpu160m - ok
22:05:15.0632 5880 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:05:15.0676 5880 adpu320 - ok
22:05:15.0713 5880 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:05:16.0092 5880 AeLookupSvc - ok
22:05:16.0169 5880 [ 330A1E4DF07C2E29949ED8631CD8828E ] AERTFilters C:\Windows\system32\AERTSrv.exe
22:05:16.0427 5880 AERTFilters - ok
22:05:16.0713 5880 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
22:05:17.0100 5880 AFD - ok
22:05:17.0160 5880 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:05:17.0183 5880 agp440 - ok
22:05:17.0246 5880 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
22:05:17.0325 5880 aic78xx - ok
22:05:17.0371 5880 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
22:05:17.0519 5880 ALG - ok
22:05:17.0570 5880 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
22:05:17.0582 5880 aliide - ok
22:05:17.0627 5880 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
22:05:17.0640 5880 amdagp - ok
22:05:17.0708 5880 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
22:05:17.0720 5880 amdide - ok
22:05:17.0849 5880 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
22:05:17.0948 5880 AmdK7 - ok
22:05:17.0983 5880 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:05:18.0131 5880 AmdK8 - ok
22:05:18.0229 5880 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
22:05:18.0701 5880 Appinfo - ok
22:05:18.0826 5880 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
22:05:18.0935 5880 arc - ok
22:05:19.0013 5880 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:05:19.0029 5880 arcsas - ok
22:05:19.0090 5880 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:05:19.0242 5880 AsyncMac - ok
22:05:19.0286 5880 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
22:05:19.0298 5880 atapi - ok
22:05:19.0363 5880 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:05:19.0426 5880 AudioEndpointBuilder - ok
22:05:19.0434 5880 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
22:05:19.0462 5880 Audiosrv - ok
22:05:19.0546 5880 [ B5B8FC2C4D520F1F1EED52A980ED5091 ] avc3 C:\Windows\system32\DRIVERS\avc3.sys
22:05:19.0777 5880 avc3 - ok
22:05:19.0858 5880 [ 7F9B99B564E7C9FBB6729ED95B5BBB24 ] avchv C:\Windows\system32\DRIVERS\avchv.sys
22:05:19.0957 5880 avchv - ok
22:05:20.0033 5880 [ FBE832C2E80DB000D1B1A707B7E8ECFA ] avckf C:\Windows\system32\DRIVERS\avckf.sys
22:05:20.0260 5880 avckf - ok
22:05:20.0816 5880 [ A624841BECEE1B0FCAB28BF2E4CB317A ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe
22:05:20.0888 5880 BdDesktopParental - ok
22:05:21.0147 5880 [ 6743A3C33E8B3BFC2D9B55E15500BB13 ] BdfNdisf c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
22:05:21.0416 5880 BdfNdisf - ok
22:05:21.0455 5880 [ F7D825F7E47D8A7865F5D2156B1B7A24 ] bdftdif C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdftdif.sys
22:05:21.0830 5880 bdftdif - ok
22:05:21.0857 5880 [ B6CBFC9D825BB2D955620CD4D8EF07F9 ] BDSandBox C:\Windows\system32\drivers\bdsandbox.sys
22:05:21.0990 5880 BDSandBox - ok
22:05:22.0154 5880 [ A7478F77584F8DB6AD74B2BBE1144886 ] bdselfpr C:\Program Files\Bitdefender\Bitdefender 2013\bdselfpr.sys
22:05:22.0619 5880 bdselfpr - ok
22:05:22.0800 5880 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
22:05:22.0957 5880 Beep - ok
22:05:23.0219 5880 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
22:05:23.0574 5880 BFE - ok
22:05:23.0862 5880 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
22:05:24.0484 5880 BITS - ok
22:05:24.0552 5880 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
22:05:24.0693 5880 blbdrive - ok
22:05:24.0782 5880 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:05:25.0506 5880 bowser - ok
22:05:25.0683 5880 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
22:05:25.0818 5880 BrFiltLo - ok
22:05:25.0911 5880 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
22:05:26.0000 5880 BrFiltUp - ok
22:05:26.0210 5880 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
22:05:26.0387 5880 Browser - ok
22:05:26.0533 5880 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
22:05:27.0122 5880 Brserid - ok
22:05:27.0251 5880 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
22:05:27.0303 5880 BrSerWdm - ok
22:05:27.0392 5880 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
22:05:27.0526 5880 BrUsbMdm - ok
22:05:27.0589 5880 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
22:05:27.0787 5880 BrUsbSer - ok
22:05:27.0883 5880 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:05:27.0975 5880 BTHMODEM - ok
22:05:28.0983 5880 catchme - ok
22:05:29.0247 5880 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:05:29.0333 5880 cdfs - ok
22:05:29.0542 5880 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:05:29.0650 5880 cdrom - ok
22:05:29.0743 5880 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
22:05:29.0881 5880 CertPropSvc - ok
22:05:29.0948 5880 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
22:05:29.0978 5880 circlass - ok
22:05:30.0099 5880 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
22:05:30.0192 5880 CLFS - ok
22:05:31.0027 5880 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:05:31.0549 5880 clr_optimization_v2.0.50727_32 - ok
22:05:31.0790 5880 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:05:31.0868 5880 clr_optimization_v4.0.30319_32 - ok
22:05:32.0005 5880 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:05:32.0049 5880 cmdide - ok
22:05:32.0133 5880 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
22:05:32.0184 5880 Compbatt - ok
22:05:32.0191 5880 COMSysApp - ok
22:05:32.0309 5880 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:05:32.0515 5880 crcdisk - ok
22:05:32.0626 5880 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
22:05:32.0693 5880 Crusoe - ok
22:05:32.0886 5880 [ 3EDE4C1F9672C972479201544969ADCB ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:05:34.0212 5880 CryptSvc - ok
22:05:34.0544 5880 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:05:34.0821 5880 DcomLaunch - ok
22:05:34.0936 5880 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:05:35.0220 5880 DfsC - ok
22:05:35.0570 5880 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
22:05:36.0040 5880 DFSR - ok
22:05:36.0160 5880 [ 649705E3DAE598BC0F957BACBF9A2BD5 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
22:05:36.0751 5880 dg_ssudbus - ok
22:05:36.0970 5880 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
22:05:37.0048 5880 Dhcp - ok
22:05:37.0130 5880 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
22:05:37.0148 5880 disk - ok
22:05:37.0237 5880 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:05:37.0632 5880 Dnscache - ok
22:05:37.0691 5880 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:05:37.0784 5880 dot3svc - ok
22:05:37.0955 5880 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
22:05:38.0108 5880 DPS - ok
22:05:38.0208 5880 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:05:38.0345 5880 drmkaud - ok
22:05:38.0604 5880 [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:05:38.0826 5880 DXGKrnl - ok
22:05:38.0901 5880 [ 908ED85B7806E8AF3AF5E9B74F7809D4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
22:05:38.0947 5880 e1express - ok
22:05:39.0008 5880 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
22:05:39.0039 5880 E1G60 - ok
22:05:39.0157 5880 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
22:05:39.0237 5880 EapHost - ok
22:05:39.0389 5880 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
22:05:39.0409 5880 Ecache - ok
22:05:39.0676 5880 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:05:40.0077 5880 ehRecvr - ok
22:05:40.0104 5880 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
22:05:40.0198 5880 ehSched - ok
22:05:40.0261 5880 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
22:05:40.0315 5880 ehstart - ok
22:05:40.0528 5880 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:05:40.0693 5880 elxstor - ok
22:05:40.0853 5880 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
22:05:41.0335 5880 EMDMgmt - ok
22:05:41.0388 5880 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:05:41.0448 5880 ErrDev - ok
22:05:41.0568 5880 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
22:05:41.0596 5880 EventSystem - ok
22:05:41.0694 5880 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
22:05:41.0796 5880 exfat - ok
22:05:41.0851 5880 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:05:41.0931 5880 fastfat - ok
22:05:41.0995 5880 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:05:42.0020 5880 fdc - ok
22:05:42.0085 5880 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
22:05:42.0119 5880 fdPHost - ok
22:05:42.0158 5880 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
22:05:42.0252 5880 FDResPub - ok
22:05:42.0325 5880 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:05:42.0467 5880 FileInfo - ok
22:05:42.0500 5880 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:05:42.0558 5880 Filetrace - ok
22:05:42.0605 5880 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:05:42.0679 5880 flpydisk - ok
22:05:42.0762 5880 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:05:42.0851 5880 FltMgr - ok
22:05:43.0009 5880 [ 119ACA7CADCA75BEA6B38E999443BAA6 ] FontCache C:\Windows\system32\FntCache.dll
22:05:44.0044 5880 FontCache - ok
22:05:44.0345 5880 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:05:44.0574 5880 FontCache3.0.0.0 - ok
22:05:44.0629 5880 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:05:44.0651 5880 Fs_Rec - ok
22:05:44.0670 5880 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:05:44.0688 5880 gagp30kx - ok
22:05:44.0809 5880 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
22:05:44.0889 5880 gpsvc - ok
22:05:45.0050 5880 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:05:45.0296 5880 gupdate - ok
22:05:45.0325 5880 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:05:45.0366 5880 gupdatem - ok
22:05:45.0503 5880 [ 9C1E3F5A672EDB0831AAF3E36B6876A6 ] gzflt C:\Windows\system32\DRIVERS\gzflt.sys
22:05:45.0541 5880 gzflt - ok
22:05:45.0672 5880 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:05:46.0148 5880 HdAudAddService - ok
22:05:46.0243 5880 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:05:46.0402 5880 HDAudBus - ok
22:05:46.0422 5880 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:05:46.0505 5880 HidBth - ok
22:05:46.0554 5880 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
22:05:46.0595 5880 HidIr - ok
22:05:46.0698 5880 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
22:05:46.0715 5880 hidserv - ok
22:05:46.0773 5880 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:05:46.0792 5880 HidUsb - ok
22:05:46.0865 5880 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:05:46.0903 5880 hkmsvc - ok
22:05:46.0931 5880 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
22:05:46.0947 5880 HpCISSs - ok
22:05:47.0105 5880 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:05:47.0170 5880 HTTP - ok
22:05:47.0199 5880 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
22:05:47.0214 5880 i2omp - ok
22:05:47.0379 5880 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:05:47.0523 5880 i8042prt - ok
22:05:47.0625 5880 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
22:05:47.0700 5880 iaStorV - ok
22:05:47.0897 5880 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:05:48.0117 5880 idsvc - ok
22:05:48.0298 5880 [ 63C56DAC467EF814B60FF2AA2286C917 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
22:05:49.0117 5880 igfx - ok
22:05:49.0146 5880 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:05:49.0185 5880 iirsp - ok
22:05:49.0291 5880 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
22:05:49.0400 5880 IKEEXT - ok
22:05:49.0721 5880 [ F8F53C5449F15B23D4C61D51D2701DA8 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
22:05:50.0589 5880 IntcAzAudAddService - ok
22:05:50.0640 5880 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
22:05:50.0692 5880 intelide - ok
22:05:50.0889 5880 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:05:50.0954 5880 intelppm - ok
22:05:51.0187 5880 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:05:51.0283 5880 IPBusEnum - ok
22:05:51.0347 5880 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:05:51.0518 5880 IpFilterDriver - ok
22:05:51.0624 5880 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:05:51.0742 5880 iphlpsvc - ok
22:05:51.0747 5880 IpInIp - ok
22:05:51.0796 5880 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
22:05:51.0869 5880 IPMIDRV - ok
22:05:51.0936 5880 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
22:05:52.0033 5880 IPNAT - ok
22:05:52.0158 5880 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:05:52.0261 5880 IRENUM - ok
22:05:52.0351 5880 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:05:52.0400 5880 isapnp - ok
22:05:52.0470 5880 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
22:05:52.0517 5880 iScsiPrt - ok
22:05:52.0577 5880 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
22:05:52.0594 5880 iteatapi - ok
22:05:52.0734 5880 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
22:05:52.0779 5880 iteraid - ok
22:05:52.0811 5880 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:05:52.0829 5880 kbdclass - ok
22:05:52.0888 5880 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:05:52.0914 5880 kbdhid - ok
22:05:53.0038 5880 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
22:05:53.0100 5880 KeyIso - ok
22:05:53.0264 5880 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:05:53.0350 5880 KSecDD - ok
22:05:53.0519 5880 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
22:05:53.0731 5880 KtmRm - ok
22:05:53.0793 5880 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
22:05:54.0379 5880 LanmanServer - ok
22:05:54.0523 5880 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:05:54.0776 5880 LanmanWorkstation - ok
22:05:54.0906 5880 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:05:54.0936 5880 lltdio - ok
22:05:55.0059 5880 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:05:55.0231 5880 lltdsvc - ok
22:05:55.0410 5880 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:05:55.0605 5880 lmhosts - ok
22:05:55.0762 5880 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:05:55.0852 5880 LSI_FC - ok
22:05:55.0897 5880 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:05:55.0970 5880 LSI_SAS - ok
22:05:56.0023 5880 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:05:56.0088 5880 LSI_SCSI - ok
22:05:56.0174 5880 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
22:05:56.0240 5880 luafv - ok
22:05:56.0352 5880 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
22:05:56.0378 5880 MBAMProtector - ok
22:05:56.0749 5880 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:05:57.0117 5880 MBAMScheduler - ok
22:05:57.0339 5880 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
22:05:57.0906 5880 MBAMService - ok
22:05:58.0001 5880 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:05:58.0126 5880 Mcx2Svc - ok
22:05:58.0313 5880 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
22:05:58.0333 5880 megasas - ok
22:05:58.0501 5880 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
22:05:58.0742 5880 MegaSR - ok
22:05:58.0835 5880 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
22:05:58.0924 5880 MMCSS - ok
22:05:58.0967 5880 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
22:05:59.0042 5880 Modem - ok
22:05:59.0215 5880 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:05:59.0236 5880 monitor - ok
22:05:59.0342 5880 [ E07AFAF733D3004F5DC64AA3A47700B1 ] MOSUMAC C:\Windows\system32\DRIVERS\MOSUMAC.SYS
22:05:59.0550 5880 MOSUMAC - ok
22:05:59.0576 5880 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:05:59.0593 5880 mouclass - ok
22:05:59.0710 5880 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:05:59.0743 5880 mouhid - ok
22:05:59.0791 5880 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
22:05:59.0821 5880 MountMgr - ok
22:05:59.0988 5880 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:06:00.0137 5880 MozillaMaintenance - ok
22:06:00.0255 5880 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
22:06:00.0280 5880 mpio - ok
22:06:00.0403 5880 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:06:00.0572 5880 mpsdrv - ok
22:06:00.0830 5880 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
22:06:00.0963 5880 MpsSvc - ok
22:06:01.0022 5880 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
22:06:01.0039 5880 Mraid35x - ok
22:06:01.0059 5880 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:06:01.0270 5880 MRxDAV - ok
22:06:01.0371 5880 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:06:01.0459 5880 mrxsmb - ok
22:06:01.0550 5880 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:06:01.0583 5880 mrxsmb10 - ok
22:06:01.0627 5880 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:06:01.0646 5880 mrxsmb20 - ok
22:06:01.0687 5880 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
22:06:01.0705 5880 msahci - ok
22:06:01.0720 5880 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:06:01.0748 5880 msdsm - ok
22:06:01.0844 5880 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
22:06:01.0944 5880 MSDTC - ok
22:06:02.0031 5880 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:06:02.0101 5880 Msfs - ok
22:06:02.0247 5880 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:06:02.0370 5880 msisadrv - ok
22:06:02.0505 5880 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:06:02.0639 5880 MSiSCSI - ok
22:06:02.0689 5880 msiserver - ok
22:06:02.0851 5880 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:06:02.0923 5880 MSKSSRV - ok
22:06:02.0981 5880 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:06:03.0005 5880 MSPCLOCK - ok
22:06:03.0047 5880 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:06:03.0070 5880 MSPQM - ok
22:06:03.0124 5880 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:06:03.0156 5880 MsRPC - ok
22:06:03.0202 5880 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:06:03.0223 5880 mssmbios - ok
22:06:03.0306 5880 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:06:03.0386 5880 MSTEE - ok
22:06:03.0415 5880 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
22:06:03.0448 5880 Mup - ok
22:06:03.0531 5880 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
22:06:03.0654 5880 napagent - ok
22:06:03.0748 5880 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:06:03.0817 5880 NativeWifiP - ok
22:06:03.0915 5880 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:06:04.0031 5880 NDIS - ok
22:06:04.0136 5880 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:06:04.0201 5880 NdisTapi - ok
22:06:04.0243 5880 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:06:04.0415 5880 Ndisuio - ok
22:06:04.0464 5880 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:06:04.0501 5880 NdisWan - ok
22:06:04.0584 5880 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:06:04.0678 5880 NDProxy - ok
22:06:04.0717 5880 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:06:04.0756 5880 NetBIOS - ok
22:06:04.0886 5880 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
22:06:04.0990 5880 netbt - ok
22:06:05.0031 5880 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
22:06:05.0046 5880 Netlogon - ok
22:06:05.0241 5880 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
22:06:05.0553 5880 Netman - ok
22:06:05.0673 5880 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
22:06:05.0850 5880 netprofm - ok
22:06:06.0014 5880 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:06:06.0096 5880 NetTcpPortSharing - ok
22:06:06.0165 5880 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:06:06.0217 5880 nfrd960 - ok
22:06:06.0311 5880 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:06:06.0436 5880 NlaSvc - ok
22:06:06.0597 5880 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:06:06.0637 5880 Npfs - ok
22:06:06.0774 5880 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
22:06:06.0835 5880 nsi - ok
22:06:06.0907 5880 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:06:07.0056 5880 nsiproxy - ok
22:06:07.0554 5880 [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:06:07.0737 5880 Ntfs - ok
22:06:07.0782 5880 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
22:06:07.0891 5880 ntrigdigi - ok
22:06:08.0083 5880 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
22:06:08.0157 5880 Null - ok
22:06:08.0265 5880 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:06:08.0298 5880 nvraid - ok
22:06:08.0354 5880 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:06:08.0372 5880 nvstor - ok
22:06:08.0447 5880 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:06:08.0485 5880 nv_agp - ok
22:06:08.0491 5880 NwlnkFlt - ok
22:06:08.0498 5880 NwlnkFwd - ok
22:06:08.0656 5880 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:06:08.0727 5880 ohci1394 - ok
22:06:09.0343 5880 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:06:09.0449 5880 ose - ok
22:06:09.0747 5880 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
22:06:10.0224 5880 p2pimsvc - ok
22:06:10.0355 5880 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
22:06:10.0420 5880 p2psvc - ok
22:06:10.0570 5880 [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:06:10.0761 5880 Parport - ok
22:06:10.0794 5880 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:06:10.0840 5880 partmgr - ok
22:06:11.0011 5880 [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
22:06:11.0073 5880 Parvdm - ok
22:06:11.0204 5880 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
22:06:11.0227 5880 PcaSvc - ok
22:06:11.0291 5880 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
22:06:11.0315 5880 pci - ok
22:06:11.0358 5880 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
22:06:11.0377 5880 pciide - ok
22:06:11.0410 5880 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:06:11.0472 5880 pcmcia - ok
22:06:11.0592 5880 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
22:06:11.0640 5880 pcouffin - ok
22:06:12.0009 5880 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:06:12.0571 5880 PEAUTH - ok
22:06:12.0883 5880 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
22:06:14.0022 5880 pla - ok
22:06:14.0271 5880 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:06:14.0677 5880 PlugPlay - ok
22:06:14.0958 5880 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
22:06:15.0270 5880 PNRPAutoReg - ok
22:06:15.0363 5880 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
22:06:15.0597 5880 PNRPsvc - ok
22:06:15.0753 5880 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:06:16.0050 5880 PolicyAgent - ok
22:06:16.0190 5880 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:06:16.0284 5880 PptpMiniport - ok
22:06:16.0455 5880 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
22:06:16.0580 5880 Processor - ok
22:06:16.0986 5880 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
22:06:17.0189 5880 ProfSvc - ok
22:06:17.0391 5880 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
22:06:17.0407 5880 ProtectedStorage - ok
22:06:17.0485 5880 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
22:06:17.0516 5880 PSched - ok
22:06:17.0797 5880 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:06:18.0015 5880 ql2300 - ok
22:06:18.0109 5880 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:06:18.0125 5880 ql40xx - ok
22:06:18.0312 5880 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
22:06:18.0515 5880 QWAVE - ok
22:06:18.0561 5880 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:06:18.0624 5880 QWAVEdrv - ok
22:06:18.0686 5880 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:06:18.0749 5880 RasAcd - ok
22:06:18.0780 5880 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
22:06:18.0873 5880 RasAuto - ok
22:06:18.0889 5880 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:06:18.0936 5880 Rasl2tp - ok
22:06:19.0045 5880 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
22:06:19.0139 5880 RasMan - ok
22:06:19.0154 5880 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:06:19.0263 5880 RasPppoe - ok
22:06:19.0295 5880 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:06:19.0373 5880 RasSstp - ok
22:06:19.0513 5880 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:06:19.0575 5880 rdbss - ok
22:06:19.0607 5880 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:06:19.0669 5880 RDPCDD - ok
22:06:19.0731 5880 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
22:06:19.0825 5880 rdpdr - ok
22:06:19.0841 5880 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:06:19.0856 5880 RDPENCDD - ok
22:06:19.0872 5880 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:06:22.0321 5880 RDPWD - ok
22:06:22.0461 5880 [ B2D01290C0E0465ACA54C2088E947823 ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
22:06:34.0115 5880 RealNetworks Downloader Resolver Service - ok
22:06:34.0177 5880 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:06:34.0208 5880 RemoteAccess - ok
22:06:34.0286 5880 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:06:34.0411 5880 RemoteRegistry - ok
22:06:34.0551 5880 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
22:06:36.0626 5880 RpcLocator - ok
22:06:36.0720 5880 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\System32\rpcss.dll
22:06:37.0032 5880 RpcSs - ok
22:06:37.0079 5880 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:06:37.0094 5880 rspndr - ok
22:06:37.0344 5880 [ 283392AF1860ECDB5E0F8EBD7F3D72DF ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
22:06:37.0437 5880 RTL8169 - ok
22:06:37.0469 5880 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
22:06:37.0484 5880 SamSs - ok
22:06:37.0593 5880 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:06:37.0671 5880 sbp2port - ok
22:06:37.0765 5880 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:06:37.0827 5880 SCardSvr - ok
22:06:37.0921 5880 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
22:06:40.0760 5880 Schedule - ok
22:06:40.0932 5880 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
22:06:40.0979 5880 SCPolicySvc - ok
22:06:41.0010 5880 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:06:42.0804 5880 SDRSVC - ok
22:06:42.0913 5880 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:06:43.0007 5880 secdrv - ok
22:06:43.0116 5880 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
22:06:43.0209 5880 seclogon - ok
22:06:43.0256 5880 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
22:06:43.0365 5880 SENS - ok
22:06:43.0428 5880 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:06:43.0506 5880 Serenum - ok
22:06:43.0584 5880 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:06:43.0646 5880 Serial - ok
22:06:43.0771 5880 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:06:43.0865 5880 sermouse - ok
22:06:43.0974 5880 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
22:06:44.0067 5880 SessionEnv - ok
22:06:44.0114 5880 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:06:44.0161 5880 sffdisk - ok
22:06:44.0192 5880 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:06:44.0270 5880 sffp_mmc - ok
22:06:44.0301 5880 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:06:44.0333 5880 sffp_sd - ok
22:06:44.0442 5880 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:06:44.0551 5880 sfloppy - ok
22:06:44.0754 5880 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:06:44.0972 5880 SharedAccess - ok
22:06:45.0144 5880 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:06:45.0503 5880 ShellHWDetection - ok
22:06:45.0565 5880 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
22:06:45.0643 5880 sisagp - ok
22:06:45.0674 5880 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
22:06:45.0799 5880 SiSRaid2 - ok
22:06:45.0861 5880 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:06:45.0955 5880 SiSRaid4 - ok
22:06:47.0141 5880 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
22:06:48.0342 5880 slsvc - ok
22:06:48.0560 5880 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
22:06:48.0779 5880 SLUINotify - ok
22:06:48.0903 5880 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:06:49.0028 5880 Smb - ok
22:06:49.0153 5880 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:06:49.0231 5880 SNMPTRAP - ok
22:06:49.0387 5880 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
22:06:49.0418 5880 spldr - ok
22:06:49.0512 5880 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
22:06:50.0058 5880 Spooler - ok
22:06:50.0261 5880 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:06:50.0448 5880 srv - ok
22:06:50.0510 5880 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:06:50.0588 5880 srv2 - ok
22:06:50.0713 5880 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:06:50.0775 5880 srvnet - ok
22:06:50.0822 5880 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:06:50.0853 5880 SSDPSRV - ok
22:06:50.0931 5880 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:06:50.0978 5880 SstpSvc - ok
22:06:51.0119 5880 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
22:06:51.0259 5880 stisvc - ok
22:06:51.0415 5880 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:06:51.0431 5880 swenum - ok
22:06:51.0540 5880 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
22:06:51.0587 5880 swprv - ok
22:06:51.0602 5880 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
22:06:51.0696 5880 Symc8xx - ok
22:06:51.0711 5880 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
22:06:51.0727 5880 Sym_hi - ok
22:06:51.0789 5880 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
22:06:51.0805 5880 Sym_u3 - ok
22:06:51.0930 5880 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
22:06:51.0992 5880 SysMain - ok
22:06:52.0086 5880 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:06:52.0164 5880 TabletInputService - ok
22:06:52.0195 5880 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:06:52.0273 5880 TapiSrv - ok
22:06:52.0289 5880 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
22:06:52.0351 5880 TBS - ok
22:06:52.0616 5880 [ 548E198BAE21EFC21F8B5F0C1728AD27 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:06:53.0459 5880 Tcpip - ok
22:06:53.0661 5880 [ 548E198BAE21EFC21F8B5F0C1728AD27 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
22:06:53.0864 5880 Tcpip6 - ok
22:06:54.0020 5880 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:06:54.0551 5880 tcpipreg - ok
22:06:54.0566 5880 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:06:54.0629 5880 TDPIPE - ok
22:06:54.0675 5880 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:06:54.0722 5880 TDTCP - ok
22:06:54.0816 5880 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:06:54.0847 5880 tdx - ok
22:06:54.0878 5880 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:06:54.0894 5880 TermDD - ok
22:06:55.0034 5880 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
22:06:55.0143 5880 TermService - ok
22:06:55.0221 5880 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
22:06:55.0237 5880 Themes - ok
22:06:55.0284 5880 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
22:06:55.0315 5880 THREADORDER - ok
22:06:55.0377 5880 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
22:06:55.0440 5880 TrkWks - ok
22:06:55.0596 5880 [ 88E0F99FDB8DDCB6E6A15380E164FEA2 ] trufos C:\Windows\system32\DRIVERS\trufos.sys
22:06:55.0908 5880 trufos - ok
22:06:56.0017 5880 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:06:56.0142 5880 TrustedInstaller - ok
22:06:56.0235 5880 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:06:56.0313 5880 tssecsrv - ok
22:06:56.0329 5880 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
22:06:56.0360 5880 tunmp - ok
22:06:56.0423 5880 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:06:56.0469 5880 tunnel - ok
22:06:56.0532 5880 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:06:56.0563 5880 uagp35 - ok
22:06:56.0657 5880 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:06:56.0828 5880 udfs - ok
22:06:56.0922 5880 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:06:57.0000 5880 UI0Detect - ok
22:06:57.0015 5880 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:06:57.0062 5880 uliagpkx - ok
22:06:57.0109 5880 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
22:06:57.0187 5880 uliahci - ok
22:06:57.0265 5880 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
22:06:57.0296 5880 UlSata - ok
22:06:57.0312 5880 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
22:06:57.0327 5880 ulsata2 - ok
22:06:57.0343 5880 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:06:57.0374 5880 umbus - ok
22:06:57.0421 5880 [ 1C5835420F2A8F6D683FD6BDFFA2FFDD ] UPDATESRV C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
22:06:57.0905 5880 UPDATESRV - ok
22:06:57.0998 5880 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
22:06:58.0029 5880 upnphost - ok
22:06:58.0092 5880 [ 8BD3AE150D97BA4E633C6C5C51B41AE1 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
22:06:58.0217 5880 usbccgp - ok
22:06:58.0248 5880 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:06:58.0435 5880 usbcir - ok
22:06:58.0497 5880 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:06:58.0575 5880 usbehci - ok
22:06:58.0607 5880 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:06:58.0700 5880 usbhub - ok
22:06:58.0731 5880 [ 7BDB7B0E7D45AC0402D78B90789EF47C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:06:58.0763 5880 usbohci - ok
22:06:58.0794 5880 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
22:06:58.0887 5880 usbprint - ok
22:06:58.0903 5880 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:06:58.0919 5880 USBSTOR - ok
22:06:58.0965 5880 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:06:58.0997 5880 usbuhci - ok
22:06:59.0059 5880 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
22:06:59.0121 5880 UxSms - ok
22:06:59.0153 5880 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
22:06:59.0246 5880 vds - ok
22:06:59.0293 5880 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:06:59.0371 5880 vga - ok
22:06:59.0402 5880 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
22:06:59.0433 5880 VgaSave - ok
22:06:59.0465 5880 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
22:06:59.0480 5880 viaagp - ok
22:06:59.0527 5880 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
22:06:59.0621 5880 ViaC7 - ok
22:06:59.0667 5880 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
22:06:59.0730 5880 viaide - ok
22:06:59.0745 5880 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:06:59.0761 5880 volmgr - ok
22:06:59.0808 5880 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:06:59.0886 5880 volmgrx - ok
22:06:59.0948 5880 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:06:59.0979 5880 volsnap - ok
22:06:59.0979 5880 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:07:00.0011 5880 vsmraid - ok
22:07:00.0307 5880 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
22:07:00.0416 5880 VSS - ok
22:07:00.0494 5880 [ 04A9E3C408A53D237377B5028D19725A ] VSSERV C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
22:07:01.0165 5880 VSSERV - ok
22:07:01.0196 5880 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
22:07:01.0227 5880 W32Time - ok
22:07:01.0290 5880 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:07:01.0383 5880 WacomPen - ok
22:07:01.0430 5880 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
22:07:01.0446 5880 Wanarp - ok
22:07:01.0493 5880 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:07:01.0508 5880 Wanarpv6 - ok
22:07:01.0633 5880 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:07:01.0664 5880 wcncsvc - ok
22:07:01.0727 5880 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:07:01.0820 5880 WcsPlugInService - ok
22:07:01.0867 5880 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
22:07:01.0883 5880 Wd - ok
22:07:02.0039 5880 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:07:02.0117 5880 Wdf01000 - ok
22:07:02.0148 5880 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:07:02.0210 5880 WdiServiceHost - ok
22:07:02.0210 5880 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:07:02.0241 5880 WdiSystemHost - ok
22:07:02.0319 5880 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
22:07:02.0444 5880 WebClient - ok
22:07:02.0444 5880 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:07:02.0538 5880 Wecsvc - ok
22:07:02.0569 5880 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:07:02.0585 5880 wercplsupport - ok
22:07:02.0647 5880 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
22:07:02.0709 5880 WerSvc - ok
22:07:02.0803 5880 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
22:07:02.0819 5880 WinDefend - ok
22:07:02.0834 5880 WinHttpAutoProxySvc - ok
22:07:03.0536 5880 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:07:03.0614 5880 Winmgmt - ok
22:07:03.0723 5880 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
22:07:03.0926 5880 WinRM - ok
22:07:04.0004 5880 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
22:07:04.0254 5880 WinUSB - ok
22:07:04.0285 5880 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:07:04.0379 5880 Wlansvc - ok
22:07:04.0472 5880 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:07:04.0488 5880 WmiAcpi - ok
22:07:04.0535 5880 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:07:04.0566 5880 wmiApSrv - ok
22:07:04.0691 5880 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
22:07:05.0081 5880 WMPNetworkSvc - ok
22:07:05.0127 5880 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:07:05.0377 5880 WPCSvc - ok
22:07:05.0408 5880 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:07:05.0533 5880 WPDBusEnum - ok
22:07:05.0595 5880 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
22:07:05.0689 5880 WpdUsb - ok
22:07:05.0892 5880 [ 120F3B596F79FC990B7D808857A8B3BC ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:07:06.0219 5880 WPFFontCache_v0400 - ok
22:07:06.0266 5880 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:07:06.0297 5880 ws2ifsl - ok
22:07:06.0344 5880 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
22:07:06.0391 5880 wscsvc - ok
22:07:06.0391 5880 WSearch - ok
22:07:06.0469 5880 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
22:07:06.0609 5880 wuauserv - ok
22:07:06.0672 5880 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:07:06.0687 5880 WudfPf - ok
22:07:06.0812 5880 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:07:06.0859 5880 WUDFRd - ok
22:07:06.0890 5880 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:07:06.0984 5880 wudfsvc - ok
22:07:06.0984 5880 ================ Scan global ===============================
22:07:07.0031 5880 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
22:07:07.0109 5880 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
22:07:07.0155 5880 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
22:07:07.0202 5880 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
22:07:07.0202 5880 [Global] - ok
22:07:07.0202 5880 ================ Scan MBR ==================================
22:07:07.0249 5880 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
22:07:10.0525 5880 \Device\Harddisk0\DR0 - ok
22:07:10.0525 5880 ================ Scan VBR ==================================
22:07:10.0572 5880 [ 3DFD8F055873D9238E5377622DA9FB66 ] \Device\Harddisk0\DR0\Partition1
22:07:10.0603 5880 \Device\Harddisk0\DR0\Partition1 - ok
22:07:10.0697 5880 [ C16041381DB22404C8FC65DDE425FB44 ] \Device\Harddisk0\DR0\Partition2
22:07:10.0775 5880 \Device\Harddisk0\DR0\Partition2 - ok
22:07:10.0775 5880 ============================================================
22:07:10.0775 5880 Scan finished
22:07:10.0775 5880 ============================================================
22:07:10.0790 5872 Detected object count: 0
22:07:10.0790 5872 Actual detected object count: 0
  • 0

#81
godawgs
Posted 15 July 2013 - 04:34 PM

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Yep...that scan is absolutely clean! :)

If there aren't any other issues we can clean up the tools we used.

Delete the randomly named Gmer.exe file on the desktop.
Delete the TDSSKiller.exe file from the desktop.
Delete the C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt file in the C:\ drive.
Delete the TDSSKiller_Quarantine folder in the C:\ drive if it exists.
  • 0

#82
Harry44
Posted 15 July 2013 - 07:29 PM

Harry44

    Member

  • Topic Starter
  • Member
  • PipPip
  • 45 posts
cheers, do I delete combofix and otl too

Edited by Harry44, 15 July 2013 - 07:30 PM.

  • 0

#83
godawgs
Posted 16 July 2013 - 07:00 AM

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Thought we had already done that. If you didn't, then go back to post #45 and start withe the Uninstall ESET step and complete the steps to clean up the tools and reset the System Restore points etc;.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP