Aller au contenu

Jerem76

Membres
  • Compteur de contenus

    9
  • Inscription

  • Dernière visite

Jerem76's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. merci ; pour le moment il n'y plus d'évènements sur Bitdefender, je ferai une analyse complete prochainement, j'ai toujours un soucis de réseau au demarrage, le partage de connection internet se desactive dans le pare feu de bitdefender. A chaque demarrage ,je dois l'activer.
  2. Lien CJoint.com BGCv541HJgX voilà; 1 fichier mis en DELETE
  3. voila; fichier TDSS file system DELETE selectionné 21:15:09.0322 3108 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32 21:15:09.0538 3108 ============================================================ 21:15:09.0538 3108 Current date / time: 2012/07/28 21:15:09.0538 21:15:09.0539 3108 SystemInfo: 21:15:09.0539 3108 21:15:09.0539 3108 OS Version: 6.1.7600 ServicePack: 0.0 21:15:09.0539 3108 Product type: Workstation 21:15:09.0539 3108 ComputerName: PEPITO-PC 21:15:09.0539 3108 UserName: Pepito 21:15:09.0539 3108 Windows directory: C:\Windows 21:15:09.0539 3108 System windows directory: C:\Windows 21:15:09.0539 3108 Processor architecture: Intel x86 21:15:09.0539 3108 Number of processors: 4 21:15:09.0539 3108 Page size: 0x1000 21:15:09.0539 3108 Boot type: Normal boot 21:15:09.0539 3108 ============================================================ 21:15:11.0278 3108 Drive \Device\Harddisk0\DR0 - Size: 0x2658AE0000 (153.39 Gb), SectorSize: 0x200, Cylinders: 0x4E37, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 21:15:11.0300 3108 ============================================================ 21:15:11.0300 3108 \Device\Harddisk0\DR0: 21:15:11.0300 3108 MBR partitions: 21:15:11.0300 3108 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x628EFA2 21:15:11.0317 3108 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x628F020, BlocksNum 0x482D168 21:15:11.0330 3108 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0xAABC1C7, BlocksNum 0x6A962AE 21:15:11.0342 3108 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x115524B4, BlocksNum 0x1D724C3 21:15:11.0342 3108 ============================================================ 21:15:11.0390 3108 F: <-> \Device\Harddisk0\DR0\Partition3 21:15:11.0406 3108 E: <-> \Device\Harddisk0\DR0\Partition2 21:15:11.0422 3108 C: <-> \Device\Harddisk0\DR0\Partition0 21:15:11.0448 3108 D: <-> \Device\Harddisk0\DR0\Partition1 21:15:11.0449 3108 ============================================================ 21:15:11.0449 3108 Initialize success 21:15:11.0449 3108 ============================================================ 21:16:28.0958 3716 ============================================================ 21:16:28.0958 3716 Scan started 21:16:28.0958 3716 Mode: Manual; SigCheck; TDLFS; 21:16:28.0958 3716 ============================================================ 21:16:29.0293 3716 .csc - ok 21:16:29.0422 3716 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys 21:16:29.0597 3716 1394ohci - ok 21:16:29.0617 3716 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys 21:16:29.0631 3716 ACPI - ok 21:16:29.0645 3716 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys 21:16:29.0719 3716 AcpiPmi - ok 21:16:29.0809 3716 Adobe LM Service (8b46d5a1d3ef08232c04d0eafb871fb2) C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe 21:16:29.0838 3716 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning 21:16:29.0838 3716 Adobe LM Service - detected UnsignedFile.Multi.Generic (1) 21:16:29.0887 3716 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 21:16:29.0915 3716 adp94xx - ok 21:16:29.0940 3716 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 21:16:29.0954 3716 adpahci - ok 21:16:29.0976 3716 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 21:16:29.0987 3716 adpu320 - ok 21:16:30.0095 3716 AdvancedSystemCareService5 (96d6cdd0b32846e8cfbe592f4f32e608) C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe 21:16:30.0149 3716 AdvancedSystemCareService5 - ok 21:16:30.0173 3716 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll 21:16:30.0310 3716 AeLookupSvc - ok 21:16:30.0359 3716 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys 21:16:30.0423 3716 AFD - ok 21:16:30.0443 3716 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys 21:16:30.0461 3716 agp440 - ok 21:16:30.0504 3716 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 21:16:30.0523 3716 aic78xx - ok 21:16:30.0550 3716 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe 21:16:30.0595 3716 ALG - ok 21:16:30.0612 3716 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys 21:16:30.0629 3716 aliide - ok 21:16:30.0648 3716 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys 21:16:30.0657 3716 amdagp - ok 21:16:30.0671 3716 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys 21:16:30.0680 3716 amdide - ok 21:16:30.0728 3716 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 21:16:30.0752 3716 AmdK8 - ok 21:16:30.0767 3716 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 21:16:30.0790 3716 AmdPPM - ok 21:16:30.0812 3716 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys 21:16:30.0822 3716 amdsata - ok 21:16:30.0845 3716 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 21:16:30.0857 3716 amdsbs - ok 21:16:30.0875 3716 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys 21:16:30.0884 3716 amdxata - ok 21:16:30.0922 3716 APL531 (cc0587f353df94c119d7b57f99c8b6e5) C:\Windows\system32\Drivers\HDvidv.sys 21:16:31.0506 3716 APL531 - ok 21:16:31.0528 3716 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys 21:16:31.0626 3716 AppID - ok 21:16:31.0643 3716 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll 21:16:31.0713 3716 AppIDSvc - ok 21:16:31.0731 3716 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll 21:16:31.0772 3716 Appinfo - ok 21:16:31.0805 3716 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll 21:16:31.0837 3716 AppMgmt - ok 21:16:31.0863 3716 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 21:16:31.0882 3716 arc - ok 21:16:31.0904 3716 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 21:16:31.0923 3716 arcsas - ok 21:16:31.0940 3716 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 21:16:31.0992 3716 AsyncMac - ok 21:16:32.0012 3716 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys 21:16:32.0021 3716 atapi - ok 21:16:32.0064 3716 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll 21:16:32.0117 3716 AudioEndpointBuilder - ok 21:16:32.0125 3716 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll 21:16:32.0158 3716 Audiosrv - ok 21:16:32.0209 3716 avc3 (f0c0e213d6d811384a49981adff0b6c0) C:\Windows\system32\DRIVERS\avc3.sys 21:16:32.0233 3716 avc3 - ok 21:16:32.0260 3716 avchv (a64529781e5b9cc454666a33a24e3e1d) C:\Windows\system32\DRIVERS\avchv.sys 21:16:32.0271 3716 avchv - ok 21:16:32.0309 3716 avckf (2bce314a25e71298add6794bfbd66266) C:\Windows\system32\DRIVERS\avckf.sys 21:16:32.0324 3716 avckf - ok 21:16:32.0344 3716 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll 21:16:32.0405 3716 AxInstSV - ok 21:16:32.0449 3716 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 21:16:32.0488 3716 b06bdrv - ok 21:16:32.0517 3716 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 21:16:32.0542 3716 b57nd60x - ok 21:16:32.0573 3716 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll 21:16:32.0618 3716 BDESVC - ok 21:16:32.0722 3716 BdfNdisf (fa33f2db2f6f8afbedc917632a10d515) c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys 21:16:32.0739 3716 BdfNdisf - ok 21:16:32.0785 3716 bdfsfltr (5ef7ac38b4a7dc80860d7ffafac78c36) C:\Windows\system32\DRIVERS\bdfsfltr.sys 21:16:32.0809 3716 bdfsfltr - ok 21:16:32.0832 3716 bdfwfpf (2f66c9df34134419928bac00e21e2679) C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys 21:16:32.0849 3716 bdfwfpf - ok 21:16:32.0879 3716 bdsandbox (e260c0079b5c1107b87e98f356292004) C:\Windows\system32\drivers\bdsandbox.sys 21:16:32.0887 3716 bdsandbox - ok 21:16:32.0947 3716 bdselfpr (042941c8e50f38e34c3c345f45e16cf3) C:\Program Files\Bitdefender\Bitdefender 2012\bdselfpr.sys 21:16:32.0965 3716 bdselfpr - ok 21:16:32.0982 3716 BDVEDISK (375cd0b9f433465ec6f50d4df44e9448) C:\Windows\system32\DRIVERS\bdvedisk.sys 21:16:32.0994 3716 BDVEDISK - ok 21:16:33.0016 3716 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 21:16:33.0071 3716 Beep - ok 21:16:33.0129 3716 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll 21:16:33.0197 3716 BFE - ok 21:16:33.0263 3716 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 21:16:33.0322 3716 blbdrive - ok 21:16:33.0349 3716 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys 21:16:33.0403 3716 bowser - ok 21:16:33.0420 3716 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 21:16:33.0442 3716 BrFiltLo - ok 21:16:33.0468 3716 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 21:16:33.0505 3716 BrFiltUp - ok 21:16:33.0537 3716 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys 21:16:33.0573 3716 BridgeMP - ok 21:16:33.0604 3716 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll 21:16:33.0647 3716 Browser - ok 21:16:33.0674 3716 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 21:16:33.0722 3716 Brserid - ok 21:16:33.0737 3716 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 21:16:33.0763 3716 BrSerWdm - ok 21:16:33.0781 3716 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 21:16:33.0796 3716 BrUsbMdm - ok 21:16:33.0803 3716 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 21:16:33.0830 3716 BrUsbSer - ok 21:16:33.0845 3716 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 21:16:33.0860 3716 BTHMODEM - ok 21:16:33.0879 3716 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll 21:16:33.0916 3716 bthserv - ok 21:16:34.0010 3716 catchme - ok 21:16:34.0045 3716 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 21:16:34.0112 3716 cdfs - ok 21:16:34.0130 3716 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys 21:16:34.0158 3716 cdrom - ok 21:16:34.0183 3716 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll 21:16:34.0220 3716 CertPropSvc - ok 21:16:34.0235 3716 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 21:16:34.0250 3716 circlass - ok 21:16:34.0286 3716 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 21:16:34.0302 3716 CLFS - ok 21:16:34.0353 3716 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 21:16:34.0374 3716 clr_optimization_v2.0.50727_32 - ok 21:16:34.0453 3716 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 21:16:34.0475 3716 clr_optimization_v4.0.30319_32 - ok 21:16:34.0497 3716 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 21:16:34.0510 3716 CmBatt - ok 21:16:34.0524 3716 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys 21:16:34.0533 3716 cmdide - ok 21:16:34.0569 3716 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 21:16:34.0604 3716 CNG - ok 21:16:34.0622 3716 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 21:16:34.0631 3716 Compbatt - ok 21:16:34.0646 3716 CompFilter (9704b9c442e3ef2989746d08f80a3743) C:\Windows\system32\DRIVERS\lvbusflt.sys 21:16:34.0656 3716 CompFilter - ok 21:16:34.0678 3716 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys 21:16:34.0693 3716 CompositeBus - ok 21:16:34.0698 3716 COMSysApp - ok 21:16:34.0720 3716 cpuz135 (6bada94085b6709694f8327c211d12e1) C:\Windows\system32\drivers\cpuz135_x32.sys 21:16:34.0728 3716 cpuz135 - ok 21:16:34.0741 3716 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 21:16:34.0751 3716 crcdisk - ok 21:16:34.0780 3716 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll 21:16:34.0829 3716 CryptSvc - ok 21:16:34.0834 3716 CSC - ok 21:16:34.0886 3716 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll 21:16:34.0949 3716 CscService - ok 21:16:35.0001 3716 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll 21:16:35.0061 3716 DcomLaunch - ok 21:16:35.0092 3716 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll 21:16:35.0133 3716 defragsvc - ok 21:16:35.0159 3716 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys 21:16:35.0198 3716 DfsC - ok 21:16:35.0224 3716 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll 21:16:35.0264 3716 Dhcp - ok 21:16:35.0281 3716 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 21:16:35.0323 3716 discache - ok 21:16:35.0329 3716 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 21:16:35.0346 3716 Disk - ok 21:16:35.0374 3716 Dnscache (d0722e963d3c6145446874241401b209) C:\Windows\System32\dnsrslvr.dll 21:16:35.0445 3716 Dnscache - ok 21:16:35.0472 3716 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll 21:16:35.0516 3716 dot3svc - ok 21:16:35.0535 3716 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll 21:16:35.0570 3716 DPS - ok 21:16:35.0638 3716 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 21:16:35.0736 3716 driverhardwarev2 - ok 21:16:35.0754 3716 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 21:16:35.0796 3716 drmkaud - ok 21:16:35.0859 3716 DXGKrnl (39806cfeddcc55e686a49bccd2972f23) C:\Windows\System32\drivers\dxgkrnl.sys 21:16:35.0917 3716 DXGKrnl - ok 21:16:35.0943 3716 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll 21:16:35.0983 3716 EapHost - ok 21:16:36.0189 3716 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 21:16:36.0249 3716 ebdrv - ok 21:16:36.0342 3716 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe 21:16:36.0366 3716 EFS - ok 21:16:36.0429 3716 ehRecvr (3a74a6e33685662b125a3269b1f2114f) C:\Windows\ehome\ehRecvr.exe 21:16:36.0496 3716 ehRecvr - ok 21:16:36.0513 3716 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe 21:16:36.0550 3716 ehSched - ok 21:16:36.0613 3716 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 21:16:36.0638 3716 elxstor - ok 21:16:36.0657 3716 epmntdrv (539ca34fbc74ec366a0d751028c32a08) C:\Windows\system32\epmntdrv.sys 21:16:36.0741 3716 epmntdrv ( UnsignedFile.Multi.Generic ) - warning 21:16:36.0742 3716 epmntdrv - detected UnsignedFile.Multi.Generic (1) 21:16:36.0807 3716 EPSON_EB_RPCV4_01 (ec6a73cd8413f68655e5e0b99c415a21) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE 21:16:36.0858 3716 EPSON_EB_RPCV4_01 - ok 21:16:36.0879 3716 EPSON_PM_RPCV4_01 (8fe6ab59cab8f2c038fea9522a5eeba7) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE 21:16:36.0911 3716 EPSON_PM_RPCV4_01 - ok 21:16:36.0937 3716 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys 21:16:36.0968 3716 ErrDev - ok 21:16:37.0001 3716 EuGdiDrv (1f2f4ab15ce03ecc257feb2f6dc5a013) C:\Windows\system32\EuGdiDrv.sys 21:16:37.0089 3716 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning 21:16:37.0089 3716 EuGdiDrv - detected UnsignedFile.Multi.Generic (1) 21:16:37.0134 3716 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll 21:16:37.0204 3716 EventSystem - ok 21:16:37.0231 3716 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 21:16:37.0260 3716 exfat - ok 21:16:37.0281 3716 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 21:16:37.0324 3716 fastfat - ok 21:16:37.0370 3716 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe 21:16:37.0437 3716 Fax - ok 21:16:37.0446 3716 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 21:16:37.0480 3716 fdc - ok 21:16:37.0496 3716 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll 21:16:37.0559 3716 fdPHost - ok 21:16:37.0578 3716 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll 21:16:37.0623 3716 FDResPub - ok 21:16:37.0647 3716 FETNDIS (f5cb6cb6d12f495516be27cffccde4bf) C:\Windows\system32\DRIVERS\fetnd6.sys 21:16:37.0670 3716 FETNDIS - ok 21:16:37.0687 3716 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 21:16:37.0697 3716 FileInfo - ok 21:16:37.0712 3716 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 21:16:37.0740 3716 Filetrace - ok 21:16:37.0759 3716 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 21:16:37.0790 3716 flpydisk - ok 21:16:37.0815 3716 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 21:16:37.0835 3716 FltMgr - ok 21:16:37.0884 3716 FontCache (b6512a85815fdc3d560c3705f5bdb93d) C:\Windows\system32\FntCache.dll 21:16:37.0939 3716 FontCache - ok 21:16:38.0002 3716 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 21:16:38.0021 3716 FontCache3.0.0.0 - ok 21:16:38.0043 3716 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 21:16:38.0062 3716 FsDepends - ok 21:16:38.0084 3716 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\Windows\system32\FsUsbExDisk.SYS 21:16:38.0136 3716 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning 21:16:38.0136 3716 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1) 21:16:38.0157 3716 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 21:16:38.0170 3716 Fs_Rec - ok 21:16:38.0193 3716 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys 21:16:38.0220 3716 fvevol - ok 21:16:38.0237 3716 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 21:16:38.0247 3716 gagp30kx - ok 21:16:38.0291 3716 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll 21:16:38.0329 3716 gpsvc - ok 21:16:38.0351 3716 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 21:16:38.0398 3716 hcw85cir - ok 21:16:38.0433 3716 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys 21:16:38.0474 3716 HdAudAddService - ok 21:16:38.0493 3716 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys 21:16:38.0533 3716 HDAudBus - ok 21:16:38.0550 3716 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 21:16:38.0574 3716 HidBatt - ok 21:16:38.0593 3716 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 21:16:38.0624 3716 HidBth - ok 21:16:38.0647 3716 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 21:16:38.0688 3716 HidIr - ok 21:16:38.0713 3716 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll 21:16:38.0758 3716 hidserv - ok 21:16:38.0774 3716 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys 21:16:38.0796 3716 HidUsb - ok 21:16:38.0816 3716 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll 21:16:38.0860 3716 hkmsvc - ok 21:16:38.0883 3716 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll 21:16:38.0909 3716 HomeGroupListener - ok 21:16:38.0933 3716 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll 21:16:38.0957 3716 HomeGroupProvider - ok 21:16:38.0987 3716 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys 21:16:38.0997 3716 HpSAMD - ok 21:16:39.0028 3716 htcnprot (339adefad60353f960e3ca67ce468c24) C:\Windows\system32\DRIVERS\htcnprot.sys 21:16:39.0069 3716 htcnprot - ok 21:16:39.0108 3716 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys 21:16:39.0159 3716 HTTP - ok 21:16:39.0178 3716 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys 21:16:39.0187 3716 hwpolicy - ok 21:16:39.0209 3716 hxctlflt (f02ea43ae8f936124debf5b87f12c795) C:\Windows\system32\DRIVERS\hxctlflt.sys 21:16:39.0231 3716 hxctlflt - ok 21:16:39.0262 3716 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys 21:16:39.0290 3716 i8042prt - ok 21:16:39.0315 3716 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys 21:16:39.0329 3716 iaStorV - ok 21:16:39.0435 3716 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 21:16:39.0867 3716 idsvc - ok 21:16:39.0953 3716 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 21:16:39.0971 3716 iirsp - ok 21:16:40.0023 3716 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll 21:16:40.0089 3716 IKEEXT - ok 21:16:40.0105 3716 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys 21:16:40.0114 3716 intelide - ok 21:16:40.0128 3716 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 21:16:40.0141 3716 intelppm - ok 21:16:40.0160 3716 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll 21:16:40.0191 3716 IPBusEnum - ok 21:16:40.0209 3716 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 21:16:40.0238 3716 IpFilterDriver - ok 21:16:40.0288 3716 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll 21:16:40.0338 3716 iphlpsvc - ok 21:16:40.0359 3716 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys 21:16:40.0383 3716 IPMIDRV - ok 21:16:40.0405 3716 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 21:16:40.0447 3716 IPNAT - ok 21:16:40.0467 3716 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 21:16:40.0493 3716 IRENUM - ok 21:16:40.0514 3716 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys 21:16:40.0524 3716 isapnp - ok 21:16:40.0550 3716 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys 21:16:40.0564 3716 iScsiPrt - ok 21:16:40.0587 3716 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys 21:16:40.0597 3716 kbdclass - ok 21:16:40.0611 3716 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys 21:16:40.0661 3716 kbdhid - ok 21:16:40.0687 3716 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:40.0712 3716 KeyIso - ok 21:16:40.0726 3716 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys 21:16:40.0737 3716 KSecDD - ok 21:16:40.0752 3716 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 21:16:40.0763 3716 KSecPkg - ok 21:16:40.0797 3716 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll 21:16:40.0870 3716 KtmRm - ok 21:16:40.0904 3716 LanmanServer (bca92cb047a4326925ecef759dbaa233) C:\Windows\System32\srvsvc.dll 21:16:40.0955 3716 LanmanServer - ok 21:16:40.0980 3716 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll 21:16:41.0026 3716 LanmanWorkstation - ok 21:16:41.0051 3716 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 21:16:41.0112 3716 lltdio - ok 21:16:41.0145 3716 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll 21:16:41.0200 3716 lltdsvc - ok 21:16:41.0215 3716 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll 21:16:41.0260 3716 lmhosts - ok 21:16:41.0280 3716 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 21:16:41.0300 3716 LSI_FC - ok 21:16:41.0320 3716 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 21:16:41.0330 3716 LSI_SAS - ok 21:16:41.0346 3716 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 21:16:41.0356 3716 LSI_SAS2 - ok 21:16:41.0373 3716 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 21:16:41.0384 3716 LSI_SCSI - ok 21:16:41.0400 3716 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 21:16:41.0456 3716 luafv - ok 21:16:41.0499 3716 LVRS (ed643e777ba3f7151ef3f0fb6be4f7f0) C:\Windows\system32\DRIVERS\lvrs.sys 21:16:41.0523 3716 LVRS - ok 21:16:41.0725 3716 LVUVC (5bc80451109a8dd7f2ddd35bce2929a3) C:\Windows\system32\DRIVERS\lvuvc.sys 21:16:41.0800 3716 LVUVC - ok 21:16:41.0877 3716 maconfservice (09ed79fb8364390ba894806da2f66a55) C:\Program Files\ma-config.com\maconfservice.exe 21:16:42.0297 3716 maconfservice - ok 21:16:42.0408 3716 MarvinBus (a3e700d78eec390f1208098cdca5c6b6) C:\Windows\system32\DRIVERS\MarvinBus.sys 21:16:42.0461 3716 MarvinBus - ok 21:16:42.0478 3716 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys 21:16:42.0497 3716 MBAMProtector - ok 21:16:42.0562 3716 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe 21:16:42.0599 3716 MBAMService - ok 21:16:42.0625 3716 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll 21:16:42.0784 3716 Mcx2Svc - ok 21:16:42.0815 3716 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 21:16:42.0834 3716 megasas - ok 21:16:42.0862 3716 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 21:16:42.0875 3716 MegaSR - ok 21:16:42.0898 3716 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll 21:16:42.0943 3716 MMCSS - ok 21:16:42.0959 3716 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 21:16:43.0021 3716 Modem - ok 21:16:43.0040 3716 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 21:16:43.0075 3716 monitor - ok 21:16:43.0090 3716 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 21:16:43.0109 3716 mouclass - ok 21:16:43.0136 3716 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 21:16:43.0164 3716 mouhid - ok 21:16:43.0188 3716 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys 21:16:43.0209 3716 mountmgr - ok 21:16:43.0272 3716 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe 21:16:43.0292 3716 MozillaMaintenance - ok 21:16:43.0311 3716 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys 21:16:43.0327 3716 mpio - ok 21:16:43.0345 3716 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 21:16:43.0394 3716 mpsdrv - ok 21:16:43.0468 3716 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll 21:16:43.0537 3716 MpsSvc - ok 21:16:43.0559 3716 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys 21:16:43.0591 3716 MRxDAV - ok 21:16:43.0624 3716 mrxsmb (f4a054be78af7f410129c4b64b07dc9b) C:\Windows\system32\DRIVERS\mrxsmb.sys 21:16:43.0690 3716 mrxsmb - ok 21:16:43.0717 3716 mrxsmb10 (deffa295bd1895c6ed8e3078412ac60b) C:\Windows\system32\DRIVERS\mrxsmb10.sys 21:16:43.0781 3716 mrxsmb10 - ok 21:16:43.0791 3716 mrxsmb20 (24d76abe5dcad22f19d105f76fdf0ce1) C:\Windows\system32\DRIVERS\mrxsmb20.sys 21:16:43.0833 3716 mrxsmb20 - ok 21:16:43.0853 3716 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys 21:16:43.0872 3716 msahci - ok 21:16:43.0893 3716 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys 21:16:43.0910 3716 msdsm - ok 21:16:43.0938 3716 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe 21:16:43.0980 3716 MSDTC - ok 21:16:44.0032 3716 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 21:16:44.0081 3716 Msfs - ok 21:16:44.0092 3716 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 21:16:44.0160 3716 mshidkmdf - ok 21:16:44.0174 3716 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys 21:16:44.0184 3716 msisadrv - ok 21:16:44.0212 3716 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll 21:16:44.0295 3716 MSiSCSI - ok 21:16:44.0300 3716 msiserver - ok 21:16:44.0319 3716 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 21:16:44.0376 3716 MSKSSRV - ok 21:16:44.0381 3716 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 21:16:44.0414 3716 MSPCLOCK - ok 21:16:44.0434 3716 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 21:16:44.0469 3716 MSPQM - ok 21:16:44.0489 3716 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 21:16:44.0512 3716 MsRPC - ok 21:16:44.0526 3716 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys 21:16:44.0536 3716 mssmbios - ok 21:16:44.0548 3716 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 21:16:44.0576 3716 MSTEE - ok 21:16:44.0588 3716 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 21:16:44.0610 3716 MTConfig - ok 21:16:44.0638 3716 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\Windows\system32\DRIVERS\ASACPI.sys 21:16:44.0664 3716 MTsensor - ok 21:16:44.0677 3716 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 21:16:44.0696 3716 Mup - ok 21:16:44.0733 3716 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll 21:16:44.0769 3716 napagent - ok 21:16:44.0796 3716 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 21:16:44.0831 3716 NativeWifiP - ok 21:16:44.0879 3716 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys 21:16:44.0899 3716 NDIS - ok 21:16:44.0911 3716 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 21:16:44.0941 3716 NdisCap - ok 21:16:44.0959 3716 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 21:16:45.0005 3716 NdisTapi - ok 21:16:45.0021 3716 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys 21:16:45.0055 3716 Ndisuio - ok 21:16:45.0077 3716 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys 21:16:45.0106 3716 NdisWan - ok 21:16:45.0132 3716 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys 21:16:45.0162 3716 NDProxy - ok 21:16:45.0170 3716 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 21:16:45.0217 3716 NetBIOS - ok 21:16:45.0238 3716 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys 21:16:45.0290 3716 NetBT - ok 21:16:45.0315 3716 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:45.0329 3716 Netlogon - ok 21:16:45.0362 3716 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll 21:16:45.0405 3716 Netman - ok 21:16:45.0434 3716 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll 21:16:45.0480 3716 netprofm - ok 21:16:45.0549 3716 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 21:16:45.0598 3716 NetTcpPortSharing - ok 21:16:45.0631 3716 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 21:16:45.0649 3716 nfrd960 - ok 21:16:45.0682 3716 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll 21:16:45.0750 3716 NlaSvc - ok 21:16:45.0817 3716 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files\CDBurnerXP\NMSAccessU.exe 21:16:45.0834 3716 NMSAccess - ok 21:16:45.0855 3716 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 21:16:45.0913 3716 Npfs - ok 21:16:45.0943 3716 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll 21:16:45.0979 3716 nsi - ok 21:16:46.0006 3716 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 21:16:46.0063 3716 nsiproxy - ok 21:16:46.0142 3716 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys 21:16:46.0180 3716 Ntfs - ok 21:16:46.0277 3716 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 21:16:46.0336 3716 Null - ok 21:16:46.0887 3716 nvlddmkm (847b1755f7757f825305a1ffe6dac3e9) C:\Windows\system32\DRIVERS\nvlddmkm.sys 21:16:47.0058 3716 nvlddmkm - ok 21:16:47.0170 3716 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys 21:16:47.0193 3716 nvraid - ok 21:16:47.0213 3716 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys 21:16:47.0226 3716 nvstor - ok 21:16:47.0271 3716 nvsvc (7c732aff202dcd06c3d262966d71604c) C:\Windows\system32\nvvsvc.exe 21:16:47.0294 3716 nvsvc - ok 21:16:47.0466 3716 nvUpdatusService (262d2fbf211a88dcb84249df0f6ef6e7) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe 21:16:47.0525 3716 nvUpdatusService - ok 21:16:47.0629 3716 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys 21:16:47.0650 3716 nv_agp - ok 21:16:47.0665 3716 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys 21:16:47.0691 3716 ohci1394 - ok 21:16:47.0772 3716 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 21:16:47.0793 3716 ose - ok 21:16:47.0828 3716 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll 21:16:47.0856 3716 p2pimsvc - ok 21:16:47.0886 3716 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll 21:16:47.0915 3716 p2psvc - ok 21:16:47.0939 3716 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 21:16:47.0968 3716 Parport - ok 21:16:47.0990 3716 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys 21:16:48.0000 3716 partmgr - ok 21:16:48.0013 3716 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 21:16:48.0050 3716 Parvdm - ok 21:16:48.0079 3716 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll 21:16:48.0108 3716 PcaSvc - ok 21:16:48.0134 3716 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\Windows\system32\DRIVERS\pccsmcfd.sys 21:16:48.0156 3716 pccsmcfd - ok 21:16:48.0186 3716 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys 21:16:48.0197 3716 pci - ok 21:16:48.0210 3716 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys 21:16:48.0220 3716 pciide - ok 21:16:48.0243 3716 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 21:16:48.0256 3716 pcmcia - ok 21:16:48.0276 3716 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 21:16:48.0285 3716 pcw - ok 21:16:48.0323 3716 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 21:16:48.0368 3716 PEAUTH - ok 21:16:48.0440 3716 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll 21:16:48.0482 3716 PeerDistSvc - ok 21:16:48.0600 3716 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll 21:16:48.0693 3716 pla - ok 21:16:48.0808 3716 PlugPlay (2cc2008f1296968fba162ed9f9afe328) C:\Windows\system32\umpnpmgr.dll 21:16:48.0881 3716 PlugPlay - ok 21:16:48.0903 3716 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll 21:16:48.0933 3716 PNRPAutoReg - ok 21:16:48.0967 3716 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll 21:16:48.0997 3716 PNRPsvc - ok 21:16:49.0054 3716 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll 21:16:49.0122 3716 PolicyAgent - ok 21:16:49.0147 3716 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll 21:16:49.0190 3716 Power - ok 21:16:49.0231 3716 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 21:16:49.0273 3716 PptpMiniport - ok 21:16:49.0287 3716 PQNTDrv (87d211ba1e9759e26b6296e625a31ce8) C:\Windows\system32\drivers\PQNTDrv.sys 21:16:49.0309 3716 PQNTDrv ( UnsignedFile.Multi.Generic ) - warning 21:16:49.0309 3716 PQNTDrv - detected UnsignedFile.Multi.Generic (1) 21:16:49.0325 3716 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 21:16:49.0371 3716 Processor - ok 21:16:49.0406 3716 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll 21:16:49.0454 3716 ProfSvc - ok 21:16:49.0477 3716 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:49.0490 3716 ProtectedStorage - ok 21:16:49.0515 3716 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 21:16:49.0573 3716 Psched - ok 21:16:49.0612 3716 qcusbser (a1d43435002782302b8da5567aeed644) C:\Windows\system32\DRIVERS\qcusbser.sys 21:16:49.0636 3716 qcusbser ( UnsignedFile.Multi.Generic ) - warning 21:16:49.0636 3716 qcusbser - detected UnsignedFile.Multi.Generic (1) 21:16:49.0721 3716 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 21:16:49.0761 3716 ql2300 - ok 21:16:49.0860 3716 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 21:16:49.0882 3716 ql40xx - ok 21:16:49.0915 3716 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll 21:16:49.0953 3716 QWAVE - ok 21:16:49.0974 3716 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 21:16:50.0004 3716 QWAVEdrv - ok 21:16:50.0019 3716 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 21:16:50.0061 3716 RasAcd - ok 21:16:50.0087 3716 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 21:16:50.0145 3716 RasAgileVpn - ok 21:16:50.0173 3716 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll 21:16:50.0213 3716 RasAuto - ok 21:16:50.0231 3716 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 21:16:50.0272 3716 Rasl2tp - ok 21:16:50.0303 3716 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll 21:16:50.0352 3716 RasMan - ok 21:16:50.0367 3716 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 21:16:50.0409 3716 RasPppoe - ok 21:16:50.0418 3716 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 21:16:50.0461 3716 RasSstp - ok 21:16:50.0485 3716 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys 21:16:50.0533 3716 rdbss - ok 21:16:50.0546 3716 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 21:16:50.0579 3716 rdpbus - ok 21:16:50.0591 3716 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys 21:16:50.0649 3716 RDPCDD - ok 21:16:50.0678 3716 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys 21:16:50.0727 3716 RDPDR - ok 21:16:50.0736 3716 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 21:16:50.0777 3716 RDPENCDD - ok 21:16:50.0801 3716 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 21:16:50.0860 3716 RDPREFMP - ok 21:16:50.0884 3716 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys 21:16:50.0949 3716 RDPWD - ok 21:16:50.0976 3716 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys 21:16:50.0998 3716 rdyboost - ok 21:16:51.0044 3716 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll 21:16:51.0106 3716 RemoteAccess - ok 21:16:51.0143 3716 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll 21:16:51.0215 3716 RemoteRegistry - ok 21:16:51.0243 3716 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\Windows\system32\Drivers\RimUsb.sys 21:16:51.0274 3716 RimUsb - ok 21:16:51.0303 3716 RMCAST (b4090006a82eeb608c358ab5d37de85a) C:\Windows\system32\DRIVERS\RMCAST.sys 21:16:51.0368 3716 RMCAST - ok 21:16:51.0395 3716 rpcapd - ok 21:16:51.0421 3716 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll 21:16:51.0467 3716 RpcEptMapper - ok 21:16:51.0510 3716 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe 21:16:51.0549 3716 RpcLocator - ok 21:16:51.0583 3716 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll 21:16:51.0626 3716 RpcSs - ok 21:16:51.0654 3716 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 21:16:51.0698 3716 rspndr - ok 21:16:51.0723 3716 RTL8167 (26a9d6227d12b9d9da5a81bb9b55d810) C:\Windows\system32\DRIVERS\Rt86win7.sys 21:16:51.0765 3716 RTL8167 - ok 21:16:51.0783 3716 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys 21:16:51.0809 3716 s3cap - ok 21:16:51.0844 3716 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:51.0870 3716 SamSs - ok 21:16:51.0889 3716 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys 21:16:51.0901 3716 sbp2port - ok 21:16:51.0934 3716 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll 21:16:52.0001 3716 SCardSvr - ok 21:16:52.0015 3716 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys 21:16:52.0056 3716 scfilter - ok 21:16:52.0113 3716 Schedule (3e8b0c453e25613a1f59762a5c42aa75) C:\Windows\system32\schedsvc.dll 21:16:52.0186 3716 Schedule - ok 21:16:52.0210 3716 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll 21:16:52.0239 3716 SCPolicySvc - ok 21:16:52.0260 3716 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll 21:16:52.0286 3716 SDRSVC - ok 21:16:52.0311 3716 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 21:16:52.0365 3716 secdrv - ok 21:16:52.0385 3716 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll 21:16:52.0430 3716 seclogon - ok 21:16:52.0460 3716 seehcri (e5b56569a9f79b70314fede6c953641e) C:\Windows\system32\DRIVERS\seehcri.sys 21:16:52.0499 3716 seehcri - ok 21:16:52.0515 3716 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll 21:16:52.0574 3716 SENS - ok 21:16:52.0600 3716 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll 21:16:52.0634 3716 SensrSvc - ok 21:16:52.0645 3716 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 21:16:52.0659 3716 Serenum - ok 21:16:52.0682 3716 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 21:16:52.0709 3716 Serial - ok 21:16:52.0726 3716 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 21:16:52.0757 3716 sermouse - ok 21:16:52.0848 3716 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe 21:16:53.0196 3716 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning 21:16:53.0196 3716 ServiceLayer - detected UnsignedFile.Multi.Generic (1) 21:16:53.0236 3716 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll 21:16:53.0295 3716 SessionEnv - ok 21:16:53.0316 3716 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys 21:16:53.0344 3716 sffdisk - ok 21:16:53.0362 3716 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys 21:16:53.0377 3716 sffp_mmc - ok 21:16:53.0385 3716 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys 21:16:53.0414 3716 sffp_sd - ok 21:16:53.0432 3716 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 21:16:53.0446 3716 sfloppy - ok 21:16:53.0516 3716 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll 21:16:53.0567 3716 SharedAccess - ok 21:16:53.0601 3716 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll 21:16:53.0634 3716 ShellHWDetection - ok 21:16:53.0685 3716 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys 21:16:53.0705 3716 sisagp - ok 21:16:53.0724 3716 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 21:16:53.0735 3716 SiSRaid2 - ok 21:16:53.0749 3716 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 21:16:53.0761 3716 SiSRaid4 - ok 21:16:53.0817 3716 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files\Skype\Updater\Updater.exe 21:16:53.0836 3716 SkypeUpdate - ok 21:16:53.0859 3716 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 21:16:53.0900 3716 Smb - ok 21:16:53.0938 3716 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe 21:16:53.0952 3716 SNMPTRAP - ok 21:16:53.0972 3716 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 21:16:53.0982 3716 spldr - ok 21:16:54.0010 3716 Spooler (49b6dd6ab3715b7a67965f17194e98a9) C:\Windows\System32\spoolsv.exe 21:16:54.0046 3716 Spooler - ok 21:16:54.0195 3716 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe 21:16:54.0277 3716 sppsvc - ok 21:16:54.0372 3716 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll 21:16:54.0412 3716 sppuinotify - ok 21:16:54.0487 3716 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys 21:16:54.0488 3716 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 21:16:54.0490 3716 sptd ( LockedFile.Multi.Generic ) - warning 21:16:54.0490 3716 sptd - detected LockedFile.Multi.Generic (1) 21:16:54.0522 3716 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys 21:16:54.0562 3716 srv - ok 21:16:54.0588 3716 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys 21:16:54.0631 3716 srv2 - ok 21:16:54.0639 3716 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys 21:16:54.0669 3716 srvnet - ok 21:16:54.0700 3716 sscdbus (069351a1d7d291013177a90ae6edccbc) C:\Windows\system32\DRIVERS\sscdbus.sys 21:16:54.0713 3716 sscdbus - ok 21:16:54.0728 3716 sscdmdfl (1c925be223a5c0f9f469252292a48df6) C:\Windows\system32\DRIVERS\sscdmdfl.sys 21:16:54.0739 3716 sscdmdfl - ok 21:16:54.0770 3716 sscdmdm (ae3e77ae0fbdb07eb1ac3fed74a0695e) C:\Windows\system32\DRIVERS\sscdmdm.sys 21:16:54.0781 3716 sscdmdm - ok 21:16:54.0809 3716 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll 21:16:54.0847 3716 SSDPSRV - ok 21:16:54.0861 3716 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll 21:16:54.0892 3716 SstpSvc - ok 21:16:54.0909 3716 StarOpen (f92254b0bcfcd10caac7bccc7cb7f467) C:\Windows\system32\drivers\StarOpen.sys 21:16:54.0915 3716 StarOpen ( UnsignedFile.Multi.Generic ) - warning 21:16:54.0915 3716 StarOpen - detected UnsignedFile.Multi.Generic (1) 21:16:54.0973 3716 Steam Client Service - ok 21:16:55.0050 3716 Stereo Service (8d01686ae82b466f4cd074f31f2942ca) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 21:16:55.0077 3716 Stereo Service - ok 21:16:55.0104 3716 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 21:16:55.0114 3716 stexstor - ok 21:16:55.0162 3716 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll 21:16:55.0189 3716 StiSvc - ok 21:16:55.0214 3716 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys 21:16:55.0224 3716 storflt - ok 21:16:55.0241 3716 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys 21:16:55.0251 3716 storvsc - ok 21:16:55.0268 3716 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys 21:16:55.0277 3716 swenum - ok 21:16:55.0317 3716 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll 21:16:55.0367 3716 swprv - ok 21:16:55.0430 3716 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll 21:16:55.0479 3716 SysMain - ok 21:16:55.0498 3716 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll 21:16:55.0525 3716 TabletInputService - ok 21:16:55.0564 3716 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll 21:16:55.0630 3716 TapiSrv - ok 21:16:55.0646 3716 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll 21:16:55.0690 3716 TBS - ok 21:16:55.0792 3716 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys 21:16:55.0845 3716 Tcpip - ok 21:16:55.0985 3716 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys 21:16:56.0027 3716 TCPIP6 - ok 21:16:56.0072 3716 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys 21:16:56.0102 3716 tcpipreg - ok 21:16:56.0127 3716 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys 21:16:56.0157 3716 TDPIPE - ok 21:16:56.0170 3716 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys 21:16:56.0200 3716 TDTCP - ok 21:16:56.0216 3716 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys 21:16:56.0259 3716 tdx - ok 21:16:56.0468 3716 TeamViewer7 (33966a658ff37e0c65d46e59f37e2380) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe 21:16:56.0545 3716 TeamViewer7 - ok 21:16:56.0645 3716 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys 21:16:56.0664 3716 TermDD - ok 21:16:56.0730 3716 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll 21:16:56.0792 3716 TermService - ok 21:16:56.0810 3716 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll 21:16:56.0841 3716 Themes - ok 21:16:56.0863 3716 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll 21:16:56.0892 3716 THREADORDER - ok 21:16:56.0922 3716 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll 21:16:56.0982 3716 TrkWks - ok 21:16:57.0039 3716 TrueSight (b3c9c35dc93563b8d19ad414edf2fc82) c:\windows\system32\drivers\TrueSight.sys 21:16:57.0048 3716 TrueSight ( UnsignedFile.Multi.Generic ) - warning 21:16:57.0048 3716 TrueSight - detected UnsignedFile.Multi.Generic (1) 21:16:57.0084 3716 trufos (9016639c71328e4667d06119937aa20a) C:\Windows\system32\DRIVERS\trufos.sys 21:16:57.0108 3716 trufos - ok 21:16:57.0166 3716 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe 21:16:57.0189 3716 TrustedInstaller - ok 21:16:57.0217 3716 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys 21:16:57.0260 3716 tssecsrv - ok 21:16:57.0401 3716 TuneUp.UtilitiesSvc (67f888f5379cffca30878c8a57adf156) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe 21:16:57.0462 3716 TuneUp.UtilitiesSvc - ok 21:16:57.0478 3716 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys 21:16:57.0489 3716 TuneUpUtilitiesDrv - ok 21:16:57.0591 3716 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys 21:16:57.0646 3716 tunnel - ok 21:16:57.0665 3716 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 21:16:57.0685 3716 uagp35 - ok 21:16:57.0714 3716 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys 21:16:57.0767 3716 udfs - ok 21:16:57.0809 3716 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe 21:16:57.0849 3716 UI0Detect - ok 21:16:57.0882 3716 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys 21:16:57.0903 3716 uliagpkx - ok 21:16:57.0916 3716 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys 21:16:57.0949 3716 umbus - ok 21:16:57.0966 3716 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 21:16:57.0992 3716 UmPass - ok 21:16:58.0027 3716 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll 21:16:58.0047 3716 UmRdpService - ok 21:16:58.0116 3716 UMVPFSrv (67a95b9d129ed5399e7965cd09cf30e7) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe 21:16:58.0147 3716 UMVPFSrv - ok 21:16:58.0231 3716 Update Server (3cc00597a30b23757aa23cb677918bef) C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe 21:16:58.0254 3716 Update Server - ok 21:16:58.0304 3716 UPDATESRV (03579bec2e930b92efd6d4e7f899cff5) C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe 21:16:58.0335 3716 UPDATESRV - ok 21:16:58.0377 3716 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll 21:16:58.0446 3716 upnphost - ok 21:16:58.0483 3716 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys 21:16:58.0526 3716 usbaudio - ok 21:16:58.0549 3716 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys 21:16:58.0598 3716 usbccgp - ok 21:16:58.0615 3716 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys 21:16:58.0644 3716 usbcir - ok 21:16:58.0662 3716 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys 21:16:58.0688 3716 usbehci - ok 21:16:58.0713 3716 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys 21:16:58.0729 3716 usbhub - ok 21:16:58.0751 3716 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys 21:16:58.0764 3716 usbohci - ok 21:16:58.0777 3716 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 21:16:58.0807 3716 usbprint - ok 21:16:58.0832 3716 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys 21:16:58.0861 3716 usbscan - ok 21:16:58.0884 3716 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS 21:16:58.0911 3716 USBSTOR - ok 21:16:58.0931 3716 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys 21:16:58.0956 3716 usbuhci - ok 21:16:58.0980 3716 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll 21:16:59.0026 3716 UxSms - ok 21:16:59.0048 3716 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:59.0062 3716 VaultSvc - ok 21:16:59.0079 3716 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys 21:16:59.0089 3716 vdrvroot - ok 21:16:59.0131 3716 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe 21:16:59.0164 3716 vds - ok 21:16:59.0185 3716 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 21:16:59.0200 3716 vga - ok 21:16:59.0217 3716 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 21:16:59.0246 3716 VgaSave - ok 21:16:59.0265 3716 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys 21:16:59.0278 3716 vhdmp - ok 21:16:59.0303 3716 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys 21:16:59.0314 3716 viaagp - ok 21:16:59.0328 3716 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 21:16:59.0349 3716 ViaC7 - ok 21:16:59.0361 3716 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys 21:16:59.0371 3716 viaide - ok 21:16:59.0400 3716 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys 21:16:59.0413 3716 vmbus - ok 21:16:59.0426 3716 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys 21:16:59.0439 3716 VMBusHID - ok 21:16:59.0454 3716 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys 21:16:59.0465 3716 volmgr - ok 21:16:59.0482 3716 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 21:16:59.0498 3716 volmgrx - ok 21:16:59.0521 3716 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys 21:16:59.0534 3716 volsnap - ok 21:16:59.0553 3716 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 21:16:59.0564 3716 vsmraid - ok 21:16:59.0623 3716 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe 21:16:59.0666 3716 VSS - ok 21:16:59.0718 3716 VSSERV - ok 21:16:59.0756 3716 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 21:16:59.0784 3716 vwifibus - ok 21:16:59.0808 3716 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll 21:16:59.0866 3716 W32Time - ok 21:16:59.0891 3716 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 21:16:59.0914 3716 WacomPen - ok 21:16:59.0934 3716 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 21:16:59.0963 3716 WANARP - ok 21:16:59.0968 3716 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 21:17:00.0011 3716 Wanarpv6 - ok 21:17:00.0098 3716 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe 21:17:00.0152 3716 wbengine - ok 21:17:00.0169 3716 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll 21:17:00.0214 3716 WbioSrvc - ok 21:17:00.0251 3716 wcncsvc (d0f88aa11ee1a62bcc6d6a8a7783ca11) C:\Windows\System32\wcncsvc.dll 21:17:00.0306 3716 wcncsvc - ok 21:17:00.0335 3716 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll 21:17:00.0383 3716 WcsPlugInService - ok 21:17:00.0425 3716 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 21:17:00.0444 3716 Wd - ok 21:17:00.0478 3716 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 21:17:00.0497 3716 Wdf01000 - ok 21:17:00.0515 3716 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll 21:17:00.0533 3716 WdiServiceHost - ok 21:17:00.0538 3716 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll 21:17:00.0555 3716 WdiSystemHost - ok 21:17:00.0572 3716 WebClient (d87c7d2c517f82a5ab7a73e203063d9e) C:\Windows\System32\webclnt.dll 21:17:00.0594 3716 WebClient - ok 21:17:00.0623 3716 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll 21:17:00.0673 3716 Wecsvc - ok 21:17:00.0691 3716 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll 21:17:00.0759 3716 wercplsupport - ok 21:17:00.0779 3716 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll 21:17:00.0825 3716 WerSvc - ok 21:17:00.0850 3716 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 21:17:00.0910 3716 WfpLwf - ok 21:17:00.0931 3716 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 21:17:00.0950 3716 WIMMount - ok 21:17:01.0072 3716 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 21:17:01.0124 3716 WinDefend - ok 21:17:01.0133 3716 WinHttpAutoProxySvc - ok 21:17:01.0198 3716 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll 21:17:01.0246 3716 Winmgmt - ok 21:17:01.0325 3716 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll 21:17:01.0416 3716 WinRM - ok 21:17:01.0481 3716 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys 21:17:01.0506 3716 WinUsb - ok 21:17:01.0562 3716 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll 21:17:01.0611 3716 Wlansvc - ok 21:17:01.0771 3716 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 21:17:01.0821 3716 wlidsvc - ok 21:17:01.0928 3716 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys 21:17:01.0961 3716 WmiAcpi - ok 21:17:02.0014 3716 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe 21:17:02.0054 3716 wmiApSrv - ok 21:17:02.0177 3716 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe 21:17:02.0239 3716 WMPNetworkSvc - ok 21:17:02.0330 3716 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll 21:17:02.0381 3716 WPCSvc - ok 21:17:02.0398 3716 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll 21:17:02.0426 3716 WPDBusEnum - ok 21:17:02.0472 3716 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 21:17:02.0531 3716 ws2ifsl - ok 21:17:02.0573 3716 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll 21:17:02.0616 3716 wscsvc - ok 21:17:02.0621 3716 WSearch - ok 21:17:02.0741 3716 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll 21:17:02.0826 3716 wuauserv - ok 21:17:02.0937 3716 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys 21:17:02.0987 3716 WudfPf - ok 21:17:03.0009 3716 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys 21:17:03.0038 3716 WUDFRd - ok 21:17:03.0063 3716 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll 21:17:03.0104 3716 wudfsvc - ok 21:17:03.0126 3716 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll 21:17:03.0147 3716 WwanSvc - ok 21:17:03.0180 3716 xusb21 (c26c68bcbac1f33f890c226769759209) C:\Windows\system32\DRIVERS\xusb21.sys 21:17:03.0197 3716 xusb21 - ok 21:17:03.0215 3716 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 21:17:03.0375 3716 \Device\Harddisk0\DR0 ( TDSS File System ) - warning 21:17:03.0375 3716 \Device\Harddisk0\DR0 - detected TDSS File System (1) 21:17:03.0381 3716 Boot (0x1200) (9ba3373cbdbc8fae0ae918fd608360ff) \Device\Harddisk0\DR0\Partition0 21:17:03.0383 3716 \Device\Harddisk0\DR0\Partition0 - ok 21:17:03.0404 3716 Boot (0x1200) (98cf410770f2f25f10035a2e32bd2522) \Device\Harddisk0\DR0\Partition1 21:17:03.0406 3716 \Device\Harddisk0\DR0\Partition1 - ok 21:17:03.0425 3716 Boot (0x1200) (9727bd6e0a6ee5f6c8cfc019a064bcea) \Device\Harddisk0\DR0\Partition2 21:17:03.0427 3716 \Device\Harddisk0\DR0\Partition2 - ok 21:17:03.0445 3716 Boot (0x1200) (4399aa3cfaa0a697e646d7bcc15e0501) \Device\Harddisk0\DR0\Partition3 21:17:03.0448 3716 \Device\Harddisk0\DR0\Partition3 - ok 21:17:03.0448 3716 ============================================================ 21:17:03.0448 3716 Scan finished 21:17:03.0448 3716 ============================================================ 21:17:03.0496 4344 Detected object count: 11 21:17:03.0497 4344 Actual detected object count: 11 21:19:48.0863 4344 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0863 4344 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0866 4344 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0866 4344 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0869 4344 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0869 4344 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0872 4344 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0872 4344 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0874 4344 PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0874 4344 PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0875 4344 qcusbser ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0875 4344 qcusbser ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0877 4344 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0877 4344 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0878 4344 sptd ( LockedFile.Multi.Generic ) - skipped by user 21:19:48.0878 4344 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 21:19:48.0880 4344 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0880 4344 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0881 4344 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0881 4344 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0883 4344 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user 21:19:48.0883 4344 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 21:32:35.0188 2568 ============================================================ 21:32:35.0189 2568 Scan started 21:32:35.0189 2568 Mode: Manual; SigCheck; TDLFS; 21:32:35.0189 2568 ============================================================ 21:32:35.0387 2568 .csc - ok 21:32:35.0445 2568 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys 21:32:35.0495 2568 1394ohci - ok 21:32:35.0526 2568 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys 21:32:35.0553 2568 ACPI - ok 21:32:35.0568 2568 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys 21:32:35.0583 2568 AcpiPmi - ok 21:32:35.0648 2568 Adobe LM Service (8b46d5a1d3ef08232c04d0eafb871fb2) C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe 21:32:35.0661 2568 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning 21:32:35.0662 2568 Adobe LM Service - detected UnsignedFile.Multi.Generic (1) 21:32:35.0702 2568 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 21:32:35.0732 2568 adp94xx - ok 21:32:35.0763 2568 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 21:32:35.0778 2568 adpahci - ok 21:32:35.0807 2568 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 21:32:35.0819 2568 adpu320 - ok 21:32:35.0908 2568 AdvancedSystemCareService5 (96d6cdd0b32846e8cfbe592f4f32e608) C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe 21:32:35.0932 2568 AdvancedSystemCareService5 - ok 21:32:35.0954 2568 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll 21:32:36.0003 2568 AeLookupSvc - ok 21:32:36.0062 2568 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys 21:32:36.0119 2568 AFD - ok 21:32:36.0133 2568 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys 21:32:36.0142 2568 agp440 - ok 21:32:36.0160 2568 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 21:32:36.0170 2568 aic78xx - ok 21:32:36.0190 2568 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe 21:32:36.0204 2568 ALG - ok 21:32:36.0219 2568 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys 21:32:36.0228 2568 aliide - ok 21:32:36.0247 2568 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys 21:32:36.0256 2568 amdagp - ok 21:32:36.0270 2568 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys 21:32:36.0279 2568 amdide - ok 21:32:36.0309 2568 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 21:32:36.0322 2568 AmdK8 - ok 21:32:36.0341 2568 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 21:32:36.0354 2568 AmdPPM - ok 21:32:36.0369 2568 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys 21:32:36.0379 2568 amdsata - ok 21:32:36.0402 2568 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 21:32:36.0413 2568 amdsbs - ok 21:32:36.0432 2568 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys 21:32:36.0441 2568 amdxata - ok 21:32:36.0480 2568 APL531 (cc0587f353df94c119d7b57f99c8b6e5) C:\Windows\system32\Drivers\HDvidv.sys 21:32:36.0511 2568 APL531 - ok 21:32:36.0529 2568 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys 21:32:36.0544 2568 AppID - ok 21:32:36.0560 2568 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll 21:32:36.0589 2568 AppIDSvc - ok 21:32:36.0599 2568 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll 21:32:36.0627 2568 Appinfo - ok 21:32:36.0656 2568 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll 21:32:36.0670 2568 AppMgmt - ok 21:32:36.0697 2568 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 21:32:36.0707 2568 arc - ok 21:32:36.0721 2568 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 21:32:36.0731 2568 arcsas - ok 21:32:36.0750 2568 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 21:32:36.0778 2568 AsyncMac - ok 21:32:36.0797 2568 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys 21:32:36.0815 2568 atapi - ok 21:32:36.0861 2568 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll 21:32:36.0900 2568 AudioEndpointBuilder - ok 21:32:36.0908 2568 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll 21:32:36.0939 2568 Audiosrv - ok 21:32:36.0983 2568 avc3 (f0c0e213d6d811384a49981adff0b6c0) C:\Windows\system32\DRIVERS\avc3.sys 21:32:37.0000 2568 avc3 - ok 21:32:37.0028 2568 avchv (a64529781e5b9cc454666a33a24e3e1d) C:\Windows\system32\DRIVERS\avchv.sys 21:32:37.0039 2568 avchv - ok 21:32:37.0078 2568 avckf (2bce314a25e71298add6794bfbd66266) C:\Windows\system32\DRIVERS\avckf.sys 21:32:37.0092 2568 avckf - ok 21:32:37.0104 2568 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll 21:32:37.0121 2568 AxInstSV - ok 21:32:37.0165 2568 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 21:32:37.0189 2568 b06bdrv - ok 21:32:37.0219 2568 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 21:32:37.0240 2568 b57nd60x - ok 21:32:37.0276 2568 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll 21:32:37.0297 2568 BDESVC - ok 21:32:37.0399 2568 BdfNdisf (fa33f2db2f6f8afbedc917632a10d515) c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys 21:32:37.0415 2568 BdfNdisf - ok 21:32:37.0455 2568 bdfsfltr (5ef7ac38b4a7dc80860d7ffafac78c36) C:\Windows\system32\DRIVERS\bdfsfltr.sys 21:32:37.0476 2568 bdfsfltr - ok 21:32:37.0500 2568 bdfwfpf (2f66c9df34134419928bac00e21e2679) C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys 21:32:37.0509 2568 bdfwfpf - ok 21:32:37.0539 2568 bdsandbox (e260c0079b5c1107b87e98f356292004) C:\Windows\system32\drivers\bdsandbox.sys 21:32:37.0548 2568 bdsandbox - ok 21:32:37.0615 2568 bdselfpr (042941c8e50f38e34c3c345f45e16cf3) C:\Program Files\Bitdefender\Bitdefender 2012\bdselfpr.sys 21:32:37.0633 2568 bdselfpr - ok 21:32:37.0657 2568 BDVEDISK (375cd0b9f433465ec6f50d4df44e9448) C:\Windows\system32\DRIVERS\bdvedisk.sys 21:32:37.0674 2568 BDVEDISK - ok 21:32:37.0701 2568 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 21:32:37.0729 2568 Beep - ok 21:32:37.0770 2568 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll 21:32:37.0812 2568 BFE - ok 21:32:37.0828 2568 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 21:32:37.0841 2568 blbdrive - ok 21:32:37.0851 2568 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys 21:32:37.0881 2568 bowser - ok 21:32:37.0897 2568 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 21:32:37.0911 2568 BrFiltLo - ok 21:32:37.0929 2568 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 21:32:37.0944 2568 BrFiltUp - ok 21:32:37.0965 2568 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys 21:32:37.0993 2568 BridgeMP - ok 21:32:38.0015 2568 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll 21:32:38.0050 2568 Browser - ok 21:32:38.0086 2568 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 21:32:38.0109 2568 Brserid - ok 21:32:38.0123 2568 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 21:32:38.0138 2568 BrSerWdm - ok 21:32:38.0151 2568 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 21:32:38.0165 2568 BrUsbMdm - ok 21:32:38.0172 2568 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 21:32:38.0186 2568 BrUsbSer - ok 21:32:38.0198 2568 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 21:32:38.0213 2568 BTHMODEM - ok 21:32:38.0232 2568 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll 21:32:38.0261 2568 bthserv - ok 21:32:38.0346 2568 catchme - ok 21:32:38.0374 2568 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 21:32:38.0416 2568 cdfs - ok 21:32:38.0433 2568 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys 21:32:38.0446 2568 cdrom - ok 21:32:38.0461 2568 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll 21:32:38.0490 2568 CertPropSvc - ok 21:32:38.0504 2568 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 21:32:38.0521 2568 circlass - ok 21:32:38.0551 2568 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 21:32:38.0579 2568 CLFS - ok 21:32:38.0631 2568 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 21:32:38.0650 2568 clr_optimization_v2.0.50727_32 - ok 21:32:38.0698 2568 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 21:32:38.0719 2568 clr_optimization_v4.0.30319_32 - ok 21:32:38.0742 2568 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 21:32:38.0754 2568 CmBatt - ok 21:32:38.0769 2568 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys 21:32:38.0778 2568 cmdide - ok 21:32:38.0812 2568 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 21:32:38.0830 2568 CNG - ok 21:32:38.0841 2568 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 21:32:38.0851 2568 Compbatt - ok 21:32:38.0866 2568 CompFilter (9704b9c442e3ef2989746d08f80a3743) C:\Windows\system32\DRIVERS\lvbusflt.sys 21:32:38.0879 2568 CompFilter - ok 21:32:38.0889 2568 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys 21:32:38.0905 2568 CompositeBus - ok 21:32:38.0908 2568 COMSysApp - ok 21:32:38.0923 2568 cpuz135 (6bada94085b6709694f8327c211d12e1) C:\Windows\system32\drivers\cpuz135_x32.sys 21:32:38.0932 2568 cpuz135 - ok 21:32:38.0945 2568 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 21:32:38.0955 2568 crcdisk - ok 21:32:38.0983 2568 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll 21:32:39.0013 2568 CryptSvc - ok 21:32:39.0018 2568 CSC - ok 21:32:39.0071 2568 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll 21:32:39.0121 2568 CscService - ok 21:32:39.0170 2568 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll 21:32:39.0209 2568 DcomLaunch - ok 21:32:39.0237 2568 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll 21:32:39.0270 2568 defragsvc - ok 21:32:39.0288 2568 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys 21:32:39.0316 2568 DfsC - ok 21:32:39.0336 2568 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll 21:32:39.0355 2568 Dhcp - ok 21:32:39.0368 2568 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 21:32:39.0397 2568 discache - ok 21:32:39.0404 2568 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 21:32:39.0413 2568 Disk - ok 21:32:39.0444 2568 Dnscache (d0722e963d3c6145446874241401b209) C:\Windows\System32\dnsrslvr.dll 21:32:39.0475 2568 Dnscache - ok 21:32:39.0492 2568 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll 21:32:39.0542 2568 dot3svc - ok 21:32:39.0564 2568 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll 21:32:39.0596 2568 DPS - ok 21:32:39.0667 2568 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 21:32:39.0681 2568 driverhardwarev2 - ok 21:32:39.0700 2568 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 21:32:39.0714 2568 drmkaud - ok 21:32:39.0768 2568 DXGKrnl (39806cfeddcc55e686a49bccd2972f23) C:\Windows\System32\drivers\dxgkrnl.sys 21:32:39.0827 2568 DXGKrnl - ok 21:32:39.0847 2568 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll 21:32:39.0878 2568 EapHost - ok 21:32:40.0020 2568 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 21:32:40.0079 2568 ebdrv - ok 21:32:40.0172 2568 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe 21:32:40.0197 2568 EFS - ok 21:32:40.0258 2568 ehRecvr (3a74a6e33685662b125a3269b1f2114f) C:\Windows\ehome\ehRecvr.exe 21:32:40.0295 2568 ehRecvr - ok 21:32:40.0308 2568 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe 21:32:40.0323 2568 ehSched - ok 21:32:40.0384 2568 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 21:32:40.0413 2568 elxstor - ok 21:32:40.0436 2568 epmntdrv (539ca34fbc74ec366a0d751028c32a08) C:\Windows\system32\epmntdrv.sys 21:32:40.0445 2568 epmntdrv ( UnsignedFile.Multi.Generic ) - warning 21:32:40.0445 2568 epmntdrv - detected UnsignedFile.Multi.Generic (1) 21:32:40.0512 2568 EPSON_EB_RPCV4_01 (ec6a73cd8413f68655e5e0b99c415a21) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE 21:32:40.0538 2568 EPSON_EB_RPCV4_01 - ok 21:32:40.0550 2568 EPSON_PM_RPCV4_01 (8fe6ab59cab8f2c038fea9522a5eeba7) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE 21:32:40.0567 2568 EPSON_PM_RPCV4_01 - ok 21:32:40.0583 2568 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys 21:32:40.0596 2568 ErrDev - ok 21:32:40.0614 2568 EuGdiDrv (1f2f4ab15ce03ecc257feb2f6dc5a013) C:\Windows\system32\EuGdiDrv.sys 21:32:40.0622 2568 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning 21:32:40.0622 2568 EuGdiDrv - detected UnsignedFile.Multi.Generic (1) 21:32:40.0664 2568 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll 21:32:40.0714 2568 EventSystem - ok 21:32:40.0736 2568 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 21:32:40.0767 2568 exfat - ok 21:32:40.0787 2568 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 21:32:40.0818 2568 fastfat - ok 21:32:40.0856 2568 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe 21:32:40.0879 2568 Fax - ok 21:32:40.0893 2568 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 21:32:40.0906 2568 fdc - ok 21:32:40.0918 2568 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll 21:32:40.0948 2568 fdPHost - ok 21:32:40.0959 2568 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll 21:32:40.0988 2568 FDResPub - ok 21:32:41.0011 2568 FETNDIS (f5cb6cb6d12f495516be27cffccde4bf) C:\Windows\system32\DRIVERS\fetnd6.sys 21:32:41.0024 2568 FETNDIS - ok 21:32:41.0031 2568 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 21:32:41.0041 2568 FileInfo - ok 21:32:41.0059 2568 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 21:32:41.0088 2568 Filetrace - ok 21:32:41.0106 2568 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 21:32:41.0119 2568 flpydisk - ok 21:32:41.0137 2568 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 21:32:41.0149 2568 FltMgr - ok 21:32:41.0200 2568 FontCache (b6512a85815fdc3d560c3705f5bdb93d) C:\Windows\system32\FntCache.dll 21:32:41.0244 2568 FontCache - ok 21:32:41.0308 2568 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 21:32:41.0319 2568 FontCache3.0.0.0 - ok 21:32:41.0338 2568 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 21:32:41.0357 2568 FsDepends - ok 21:32:41.0381 2568 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\Windows\system32\FsUsbExDisk.SYS 21:32:41.0388 2568 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning 21:32:41.0388 2568 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1) 21:32:41.0404 2568 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 21:32:41.0414 2568 Fs_Rec - ok 21:32:41.0448 2568 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys 21:32:41.0462 2568 fvevol - ok 21:32:41.0476 2568 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 21:32:41.0487 2568 gagp30kx - ok 21:32:41.0543 2568 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll 21:32:41.0586 2568 gpsvc - ok 21:32:41.0599 2568 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 21:32:41.0611 2568 hcw85cir - ok 21:32:41.0646 2568 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys 21:32:41.0663 2568 HdAudAddService - ok 21:32:41.0682 2568 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys 21:32:41.0697 2568 HDAudBus - ok 21:32:41.0723 2568 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 21:32:41.0736 2568 HidBatt - ok 21:32:41.0758 2568 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 21:32:41.0774 2568 HidBth - ok 21:32:41.0795 2568 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 21:32:41.0811 2568 HidIr - ok 21:32:41.0828 2568 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll 21:32:41.0857 2568 hidserv - ok 21:32:41.0872 2568 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys 21:32:41.0885 2568 HidUsb - ok 21:32:41.0906 2568 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll 21:32:41.0936 2568 hkmsvc - ok 21:32:41.0957 2568 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll 21:32:41.0982 2568 HomeGroupListener - ok 21:32:42.0006 2568 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll 21:32:42.0024 2568 HomeGroupProvider - ok 21:32:42.0054 2568 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys 21:32:42.0065 2568 HpSAMD - ok 21:32:42.0093 2568 htcnprot (339adefad60353f960e3ca67ce468c24) C:\Windows\system32\DRIVERS\htcnprot.sys 21:32:42.0118 2568 htcnprot - ok 21:32:42.0153 2568 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys 21:32:42.0186 2568 HTTP - ok 21:32:42.0201 2568 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys 21:32:42.0211 2568 hwpolicy - ok 21:32:42.0233 2568 hxctlflt (f02ea43ae8f936124debf5b87f12c795) C:\Windows\system32\DRIVERS\hxctlflt.sys 21:32:42.0244 2568 hxctlflt - ok 21:32:42.0269 2568 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys 21:32:42.0283 2568 i8042prt - ok 21:32:42.0314 2568 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys 21:32:42.0331 2568 iaStorV - ok 21:32:42.0443 2568 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 21:32:42.0468 2568 idsvc - ok 21:32:42.0544 2568 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 21:32:42.0564 2568 iirsp - ok 21:32:42.0612 2568 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll 21:32:42.0656 2568 IKEEXT - ok 21:32:42.0672 2568 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys 21:32:42.0681 2568 intelide - ok 21:32:42.0695 2568 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 21:32:42.0709 2568 intelppm - ok 21:32:42.0727 2568 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll 21:32:42.0758 2568 IPBusEnum - ok 21:32:42.0776 2568 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 21:32:42.0805 2568 IpFilterDriver - ok 21:32:42.0838 2568 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll 21:32:42.0876 2568 iphlpsvc - ok 21:32:42.0892 2568 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys 21:32:42.0907 2568 IPMIDRV - ok 21:32:42.0930 2568 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 21:32:42.0959 2568 IPNAT - ok 21:32:42.0976 2568 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 21:32:42.0991 2568 IRENUM - ok 21:32:43.0006 2568 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys 21:32:43.0017 2568 isapnp - ok 21:32:43.0046 2568 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys 21:32:43.0060 2568 iScsiPrt - ok 21:32:43.0079 2568 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys 21:32:43.0088 2568 kbdclass - ok 21:32:43.0103 2568 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys 21:32:43.0117 2568 kbdhid - ok 21:32:43.0137 2568 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:32:43.0151 2568 KeyIso - ok 21:32:43.0177 2568 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys 21:32:43.0187 2568 KSecDD - ok 21:32:43.0203 2568 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 21:32:43.0214 2568 KSecPkg - ok 21:32:43.0248 2568 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll 21:32:43.0280 2568 KtmRm - ok 21:32:43.0313 2568 LanmanServer (bca92cb047a4326925ecef759dbaa233) C:\Windows\System32\srvsvc.dll 21:32:43.0346 2568 LanmanServer - ok 21:32:43.0372 2568 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll 21:32:43.0403 2568 LanmanWorkstation - ok 21:32:43.0418 2568 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 21:32:43.0447 2568 lltdio - ok 21:32:43.0478 2568 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll 21:32:43.0509 2568 lltdsvc - ok 21:32:43.0524 2568 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll 21:32:43.0554 2568 lmhosts - ok 21:32:43.0572 2568 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 21:32:43.0583 2568 LSI_FC - ok 21:32:43.0612 2568 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 21:32:43.0622 2568 LSI_SAS - ok 21:32:43.0639 2568 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 21:32:43.0649 2568 LSI_SAS2 - ok 21:32:43.0666 2568 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 21:32:43.0676 2568 LSI_SCSI - ok 21:32:43.0693 2568 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 21:32:43.0723 2568 luafv - ok 21:32:43.0755 2568 LVRS (ed643e777ba3f7151ef3f0fb6be4f7f0) C:\Windows\system32\DRIVERS\lvrs.sys 21:32:43.0770 2568 LVRS - ok 21:32:43.0993 2568 LVUVC (5bc80451109a8dd7f2ddd35bce2929a3) C:\Windows\system32\DRIVERS\lvuvc.sys 21:32:44.0067 2568 LVUVC - ok 21:32:44.0135 2568 maconfservice (09ed79fb8364390ba894806da2f66a55) C:\Program Files\ma-config.com\maconfservice.exe 21:32:44.0154 2568 maconfservice - ok 21:32:44.0259 2568 MarvinBus (a3e700d78eec390f1208098cdca5c6b6) C:\Windows\system32\DRIVERS\MarvinBus.sys 21:32:44.0284 2568 MarvinBus - ok 21:32:44.0305 2568 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys 21:32:44.0319 2568 MBAMProtector - ok 21:32:44.0373 2568 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe 21:32:44.0395 2568 MBAMService - ok 21:32:44.0419 2568 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll 21:32:44.0434 2568 Mcx2Svc - ok 21:32:44.0459 2568 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 21:32:44.0469 2568 megasas - ok 21:32:44.0498 2568 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 21:32:44.0511 2568 MegaSR - ok 21:32:44.0534 2568 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll 21:32:44.0564 2568 MMCSS - ok 21:32:44.0579 2568 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 21:32:44.0608 2568 Modem - ok 21:32:44.0623 2568 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 21:32:44.0638 2568 monitor - ok 21:32:44.0651 2568 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 21:32:44.0661 2568 mouclass - ok 21:32:44.0681 2568 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 21:32:44.0694 2568 mouhid - ok 21:32:44.0708 2568 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys 21:32:44.0719 2568 mountmgr - ok 21:32:44.0775 2568 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe 21:32:44.0794 2568 MozillaMaintenance - ok 21:32:44.0814 2568 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys 21:32:44.0826 2568 mpio - ok 21:32:44.0849 2568 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 21:32:44.0878 2568 mpsdrv - ok 21:32:44.0930 2568 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll 21:32:44.0987 2568 MpsSvc - ok 21:32:45.0011 2568 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys 21:32:45.0028 2568 MRxDAV - ok 21:32:45.0061 2568 mrxsmb (f4a054be78af7f410129c4b64b07dc9b) C:\Windows\system32\DRIVERS\mrxsmb.sys 21:32:45.0104 2568 mrxsmb - ok 21:32:45.0128 2568 mrxsmb10 (deffa295bd1895c6ed8e3078412ac60b) C:\Windows\system32\DRIVERS\mrxsmb10.sys 21:32:45.0157 2568 mrxsmb10 - ok 21:32:45.0166 2568 mrxsmb20 (24d76abe5dcad22f19d105f76fdf0ce1) C:\Windows\system32\DRIVERS\mrxsmb20.sys 21:32:45.0195 2568 mrxsmb20 - ok 21:32:45.0207 2568 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys 21:32:45.0225 2568 msahci - ok 21:32:45.0234 2568 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys 21:32:45.0246 2568 msdsm - ok 21:32:45.0274 2568 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe 21:32:45.0289 2568 MSDTC - ok 21:32:45.0311 2568 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 21:32:45.0340 2568 Msfs - ok 21:32:45.0354 2568 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 21:32:45.0382 2568 mshidkmdf - ok 21:32:45.0395 2568 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys 21:32:45.0405 2568 msisadrv - ok 21:32:45.0432 2568 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll 21:32:45.0463 2568 MSiSCSI - ok 21:32:45.0468 2568 msiserver - ok 21:32:45.0490 2568 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 21:32:45.0519 2568 MSKSSRV - ok 21:32:45.0530 2568 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 21:32:45.0574 2568 MSPCLOCK - ok 21:32:45.0589 2568 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 21:32:45.0624 2568 MSPQM - ok 21:32:45.0642 2568 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 21:32:45.0666 2568 MsRPC - ok 21:32:45.0689 2568 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys 21:32:45.0699 2568 mssmbios - ok 21:32:45.0711 2568 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 21:32:45.0739 2568 MSTEE - ok 21:32:45.0751 2568 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 21:32:45.0764 2568 MTConfig - ok 21:32:45.0784 2568 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\Windows\system32\DRIVERS\ASACPI.sys 21:32:45.0795 2568 MTsensor - ok 21:32:45.0806 2568 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 21:32:45.0816 2568 Mup - ok 21:32:45.0846 2568 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll 21:32:45.0882 2568 napagent - ok 21:32:45.0909 2568 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 21:32:45.0927 2568 NativeWifiP - ok 21:32:45.0967 2568 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys 21:32:45.0987 2568 NDIS - ok 21:32:45.0999 2568 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 21:32:46.0029 2568 NdisCap - ok 21:32:46.0042 2568 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 21:32:46.0070 2568 NdisTapi - ok 21:32:46.0092 2568 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys 21:32:46.0120 2568 Ndisuio - ok 21:32:46.0140 2568 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys 21:32:46.0169 2568 NdisWan - ok 21:32:46.0179 2568 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys 21:32:46.0208 2568 NDProxy - ok 21:32:46.0225 2568 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 21:32:46.0253 2568 NetBIOS - ok 21:32:46.0283 2568 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys 21:32:46.0315 2568 NetBT - ok 21:32:46.0336 2568 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:32:46.0350 2568 Netlogon - ok 21:32:46.0383 2568 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll 21:32:46.0418 2568 Netman - ok 21:32:46.0439 2568 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll 21:32:46.0483 2568 netprofm - ok 21:32:46.0546 2568 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 21:32:46.0563 2568 NetTcpPortSharing - ok 21:32:46.0586 2568 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 21:32:46.0610 2568 nfrd960 - ok 21:32:46.0647 2568 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll 21:32:46.0696 2568 NlaSvc - ok 21:32:46.0756 2568 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files\CDBurnerXP\NMSAccessU.exe 21:32:46.0772 2568 NMSAccess - ok 21:32:46.0793 2568 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 21:32:46.0840 2568 Npfs - ok 21:32:46.0864 2568 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll 21:32:46.0894 2568 nsi - ok 21:32:46.0919 2568 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 21:32:46.0948 2568 nsiproxy - ok 21:32:47.0014 2568 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys 21:32:47.0052 2568 Ntfs - ok 21:32:47.0149 2568 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 21:32:47.0197 2568 Null - ok 21:32:47.0669 2568 nvlddmkm (847b1755f7757f825305a1ffe6dac3e9) C:\Windows\system32\DRIVERS\nvlddmkm.sys 21:32:47.0850 2568 nvlddmkm - ok 21:32:47.0959 2568 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys 21:32:47.0981 2568 nvraid - ok 21:32:48.0003 2568 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys 21:32:48.0027 2568 nvstor - ok 21:32:48.0087 2568 nvsvc (7c732aff202dcd06c3d262966d71604c) C:\Windows\system32\nvvsvc.exe 21:32:48.0125 2568 nvsvc - ok 21:32:48.0301 2568 nvUpdatusService (262d2fbf211a88dcb84249df0f6ef6e7) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe 21:32:48.0360 2568 nvUpdatusService - ok 21:32:48.0460 2568 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys 21:32:48.0480 2568 nv_agp - ok 21:32:48.0495 2568 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys 21:32:48.0509 2568 ohci1394 - ok 21:32:48.0578 2568 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 21:32:48.0598 2568 ose - ok 21:32:48.0633 2568 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll 21:32:48.0662 2568 p2pimsvc - ok 21:32:48.0691 2568 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll 21:32:48.0711 2568 p2psvc - ok 21:32:48.0736 2568 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 21:32:48.0750 2568 Parport - ok 21:32:48.0762 2568 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys 21:32:48.0774 2568 partmgr - ok 21:32:48.0785 2568 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 21:32:48.0798 2568 Parvdm - ok 21:32:48.0826 2568 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll 21:32:48.0846 2568 PcaSvc - ok 21:32:48.0864 2568 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\Windows\system32\DRIVERS\pccsmcfd.sys 21:32:48.0887 2568 pccsmcfd - ok 21:32:48.0896 2568 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys 21:32:48.0907 2568 pci - ok 21:32:48.0915 2568 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys 21:32:48.0925 2568 pciide - ok 21:32:48.0949 2568 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 21:32:48.0962 2568 pcmcia - ok 21:32:48.0982 2568 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 21:32:48.0999 2568 pcw - ok 21:32:49.0041 2568 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 21:32:49.0073 2568 PEAUTH - ok 21:32:49.0146 2568 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll 21:32:49.0187 2568 PeerDistSvc - ok 21:32:49.0417 2568 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll 21:32:49.0493 2568 pla - ok 21:32:49.0724 2568 PlugPlay (2cc2008f1296968fba162ed9f9afe328) C:\Windows\system32\umpnpmgr.dll 21:32:49.0784 2568 PlugPlay - ok 21:32:49.0800 2568 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll 21:32:49.0814 2568 PNRPAutoReg - ok 21:32:49.0838 2568 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll 21:32:49.0854 2568 PNRPsvc - ok 21:32:49.0881 2568 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll 21:32:49.0917 2568 PolicyAgent - ok 21:32:49.0935 2568 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll 21:32:49.0967 2568 Power - ok 21:32:50.0003 2568 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 21:32:50.0032 2568 PptpMiniport - ok 21:32:50.0085 2568 PQNTDrv (87d211ba1e9759e26b6296e625a31ce8) C:\Windows\system32\drivers\PQNTDrv.sys 21:32:50.0095 2568 PQNTDrv ( UnsignedFile.Multi.Generic ) - warning 21:32:50.0095 2568 PQNTDrv - detected UnsignedFile.Multi.Generic (1) 21:32:50.0130 2568 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 21:32:50.0156 2568 Processor - ok 21:32:50.0185 2568 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll 21:32:50.0217 2568 ProfSvc - ok 21:32:50.0241 2568 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:32:50.0255 2568 ProtectedStorage - ok 21:32:50.0271 2568 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 21:32:50.0300 2568 Psched - ok 21:32:50.0333 2568 qcusbser (a1d43435002782302b8da5567aeed644) C:\Windows\system32\DRIVERS\qcusbser.sys 21:32:50.0341 2568 qcusbser ( UnsignedFile.Multi.Generic ) - warning 21:32:50.0341 2568 qcusbser - detected UnsignedFile.Multi.Generic (1) 21:32:50.0436 2568 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 21:32:50.0479 2568 ql2300 - ok 21:32:50.0633 2568 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 21:32:50.0654 2568 ql40xx - ok 21:32:50.0689 2568 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll 21:32:50.0726 2568 QWAVE - ok 21:32:50.0738 2568 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 21:32:50.0755 2568 QWAVEdrv - ok 21:32:50.0766 2568 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 21:32:50.0795 2568 RasAcd - ok 21:32:50.0818 2568 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 21:32:50.0846 2568 RasAgileVpn - ok 21:32:50.0862 2568 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll 21:32:50.0913 2568 RasAuto - ok 21:32:50.0929 2568 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 21:32:50.0979 2568 Rasl2tp - ok 21:32:51.0000 2568 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll 21:32:51.0035 2568 RasMan - ok 21:32:51.0047 2568 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 21:32:51.0081 2568 RasPppoe - ok 21:32:51.0088 2568 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 21:32:51.0117 2568 RasSstp - ok 21:32:51.0140 2568 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys 21:32:51.0172 2568 rdbss - ok 21:32:51.0185 2568 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 21:32:51.0200 2568 rdpbus - ok 21:32:51.0214 2568 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys 21:32:51.0242 2568 RDPCDD - ok 21:32:51.0266 2568 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys 21:32:51.0294 2568 RDPDR - ok 21:32:51.0301 2568 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 21:32:51.0329 2568 RDPENCDD - ok 21:32:51.0349 2568 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 21:32:51.0378 2568 RDPREFMP - ok 21:32:51.0397 2568 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys 21:32:51.0429 2568 RDPWD - ok 21:32:51.0457 2568 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys 21:32:51.0468 2568 rdyboost - ok 21:32:51.0493 2568 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll 21:32:51.0524 2568 RemoteAccess - ok 21:32:51.0549 2568 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll 21:32:51.0580 2568 RemoteRegistry - ok 21:32:51.0608 2568 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\Windows\system32\Drivers\RimUsb.sys 21:32:51.0626 2568 RimUsb - ok 21:32:51.0643 2568 RMCAST (b4090006a82eeb608c358ab5d37de85a) C:\Windows\system32\DRIVERS\RMCAST.sys 21:32:51.0671 2568 RMCAST - ok 21:32:51.0693 2568 rpcapd - ok 21:32:51.0711 2568 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll 21:32:51.0741 2568 RpcEptMapper - ok 21:32:51.0759 2568 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe 21:32:51.0773 2568 RpcLocator - ok 21:32:51.0813 2568 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll 21:32:51.0846 2568 RpcSs - ok 21:32:51.0870 2568 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 21:32:51.0899 2568 rspndr - ok 21:32:51.0923 2568 RTL8167 (26a9d6227d12b9d9da5a81bb9b55d810) C:\Windows\system32\DRIVERS\Rt86win7.sys 21:32:51.0937 2568 RTL8167 - ok 21:32:51.0957 2568 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys 21:32:51.0983 2568 s3cap - ok 21:32:52.0002 2568 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:32:52.0015 2568 SamSs - ok 21:32:52.0030 2568 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys 21:32:52.0041 2568 sbp2port - ok 21:32:52.0075 2568 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll 21:32:52.0107 2568 SCardSvr - ok 21:32:52.0123 2568 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys 21:32:52.0157 2568 scfilter - ok 21:32:52.0203 2568 Schedule (3e8b0c453e25613a1f59762a5c42aa75) C:\Windows\system32\schedsvc.dll 21:32:52.0248 2568 Schedule - ok 21:32:52.0268 2568 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll 21:32:52.0306 2568 SCPolicySvc - ok 21:32:52.0318 2568 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll 21:32:52.0334 2568 SDRSVC - ok 21:32:52.0361 2568 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 21:32:52.0390 2568 secdrv - ok 21:32:52.0418 2568 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll 21:32:52.0447 2568 seclogon - ok 21:32:52.0469 2568 seehcri (e5b56569a9f79b70314fede6c953641e) C:\Windows\system32\DRIVERS\seehcri.sys 21:32:52.0482 2568 seehcri - ok 21:32:52.0498 2568 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll 21:32:52.0528 2568 SENS - ok 21:32:52.0550 2568 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll 21:32:52.0567 2568 SensrSvc - ok 21:32:52.0578 2568 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 21:32:52.0591 2568 Serenum - ok 21:32:52.0615 2568 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 21:32:52.0629 2568 Serial - ok 21:32:52.0643 2568 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 21:32:52.0656 2568 sermouse - ok 21:32:52.0748 2568 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe 21:32:52.0767 2568 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning 21:32:52.0767 2568 ServiceLayer - detected UnsignedFile.Multi.Generic (1) 21:32:52.0811 2568 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll 21:32:52.0843 2568 SessionEnv - ok 21:32:52.0859 2568 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys 21:32:52.0873 2568 sffdisk - ok 21:32:52.0888 2568 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys 21:32:52.0903 2568 sffp_mmc - ok 21:32:52.0920 2568 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys 21:32:52.0935 2568 sffp_sd - ok 21:32:52.0950 2568 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 21:32:52.0963 2568 sfloppy - ok 21:32:52.0998 2568 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll 21:32:53.0038 2568 SharedAccess - ok 21:32:53.0061 2568 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll 21:32:53.0084 2568 ShellHWDetection - ok 21:32:53.0103 2568 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys 21:32:53.0113 2568 sisagp - ok 21:32:53.0126 2568 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 21:32:53.0136 2568 SiSRaid2 - ok 21:32:53.0151 2568 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 21:32:53.0172 2568 SiSRaid4 - ok 21:32:53.0227 2568 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files\Skype\Updater\Updater.exe 21:32:53.0246 2568 SkypeUpdate - ok 21:32:53.0269 2568 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 21:32:53.0298 2568 Smb - ok 21:32:53.0331 2568 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe 21:32:53.0346 2568 SNMPTRAP - ok 21:32:53.0366 2568 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 21:32:53.0375 2568 spldr - ok 21:32:53.0403 2568 Spooler (49b6dd6ab3715b7a67965f17194e98a9) C:\Windows\System32\spoolsv.exe 21:32:53.0423 2568 Spooler - ok 21:32:53.0564 2568 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe 21:32:53.0638 2568 sppsvc - ok 21:32:53.0732 2568 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll 21:32:53.0777 2568 sppuinotify - ok 21:32:53.0845 2568 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys 21:32:53.0846 2568 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 21:32:53.0848 2568 sptd ( LockedFile.Multi.Generic ) - warning 21:32:53.0848 2568 sptd - detected LockedFile.Multi.Generic (1) 21:32:53.0872 2568 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys 21:32:53.0903 2568 srv - ok 21:32:53.0931 2568 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys 21:32:53.0962 2568 srv2 - ok 21:32:53.0971 2568 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys 21:32:54.0001 2568 srvnet - ok 21:32:54.0027 2568 sscdbus (069351a1d7d291013177a90ae6edccbc) C:\Windows\system32\DRIVERS\sscdbus.sys 21:32:54.0037 2568 sscdbus - ok 21:32:54.0055 2568 sscdmdfl (1c925be223a5c0f9f469252292a48df6) C:\Windows\system32\DRIVERS\sscdmdfl.sys 21:32:54.0064 2568 sscdmdfl - ok 21:32:54.0097 2568 sscdmdm (ae3e77ae0fbdb07eb1ac3fed74a0695e) C:\Windows\system32\DRIVERS\sscdmdm.sys 21:32:54.0115 2568 sscdmdm - ok 21:32:54.0144 2568 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll 21:32:54.0177 2568 SSDPSRV - ok 21:32:54.0196 2568 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll 21:32:54.0226 2568 SstpSvc - ok 21:32:54.0244 2568 StarOpen (f92254b0bcfcd10caac7bccc7cb7f467) C:\Windows\system32\drivers\StarOpen.sys 21:32:54.0250 2568 StarOpen ( UnsignedFile.Multi.Generic ) - warning 21:32:54.0250 2568 StarOpen - detected UnsignedFile.Multi.Generic (1) 21:32:54.0308 2568 Steam Client Service - ok 21:32:54.0373 2568 Stereo Service (8d01686ae82b466f4cd074f31f2942ca) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 21:32:54.0395 2568 Stereo Service - ok 21:32:54.0423 2568 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 21:32:54.0432 2568 stexstor - ok 21:32:54.0473 2568 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll 21:32:54.0499 2568 StiSvc - ok 21:32:54.0524 2568 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys 21:32:54.0533 2568 storflt - ok 21:32:54.0551 2568 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys 21:32:54.0561 2568 storvsc - ok 21:32:54.0578 2568 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys 21:32:54.0587 2568 swenum - ok 21:32:54.0627 2568 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll 21:32:54.0663 2568 swprv - ok 21:32:54.0724 2568 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll 21:32:54.0763 2568 SysMain - ok 21:32:54.0783 2568 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll 21:32:54.0802 2568 TabletInputService - ok 21:32:54.0823 2568 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll 21:32:54.0858 2568 TapiSrv - ok 21:32:54.0873 2568 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll 21:32:54.0904 2568 TBS - ok 21:32:55.0002 2568 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys 21:32:55.0047 2568 Tcpip - ok 21:32:55.0166 2568 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys 21:32:55.0198 2568 TCPIP6 - ok 21:32:55.0241 2568 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys 21:32:55.0270 2568 tcpipreg - ok 21:32:55.0288 2568 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys 21:32:55.0326 2568 TDPIPE - ok 21:32:55.0340 2568 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys 21:32:55.0368 2568 TDTCP - ok 21:32:55.0385 2568 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys 21:32:55.0413 2568 tdx - ok 21:32:55.0624 2568 TeamViewer7 (33966a658ff37e0c65d46e59f37e2380) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe 21:32:55.0740 2568 TeamViewer7 - ok 21:32:55.0839 2568 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys 21:32:55.0858 2568 TermDD - ok 21:32:55.0915 2568 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll 21:32:55.0954 2568 TermService - ok 21:32:55.0971 2568 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll 21:32:55.0989 2568 Themes - ok 21:32:56.0007 2568 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll 21:32:56.0039 2568 THREADORDER - ok 21:32:56.0058 2568 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll 21:32:56.0089 2568 TrkWks - ok 21:32:56.0114 2568 TrueSight (b3c9c35dc93563b8d19ad414edf2fc82) c:\windows\system32\drivers\TrueSight.sys 21:32:56.0119 2568 TrueSight ( UnsignedFile.Multi.Generic ) - warning 21:32:56.0119 2568 TrueSight - detected UnsignedFile.Multi.Generic (1) 21:32:56.0149 2568 trufos (9016639c71328e4667d06119937aa20a) C:\Windows\system32\DRIVERS\trufos.sys 21:32:56.0162 2568 trufos - ok 21:32:56.0219 2568 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe 21:32:56.0248 2568 TrustedInstaller - ok 21:32:56.0270 2568 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys 21:32:56.0298 2568 tssecsrv - ok 21:32:56.0438 2568 TuneUp.UtilitiesSvc (67f888f5379cffca30878c8a57adf156) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe 21:32:56.0495 2568 TuneUp.UtilitiesSvc - ok 21:32:56.0505 2568 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys 21:32:56.0521 2568 TuneUpUtilitiesDrv - ok 21:32:56.0627 2568 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys 21:32:56.0676 2568 tunnel - ok 21:32:56.0692 2568 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 21:32:56.0703 2568 uagp35 - ok 21:32:56.0725 2568 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys 21:32:56.0756 2568 udfs - ok 21:32:56.0787 2568 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe 21:32:56.0802 2568 UI0Detect - ok 21:32:56.0819 2568 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys 21:32:56.0829 2568 uliagpkx - ok 21:32:56.0844 2568 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys 21:32:56.0857 2568 umbus - ok 21:32:56.0869 2568 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 21:32:56.0882 2568 UmPass - ok 21:32:56.0904 2568 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll 21:32:56.0921 2568 UmRdpService - ok 21:32:56.0983 2568 UMVPFSrv (67a95b9d129ed5399e7965cd09cf30e7) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe 21:32:57.0009 2568 UMVPFSrv - ok 21:32:57.0091 2568 Update Server (3cc00597a30b23757aa23cb677918bef) C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe 21:32:57.0117 2568 Update Server - ok 21:32:57.0166 2568 UPDATESRV (03579bec2e930b92efd6d4e7f899cff5) C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe 21:32:57.0184 2568 UPDATESRV - ok 21:32:57.0222 2568 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll 21:32:57.0265 2568 upnphost - ok 21:32:57.0294 2568 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys 21:32:57.0309 2568 usbaudio - ok 21:32:57.0327 2568 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys 21:32:57.0347 2568 usbccgp - ok 21:32:57.0368 2568 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys 21:32:57.0384 2568 usbcir - ok 21:32:57.0399 2568 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys 21:32:57.0412 2568 usbehci - ok 21:32:57.0433 2568 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys 21:32:57.0448 2568 usbhub - ok 21:32:57.0463 2568 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys 21:32:57.0477 2568 usbohci - ok 21:32:57.0489 2568 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 21:32:57.0504 2568 usbprint - ok 21:32:57.0527 2568 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys 21:32:57.0550 2568 usbscan - ok 21:32:57.0571 2568 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS 21:32:57.0585 2568 USBSTOR - ok 21:32:57.0602 2568 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys 21:32:57.0615 2568 usbuhci - ok 21:32:57.0643 2568 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll 21:32:57.0674 2568 UxSms - ok 21:32:57.0692 2568 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:32:57.0706 2568 VaultSvc - ok 21:32:57.0716 2568 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys 21:32:57.0727 2568 vdrvroot - ok 21:32:57.0768 2568 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe 21:32:57.0796 2568 vds - ok 21:32:57.0814 2568 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 21:32:57.0829 2568 vga - ok 21:32:57.0846 2568 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 21:32:57.0875 2568 VgaSave - ok 21:32:57.0894 2568 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys 21:32:57.0907 2568 vhdmp - ok 21:32:57.0932 2568 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys 21:32:57.0943 2568 viaagp - ok 21:32:57.0957 2568 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 21:32:57.0971 2568 ViaC7 - ok 21:32:57.0982 2568 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys 21:32:57.0992 2568 viaide - ok 21:32:58.0021 2568 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys 21:32:58.0035 2568 vmbus - ok 21:32:58.0047 2568 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys 21:32:58.0059 2568 VMBusHID - ok 21:32:58.0075 2568 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys 21:32:58.0086 2568 volmgr - ok 21:32:58.0104 2568 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 21:32:58.0121 2568 volmgrx - ok 21:32:58.0136 2568 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys 21:32:58.0148 2568 volsnap - ok 21:32:58.0165 2568 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 21:32:58.0176 2568 vsmraid - ok 21:32:58.0237 2568 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe 21:32:58.0272 2568 VSS - ok 21:32:58.0330 2568 VSSERV - ok 21:32:58.0369 2568 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 21:32:58.0396 2568 vwifibus - ok 21:32:58.0422 2568 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll 21:32:58.0458 2568 W32Time - ok 21:32:58.0478 2568 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 21:32:58.0492 2568 WacomPen - ok 21:32:58.0505 2568 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 21:32:58.0533 2568 WANARP - ok 21:32:58.0538 2568 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 21:32:58.0566 2568 Wanarpv6 - ok 21:32:58.0641 2568 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe 21:32:58.0689 2568 wbengine - ok 21:32:58.0707 2568 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll 21:32:58.0727 2568 WbioSrvc - ok 21:32:58.0754 2568 wcncsvc (d0f88aa11ee1a62bcc6d6a8a7783ca11) C:\Windows\System32\wcncsvc.dll 21:32:58.0776 2568 wcncsvc - ok 21:32:58.0790 2568 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll 21:32:58.0807 2568 WcsPlugInService - ok 21:32:58.0846 2568 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 21:32:58.0856 2568 Wd - ok 21:32:58.0891 2568 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 21:32:58.0924 2568 Wdf01000 - ok 21:32:58.0945 2568 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll 21:32:58.0979 2568 WdiServiceHost - ok 21:32:58.0986 2568 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll 21:32:59.0017 2568 WdiSystemHost - ok 21:32:59.0054 2568 WebClient (d87c7d2c517f82a5ab7a73e203063d9e) C:\Windows\System32\webclnt.dll 21:32:59.0083 2568 WebClient - ok 21:32:59.0103 2568 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll 21:32:59.0136 2568 Wecsvc - ok 21:32:59.0145 2568 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll 21:32:59.0177 2568 wercplsupport - ok 21:32:59.0192 2568 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll 21:32:59.0224 2568 WerSvc - ok 21:32:59.0247 2568 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 21:32:59.0275 2568 WfpLwf - ok 21:32:59.0294 2568 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 21:32:59.0304 2568 WIMMount - ok 21:32:59.0398 2568 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 21:32:59.0440 2568 WinDefend - ok 21:32:59.0449 2568 WinHttpAutoProxySvc - ok 21:32:59.0502 2568 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll 21:32:59.0541 2568 Winmgmt - ok 21:32:59.0611 2568 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll 21:32:59.0665 2568 WinRM - ok 21:32:59.0710 2568 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys 21:32:59.0725 2568 WinUsb - ok 21:32:59.0774 2568 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll 21:32:59.0808 2568 Wlansvc - ok 21:32:59.0959 2568 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 21:33:00.0020 2568 wlidsvc - ok 21:33:00.0140 2568 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys 21:33:00.0164 2568 WmiAcpi - ok 21:33:00.0219 2568 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe 21:33:00.0245 2568 wmiApSrv - ok 21:33:00.0366 2568 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe 21:33:00.0407 2568 WMPNetworkSvc - ok 21:33:00.0501 2568 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll 21:33:00.0528 2568 WPCSvc - ok 21:33:00.0544 2568 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll 21:33:00.0560 2568 WPDBusEnum - ok 21:33:00.0593 2568 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 21:33:00.0622 2568 ws2ifsl - ok 21:33:00.0636 2568 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll 21:33:00.0655 2568 wscsvc - ok 21:33:00.0660 2568 WSearch - ok 21:33:00.0759 2568 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll 21:33:00.0845 2568 wuauserv - ok 21:33:00.0959 2568 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys 21:33:01.0005 2568 WudfPf - ok 21:33:01.0022 2568 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys 21:33:01.0051 2568 WUDFRd - ok 21:33:01.0076 2568 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll 21:33:01.0107 2568 wudfsvc - ok 21:33:01.0123 2568 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll 21:33:01.0144 2568 WwanSvc - ok 21:33:01.0177 2568 xusb21 (c26c68bcbac1f33f890c226769759209) C:\Windows\system32\DRIVERS\xusb21.sys 21:33:01.0206 2568 xusb21 - ok 21:33:01.0228 2568 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 21:33:01.0388 2568 \Device\Harddisk0\DR0 ( TDSS File System ) - warning 21:33:01.0389 2568 \Device\Harddisk0\DR0 - detected TDSS File System (1) 21:33:01.0394 2568 Boot (0x1200) (9ba3373cbdbc8fae0ae918fd608360ff) \Device\Harddisk0\DR0\Partition0 21:33:01.0397 2568 \Device\Harddisk0\DR0\Partition0 - ok 21:33:01.0417 2568 Boot (0x1200) (98cf410770f2f25f10035a2e32bd2522) \Device\Harddisk0\DR0\Partition1 21:33:01.0420 2568 \Device\Harddisk0\DR0\Partition1 - ok 21:33:01.0438 2568 Boot (0x1200) (9727bd6e0a6ee5f6c8cfc019a064bcea) \Device\Harddisk0\DR0\Partition2 21:33:01.0440 2568 \Device\Harddisk0\DR0\Partition2 - ok 21:33:01.0459 2568 Boot (0x1200) (4399aa3cfaa0a697e646d7bcc15e0501) \Device\Harddisk0\DR0\Partition3 21:33:01.0461 2568 \Device\Harddisk0\DR0\Partition3 - ok 21:33:01.0462 2568 ============================================================ 21:33:01.0462 2568 Scan finished 21:33:01.0462 2568 ============================================================ 21:33:01.0477 0736 Detected object count: 11 21:33:01.0477 0736 Actual detected object count: 11 21:33:59.0595 0736 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0595 0736 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0598 0736 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0598 0736 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0601 0736 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0601 0736 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0603 0736 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0603 0736 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0606 0736 PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0606 0736 PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0609 0736 qcusbser ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0609 0736 qcusbser ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0612 0736 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0612 0736 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0614 0736 sptd ( LockedFile.Multi.Generic ) - skipped by user 21:33:59.0614 0736 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 21:33:59.0617 0736 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0617 0736 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0620 0736 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user 21:33:59.0620 0736 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:33:59.0650 0736 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine 21:33:59.0654 0736 \Device\Harddisk0\DR0\TDLFS\tdl - copied to quarantine 21:33:59.0657 0736 \Device\Harddisk0\DR0\TDLFS\rsrc.dat - copied to quarantine 21:33:59.0661 0736 \Device\Harddisk0\DR0\TDLFS\tdlcmd.dll - copied to quarantine 21:33:59.0666 0736 \Device\Harddisk0\DR0\TDLFS\tdlwsp.dll - copied to quarantine 21:33:59.0669 0736 \Device\Harddisk0\DR0\TDLFS\tdlclk.dll - copied to quarantine 21:33:59.0670 0736 \Device\Harddisk0\DR0\TDLFS - deleted 21:33:59.0670 0736 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
  4. Rapport TDSSkiller : (tout sur skip, j'ai laisser) 21:15:09.0322 3108 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32 21:15:09.0538 3108 ============================================================ 21:15:09.0538 3108 Current date / time: 2012/07/28 21:15:09.0538 21:15:09.0539 3108 SystemInfo: 21:15:09.0539 3108 21:15:09.0539 3108 OS Version: 6.1.7600 ServicePack: 0.0 21:15:09.0539 3108 Product type: Workstation 21:15:09.0539 3108 ComputerName: PEPITO-PC 21:15:09.0539 3108 UserName: Pepito 21:15:09.0539 3108 Windows directory: C:\Windows 21:15:09.0539 3108 System windows directory: C:\Windows 21:15:09.0539 3108 Processor architecture: Intel x86 21:15:09.0539 3108 Number of processors: 4 21:15:09.0539 3108 Page size: 0x1000 21:15:09.0539 3108 Boot type: Normal boot 21:15:09.0539 3108 ============================================================ 21:15:11.0278 3108 Drive \Device\Harddisk0\DR0 - Size: 0x2658AE0000 (153.39 Gb), SectorSize: 0x200, Cylinders: 0x4E37, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 21:15:11.0300 3108 ============================================================ 21:15:11.0300 3108 \Device\Harddisk0\DR0: 21:15:11.0300 3108 MBR partitions: 21:15:11.0300 3108 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x628EFA2 21:15:11.0317 3108 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x628F020, BlocksNum 0x482D168 21:15:11.0330 3108 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0xAABC1C7, BlocksNum 0x6A962AE 21:15:11.0342 3108 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x115524B4, BlocksNum 0x1D724C3 21:15:11.0342 3108 ============================================================ 21:15:11.0390 3108 F: <-> \Device\Harddisk0\DR0\Partition3 21:15:11.0406 3108 E: <-> \Device\Harddisk0\DR0\Partition2 21:15:11.0422 3108 C: <-> \Device\Harddisk0\DR0\Partition0 21:15:11.0448 3108 D: <-> \Device\Harddisk0\DR0\Partition1 21:15:11.0449 3108 ============================================================ 21:15:11.0449 3108 Initialize success 21:15:11.0449 3108 ============================================================ 21:16:28.0958 3716 ============================================================ 21:16:28.0958 3716 Scan started 21:16:28.0958 3716 Mode: Manual; SigCheck; TDLFS; 21:16:28.0958 3716 ============================================================ 21:16:29.0293 3716 .csc - ok 21:16:29.0422 3716 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys 21:16:29.0597 3716 1394ohci - ok 21:16:29.0617 3716 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys 21:16:29.0631 3716 ACPI - ok 21:16:29.0645 3716 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys 21:16:29.0719 3716 AcpiPmi - ok 21:16:29.0809 3716 Adobe LM Service (8b46d5a1d3ef08232c04d0eafb871fb2) C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe 21:16:29.0838 3716 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning 21:16:29.0838 3716 Adobe LM Service - detected UnsignedFile.Multi.Generic (1) 21:16:29.0887 3716 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 21:16:29.0915 3716 adp94xx - ok 21:16:29.0940 3716 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 21:16:29.0954 3716 adpahci - ok 21:16:29.0976 3716 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 21:16:29.0987 3716 adpu320 - ok 21:16:30.0095 3716 AdvancedSystemCareService5 (96d6cdd0b32846e8cfbe592f4f32e608) C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe 21:16:30.0149 3716 AdvancedSystemCareService5 - ok 21:16:30.0173 3716 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll 21:16:30.0310 3716 AeLookupSvc - ok 21:16:30.0359 3716 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys 21:16:30.0423 3716 AFD - ok 21:16:30.0443 3716 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys 21:16:30.0461 3716 agp440 - ok 21:16:30.0504 3716 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 21:16:30.0523 3716 aic78xx - ok 21:16:30.0550 3716 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe 21:16:30.0595 3716 ALG - ok 21:16:30.0612 3716 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys 21:16:30.0629 3716 aliide - ok 21:16:30.0648 3716 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys 21:16:30.0657 3716 amdagp - ok 21:16:30.0671 3716 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys 21:16:30.0680 3716 amdide - ok 21:16:30.0728 3716 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 21:16:30.0752 3716 AmdK8 - ok 21:16:30.0767 3716 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 21:16:30.0790 3716 AmdPPM - ok 21:16:30.0812 3716 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys 21:16:30.0822 3716 amdsata - ok 21:16:30.0845 3716 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 21:16:30.0857 3716 amdsbs - ok 21:16:30.0875 3716 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys 21:16:30.0884 3716 amdxata - ok 21:16:30.0922 3716 APL531 (cc0587f353df94c119d7b57f99c8b6e5) C:\Windows\system32\Drivers\HDvidv.sys 21:16:31.0506 3716 APL531 - ok 21:16:31.0528 3716 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys 21:16:31.0626 3716 AppID - ok 21:16:31.0643 3716 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll 21:16:31.0713 3716 AppIDSvc - ok 21:16:31.0731 3716 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll 21:16:31.0772 3716 Appinfo - ok 21:16:31.0805 3716 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll 21:16:31.0837 3716 AppMgmt - ok 21:16:31.0863 3716 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 21:16:31.0882 3716 arc - ok 21:16:31.0904 3716 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 21:16:31.0923 3716 arcsas - ok 21:16:31.0940 3716 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 21:16:31.0992 3716 AsyncMac - ok 21:16:32.0012 3716 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys 21:16:32.0021 3716 atapi - ok 21:16:32.0064 3716 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll 21:16:32.0117 3716 AudioEndpointBuilder - ok 21:16:32.0125 3716 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll 21:16:32.0158 3716 Audiosrv - ok 21:16:32.0209 3716 avc3 (f0c0e213d6d811384a49981adff0b6c0) C:\Windows\system32\DRIVERS\avc3.sys 21:16:32.0233 3716 avc3 - ok 21:16:32.0260 3716 avchv (a64529781e5b9cc454666a33a24e3e1d) C:\Windows\system32\DRIVERS\avchv.sys 21:16:32.0271 3716 avchv - ok 21:16:32.0309 3716 avckf (2bce314a25e71298add6794bfbd66266) C:\Windows\system32\DRIVERS\avckf.sys 21:16:32.0324 3716 avckf - ok 21:16:32.0344 3716 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll 21:16:32.0405 3716 AxInstSV - ok 21:16:32.0449 3716 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 21:16:32.0488 3716 b06bdrv - ok 21:16:32.0517 3716 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 21:16:32.0542 3716 b57nd60x - ok 21:16:32.0573 3716 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll 21:16:32.0618 3716 BDESVC - ok 21:16:32.0722 3716 BdfNdisf (fa33f2db2f6f8afbedc917632a10d515) c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys 21:16:32.0739 3716 BdfNdisf - ok 21:16:32.0785 3716 bdfsfltr (5ef7ac38b4a7dc80860d7ffafac78c36) C:\Windows\system32\DRIVERS\bdfsfltr.sys 21:16:32.0809 3716 bdfsfltr - ok 21:16:32.0832 3716 bdfwfpf (2f66c9df34134419928bac00e21e2679) C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys 21:16:32.0849 3716 bdfwfpf - ok 21:16:32.0879 3716 bdsandbox (e260c0079b5c1107b87e98f356292004) C:\Windows\system32\drivers\bdsandbox.sys 21:16:32.0887 3716 bdsandbox - ok 21:16:32.0947 3716 bdselfpr (042941c8e50f38e34c3c345f45e16cf3) C:\Program Files\Bitdefender\Bitdefender 2012\bdselfpr.sys 21:16:32.0965 3716 bdselfpr - ok 21:16:32.0982 3716 BDVEDISK (375cd0b9f433465ec6f50d4df44e9448) C:\Windows\system32\DRIVERS\bdvedisk.sys 21:16:32.0994 3716 BDVEDISK - ok 21:16:33.0016 3716 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 21:16:33.0071 3716 Beep - ok 21:16:33.0129 3716 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll 21:16:33.0197 3716 BFE - ok 21:16:33.0263 3716 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 21:16:33.0322 3716 blbdrive - ok 21:16:33.0349 3716 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys 21:16:33.0403 3716 bowser - ok 21:16:33.0420 3716 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 21:16:33.0442 3716 BrFiltLo - ok 21:16:33.0468 3716 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 21:16:33.0505 3716 BrFiltUp - ok 21:16:33.0537 3716 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys 21:16:33.0573 3716 BridgeMP - ok 21:16:33.0604 3716 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll 21:16:33.0647 3716 Browser - ok 21:16:33.0674 3716 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 21:16:33.0722 3716 Brserid - ok 21:16:33.0737 3716 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 21:16:33.0763 3716 BrSerWdm - ok 21:16:33.0781 3716 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 21:16:33.0796 3716 BrUsbMdm - ok 21:16:33.0803 3716 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 21:16:33.0830 3716 BrUsbSer - ok 21:16:33.0845 3716 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 21:16:33.0860 3716 BTHMODEM - ok 21:16:33.0879 3716 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll 21:16:33.0916 3716 bthserv - ok 21:16:34.0010 3716 catchme - ok 21:16:34.0045 3716 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 21:16:34.0112 3716 cdfs - ok 21:16:34.0130 3716 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys 21:16:34.0158 3716 cdrom - ok 21:16:34.0183 3716 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll 21:16:34.0220 3716 CertPropSvc - ok 21:16:34.0235 3716 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 21:16:34.0250 3716 circlass - ok 21:16:34.0286 3716 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 21:16:34.0302 3716 CLFS - ok 21:16:34.0353 3716 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 21:16:34.0374 3716 clr_optimization_v2.0.50727_32 - ok 21:16:34.0453 3716 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 21:16:34.0475 3716 clr_optimization_v4.0.30319_32 - ok 21:16:34.0497 3716 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 21:16:34.0510 3716 CmBatt - ok 21:16:34.0524 3716 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys 21:16:34.0533 3716 cmdide - ok 21:16:34.0569 3716 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 21:16:34.0604 3716 CNG - ok 21:16:34.0622 3716 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 21:16:34.0631 3716 Compbatt - ok 21:16:34.0646 3716 CompFilter (9704b9c442e3ef2989746d08f80a3743) C:\Windows\system32\DRIVERS\lvbusflt.sys 21:16:34.0656 3716 CompFilter - ok 21:16:34.0678 3716 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys 21:16:34.0693 3716 CompositeBus - ok 21:16:34.0698 3716 COMSysApp - ok 21:16:34.0720 3716 cpuz135 (6bada94085b6709694f8327c211d12e1) C:\Windows\system32\drivers\cpuz135_x32.sys 21:16:34.0728 3716 cpuz135 - ok 21:16:34.0741 3716 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 21:16:34.0751 3716 crcdisk - ok 21:16:34.0780 3716 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll 21:16:34.0829 3716 CryptSvc - ok 21:16:34.0834 3716 CSC - ok 21:16:34.0886 3716 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll 21:16:34.0949 3716 CscService - ok 21:16:35.0001 3716 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll 21:16:35.0061 3716 DcomLaunch - ok 21:16:35.0092 3716 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll 21:16:35.0133 3716 defragsvc - ok 21:16:35.0159 3716 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys 21:16:35.0198 3716 DfsC - ok 21:16:35.0224 3716 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll 21:16:35.0264 3716 Dhcp - ok 21:16:35.0281 3716 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 21:16:35.0323 3716 discache - ok 21:16:35.0329 3716 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 21:16:35.0346 3716 Disk - ok 21:16:35.0374 3716 Dnscache (d0722e963d3c6145446874241401b209) C:\Windows\System32\dnsrslvr.dll 21:16:35.0445 3716 Dnscache - ok 21:16:35.0472 3716 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll 21:16:35.0516 3716 dot3svc - ok 21:16:35.0535 3716 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll 21:16:35.0570 3716 DPS - ok 21:16:35.0638 3716 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 21:16:35.0736 3716 driverhardwarev2 - ok 21:16:35.0754 3716 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 21:16:35.0796 3716 drmkaud - ok 21:16:35.0859 3716 DXGKrnl (39806cfeddcc55e686a49bccd2972f23) C:\Windows\System32\drivers\dxgkrnl.sys 21:16:35.0917 3716 DXGKrnl - ok 21:16:35.0943 3716 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll 21:16:35.0983 3716 EapHost - ok 21:16:36.0189 3716 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 21:16:36.0249 3716 ebdrv - ok 21:16:36.0342 3716 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe 21:16:36.0366 3716 EFS - ok 21:16:36.0429 3716 ehRecvr (3a74a6e33685662b125a3269b1f2114f) C:\Windows\ehome\ehRecvr.exe 21:16:36.0496 3716 ehRecvr - ok 21:16:36.0513 3716 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe 21:16:36.0550 3716 ehSched - ok 21:16:36.0613 3716 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 21:16:36.0638 3716 elxstor - ok 21:16:36.0657 3716 epmntdrv (539ca34fbc74ec366a0d751028c32a08) C:\Windows\system32\epmntdrv.sys 21:16:36.0741 3716 epmntdrv ( UnsignedFile.Multi.Generic ) - warning 21:16:36.0742 3716 epmntdrv - detected UnsignedFile.Multi.Generic (1) 21:16:36.0807 3716 EPSON_EB_RPCV4_01 (ec6a73cd8413f68655e5e0b99c415a21) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE 21:16:36.0858 3716 EPSON_EB_RPCV4_01 - ok 21:16:36.0879 3716 EPSON_PM_RPCV4_01 (8fe6ab59cab8f2c038fea9522a5eeba7) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE 21:16:36.0911 3716 EPSON_PM_RPCV4_01 - ok 21:16:36.0937 3716 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys 21:16:36.0968 3716 ErrDev - ok 21:16:37.0001 3716 EuGdiDrv (1f2f4ab15ce03ecc257feb2f6dc5a013) C:\Windows\system32\EuGdiDrv.sys 21:16:37.0089 3716 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning 21:16:37.0089 3716 EuGdiDrv - detected UnsignedFile.Multi.Generic (1) 21:16:37.0134 3716 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll 21:16:37.0204 3716 EventSystem - ok 21:16:37.0231 3716 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 21:16:37.0260 3716 exfat - ok 21:16:37.0281 3716 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 21:16:37.0324 3716 fastfat - ok 21:16:37.0370 3716 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe 21:16:37.0437 3716 Fax - ok 21:16:37.0446 3716 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 21:16:37.0480 3716 fdc - ok 21:16:37.0496 3716 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll 21:16:37.0559 3716 fdPHost - ok 21:16:37.0578 3716 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll 21:16:37.0623 3716 FDResPub - ok 21:16:37.0647 3716 FETNDIS (f5cb6cb6d12f495516be27cffccde4bf) C:\Windows\system32\DRIVERS\fetnd6.sys 21:16:37.0670 3716 FETNDIS - ok 21:16:37.0687 3716 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 21:16:37.0697 3716 FileInfo - ok 21:16:37.0712 3716 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 21:16:37.0740 3716 Filetrace - ok 21:16:37.0759 3716 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 21:16:37.0790 3716 flpydisk - ok 21:16:37.0815 3716 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 21:16:37.0835 3716 FltMgr - ok 21:16:37.0884 3716 FontCache (b6512a85815fdc3d560c3705f5bdb93d) C:\Windows\system32\FntCache.dll 21:16:37.0939 3716 FontCache - ok 21:16:38.0002 3716 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 21:16:38.0021 3716 FontCache3.0.0.0 - ok 21:16:38.0043 3716 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 21:16:38.0062 3716 FsDepends - ok 21:16:38.0084 3716 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\Windows\system32\FsUsbExDisk.SYS 21:16:38.0136 3716 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning 21:16:38.0136 3716 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1) 21:16:38.0157 3716 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 21:16:38.0170 3716 Fs_Rec - ok 21:16:38.0193 3716 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys 21:16:38.0220 3716 fvevol - ok 21:16:38.0237 3716 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 21:16:38.0247 3716 gagp30kx - ok 21:16:38.0291 3716 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll 21:16:38.0329 3716 gpsvc - ok 21:16:38.0351 3716 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 21:16:38.0398 3716 hcw85cir - ok 21:16:38.0433 3716 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys 21:16:38.0474 3716 HdAudAddService - ok 21:16:38.0493 3716 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys 21:16:38.0533 3716 HDAudBus - ok 21:16:38.0550 3716 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 21:16:38.0574 3716 HidBatt - ok 21:16:38.0593 3716 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 21:16:38.0624 3716 HidBth - ok 21:16:38.0647 3716 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 21:16:38.0688 3716 HidIr - ok 21:16:38.0713 3716 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll 21:16:38.0758 3716 hidserv - ok 21:16:38.0774 3716 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys 21:16:38.0796 3716 HidUsb - ok 21:16:38.0816 3716 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll 21:16:38.0860 3716 hkmsvc - ok 21:16:38.0883 3716 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll 21:16:38.0909 3716 HomeGroupListener - ok 21:16:38.0933 3716 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll 21:16:38.0957 3716 HomeGroupProvider - ok 21:16:38.0987 3716 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys 21:16:38.0997 3716 HpSAMD - ok 21:16:39.0028 3716 htcnprot (339adefad60353f960e3ca67ce468c24) C:\Windows\system32\DRIVERS\htcnprot.sys 21:16:39.0069 3716 htcnprot - ok 21:16:39.0108 3716 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys 21:16:39.0159 3716 HTTP - ok 21:16:39.0178 3716 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys 21:16:39.0187 3716 hwpolicy - ok 21:16:39.0209 3716 hxctlflt (f02ea43ae8f936124debf5b87f12c795) C:\Windows\system32\DRIVERS\hxctlflt.sys 21:16:39.0231 3716 hxctlflt - ok 21:16:39.0262 3716 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys 21:16:39.0290 3716 i8042prt - ok 21:16:39.0315 3716 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys 21:16:39.0329 3716 iaStorV - ok 21:16:39.0435 3716 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 21:16:39.0867 3716 idsvc - ok 21:16:39.0953 3716 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 21:16:39.0971 3716 iirsp - ok 21:16:40.0023 3716 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll 21:16:40.0089 3716 IKEEXT - ok 21:16:40.0105 3716 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys 21:16:40.0114 3716 intelide - ok 21:16:40.0128 3716 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 21:16:40.0141 3716 intelppm - ok 21:16:40.0160 3716 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll 21:16:40.0191 3716 IPBusEnum - ok 21:16:40.0209 3716 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 21:16:40.0238 3716 IpFilterDriver - ok 21:16:40.0288 3716 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll 21:16:40.0338 3716 iphlpsvc - ok 21:16:40.0359 3716 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys 21:16:40.0383 3716 IPMIDRV - ok 21:16:40.0405 3716 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 21:16:40.0447 3716 IPNAT - ok 21:16:40.0467 3716 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 21:16:40.0493 3716 IRENUM - ok 21:16:40.0514 3716 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys 21:16:40.0524 3716 isapnp - ok 21:16:40.0550 3716 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys 21:16:40.0564 3716 iScsiPrt - ok 21:16:40.0587 3716 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys 21:16:40.0597 3716 kbdclass - ok 21:16:40.0611 3716 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys 21:16:40.0661 3716 kbdhid - ok 21:16:40.0687 3716 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:40.0712 3716 KeyIso - ok 21:16:40.0726 3716 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys 21:16:40.0737 3716 KSecDD - ok 21:16:40.0752 3716 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 21:16:40.0763 3716 KSecPkg - ok 21:16:40.0797 3716 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll 21:16:40.0870 3716 KtmRm - ok 21:16:40.0904 3716 LanmanServer (bca92cb047a4326925ecef759dbaa233) C:\Windows\System32\srvsvc.dll 21:16:40.0955 3716 LanmanServer - ok 21:16:40.0980 3716 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll 21:16:41.0026 3716 LanmanWorkstation - ok 21:16:41.0051 3716 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 21:16:41.0112 3716 lltdio - ok 21:16:41.0145 3716 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll 21:16:41.0200 3716 lltdsvc - ok 21:16:41.0215 3716 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll 21:16:41.0260 3716 lmhosts - ok 21:16:41.0280 3716 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 21:16:41.0300 3716 LSI_FC - ok 21:16:41.0320 3716 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 21:16:41.0330 3716 LSI_SAS - ok 21:16:41.0346 3716 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 21:16:41.0356 3716 LSI_SAS2 - ok 21:16:41.0373 3716 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 21:16:41.0384 3716 LSI_SCSI - ok 21:16:41.0400 3716 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 21:16:41.0456 3716 luafv - ok 21:16:41.0499 3716 LVRS (ed643e777ba3f7151ef3f0fb6be4f7f0) C:\Windows\system32\DRIVERS\lvrs.sys 21:16:41.0523 3716 LVRS - ok 21:16:41.0725 3716 LVUVC (5bc80451109a8dd7f2ddd35bce2929a3) C:\Windows\system32\DRIVERS\lvuvc.sys 21:16:41.0800 3716 LVUVC - ok 21:16:41.0877 3716 maconfservice (09ed79fb8364390ba894806da2f66a55) C:\Program Files\ma-config.com\maconfservice.exe 21:16:42.0297 3716 maconfservice - ok 21:16:42.0408 3716 MarvinBus (a3e700d78eec390f1208098cdca5c6b6) C:\Windows\system32\DRIVERS\MarvinBus.sys 21:16:42.0461 3716 MarvinBus - ok 21:16:42.0478 3716 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys 21:16:42.0497 3716 MBAMProtector - ok 21:16:42.0562 3716 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe 21:16:42.0599 3716 MBAMService - ok 21:16:42.0625 3716 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll 21:16:42.0784 3716 Mcx2Svc - ok 21:16:42.0815 3716 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 21:16:42.0834 3716 megasas - ok 21:16:42.0862 3716 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 21:16:42.0875 3716 MegaSR - ok 21:16:42.0898 3716 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll 21:16:42.0943 3716 MMCSS - ok 21:16:42.0959 3716 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 21:16:43.0021 3716 Modem - ok 21:16:43.0040 3716 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 21:16:43.0075 3716 monitor - ok 21:16:43.0090 3716 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 21:16:43.0109 3716 mouclass - ok 21:16:43.0136 3716 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 21:16:43.0164 3716 mouhid - ok 21:16:43.0188 3716 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys 21:16:43.0209 3716 mountmgr - ok 21:16:43.0272 3716 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe 21:16:43.0292 3716 MozillaMaintenance - ok 21:16:43.0311 3716 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys 21:16:43.0327 3716 mpio - ok 21:16:43.0345 3716 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 21:16:43.0394 3716 mpsdrv - ok 21:16:43.0468 3716 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll 21:16:43.0537 3716 MpsSvc - ok 21:16:43.0559 3716 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys 21:16:43.0591 3716 MRxDAV - ok 21:16:43.0624 3716 mrxsmb (f4a054be78af7f410129c4b64b07dc9b) C:\Windows\system32\DRIVERS\mrxsmb.sys 21:16:43.0690 3716 mrxsmb - ok 21:16:43.0717 3716 mrxsmb10 (deffa295bd1895c6ed8e3078412ac60b) C:\Windows\system32\DRIVERS\mrxsmb10.sys 21:16:43.0781 3716 mrxsmb10 - ok 21:16:43.0791 3716 mrxsmb20 (24d76abe5dcad22f19d105f76fdf0ce1) C:\Windows\system32\DRIVERS\mrxsmb20.sys 21:16:43.0833 3716 mrxsmb20 - ok 21:16:43.0853 3716 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys 21:16:43.0872 3716 msahci - ok 21:16:43.0893 3716 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys 21:16:43.0910 3716 msdsm - ok 21:16:43.0938 3716 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe 21:16:43.0980 3716 MSDTC - ok 21:16:44.0032 3716 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 21:16:44.0081 3716 Msfs - ok 21:16:44.0092 3716 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 21:16:44.0160 3716 mshidkmdf - ok 21:16:44.0174 3716 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys 21:16:44.0184 3716 msisadrv - ok 21:16:44.0212 3716 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll 21:16:44.0295 3716 MSiSCSI - ok 21:16:44.0300 3716 msiserver - ok 21:16:44.0319 3716 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 21:16:44.0376 3716 MSKSSRV - ok 21:16:44.0381 3716 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 21:16:44.0414 3716 MSPCLOCK - ok 21:16:44.0434 3716 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 21:16:44.0469 3716 MSPQM - ok 21:16:44.0489 3716 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 21:16:44.0512 3716 MsRPC - ok 21:16:44.0526 3716 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys 21:16:44.0536 3716 mssmbios - ok 21:16:44.0548 3716 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 21:16:44.0576 3716 MSTEE - ok 21:16:44.0588 3716 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 21:16:44.0610 3716 MTConfig - ok 21:16:44.0638 3716 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\Windows\system32\DRIVERS\ASACPI.sys 21:16:44.0664 3716 MTsensor - ok 21:16:44.0677 3716 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 21:16:44.0696 3716 Mup - ok 21:16:44.0733 3716 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll 21:16:44.0769 3716 napagent - ok 21:16:44.0796 3716 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 21:16:44.0831 3716 NativeWifiP - ok 21:16:44.0879 3716 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys 21:16:44.0899 3716 NDIS - ok 21:16:44.0911 3716 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 21:16:44.0941 3716 NdisCap - ok 21:16:44.0959 3716 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 21:16:45.0005 3716 NdisTapi - ok 21:16:45.0021 3716 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys 21:16:45.0055 3716 Ndisuio - ok 21:16:45.0077 3716 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys 21:16:45.0106 3716 NdisWan - ok 21:16:45.0132 3716 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys 21:16:45.0162 3716 NDProxy - ok 21:16:45.0170 3716 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 21:16:45.0217 3716 NetBIOS - ok 21:16:45.0238 3716 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys 21:16:45.0290 3716 NetBT - ok 21:16:45.0315 3716 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:45.0329 3716 Netlogon - ok 21:16:45.0362 3716 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll 21:16:45.0405 3716 Netman - ok 21:16:45.0434 3716 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll 21:16:45.0480 3716 netprofm - ok 21:16:45.0549 3716 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 21:16:45.0598 3716 NetTcpPortSharing - ok 21:16:45.0631 3716 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 21:16:45.0649 3716 nfrd960 - ok 21:16:45.0682 3716 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll 21:16:45.0750 3716 NlaSvc - ok 21:16:45.0817 3716 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files\CDBurnerXP\NMSAccessU.exe 21:16:45.0834 3716 NMSAccess - ok 21:16:45.0855 3716 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 21:16:45.0913 3716 Npfs - ok 21:16:45.0943 3716 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll 21:16:45.0979 3716 nsi - ok 21:16:46.0006 3716 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 21:16:46.0063 3716 nsiproxy - ok 21:16:46.0142 3716 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys 21:16:46.0180 3716 Ntfs - ok 21:16:46.0277 3716 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 21:16:46.0336 3716 Null - ok 21:16:46.0887 3716 nvlddmkm (847b1755f7757f825305a1ffe6dac3e9) C:\Windows\system32\DRIVERS\nvlddmkm.sys 21:16:47.0058 3716 nvlddmkm - ok 21:16:47.0170 3716 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys 21:16:47.0193 3716 nvraid - ok 21:16:47.0213 3716 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys 21:16:47.0226 3716 nvstor - ok 21:16:47.0271 3716 nvsvc (7c732aff202dcd06c3d262966d71604c) C:\Windows\system32\nvvsvc.exe 21:16:47.0294 3716 nvsvc - ok 21:16:47.0466 3716 nvUpdatusService (262d2fbf211a88dcb84249df0f6ef6e7) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe 21:16:47.0525 3716 nvUpdatusService - ok 21:16:47.0629 3716 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys 21:16:47.0650 3716 nv_agp - ok 21:16:47.0665 3716 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys 21:16:47.0691 3716 ohci1394 - ok 21:16:47.0772 3716 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 21:16:47.0793 3716 ose - ok 21:16:47.0828 3716 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll 21:16:47.0856 3716 p2pimsvc - ok 21:16:47.0886 3716 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll 21:16:47.0915 3716 p2psvc - ok 21:16:47.0939 3716 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 21:16:47.0968 3716 Parport - ok 21:16:47.0990 3716 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys 21:16:48.0000 3716 partmgr - ok 21:16:48.0013 3716 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 21:16:48.0050 3716 Parvdm - ok 21:16:48.0079 3716 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll 21:16:48.0108 3716 PcaSvc - ok 21:16:48.0134 3716 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\Windows\system32\DRIVERS\pccsmcfd.sys 21:16:48.0156 3716 pccsmcfd - ok 21:16:48.0186 3716 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys 21:16:48.0197 3716 pci - ok 21:16:48.0210 3716 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys 21:16:48.0220 3716 pciide - ok 21:16:48.0243 3716 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 21:16:48.0256 3716 pcmcia - ok 21:16:48.0276 3716 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 21:16:48.0285 3716 pcw - ok 21:16:48.0323 3716 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 21:16:48.0368 3716 PEAUTH - ok 21:16:48.0440 3716 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll 21:16:48.0482 3716 PeerDistSvc - ok 21:16:48.0600 3716 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll 21:16:48.0693 3716 pla - ok 21:16:48.0808 3716 PlugPlay (2cc2008f1296968fba162ed9f9afe328) C:\Windows\system32\umpnpmgr.dll 21:16:48.0881 3716 PlugPlay - ok 21:16:48.0903 3716 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll 21:16:48.0933 3716 PNRPAutoReg - ok 21:16:48.0967 3716 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll 21:16:48.0997 3716 PNRPsvc - ok 21:16:49.0054 3716 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll 21:16:49.0122 3716 PolicyAgent - ok 21:16:49.0147 3716 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll 21:16:49.0190 3716 Power - ok 21:16:49.0231 3716 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 21:16:49.0273 3716 PptpMiniport - ok 21:16:49.0287 3716 PQNTDrv (87d211ba1e9759e26b6296e625a31ce8) C:\Windows\system32\drivers\PQNTDrv.sys 21:16:49.0309 3716 PQNTDrv ( UnsignedFile.Multi.Generic ) - warning 21:16:49.0309 3716 PQNTDrv - detected UnsignedFile.Multi.Generic (1) 21:16:49.0325 3716 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 21:16:49.0371 3716 Processor - ok 21:16:49.0406 3716 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll 21:16:49.0454 3716 ProfSvc - ok 21:16:49.0477 3716 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:49.0490 3716 ProtectedStorage - ok 21:16:49.0515 3716 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 21:16:49.0573 3716 Psched - ok 21:16:49.0612 3716 qcusbser (a1d43435002782302b8da5567aeed644) C:\Windows\system32\DRIVERS\qcusbser.sys 21:16:49.0636 3716 qcusbser ( UnsignedFile.Multi.Generic ) - warning 21:16:49.0636 3716 qcusbser - detected UnsignedFile.Multi.Generic (1) 21:16:49.0721 3716 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 21:16:49.0761 3716 ql2300 - ok 21:16:49.0860 3716 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 21:16:49.0882 3716 ql40xx - ok 21:16:49.0915 3716 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll 21:16:49.0953 3716 QWAVE - ok 21:16:49.0974 3716 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 21:16:50.0004 3716 QWAVEdrv - ok 21:16:50.0019 3716 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 21:16:50.0061 3716 RasAcd - ok 21:16:50.0087 3716 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 21:16:50.0145 3716 RasAgileVpn - ok 21:16:50.0173 3716 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll 21:16:50.0213 3716 RasAuto - ok 21:16:50.0231 3716 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 21:16:50.0272 3716 Rasl2tp - ok 21:16:50.0303 3716 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll 21:16:50.0352 3716 RasMan - ok 21:16:50.0367 3716 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 21:16:50.0409 3716 RasPppoe - ok 21:16:50.0418 3716 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 21:16:50.0461 3716 RasSstp - ok 21:16:50.0485 3716 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys 21:16:50.0533 3716 rdbss - ok 21:16:50.0546 3716 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 21:16:50.0579 3716 rdpbus - ok 21:16:50.0591 3716 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys 21:16:50.0649 3716 RDPCDD - ok 21:16:50.0678 3716 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys 21:16:50.0727 3716 RDPDR - ok 21:16:50.0736 3716 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 21:16:50.0777 3716 RDPENCDD - ok 21:16:50.0801 3716 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 21:16:50.0860 3716 RDPREFMP - ok 21:16:50.0884 3716 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys 21:16:50.0949 3716 RDPWD - ok 21:16:50.0976 3716 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys 21:16:50.0998 3716 rdyboost - ok 21:16:51.0044 3716 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll 21:16:51.0106 3716 RemoteAccess - ok 21:16:51.0143 3716 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll 21:16:51.0215 3716 RemoteRegistry - ok 21:16:51.0243 3716 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\Windows\system32\Drivers\RimUsb.sys 21:16:51.0274 3716 RimUsb - ok 21:16:51.0303 3716 RMCAST (b4090006a82eeb608c358ab5d37de85a) C:\Windows\system32\DRIVERS\RMCAST.sys 21:16:51.0368 3716 RMCAST - ok 21:16:51.0395 3716 rpcapd - ok 21:16:51.0421 3716 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll 21:16:51.0467 3716 RpcEptMapper - ok 21:16:51.0510 3716 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe 21:16:51.0549 3716 RpcLocator - ok 21:16:51.0583 3716 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll 21:16:51.0626 3716 RpcSs - ok 21:16:51.0654 3716 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 21:16:51.0698 3716 rspndr - ok 21:16:51.0723 3716 RTL8167 (26a9d6227d12b9d9da5a81bb9b55d810) C:\Windows\system32\DRIVERS\Rt86win7.sys 21:16:51.0765 3716 RTL8167 - ok 21:16:51.0783 3716 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys 21:16:51.0809 3716 s3cap - ok 21:16:51.0844 3716 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:51.0870 3716 SamSs - ok 21:16:51.0889 3716 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys 21:16:51.0901 3716 sbp2port - ok 21:16:51.0934 3716 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll 21:16:52.0001 3716 SCardSvr - ok 21:16:52.0015 3716 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys 21:16:52.0056 3716 scfilter - ok 21:16:52.0113 3716 Schedule (3e8b0c453e25613a1f59762a5c42aa75) C:\Windows\system32\schedsvc.dll 21:16:52.0186 3716 Schedule - ok 21:16:52.0210 3716 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll 21:16:52.0239 3716 SCPolicySvc - ok 21:16:52.0260 3716 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll 21:16:52.0286 3716 SDRSVC - ok 21:16:52.0311 3716 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 21:16:52.0365 3716 secdrv - ok 21:16:52.0385 3716 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll 21:16:52.0430 3716 seclogon - ok 21:16:52.0460 3716 seehcri (e5b56569a9f79b70314fede6c953641e) C:\Windows\system32\DRIVERS\seehcri.sys 21:16:52.0499 3716 seehcri - ok 21:16:52.0515 3716 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll 21:16:52.0574 3716 SENS - ok 21:16:52.0600 3716 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll 21:16:52.0634 3716 SensrSvc - ok 21:16:52.0645 3716 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 21:16:52.0659 3716 Serenum - ok 21:16:52.0682 3716 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 21:16:52.0709 3716 Serial - ok 21:16:52.0726 3716 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 21:16:52.0757 3716 sermouse - ok 21:16:52.0848 3716 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe 21:16:53.0196 3716 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning 21:16:53.0196 3716 ServiceLayer - detected UnsignedFile.Multi.Generic (1) 21:16:53.0236 3716 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll 21:16:53.0295 3716 SessionEnv - ok 21:16:53.0316 3716 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys 21:16:53.0344 3716 sffdisk - ok 21:16:53.0362 3716 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys 21:16:53.0377 3716 sffp_mmc - ok 21:16:53.0385 3716 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys 21:16:53.0414 3716 sffp_sd - ok 21:16:53.0432 3716 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 21:16:53.0446 3716 sfloppy - ok 21:16:53.0516 3716 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll 21:16:53.0567 3716 SharedAccess - ok 21:16:53.0601 3716 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll 21:16:53.0634 3716 ShellHWDetection - ok 21:16:53.0685 3716 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys 21:16:53.0705 3716 sisagp - ok 21:16:53.0724 3716 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 21:16:53.0735 3716 SiSRaid2 - ok 21:16:53.0749 3716 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 21:16:53.0761 3716 SiSRaid4 - ok 21:16:53.0817 3716 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files\Skype\Updater\Updater.exe 21:16:53.0836 3716 SkypeUpdate - ok 21:16:53.0859 3716 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 21:16:53.0900 3716 Smb - ok 21:16:53.0938 3716 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe 21:16:53.0952 3716 SNMPTRAP - ok 21:16:53.0972 3716 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 21:16:53.0982 3716 spldr - ok 21:16:54.0010 3716 Spooler (49b6dd6ab3715b7a67965f17194e98a9) C:\Windows\System32\spoolsv.exe 21:16:54.0046 3716 Spooler - ok 21:16:54.0195 3716 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe 21:16:54.0277 3716 sppsvc - ok 21:16:54.0372 3716 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll 21:16:54.0412 3716 sppuinotify - ok 21:16:54.0487 3716 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys 21:16:54.0488 3716 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 21:16:54.0490 3716 sptd ( LockedFile.Multi.Generic ) - warning 21:16:54.0490 3716 sptd - detected LockedFile.Multi.Generic (1) 21:16:54.0522 3716 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys 21:16:54.0562 3716 srv - ok 21:16:54.0588 3716 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys 21:16:54.0631 3716 srv2 - ok 21:16:54.0639 3716 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys 21:16:54.0669 3716 srvnet - ok 21:16:54.0700 3716 sscdbus (069351a1d7d291013177a90ae6edccbc) C:\Windows\system32\DRIVERS\sscdbus.sys 21:16:54.0713 3716 sscdbus - ok 21:16:54.0728 3716 sscdmdfl (1c925be223a5c0f9f469252292a48df6) C:\Windows\system32\DRIVERS\sscdmdfl.sys 21:16:54.0739 3716 sscdmdfl - ok 21:16:54.0770 3716 sscdmdm (ae3e77ae0fbdb07eb1ac3fed74a0695e) C:\Windows\system32\DRIVERS\sscdmdm.sys 21:16:54.0781 3716 sscdmdm - ok 21:16:54.0809 3716 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll 21:16:54.0847 3716 SSDPSRV - ok 21:16:54.0861 3716 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll 21:16:54.0892 3716 SstpSvc - ok 21:16:54.0909 3716 StarOpen (f92254b0bcfcd10caac7bccc7cb7f467) C:\Windows\system32\drivers\StarOpen.sys 21:16:54.0915 3716 StarOpen ( UnsignedFile.Multi.Generic ) - warning 21:16:54.0915 3716 StarOpen - detected UnsignedFile.Multi.Generic (1) 21:16:54.0973 3716 Steam Client Service - ok 21:16:55.0050 3716 Stereo Service (8d01686ae82b466f4cd074f31f2942ca) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 21:16:55.0077 3716 Stereo Service - ok 21:16:55.0104 3716 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 21:16:55.0114 3716 stexstor - ok 21:16:55.0162 3716 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll 21:16:55.0189 3716 StiSvc - ok 21:16:55.0214 3716 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys 21:16:55.0224 3716 storflt - ok 21:16:55.0241 3716 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys 21:16:55.0251 3716 storvsc - ok 21:16:55.0268 3716 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys 21:16:55.0277 3716 swenum - ok 21:16:55.0317 3716 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll 21:16:55.0367 3716 swprv - ok 21:16:55.0430 3716 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll 21:16:55.0479 3716 SysMain - ok 21:16:55.0498 3716 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll 21:16:55.0525 3716 TabletInputService - ok 21:16:55.0564 3716 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll 21:16:55.0630 3716 TapiSrv - ok 21:16:55.0646 3716 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll 21:16:55.0690 3716 TBS - ok 21:16:55.0792 3716 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys 21:16:55.0845 3716 Tcpip - ok 21:16:55.0985 3716 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys 21:16:56.0027 3716 TCPIP6 - ok 21:16:56.0072 3716 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys 21:16:56.0102 3716 tcpipreg - ok 21:16:56.0127 3716 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys 21:16:56.0157 3716 TDPIPE - ok 21:16:56.0170 3716 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys 21:16:56.0200 3716 TDTCP - ok 21:16:56.0216 3716 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys 21:16:56.0259 3716 tdx - ok 21:16:56.0468 3716 TeamViewer7 (33966a658ff37e0c65d46e59f37e2380) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe 21:16:56.0545 3716 TeamViewer7 - ok 21:16:56.0645 3716 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys 21:16:56.0664 3716 TermDD - ok 21:16:56.0730 3716 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll 21:16:56.0792 3716 TermService - ok 21:16:56.0810 3716 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll 21:16:56.0841 3716 Themes - ok 21:16:56.0863 3716 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll 21:16:56.0892 3716 THREADORDER - ok 21:16:56.0922 3716 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll 21:16:56.0982 3716 TrkWks - ok 21:16:57.0039 3716 TrueSight (b3c9c35dc93563b8d19ad414edf2fc82) c:\windows\system32\drivers\TrueSight.sys 21:16:57.0048 3716 TrueSight ( UnsignedFile.Multi.Generic ) - warning 21:16:57.0048 3716 TrueSight - detected UnsignedFile.Multi.Generic (1) 21:16:57.0084 3716 trufos (9016639c71328e4667d06119937aa20a) C:\Windows\system32\DRIVERS\trufos.sys 21:16:57.0108 3716 trufos - ok 21:16:57.0166 3716 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe 21:16:57.0189 3716 TrustedInstaller - ok 21:16:57.0217 3716 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys 21:16:57.0260 3716 tssecsrv - ok 21:16:57.0401 3716 TuneUp.UtilitiesSvc (67f888f5379cffca30878c8a57adf156) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe 21:16:57.0462 3716 TuneUp.UtilitiesSvc - ok 21:16:57.0478 3716 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys 21:16:57.0489 3716 TuneUpUtilitiesDrv - ok 21:16:57.0591 3716 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys 21:16:57.0646 3716 tunnel - ok 21:16:57.0665 3716 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 21:16:57.0685 3716 uagp35 - ok 21:16:57.0714 3716 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys 21:16:57.0767 3716 udfs - ok 21:16:57.0809 3716 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe 21:16:57.0849 3716 UI0Detect - ok 21:16:57.0882 3716 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys 21:16:57.0903 3716 uliagpkx - ok 21:16:57.0916 3716 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys 21:16:57.0949 3716 umbus - ok 21:16:57.0966 3716 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 21:16:57.0992 3716 UmPass - ok 21:16:58.0027 3716 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll 21:16:58.0047 3716 UmRdpService - ok 21:16:58.0116 3716 UMVPFSrv (67a95b9d129ed5399e7965cd09cf30e7) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe 21:16:58.0147 3716 UMVPFSrv - ok 21:16:58.0231 3716 Update Server (3cc00597a30b23757aa23cb677918bef) C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe 21:16:58.0254 3716 Update Server - ok 21:16:58.0304 3716 UPDATESRV (03579bec2e930b92efd6d4e7f899cff5) C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe 21:16:58.0335 3716 UPDATESRV - ok 21:16:58.0377 3716 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll 21:16:58.0446 3716 upnphost - ok 21:16:58.0483 3716 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys 21:16:58.0526 3716 usbaudio - ok 21:16:58.0549 3716 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys 21:16:58.0598 3716 usbccgp - ok 21:16:58.0615 3716 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys 21:16:58.0644 3716 usbcir - ok 21:16:58.0662 3716 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys 21:16:58.0688 3716 usbehci - ok 21:16:58.0713 3716 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys 21:16:58.0729 3716 usbhub - ok 21:16:58.0751 3716 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys 21:16:58.0764 3716 usbohci - ok 21:16:58.0777 3716 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 21:16:58.0807 3716 usbprint - ok 21:16:58.0832 3716 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys 21:16:58.0861 3716 usbscan - ok 21:16:58.0884 3716 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS 21:16:58.0911 3716 USBSTOR - ok 21:16:58.0931 3716 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys 21:16:58.0956 3716 usbuhci - ok 21:16:58.0980 3716 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll 21:16:59.0026 3716 UxSms - ok 21:16:59.0048 3716 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe 21:16:59.0062 3716 VaultSvc - ok 21:16:59.0079 3716 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys 21:16:59.0089 3716 vdrvroot - ok 21:16:59.0131 3716 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe 21:16:59.0164 3716 vds - ok 21:16:59.0185 3716 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 21:16:59.0200 3716 vga - ok 21:16:59.0217 3716 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 21:16:59.0246 3716 VgaSave - ok 21:16:59.0265 3716 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys 21:16:59.0278 3716 vhdmp - ok 21:16:59.0303 3716 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys 21:16:59.0314 3716 viaagp - ok 21:16:59.0328 3716 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 21:16:59.0349 3716 ViaC7 - ok 21:16:59.0361 3716 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys 21:16:59.0371 3716 viaide - ok 21:16:59.0400 3716 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys 21:16:59.0413 3716 vmbus - ok 21:16:59.0426 3716 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys 21:16:59.0439 3716 VMBusHID - ok 21:16:59.0454 3716 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys 21:16:59.0465 3716 volmgr - ok 21:16:59.0482 3716 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 21:16:59.0498 3716 volmgrx - ok 21:16:59.0521 3716 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys 21:16:59.0534 3716 volsnap - ok 21:16:59.0553 3716 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 21:16:59.0564 3716 vsmraid - ok 21:16:59.0623 3716 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe 21:16:59.0666 3716 VSS - ok 21:16:59.0718 3716 VSSERV - ok 21:16:59.0756 3716 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 21:16:59.0784 3716 vwifibus - ok 21:16:59.0808 3716 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll 21:16:59.0866 3716 W32Time - ok 21:16:59.0891 3716 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 21:16:59.0914 3716 WacomPen - ok 21:16:59.0934 3716 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 21:16:59.0963 3716 WANARP - ok 21:16:59.0968 3716 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 21:17:00.0011 3716 Wanarpv6 - ok 21:17:00.0098 3716 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe 21:17:00.0152 3716 wbengine - ok 21:17:00.0169 3716 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll 21:17:00.0214 3716 WbioSrvc - ok 21:17:00.0251 3716 wcncsvc (d0f88aa11ee1a62bcc6d6a8a7783ca11) C:\Windows\System32\wcncsvc.dll 21:17:00.0306 3716 wcncsvc - ok 21:17:00.0335 3716 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll 21:17:00.0383 3716 WcsPlugInService - ok 21:17:00.0425 3716 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 21:17:00.0444 3716 Wd - ok 21:17:00.0478 3716 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 21:17:00.0497 3716 Wdf01000 - ok 21:17:00.0515 3716 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll 21:17:00.0533 3716 WdiServiceHost - ok 21:17:00.0538 3716 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll 21:17:00.0555 3716 WdiSystemHost - ok 21:17:00.0572 3716 WebClient (d87c7d2c517f82a5ab7a73e203063d9e) C:\Windows\System32\webclnt.dll 21:17:00.0594 3716 WebClient - ok 21:17:00.0623 3716 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll 21:17:00.0673 3716 Wecsvc - ok 21:17:00.0691 3716 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll 21:17:00.0759 3716 wercplsupport - ok 21:17:00.0779 3716 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll 21:17:00.0825 3716 WerSvc - ok 21:17:00.0850 3716 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 21:17:00.0910 3716 WfpLwf - ok 21:17:00.0931 3716 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 21:17:00.0950 3716 WIMMount - ok 21:17:01.0072 3716 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 21:17:01.0124 3716 WinDefend - ok 21:17:01.0133 3716 WinHttpAutoProxySvc - ok 21:17:01.0198 3716 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll 21:17:01.0246 3716 Winmgmt - ok 21:17:01.0325 3716 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll 21:17:01.0416 3716 WinRM - ok 21:17:01.0481 3716 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys 21:17:01.0506 3716 WinUsb - ok 21:17:01.0562 3716 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll 21:17:01.0611 3716 Wlansvc - ok 21:17:01.0771 3716 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 21:17:01.0821 3716 wlidsvc - ok 21:17:01.0928 3716 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys 21:17:01.0961 3716 WmiAcpi - ok 21:17:02.0014 3716 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe 21:17:02.0054 3716 wmiApSrv - ok 21:17:02.0177 3716 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe 21:17:02.0239 3716 WMPNetworkSvc - ok 21:17:02.0330 3716 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll 21:17:02.0381 3716 WPCSvc - ok 21:17:02.0398 3716 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll 21:17:02.0426 3716 WPDBusEnum - ok 21:17:02.0472 3716 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 21:17:02.0531 3716 ws2ifsl - ok 21:17:02.0573 3716 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll 21:17:02.0616 3716 wscsvc - ok 21:17:02.0621 3716 WSearch - ok 21:17:02.0741 3716 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll 21:17:02.0826 3716 wuauserv - ok 21:17:02.0937 3716 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys 21:17:02.0987 3716 WudfPf - ok 21:17:03.0009 3716 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys 21:17:03.0038 3716 WUDFRd - ok 21:17:03.0063 3716 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll 21:17:03.0104 3716 wudfsvc - ok 21:17:03.0126 3716 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll 21:17:03.0147 3716 WwanSvc - ok 21:17:03.0180 3716 xusb21 (c26c68bcbac1f33f890c226769759209) C:\Windows\system32\DRIVERS\xusb21.sys 21:17:03.0197 3716 xusb21 - ok 21:17:03.0215 3716 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 21:17:03.0375 3716 \Device\Harddisk0\DR0 ( TDSS File System ) - warning 21:17:03.0375 3716 \Device\Harddisk0\DR0 - detected TDSS File System (1) 21:17:03.0381 3716 Boot (0x1200) (9ba3373cbdbc8fae0ae918fd608360ff) \Device\Harddisk0\DR0\Partition0 21:17:03.0383 3716 \Device\Harddisk0\DR0\Partition0 - ok 21:17:03.0404 3716 Boot (0x1200) (98cf410770f2f25f10035a2e32bd2522) \Device\Harddisk0\DR0\Partition1 21:17:03.0406 3716 \Device\Harddisk0\DR0\Partition1 - ok 21:17:03.0425 3716 Boot (0x1200) (9727bd6e0a6ee5f6c8cfc019a064bcea) \Device\Harddisk0\DR0\Partition2 21:17:03.0427 3716 \Device\Harddisk0\DR0\Partition2 - ok 21:17:03.0445 3716 Boot (0x1200) (4399aa3cfaa0a697e646d7bcc15e0501) \Device\Harddisk0\DR0\Partition3 21:17:03.0448 3716 \Device\Harddisk0\DR0\Partition3 - ok 21:17:03.0448 3716 ============================================================ 21:17:03.0448 3716 Scan finished 21:17:03.0448 3716 ============================================================ 21:17:03.0496 4344 Detected object count: 11 21:17:03.0497 4344 Actual detected object count: 11 21:19:48.0863 4344 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0863 4344 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0866 4344 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0866 4344 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0869 4344 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0869 4344 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0872 4344 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0872 4344 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0874 4344 PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0874 4344 PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0875 4344 qcusbser ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0875 4344 qcusbser ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0877 4344 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0877 4344 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0878 4344 sptd ( LockedFile.Multi.Generic ) - skipped by user 21:19:48.0878 4344 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 21:19:48.0880 4344 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0880 4344 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0881 4344 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user 21:19:48.0881 4344 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:19:48.0883 4344 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user 21:19:48.0883 4344 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
  5. je vien de faire suppression sur ROGUEKILLER voici le 1er rapport : RogueKiller V7.6.4 [17/07/2012] par Tigzy mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/57) Blog: http://tigzyrk.blogspot.com Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version Demarrage : Mode normal Utilisateur: Pepito [Droits d'admin] Mode: Suppression -- Date: 28/07/2012 21:02:31 ¤¤¤ Processus malicieux: 0 ¤¤¤ ¤¤¤ Entrees de registre: 6 ¤¤¤ [PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (hxxp=;ftp=;hxxps= -> NOT REMOVED, USE PROXYFIX [HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2) [HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0) [HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0) [HJ] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0) [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ [ZeroAccess][FOLDER] n : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\n --> RAR ERROR [ZeroAccess][FILE] @ : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\@ --> REMOVED [ZeroAccess][FOLDER] U : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\U --> REMOVED [Del.Parent][FILE] 00000004.@ : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\L\00000004.@ --> REMOVED [Del.Parent][FILE] 1afb2d56 : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\L\1afb2d56 --> REMOVED [Del.Parent][FILE] 201d3dde : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\L\201d3dde --> REMOVED [ZeroAccess][FOLDER] L : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\L --> REMOVED [ZeroAccess][FILE] @ : c:\users\pepito\appdata\local\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\@ --> REMOVED [ZeroAccess][FOLDER] U : c:\users\pepito\appdata\local\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\U --> REMOVED [ZeroAccess][FOLDER] L : c:\users\pepito\appdata\local\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\L --> REMOVED ¤¤¤ Driver: [CHARGE] ¤¤¤ ¤¤¤ Infection : ZeroAccess ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ 127.0.0.1 localhost ¤¤¤ MBR Verif: ¤¤¤ +++++ PhysicalDrive0: HDS722516VLSA80 ATA Device +++++ --- User --- [MBR] d750dca9cccda3df40f3ff8c42926689 [bSP] c7f509617e4b990d4f0b0fce5de633e9 : Windows 7 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 50461 Mo 1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 103346145 | Size: 106603 Mo User = LL1 ... OK! User = LL2 ... OK! Termine : << RKreport[2].txt >> RKreport[1].txt ; RKreport[2].txt Voici le second rapport apres avoir cliquer ProxyRaz RogueKiller V7.6.4 [17/07/2012] par Tigzy mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/57) Blog: tigzy-RK Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version Demarrage : Mode normal Utilisateur: Pepito [Droits d'admin] Mode: Proxy RAZ -- Date: 28/07/2012 21:04:25 ¤¤¤ Processus malicieux: 0 ¤¤¤ ¤¤¤ Driver: [CHARGE] ¤¤¤ ¤¤¤ Entrees de registre: 1 ¤¤¤ [PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (hxxp=;ftp=;hxxps= -> DELETED Termine : << RKreport[3].txt >> RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt Je fais TDSSkiller ?? je fais TDSSkiller ?
  6. jai desactiver antivirus, pare feu et antispam + mais apparemment bitdefender reste actif, meme dans le gestionnaire de tache, impossible de terminer le processus bitdefender. Je viens de faire RogueKiller, voici le rapport : RogueKiller V7.6.4 [17/07/2012] par Tigzy mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/57) Blog: tigzy-RK Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version Demarrage : Mode normal Utilisateur: Pepito [Droits d'admin] Mode: Recherche -- Date: 28/07/2012 20:26:48 ¤¤¤ Processus malicieux: 0 ¤¤¤ ¤¤¤ Entrees de registre: 6 ¤¤¤ [PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (hxxp=;ftp=;hxxps= -> FOUND [HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND [HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ [ZeroAccess][FILE] n : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\n --> FOUND [ZeroAccess][FILE] @ : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\@ --> FOUND [ZeroAccess][FOLDER] U : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\U --> FOUND [ZeroAccess][FOLDER] L : c:\windows\installer\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\L --> FOUND [ZeroAccess][FILE] @ : c:\users\pepito\appdata\local\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\@ --> FOUND [ZeroAccess][FOLDER] U : c:\users\pepito\appdata\local\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\U --> FOUND [ZeroAccess][FOLDER] L : c:\users\pepito\appdata\local\{45a7ccb7-2a5d-421c-0fca-522c3bc731f8}\L --> FOUND ¤¤¤ Driver: [CHARGE] ¤¤¤ ¤¤¤ Infection : ZeroAccess ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ 127.0.0.1 localhost ¤¤¤ MBR Verif: ¤¤¤ +++++ PhysicalDrive0: HDS722516VLSA80 ATA Device +++++ --- User --- [MBR] d750dca9cccda3df40f3ff8c42926689 [bSP] c7f509617e4b990d4f0b0fce5de633e9 : Windows 7 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 50461 Mo 1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 103346145 | Size: 106603 Mo User = LL1 ... OK! User = LL2 ... OK! Termine : << RKreport[1].txt >> RKreport[1].txt
  7. Re, regarde la date et lheure du fichier texte, j'ai lancer Combofix apres que tu m'ai demandé, Je viens donc de faire Adwcleaner. Voici le rapport Adwcleaner , (je fais ensuite RogueKiller) # AdwCleaner v1.703 - Rapport créé le 28/07/2012 à 19:54:42 # Mis à jour le 20/07/2012 par Xplode # Système d'exploitation : Windows 7 Ultimate (32 bits) # Nom d'utilisateur : Pepito - PEPITO-PC # Exécuté depuis : C:\Users\Pepito\Desktop\adwcleaner.exe # Option [suppression] ***** [services] ***** Arrêté & Supprimé : Web Assistant Updater ***** [Fichiers / Dossiers] ***** Dossier Supprimé : C:\Users\Pepito\AppData\Local\Babylon Dossier Supprimé : C:\Users\Pepito\AppData\LocalLow\Conduit Dossier Supprimé : C:\Users\Pepito\AppData\Roaming\Babylon Dossier Supprimé : C:\Users\Pepito\AppData\Roaming\Iminent Dossier Supprimé : C:\Users\Pepito\AppData\Roaming\pdfforge Dossier Supprimé : C:\Users\Pepito\AppData\Roaming\Mozilla\Firefox\Profiles\v0if034a.default\Conduit Dossier Supprimé : C:\ProgramData\Babylon Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon Dossier Supprimé : C:\Program Files\Babylon Dossier Supprimé : C:\Program Files\Conduit Dossier Supprimé : C:\Program Files\Web Assistant Fichier Supprimé : C:\Users\Pepito\AppData\Roaming\Mozilla\Firefox\Profiles\v0if034a.default\searchplugins\MyStart Search.xml Fichier Supprimé : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml ***** [Registre] ***** [*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2720081 Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit Clé Supprimée : HKCU\Software\AppDataLow\Toolbar Clé Supprimée : HKCU\Software\Babylon Clé Supprimée : HKCU\Software\IM Clé Supprimée : HKCU\Software\ImInstaller Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon Clé Supprimée : HKCU\Software\Softonic Clé Supprimée : HKLM\SOFTWARE\Babylon Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Extension.DLL Clé Supprimée : HKLM\SOFTWARE\Classes\BabyDict Clé Supprimée : HKLM\SOFTWARE\Classes\BabyGloss Clé Supprimée : HKLM\SOFTWARE\Classes\BabyOptFile Clé Supprimée : HKLM\SOFTWARE\Conduit Clé Supprimée : HKLM\SOFTWARE\DT Soft Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd Clé Supprimée : HKLM\SOFTWARE\Iminent Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\NEW_CORRECT_incredibar_install_RASAPI32 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\NEW_CORRECT_incredibar_install_RASMANCS Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Babylon.exe Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Babylon Clé Supprimée : HKLM\SOFTWARE\Web Assistant Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [babylon Client] Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}] Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]] ***** [Registre - GUID] ***** Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{6AC0BB10-C922-45e2-857D-2A368FE749E5} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08} Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478} ***** [Navigateurs] ***** -\\ Internet Explorer v8.0.7600.16385 [OK] Le registre ne contient aucune entrée illégitime. -\\ Mozilla Firefox v14.0.1 (fr) Nom du profil : default Fichier : C:\Users\Pepito\AppData\Roaming\Mozilla\Firefox\Profiles\v0if034a.default\prefs.js C:\Users\Pepito\AppData\Roaming\Mozilla\Firefox\Profiles\v0if034a.default\user.js ... Supprimé ! Supprimée : user_pref("extensions.incredibar.actvtyRptTime", "1339949035850"); Supprimée : user_pref("extensions.incredibar.admin", false); Supprimée : user_pref("extensions.incredibar.aflt", "orgnl"); Supprimée : user_pref("extensions.incredibar.afterInstallRpt", "sent"); Supprimée : user_pref("extensions.incredibar.cntry", "FR"); Supprimée : user_pref("extensions.incredibar.dfltLng", "EN"); Supprimée : user_pref("extensions.incredibar.dfltSrch", false); Supprimée : user_pref("extensions.incredibar.dfltlng", "en"); Supprimée : user_pref("extensions.incredibar.dfltsrch", "false"); Supprimée : user_pref("extensions.incredibar.did", "10665"); Supprimée : user_pref("extensions.incredibar.envrmnt", "production"); Supprimée : user_pref("extensions.incredibar.excTlbr", false); Supprimée : user_pref("extensions.incredibar.hdrMd5", "C0149C7F9DA0477F1A9CDB1E5A83D228"); Supprimée : user_pref("extensions.incredibar.hmpg", false); Supprimée : user_pref("extensions.incredibar.hrdid", "0"); Supprimée : user_pref("extensions.incredibar.id", "ecf6dc44000000000000002215b7d9d2"); Supprimée : user_pref("extensions.incredibar.installerproductid", "26"); Supprimée : user_pref("extensions.incredibar.instlDay", "15501"); Supprimée : user_pref("extensions.incredibar.instlRef", ""); Supprimée : user_pref("extensions.incredibar.instlday", "15501"); Supprimée : user_pref("extensions.incredibar.instlref", ""); Supprimée : user_pref("extensions.incredibar.isDcmntCmplt", true); Supprimée : user_pref("extensions.incredibar.isdcmntcmplt", true); Supprimée : user_pref("extensions.incredibar.keywordurl", ""); Supprimée : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1412:23:51"); Supprimée : user_pref("extensions.incredibar.mntrvrsn", "1.2.0"); Supprimée : user_pref("extensions.incredibar.newTab", false); Supprimée : user_pref("extensions.incredibar.newtab", "false"); Supprimée : user_pref("extensions.incredibar.newtaburl", ""); Supprimée : user_pref("extensions.incredibar.noFFXTlbr", false); Supprimée : user_pref("extensions.incredibar.ppd", ""); Supprimée : user_pref("extensions.incredibar.prdct", "incredibar"); Supprimée : user_pref("extensions.incredibar.productid", "26"); Supprimée : user_pref("extensions.incredibar.propectorlck", 78509038); Supprimée : user_pref("extensions.incredibar.prtkHmpg", 1); Supprimée : user_pref("extensions.incredibar.prtnrId", "Incredibar"); Supprimée : user_pref("extensions.incredibar.prtnrid", "Incredibar"); Supprimée : user_pref("extensions.incredibar.sg", "none"); Supprimée : user_pref("extensions.incredibar.smplGrp", "none"); Supprimée : user_pref("extensions.incredibar.smplgrp", "none"); Supprimée : user_pref("extensions.incredibar.srch", ""); Supprimée : user_pref("extensions.incredibar.srchprvdr", ""); Supprimée : user_pref("extensions.incredibar.tlbrId", "base"); Supprimée : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8vz7kCN4&loc=IB_T[...] Supprimée : user_pref("extensions.incredibar.tlbrid", "base"); Supprimée : user_pref("extensions.incredibar.tlbrsrchurl", "hxxp://mystart.Incredibar.com/?a=6R8vz7kCN4&loc=IB_T[...] Supprimée : user_pref("extensions.incredibar.upn2", "6R8vz7kCN4"); Supprimée : user_pref("extensions.incredibar.upn2n", "92824510770732714"); Supprimée : user_pref("extensions.incredibar.vrsn", "1.5.11.14"); Supprimée : user_pref("extensions.incredibar.vrsnTs", "1.5.11.1412:23:51"); Supprimée : user_pref("extensions.incredibar.vrsni", "1.5.11.14"); Supprimée : user_pref("extensions.incredibar.vrsnts", "1.5.11.1412:23:51"); Supprimée : user_pref("extensions.incredibar_i.aflt", "orgnl"); Supprimée : user_pref("extensions.incredibar_i.dfltLng", ""); Supprimée : user_pref("extensions.incredibar_i.did", "10665"); Supprimée : user_pref("extensions.incredibar_i.excTlbr", false); Supprimée : user_pref("extensions.incredibar_i.id", "ecf6dc44000000000000002215b7d9d2"); Supprimée : user_pref("extensions.incredibar_i.installerproductid", "26"); Supprimée : user_pref("extensions.incredibar_i.instlDay", "15501"); Supprimée : user_pref("extensions.incredibar_i.instlRef", ""); Supprimée : user_pref("extensions.incredibar_i.ms_url_id", ""); Supprimée : user_pref("extensions.incredibar_i.newTab", false); Supprimée : user_pref("extensions.incredibar_i.ppd", ""); Supprimée : user_pref("extensions.incredibar_i.prdct", "incredibar"); Supprimée : user_pref("extensions.incredibar_i.productid", "26"); Supprimée : user_pref("extensions.incredibar_i.prtnrId", "Incredibar"); Supprimée : user_pref("extensions.incredibar_i.smplGrp", "none"); Supprimée : user_pref("extensions.incredibar_i.tlbrId", "base"); Supprimée : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8vz7kCN4&loc=IB[...] Supprimée : user_pref("extensions.incredibar_i.upn2", "6R8vz7kCN4"); Supprimée : user_pref("extensions.incredibar_i.upn2n", "92824510770732714"); Supprimée : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14"); Supprimée : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1412:23:51"); Supprimée : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14"); Supprimée : user_pref("keyword.URL", "hxxp://mystart.incredibar.com/mb165/?loc=IB_DS&a=6R8vz7kCN4&&i=26&search="[...] Supprimée : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_referrer", "hxxp://us.yhs4.search.y[...] Supprimée : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\[...] ************************* AdwCleaner[s1].txt - [11206 octets] - [28/07/2012 19:54:42] ########## EOF - C:\AdwCleaner[s1].txt - [11335 octets] ##########
  8. voila le resultat present dans le fichier texte: ComboFix 12-07-27.03 - Pepito 28/07/2012 13:52:56.1.4 - x86 Microsoft Windows 7 Édition Intégrale 6.1.7600.0.1252.33.1036.18.2047.1104 [GMT 2:00] Lancé depuis: c:\users\Pepito\Desktop\ComboFix.exe AV: Bitdefender Antivirus *Enabled/Updated* {50909708-FF80-02AF-F814-B28405891E92} FW: Bitdefender Pare-feu *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9} SP: Bitdefender Antispyware *Enabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\Web Assistant\ExTEnsion32.dll c:\program files\WinPCap c:\program files\WinPCap\daemon_mgm.exe c:\program files\WinPCap\INSTALL.LOG c:\program files\WinPCap\npf_mgm.exe c:\program files\WinPCap\rpcapd.exe c:\program files\WinPCap\Uninstall.exe c:\programdata\1315331464.bdinstall.bin c:\users\Pepito\AppData\Roaming\Adobe\plugs c:\users\Pepito\AppData\Roaming\Adobe\shed c:\users\Pepito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 Recovery c:\users\Pepito\AppData\Roaming\system32 c:\users\Pepito\AppData\Roaming\system32\klog.dat c:\users\Pepito\AppData\Roaming\Win32 c:\windows\$NtUninstallKB14342$ c:\windows\$NtUninstallKB14342$\1993215289 c:\windows\isRS-000.tmp c:\windows\security\Database\tmp.edb c:\windows\system32\Packet.dll c:\windows\system32\pthreadVC.dll c:\windows\system32\wpcap.dll . . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_NPF -------\Service_NPF . . ((((((((((((((((((((((((((((( Fichiers créés du 2012-06-28 au 2012-07-28 )))))))))))))))))))))))))))))))))))) . . 2012-07-28 12:03 . 2012-07-28 12:07 -------- d-----w- c:\users\Pepito\AppData\Local\temp 2012-07-28 12:03 . 2012-07-28 12:03 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2012-07-28 12:03 . 2012-07-28 12:03 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-07-28 10:11 . 2012-07-28 11:56 -------- d-----w- c:\users\TEMP 2012-07-21 19:06 . 2012-07-21 19:06 -------- d-----w- c:\program files\Microsoft Visual Studio 8 2012-07-21 19:05 . 2012-07-21 19:05 -------- d-----w- c:\users\Pepito\AppData\Local\Microsoft Help 2012-07-21 19:05 . 2012-07-21 19:34 -------- d-----w- c:\programdata\Microsoft Help 2012-07-18 16:49 . 2012-07-18 16:49 -------- d-----w- c:\users\Pepito\AppData\Roaming\Iminent 2012-07-18 16:46 . 2009-11-25 19:47 49472 ----a-w- c:\windows\system32\netfxperf.dll 2012-07-18 16:46 . 2009-11-25 19:47 297808 ----a-w- c:\windows\system32\mscoree.dll 2012-07-18 16:46 . 2009-11-25 19:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2012-07-18 16:46 . 2009-11-25 19:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe 2012-07-18 16:46 . 2009-11-25 19:47 1130824 ----a-w- c:\windows\system32\dfshim.dll 2012-07-18 13:20 . 2012-07-18 13:20 -------- d-----w- C:\$UPGRADE.~OS 2012-07-18 12:49 . 2009-05-22 20:52 167936 ----a-w- c:\windows\system32\drivers\Rt86win7.sys 2012-07-18 12:49 . 2009-03-05 12:54 73728 ----a-w- c:\windows\system32\RtNicProp32.dll 2012-07-18 12:49 . 2012-07-18 12:49 -------- d-----w- c:\program files\Realtek 2012-07-18 08:43 . 2012-07-28 10:10 -------- d-----w- c:\programdata\Babylon 2012-07-17 19:19 . 2012-05-24 08:47 21888 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe 2012-07-16 16:53 . 2012-07-16 16:53 -------- d-----w- c:\programdata\bdch 2012-07-16 13:16 . 2012-07-16 13:16 -------- d-sh--w- c:\windows\system32\%APPDATA% 2012-06-29 20:37 . 2012-06-29 20:37 -------- d-----w- c:\users\Pepito\AppData\Local\2012 . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-16 13:17 . 2012-03-29 18:32 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-07-16 13:17 . 2011-10-21 23:40 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-07-03 11:46 . 2012-03-29 18:11 22344 ------w- c:\windows\system32\drivers\mbam.sys 2012-06-24 10:09 . 2011-03-28 16:36 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2012-06-10 14:41 . 2012-02-03 19:59 444952 ----a-w- c:\windows\system32\wrap_oal.dll 2012-06-10 14:41 . 2012-02-03 19:59 109080 ----a-w- c:\windows\system32\OpenAL32.dll 2012-05-29 18:46 . 2012-06-13 18:14 31584 ----a-w- c:\windows\system32\TURegOpt.exe 2012-05-29 18:46 . 2012-06-13 18:14 21344 ----a-w- c:\windows\system32\authuitu.dll 2012-05-03 02:54 . 2012-05-03 02:54 42392 ----a-w- c:\windows\system32\xfcodec.dll 2012-07-27 14:14 . 2012-05-11 13:12 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll 2006-05-03 10:06 163328 --sh--r- c:\windows\System32\flvDX.dll 2007-02-21 11:47 31232 --sh--r- c:\windows\System32\msfDX.dll 2008-03-16 13:30 216064 --sh--r- c:\windows\System32\nbDX.dll . . ------- Sigcheck ------- Note: Unsigned files aren't necessarily malware. . [-] 2009-07-14 01:14 . !HASH: COULD NOT OPEN FILE !!!!! . 259072 . . [------] . . c:\windows\System32\services.exe [7] 2009-07-14 . 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 . 259072 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480] "Facebook Update"="c:\users\Pepito\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-12 138096] "ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2010-11-02 1862456] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "USBToolTip"="c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe" [2007-02-20 199752] "Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2010-11-03 1246544] "CamserviceHD"="c:\program files\Hercules\Dualpix HD\XtrCtrlEx.exe" [2011-09-07 3228968] "BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-07-11 1184128] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] "Babylon Client"="c:\program files\Babylon\Babylon-Pro\Babylon.exe" [2010-08-10 3824056] . c:\users\Pepito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Advanced SystemCare 5"="c:\program files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart "Skype"="c:\program files\Skype\Phone\Skype.exe" /minimized /regrun "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" /background . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime "ExpressFiles"="c:\program files\ExpressFiles\ExpressFiles.exe" -tray "LWS"=c:\program files\Logitech\LWS\Webcam Software\LWS.exe -hide . R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x] R3 APL531;Hercules Dualpix HD Webcam;c:\windows\system32\Drivers\HDvidv.sys [x] R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x] R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x] R3 CompFilter;UVCCompositeFilter;c:\windows\system32\DRIVERS\lvbusflt.sys [x] R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [x] R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [x] R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [x] R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x] R3 hxctlflt;hxctlflt;c:\windows\system32\DRIVERS\hxctlflt.sys [x] R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [x] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x] R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x] R3 qcusbser;Qualcomm USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\qcusbser.sys [x] R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [x] R4 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x] S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x] S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x] S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [x] S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [x] S1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x] S2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\IObit\Advanced SystemCare 5\ASCService.exe [x] S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [x] S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [x] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x] S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [x] S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [x] S2 UMVPFSrv;UMVPFSrv;c:\program files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [x] S2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [x] S2 Web Assistant Updater;Web Assistant Updater;c:\program files\Web Assistant\ExtensionUpdaterService.exe [x] S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x] S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys [x] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [x] . . Contenu du dossier 'Tâches planifiées' . 2012-07-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-996121839-2802827057-752244196-1000Core.job - c:\users\Pepito\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-03 08:19] . 2012-07-16 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-996121839-2802827057-752244196-1000UA.job - c:\users\Pepito\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-03 08:19] . . ------- Examen supplémentaire ------- . uStart Page = about:blank mStart Page = about:blank uInternet Settings,ProxyServer = http=;ftp=;https=; IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm TCP: DhcpNameServer = 212.27.40.241 212.27.40.240 FF - ProfilePath - c:\users\Pepito\AppData\Roaming\Mozilla\Firefox\Profiles\v0if034a.default\ FF - prefs.js: browser.search.selectedEngine - FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/ FF - prefs.js: keyword.URL - hxxp://mystart.incredibar.com/mb165/?loc=IB_DS&a=6R8vz7kCN4&&i=26&search= FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: nglayout.initialpaint.delay - 600 FF - user.js: content.notify.interval - 600000 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.switch.threshold - 600000 FF - user.js: extensions.incredibar_i.newTab - false FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6R8vz7kCN4&loc=IB_TB&i=26&search= FF - user.js: extensions.incredibar_i.id - ecf6dc44000000000000002215b7d9d2 FF - user.js: extensions.incredibar_i.instlDay - 15501 FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14 FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14 FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1412:23 FF - user.js: extensions.incredibar_i.prtnrId - Incredibar FF - user.js: extensions.incredibar_i.prdct - incredibar FF - user.js: extensions.incredibar_i.aflt - orgnl FF - user.js: extensions.incredibar_i.smplGrp - none FF - user.js: extensions.incredibar_i.tlbrId - base FF - user.js: extensions.incredibar_i.instlRef - FF - user.js: extensions.incredibar_i.dfltLng - FF - user.js: extensions.incredibar_i.excTlbr - false FF - user.js: extensions.incredibar_i.ms_url_id - FF - user.js: extensions.incredibar_i.upn2 - 6R8vz7kCN4 FF - user.js: extensions.incredibar_i.upn2n - 92824510770732714 FF - user.js: extensions.incredibar_i.productid - 26 FF - user.js: extensions.incredibar_i.installerproductid - 26 FF - user.js: extensions.incredibar_i.did - 10665 FF - user.js: extensions.incredibar_i.ppd - . - - - - ORPHELINS SUPPRIMES - - - - . URLSearchHooks-{ce18769b-c7fa-42d2-860d-17c4662c70ad} - (no file) Toolbar-{ce18769b-c7fa-42d2-860d-17c4662c70ad} - (no file) WebBrowser-{CE18769B-C7FA-42D2-860D-17C4662C70AD} - (no file) AddRemove-WinPcapInst - c:\program files\WinPcap\Uninstall.exe . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\.csc] "ImagePath"="\?" . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000001 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Autres processus actifs ------------------------ . c:\program files\Bitdefender\Bitdefender 2012\vsserv.exe c:\windows\system32\nvvsvc.exe c:\program files\NVIDIA Corporation\Display\nvxdsync.exe c:\windows\system32\nvvsvc.exe c:\programdata\EPSON\EPW!3 SSRP\E_S40ST7.EXE c:\programdata\EPSON\EPW!3 SSRP\E_S40RP7.EXE c:\program files\CDBurnerXP\NMSAccessU.exe c:\windows\system32\sppsvc.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe c:\windows\system32\taskhost.exe c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe c:\windows\system32\conhost.exe c:\program files\NVIDIA Corporation\Display\nvtray.exe c:\program files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe c:\windows\system32\NOTEPAD.EXE c:\program files\Windows Media Player\wmpnetwk.exe c:\windows\system32\DllHost.exe c:\windows\system32\taskhost.exe . ************************************************************************** . Heure de fin: 2012-07-28 14:11:14 - La machine a redémarré ComboFix-quarantined-files.txt 2012-07-28 12:11 . Avant-CF: 5 323 194 368 octets libres Après-CF: 5 106 331 648 octets libres . - - End Of File - - D917D91193D22BBC50416E1C32467818
  9. Bonjour, J'ai retrouvé internet en activant a chaque demarrage du pc, le partage internet dans le pare-feu Bitdefender. Par contre j'ai toujours des trojan existant qui sont soit supprimés par bitdefender au demarrage, ou une demande de redemarrage. J'ai vu un autre sujet, qui avait été résolu par l'aide de Pear pour un sujet identique, en utilisant Combofix. Pour le moment je vous laisse les screens de Bitdefender. Uploaded with ImageShack.us
×
×
  • Créer...