15:21:51.0965 0232 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35 15:21:52.0156 0232 ============================================================ 15:21:52.0156 0232 Current date / time: 2012/07/15 15:21:52.0156 15:21:52.0156 0232 SystemInfo: 15:21:52.0156 0232 15:21:52.0156 0232 OS Version: 6.1.7600 ServicePack: 0.0 15:21:52.0156 0232 Product type: Workstation 15:21:52.0156 0232 ComputerName: KONRAD 15:21:52.0156 0232 UserName: Twarq 15:21:52.0156 0232 Windows directory: C:\Windows 15:21:52.0156 0232 System windows directory: C:\Windows 15:21:52.0156 0232 Processor architecture: Intel x86 15:21:52.0156 0232 Number of processors: 2 15:21:52.0156 0232 Page size: 0x1000 15:21:52.0156 0232 Boot type: Safe boot with network 15:21:52.0156 0232 ============================================================ 15:21:52.0499 0232 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 15:21:52.0499 0232 ============================================================ 15:21:52.0499 0232 \Device\Harddisk0\DR0: 15:21:52.0499 0232 MBR partitions: 15:21:52.0499 0232 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x7ECF5D6 15:21:52.0515 0232 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x7ECF654, BlocksNum 0xEA60903 15:21:52.0531 0232 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1692FF96, BlocksNum 0x11D26775 15:21:52.0546 0232 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2865674A, BlocksNum 0x11D2A636 15:21:52.0546 0232 ============================================================ 15:21:52.0593 0232 C: <-> \Device\Harddisk0\DR0\Partition0 15:21:52.0642 0232 D: <-> \Device\Harddisk0\DR0\Partition1 15:21:52.0676 0232 E: <-> \Device\Harddisk0\DR0\Partition2 15:21:52.0714 0232 F: <-> \Device\Harddisk0\DR0\Partition3 15:21:52.0714 0232 ============================================================ 15:21:52.0714 0232 Initialize success 15:21:52.0714 0232 ============================================================ 15:22:09.0737 0872 ============================================================ 15:22:09.0737 0872 Scan started 15:22:09.0737 0872 Mode: Manual; 15:22:09.0737 0872 ============================================================ 15:22:10.0015 0872 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys 15:22:10.0017 0872 1394ohci - ok 15:22:10.0047 0872 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys 15:22:10.0050 0872 ACPI - ok 15:22:10.0088 0872 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys 15:22:10.0089 0872 AcpiPmi - ok 15:22:10.0163 0872 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 15:22:10.0166 0872 AdobeFlashPlayerUpdateSvc - ok 15:22:10.0201 0872 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 15:22:10.0206 0872 adp94xx - ok 15:22:10.0231 0872 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 15:22:10.0235 0872 adpahci - ok 15:22:10.0298 0872 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 15:22:10.0300 0872 adpu320 - ok 15:22:10.0332 0872 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll 15:22:10.0333 0872 AeLookupSvc - ok 15:22:10.0405 0872 AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys 15:22:10.0409 0872 AFD - ok 15:22:10.0429 0872 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys 15:22:10.0430 0872 agp440 - ok 15:22:10.0457 0872 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 15:22:10.0458 0872 aic78xx - ok 15:22:10.0473 0872 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe 15:22:10.0474 0872 ALG - ok 15:22:10.0492 0872 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys 15:22:10.0493 0872 aliide - ok 15:22:10.0499 0872 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys 15:22:10.0500 0872 amdagp - ok 15:22:10.0515 0872 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys 15:22:10.0516 0872 amdide - ok 15:22:10.0522 0872 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 15:22:10.0523 0872 AmdK8 - ok 15:22:10.0561 0872 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 15:22:10.0562 0872 AmdPPM - ok 15:22:10.0616 0872 amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\Windows\system32\drivers\amdsata.sys 15:22:10.0618 0872 amdsata - ok 15:22:10.0638 0872 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 15:22:10.0641 0872 amdsbs - ok 15:22:10.0676 0872 amdxata (869e67d66be326a5a9159fba8746fa70) C:\Windows\system32\drivers\amdxata.sys 15:22:10.0677 0872 amdxata - ok 15:22:10.0738 0872 androidusb (dd8d9c597af7cd2f6b70a3d6a4a1acea) C:\Windows\system32\Drivers\ssadadb.sys 15:22:10.0739 0872 androidusb - ok 15:22:10.0760 0872 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys 15:22:10.0761 0872 AppID - ok 15:22:10.0781 0872 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll 15:22:10.0781 0872 AppIDSvc - ok 15:22:10.0807 0872 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll 15:22:10.0808 0872 Appinfo - ok 15:22:10.0855 0872 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll 15:22:10.0857 0872 AppMgmt - ok 15:22:10.0880 0872 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 15:22:10.0881 0872 arc - ok 15:22:10.0892 0872 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 15:22:10.0894 0872 arcsas - ok 15:22:11.0042 0872 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe 15:22:11.0058 0872 aspnet_state - ok 15:22:11.0073 0872 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 15:22:11.0073 0872 AsyncMac - ok 15:22:11.0104 0872 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys 15:22:11.0104 0872 atapi - ok 15:22:11.0136 0872 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll 15:22:11.0136 0872 AudioEndpointBuilder - ok 15:22:11.0151 0872 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll 15:22:11.0151 0872 Audiosrv - ok 15:22:11.0198 0872 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll 15:22:11.0198 0872 AxInstSV - ok 15:22:11.0229 0872 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 15:22:11.0229 0872 b06bdrv - ok 15:22:11.0260 0872 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 15:22:11.0260 0872 b57nd60x - ok 15:22:11.0276 0872 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll 15:22:11.0276 0872 BDESVC - ok 15:22:11.0292 0872 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 15:22:11.0292 0872 Beep - ok 15:22:11.0370 0872 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll 15:22:11.0385 0872 BFE - ok 15:22:11.0432 0872 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\System32\qmgr.dll 15:22:11.0494 0872 BITS - ok 15:22:11.0526 0872 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 15:22:11.0526 0872 blbdrive - ok 15:22:11.0576 0872 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys 15:22:11.0578 0872 bowser - ok 15:22:11.0584 0872 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 15:22:11.0585 0872 BrFiltLo - ok 15:22:11.0591 0872 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 15:22:11.0591 0872 BrFiltUp - ok 15:22:11.0610 0872 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys 15:22:11.0612 0872 BridgeMP - ok 15:22:11.0621 0872 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll 15:22:11.0623 0872 Browser - ok 15:22:11.0659 0872 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 15:22:11.0662 0872 Brserid - ok 15:22:11.0667 0872 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 15:22:11.0669 0872 BrSerWdm - ok 15:22:11.0674 0872 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 15:22:11.0675 0872 BrUsbMdm - ok 15:22:11.0680 0872 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 15:22:11.0681 0872 BrUsbSer - ok 15:22:11.0686 0872 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 15:22:11.0687 0872 BTHMODEM - ok 15:22:11.0708 0872 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll 15:22:11.0709 0872 bthserv - ok 15:22:11.0728 0872 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 15:22:11.0729 0872 cdfs - ok 15:22:11.0764 0872 cdrom (a8522a66668a953877ea025f3a8004ee) C:\Windows\system32\DRIVERS\cdrom.sys 15:22:11.0766 0872 Suspicious file (Forged): C:\Windows\system32\DRIVERS\cdrom.sys. Real md5: a8522a66668a953877ea025f3a8004ee, Fake md5: ba6e70aa0e6091bc39de29477d866a77 15:22:11.0766 0872 cdrom ( Virus.Win32.ZAccess.k ) - infected 15:22:11.0767 0872 cdrom - detected Virus.Win32.ZAccess.k (0) 15:22:11.0795 0872 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll 15:22:11.0797 0872 CertPropSvc - ok 15:22:11.0877 0872 cFosSpeed (b74cf06e23095cf29624dda847870942) C:\Windows\system32\DRIVERS\cfosspeed6.sys 15:22:11.0883 0872 cFosSpeed - ok 15:22:11.0887 0872 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 15:22:11.0888 0872 circlass - ok 15:22:11.0917 0872 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 15:22:11.0920 0872 CLFS - ok 15:22:11.0975 0872 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 15:22:11.0977 0872 clr_optimization_v2.0.50727_32 - ok 15:22:12.0099 0872 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 15:22:12.0196 0872 clr_optimization_v4.0.30319_32 - ok 15:22:12.0223 0872 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 15:22:12.0224 0872 CmBatt - ok 15:22:12.0237 0872 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys 15:22:12.0238 0872 cmdide - ok 15:22:12.0279 0872 CNG (36c252e474b2ffa0f0fbbff20d92a640) C:\Windows\system32\Drivers\cng.sys 15:22:12.0283 0872 CNG - ok 15:22:12.0292 0872 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 15:22:12.0293 0872 Compbatt - ok 15:22:12.0314 0872 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys 15:22:12.0315 0872 CompositeBus - ok 15:22:12.0331 0872 COMSysApp - ok 15:22:12.0353 0872 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 15:22:12.0354 0872 crcdisk - ok 15:22:12.0383 0872 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll 15:22:12.0385 0872 CryptSvc - ok 15:22:12.0423 0872 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys 15:22:12.0428 0872 CSC - ok 15:22:12.0459 0872 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll 15:22:12.0465 0872 CscService - ok 15:22:12.0504 0872 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll 15:22:12.0509 0872 DcomLaunch - ok 15:22:12.0542 0872 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll 15:22:12.0544 0872 defragsvc - ok 15:22:12.0609 0872 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys 15:22:12.0609 0872 DfsC - ok 15:22:12.0624 0872 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll 15:22:12.0624 0872 Dhcp - ok 15:22:12.0671 0872 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 15:22:12.0671 0872 discache - ok 15:22:12.0718 0872 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 15:22:12.0718 0872 Disk - ok 15:22:12.0749 0872 Dnscache (b15be77a2bacf9c3177d27518afe26a9) C:\Windows\System32\dnsrslvr.dll 15:22:12.0749 0872 Dnscache - ok 15:22:12.0765 0872 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll 15:22:12.0781 0872 dot3svc - ok 15:22:12.0793 0872 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll 15:22:12.0795 0872 DPS - ok 15:22:12.0836 0872 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 15:22:12.0836 0872 drmkaud - ok 15:22:12.0872 0872 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 15:22:12.0874 0872 dtsoftbus01 - ok 15:22:12.0925 0872 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys 15:22:12.0932 0872 DXGKrnl - ok 15:22:12.0950 0872 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll 15:22:12.0951 0872 EapHost - ok 15:22:13.0096 0872 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 15:22:13.0125 0872 ebdrv - ok 15:22:13.0219 0872 EFS (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\System32\lsass.exe 15:22:13.0221 0872 EFS - ok 15:22:13.0294 0872 ehRecvr (1697c39978cd69f6fbc15302edcece1f) C:\Windows\ehome\ehRecvr.exe 15:22:13.0300 0872 ehRecvr - ok 15:22:13.0329 0872 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe 15:22:13.0331 0872 ehSched - ok 15:22:13.0416 0872 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 15:22:13.0420 0872 elxstor - ok 15:22:13.0437 0872 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys 15:22:13.0438 0872 ErrDev - ok 15:22:13.0485 0872 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll 15:22:13.0489 0872 EventSystem - ok 15:22:13.0511 0872 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 15:22:13.0513 0872 exfat - ok 15:22:13.0528 0872 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 15:22:13.0530 0872 fastfat - ok 15:22:13.0586 0872 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe 15:22:13.0592 0872 Fax - ok 15:22:13.0603 0872 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 15:22:13.0604 0872 fdc - ok 15:22:13.0616 0872 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll 15:22:13.0617 0872 fdPHost - ok 15:22:13.0628 0872 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll 15:22:13.0629 0872 FDResPub - ok 15:22:13.0645 0872 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 15:22:13.0646 0872 FileInfo - ok 15:22:13.0654 0872 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 15:22:13.0655 0872 Filetrace - ok 15:22:13.0673 0872 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 15:22:13.0674 0872 flpydisk - ok 15:22:13.0718 0872 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 15:22:13.0721 0872 FltMgr - ok 15:22:13.0769 0872 FontCache (7fe4995528a7529a761875151ee3d512) C:\Windows\system32\FntCache.dll 15:22:13.0784 0872 FontCache - ok 15:22:13.0847 0872 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 15:22:13.0847 0872 FontCache3.0.0.0 - ok 15:22:13.0862 0872 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 15:22:13.0862 0872 FsDepends - ok 15:22:13.0878 0872 Fs_Rec (500a9814fd9446a8126858a5a7f7d273) C:\Windows\system32\drivers\Fs_Rec.sys 15:22:13.0878 0872 Fs_Rec - ok 15:22:13.0925 0872 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys 15:22:13.0925 0872 fvevol - ok 15:22:13.0956 0872 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 15:22:13.0956 0872 gagp30kx - ok 15:22:13.0987 0872 gdrv (c6e3105b8c68c35cc1eb26a00fd1a8c6) C:\Windows\gdrv.sys 15:22:13.0987 0872 gdrv - ok 15:22:14.0047 0872 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll 15:22:14.0053 0872 gpsvc - ok 15:22:14.0094 0872 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys 15:22:14.0095 0872 hamachi - ok 15:22:14.0212 0872 Hamachi2Svc (f31d7f8a7699575dbb3b3a3ab4aa6216) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe 15:22:14.0226 0872 Hamachi2Svc - ok 15:22:14.0421 0872 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 15:22:14.0422 0872 hcw85cir - ok 15:22:14.0468 0872 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys 15:22:14.0471 0872 HdAudAddService - ok 15:22:14.0492 0872 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys 15:22:14.0493 0872 HDAudBus - ok 15:22:14.0522 0872 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 15:22:14.0523 0872 HidBatt - ok 15:22:14.0530 0872 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 15:22:14.0532 0872 HidBth - ok 15:22:14.0541 0872 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 15:22:14.0542 0872 HidIr - ok 15:22:14.0571 0872 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll 15:22:14.0572 0872 hidserv - ok 15:22:14.0601 0872 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys 15:22:14.0602 0872 HidUsb - ok 15:22:14.0679 0872 HiPatchService (8d1f00f4254c3ef428b715484940427c) C:\Program Files\Hi-Rez Studios\HiPatchService.exe 15:22:14.0680 0872 HiPatchService - ok 15:22:14.0707 0872 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll 15:22:14.0708 0872 hkmsvc - ok 15:22:14.0722 0872 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll 15:22:14.0725 0872 HomeGroupListener - ok 15:22:14.0759 0872 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll 15:22:14.0761 0872 HomeGroupProvider - ok 15:22:14.0781 0872 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys 15:22:14.0783 0872 HpSAMD - ok 15:22:14.0821 0872 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys 15:22:14.0826 0872 HTTP - ok 15:22:14.0834 0872 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys 15:22:14.0835 0872 hwpolicy - ok 15:22:14.0855 0872 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys 15:22:14.0856 0872 i8042prt - ok 15:22:14.0893 0872 iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\Windows\system32\drivers\iaStorV.sys 15:22:14.0897 0872 iaStorV - ok 15:22:14.0989 0872 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 15:22:15.0005 0872 idsvc - ok 15:22:15.0099 0872 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 15:22:15.0099 0872 iirsp - ok 15:22:15.0145 0872 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll 15:22:15.0145 0872 IKEEXT - ok 15:22:15.0287 0872 IntcAzAudAddService (bdc429c7ebdac534a959bf179ff4c63e) C:\Windows\system32\drivers\RTKVHDA.sys 15:22:15.0308 0872 IntcAzAudAddService - ok 15:22:15.0467 0872 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys 15:22:15.0468 0872 intelide - ok 15:22:15.0485 0872 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 15:22:15.0486 0872 intelppm - ok 15:22:15.0501 0872 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll 15:22:15.0503 0872 IPBusEnum - ok 15:22:15.0507 0872 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 15:22:15.0508 0872 IpFilterDriver - ok 15:22:15.0556 0872 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll 15:22:15.0561 0872 iphlpsvc - ok 15:22:15.0566 0872 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys 15:22:15.0568 0872 IPMIDRV - ok 15:22:15.0573 0872 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 15:22:15.0575 0872 IPNAT - ok 15:22:15.0600 0872 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 15:22:15.0600 0872 IRENUM - ok 15:22:15.0618 0872 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys 15:22:15.0620 0872 isapnp - ok 15:22:15.0641 0872 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys 15:22:15.0644 0872 iScsiPrt - ok 15:22:15.0671 0872 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys 15:22:15.0672 0872 kbdclass - ok 15:22:15.0695 0872 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys 15:22:15.0696 0872 kbdhid - ok 15:22:15.0719 0872 KeyIso (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe 15:22:15.0720 0872 KeyIso - ok 15:22:15.0734 0872 KSecDD (0263364acb9c834ace52fb85c2c064ec) C:\Windows\system32\Drivers\ksecdd.sys 15:22:15.0735 0872 KSecDD - ok 15:22:15.0752 0872 KSecPkg (27391db553be2a4e2b0adeea2873b2af) C:\Windows\system32\Drivers\ksecpkg.sys 15:22:15.0754 0872 KSecPkg - ok 15:22:15.0785 0872 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll 15:22:15.0790 0872 KtmRm - ok 15:22:15.0826 0872 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\Windows\System32\srvsvc.dll 15:22:15.0840 0872 LanmanServer - ok 15:22:15.0890 0872 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll 15:22:15.0892 0872 LanmanWorkstation - ok 15:22:15.0937 0872 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 15:22:15.0939 0872 lltdio - ok 15:22:15.0970 0872 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll 15:22:15.0974 0872 lltdsvc - ok 15:22:15.0988 0872 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll 15:22:15.0990 0872 lmhosts - ok 15:22:16.0024 0872 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 15:22:16.0026 0872 LSI_FC - ok 15:22:16.0043 0872 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 15:22:16.0045 0872 LSI_SAS - ok 15:22:16.0064 0872 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 15:22:16.0066 0872 LSI_SAS2 - ok 15:22:16.0087 0872 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 15:22:16.0088 0872 LSI_SCSI - ok 15:22:16.0114 0872 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 15:22:16.0115 0872 luafv - ok 15:22:16.0144 0872 lxcc_device - ok 15:22:16.0171 0872 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll 15:22:16.0173 0872 Mcx2Svc - ok 15:22:16.0183 0872 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 15:22:16.0184 0872 megasas - ok 15:22:16.0217 0872 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 15:22:16.0217 0872 MegaSR - ok 15:22:16.0233 0872 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll 15:22:16.0233 0872 MMCSS - ok 15:22:16.0248 0872 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 15:22:16.0264 0872 Modem - ok 15:22:16.0295 0872 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 15:22:16.0295 0872 monitor - ok 15:22:16.0311 0872 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 15:22:16.0311 0872 mouclass - ok 15:22:16.0326 0872 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 15:22:16.0326 0872 mouhid - ok 15:22:16.0342 0872 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys 15:22:16.0342 0872 mountmgr - ok 15:22:16.0373 0872 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys 15:22:16.0373 0872 mpio - ok 15:22:16.0389 0872 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 15:22:16.0389 0872 mpsdrv - ok 15:22:16.0404 0872 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys 15:22:16.0404 0872 MRxDAV - ok 15:22:16.0457 0872 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys 15:22:16.0458 0872 mrxsmb - ok 15:22:16.0482 0872 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys 15:22:16.0484 0872 mrxsmb10 - ok 15:22:16.0504 0872 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys 15:22:16.0505 0872 mrxsmb20 - ok 15:22:16.0522 0872 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys 15:22:16.0523 0872 msahci - ok 15:22:16.0546 0872 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys 15:22:16.0548 0872 msdsm - ok 15:22:16.0574 0872 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe 15:22:16.0577 0872 MSDTC - ok 15:22:16.0592 0872 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 15:22:16.0593 0872 Msfs - ok 15:22:16.0609 0872 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 15:22:16.0609 0872 mshidkmdf - ok 15:22:16.0619 0872 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys 15:22:16.0620 0872 msisadrv - ok 15:22:16.0643 0872 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll 15:22:16.0645 0872 MSiSCSI - ok 15:22:16.0648 0872 msiserver - ok 15:22:16.0671 0872 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 15:22:16.0672 0872 MSKSSRV - ok 15:22:16.0690 0872 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 15:22:16.0691 0872 MSPCLOCK - ok 15:22:16.0694 0872 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 15:22:16.0695 0872 MSPQM - ok 15:22:16.0716 0872 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 15:22:16.0718 0872 MsRPC - ok 15:22:16.0727 0872 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys 15:22:16.0727 0872 mssmbios - ok 15:22:16.0743 0872 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 15:22:16.0744 0872 MSTEE - ok 15:22:16.0747 0872 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 15:22:16.0748 0872 MTConfig - ok 15:22:16.0757 0872 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 15:22:16.0758 0872 Mup - ok 15:22:16.0789 0872 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll 15:22:16.0794 0872 napagent - ok 15:22:16.0834 0872 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 15:22:16.0838 0872 NativeWifiP - ok 15:22:16.0892 0872 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys 15:22:16.0899 0872 NDIS - ok 15:22:16.0915 0872 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 15:22:16.0916 0872 NdisCap - ok 15:22:16.0933 0872 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 15:22:16.0933 0872 NdisTapi - ok 15:22:16.0948 0872 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys 15:22:16.0949 0872 Ndisuio - ok 15:22:16.0968 0872 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys 15:22:16.0969 0872 NdisWan - ok 15:22:16.0978 0872 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys 15:22:16.0980 0872 NDProxy - ok 15:22:16.0990 0872 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 15:22:16.0991 0872 NetBIOS - ok 15:22:17.0008 0872 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys 15:22:17.0011 0872 NetBT - ok 15:22:17.0035 0872 Netlogon (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe 15:22:17.0036 0872 Netlogon - ok 15:22:17.0083 0872 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll 15:22:17.0087 0872 Netman - ok 15:22:17.0213 0872 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 15:22:17.0231 0872 NetMsmqActivator - ok 15:22:17.0234 0872 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 15:22:17.0235 0872 NetPipeActivator - ok 15:22:17.0248 0872 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll 15:22:17.0253 0872 netprofm - ok 15:22:17.0255 0872 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 15:22:17.0256 0872 NetTcpActivator - ok 15:22:17.0259 0872 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 15:22:17.0260 0872 NetTcpPortSharing - ok 15:22:17.0286 0872 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 15:22:17.0287 0872 nfrd960 - ok 15:22:17.0299 0872 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll 15:22:17.0302 0872 NlaSvc - ok 15:22:17.0320 0872 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 15:22:17.0321 0872 Npfs - ok 15:22:17.0339 0872 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll 15:22:17.0341 0872 nsi - ok 15:22:17.0347 0872 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 15:22:17.0348 0872 nsiproxy - ok 15:22:17.0423 0872 Ntfs (187002ce05693c306f43c873f821381f) C:\Windows\system32\drivers\Ntfs.sys 15:22:17.0439 0872 Ntfs - ok 15:22:17.0532 0872 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 15:22:17.0532 0872 Null - ok 15:22:17.0610 0872 NVENETFD (c7859d19648d45ee888666c044ecab23) C:\Windows\system32\DRIVERS\nvmfdx32.sys 15:22:17.0626 0872 NVENETFD - ok 15:22:18.0023 0872 nvlddmkm (e891b3979f0cf2740c1b073f834221fe) C:\Windows\system32\DRIVERS\nvlddmkm.sys 15:22:18.0193 0872 nvlddmkm - ok 15:22:18.0307 0872 nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\Windows\system32\drivers\nvraid.sys 15:22:18.0310 0872 nvraid - ok 15:22:18.0342 0872 nvstor (4520b63899e867f354ee012d34e11536) C:\Windows\system32\drivers\nvstor.sys 15:22:18.0345 0872 nvstor - ok 15:22:18.0372 0872 nvstor32 (8ee374b6fb3cb2bb8d70395218b464a5) C:\Windows\system32\DRIVERS\nvstor32.sys 15:22:18.0373 0872 nvstor32 - ok 15:22:18.0432 0872 nvsvc (ae2de8e165dcb93a66b21748e6f913df) C:\Windows\system32\nvvsvc.exe 15:22:18.0440 0872 nvsvc - ok 15:22:18.0585 0872 nvUpdatusService (c78581c14699c46fe0f0817416383134) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 15:22:18.0607 0872 nvUpdatusService - ok 15:22:18.0738 0872 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys 15:22:18.0738 0872 nv_agp - ok 15:22:18.0754 0872 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys 15:22:18.0754 0872 ohci1394 - ok 15:22:18.0847 0872 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 15:22:18.0847 0872 ose - ok 15:22:19.0096 0872 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 15:22:19.0139 0872 osppsvc - ok 15:22:19.0242 0872 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll 15:22:19.0246 0872 p2pimsvc - ok 15:22:19.0285 0872 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll 15:22:19.0289 0872 p2psvc - ok 15:22:19.0354 0872 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 15:22:19.0355 0872 Parport - ok 15:22:19.0368 0872 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys 15:22:19.0369 0872 partmgr - ok 15:22:19.0384 0872 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 15:22:19.0385 0872 Parvdm - ok 15:22:19.0407 0872 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll 15:22:19.0410 0872 PcaSvc - ok 15:22:19.0431 0872 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys 15:22:19.0433 0872 pci - ok 15:22:19.0450 0872 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys 15:22:19.0451 0872 pciide - ok 15:22:19.0468 0872 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 15:22:19.0470 0872 pcmcia - ok 15:22:19.0501 0872 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 15:22:19.0502 0872 pcw - ok 15:22:19.0556 0872 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 15:22:19.0563 0872 PEAUTH - ok 15:22:19.0619 0872 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll 15:22:19.0629 0872 PeerDistSvc - ok 15:22:19.0701 0872 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll 15:22:19.0716 0872 pla - ok 15:22:19.0834 0872 PlugPlay (71def5ec79774c798342d0ea16e41780) C:\Windows\system32\umpnpmgr.dll 15:22:19.0838 0872 PlugPlay - ok 15:22:19.0855 0872 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll 15:22:19.0857 0872 PNRPAutoReg - ok 15:22:19.0884 0872 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll 15:22:19.0886 0872 PNRPsvc - ok 15:22:19.0914 0872 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll 15:22:19.0919 0872 PolicyAgent - ok 15:22:19.0945 0872 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll 15:22:19.0947 0872 Power - ok 15:22:19.0993 0872 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 15:22:20.0009 0872 PptpMiniport - ok 15:22:20.0025 0872 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 15:22:20.0025 0872 Processor - ok 15:22:20.0040 0872 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll 15:22:20.0056 0872 ProfSvc - ok 15:22:20.0087 0872 ProtectedStorage (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe 15:22:20.0087 0872 ProtectedStorage - ok 15:22:20.0118 0872 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 15:22:20.0118 0872 Psched - ok 15:22:20.0181 0872 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 15:22:20.0196 0872 ql2300 - ok 15:22:20.0290 0872 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 15:22:20.0305 0872 ql40xx - ok 15:22:20.0324 0872 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll 15:22:20.0328 0872 QWAVE - ok 15:22:20.0342 0872 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 15:22:20.0342 0872 QWAVEdrv - ok 15:22:20.0361 0872 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 15:22:20.0361 0872 RasAcd - ok 15:22:20.0385 0872 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 15:22:20.0386 0872 RasAgileVpn - ok 15:22:20.0395 0872 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll 15:22:20.0397 0872 RasAuto - ok 15:22:20.0407 0872 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 15:22:20.0408 0872 Rasl2tp - ok 15:22:20.0890 0872 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll 15:22:20.0902 0872 RasMan - ok 15:22:21.0002 0872 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 15:22:21.0020 0872 RasPppoe - ok 15:22:21.0072 0872 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 15:22:21.0084 0872 RasSstp - ok 15:22:21.0280 0872 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys 15:22:21.0280 0872 rdbss - ok 15:22:21.0296 0872 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 15:22:21.0296 0872 rdpbus - ok 15:22:21.0312 0872 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys 15:22:21.0312 0872 RDPCDD - ok 15:22:21.0343 0872 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys 15:22:21.0343 0872 RDPDR - ok 15:22:21.0374 0872 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 15:22:21.0374 0872 RDPENCDD - ok 15:22:21.0390 0872 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 15:22:21.0390 0872 RDPREFMP - ok 15:22:21.0405 0872 RDPWD (0399c725a9c95a6f1862b93f008ddf4a) C:\Windows\system32\drivers\RDPWD.sys 15:22:21.0405 0872 RDPWD - ok 15:22:21.0421 0872 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys 15:22:21.0436 0872 rdyboost - ok 15:22:21.0452 0872 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll 15:22:21.0452 0872 RemoteAccess - ok 15:22:21.0483 0872 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll 15:22:21.0483 0872 RemoteRegistry - ok 15:22:21.0535 0872 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll 15:22:21.0537 0872 RpcEptMapper - ok 15:22:21.0545 0872 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe 15:22:21.0546 0872 RpcLocator - ok 15:22:21.0571 0872 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll 15:22:21.0574 0872 RpcSs - ok 15:22:21.0592 0872 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 15:22:21.0594 0872 rspndr - ok 15:22:21.0612 0872 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys 15:22:21.0622 0872 s3cap - ok 15:22:21.0647 0872 SamSs (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe 15:22:21.0648 0872 SamSs - ok 15:22:21.0676 0872 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys 15:22:21.0678 0872 sbp2port - ok 15:22:21.0685 0872 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll 15:22:21.0687 0872 SCardSvr - ok 15:22:21.0712 0872 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys 15:22:21.0713 0872 scfilter - ok 15:22:21.0770 0872 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\Windows\system32\schedsvc.dll 15:22:21.0779 0872 Schedule - ok 15:22:21.0805 0872 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll 15:22:21.0805 0872 SCPolicySvc - ok 15:22:21.0833 0872 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll 15:22:21.0836 0872 SDRSVC - ok 15:22:21.0853 0872 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 15:22:21.0854 0872 secdrv - ok 15:22:21.0871 0872 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll 15:22:21.0872 0872 seclogon - ok 15:22:21.0900 0872 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll 15:22:21.0901 0872 SENS - ok 15:22:21.0923 0872 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll 15:22:21.0924 0872 SensrSvc - ok 15:22:21.0948 0872 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 15:22:21.0950 0872 Serenum - ok 15:22:21.0961 0872 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 15:22:21.0963 0872 Serial - ok 15:22:21.0974 0872 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 15:22:21.0975 0872 sermouse - ok 15:22:22.0015 0872 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll 15:22:22.0018 0872 SessionEnv - ok 15:22:22.0034 0872 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys 15:22:22.0035 0872 sffdisk - ok 15:22:22.0037 0872 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys 15:22:22.0038 0872 sffp_mmc - ok 15:22:22.0042 0872 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys 15:22:22.0043 0872 sffp_sd - ok 15:22:22.0046 0872 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 15:22:22.0047 0872 sfloppy - ok 15:22:22.0077 0872 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll 15:22:22.0082 0872 ShellHWDetection - ok 15:22:22.0087 0872 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys 15:22:22.0088 0872 sisagp - ok 15:22:22.0112 0872 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 15:22:22.0113 0872 SiSRaid2 - ok 15:22:22.0128 0872 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 15:22:22.0129 0872 SiSRaid4 - ok 15:22:22.0201 0872 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files\Skype\Updater\Updater.exe 15:22:22.0203 0872 SkypeUpdate - ok 15:22:22.0219 0872 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 15:22:22.0221 0872 Smb - ok 15:22:22.0253 0872 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe 15:22:22.0255 0872 SNMPTRAP - ok 15:22:22.0269 0872 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 15:22:22.0270 0872 spldr - ok 15:22:22.0307 0872 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\Windows\System32\spoolsv.exe 15:22:22.0312 0872 Spooler - ok 15:22:22.0427 0872 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe 15:22:22.0458 0872 sppsvc - ok 15:22:22.0534 0872 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll 15:22:22.0534 0872 sppuinotify - ok 15:22:22.0597 0872 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys 15:22:22.0597 0872 srv - ok 15:22:22.0612 0872 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys 15:22:22.0628 0872 srv2 - ok 15:22:22.0643 0872 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys 15:22:22.0643 0872 srvnet - ok 15:22:22.0706 0872 ssadbus (64e44acd8c238fcbbb78f0ba4bdc4b05) C:\Windows\system32\DRIVERS\ssadbus.sys 15:22:22.0706 0872 ssadbus - ok 15:22:22.0737 0872 ssadmdfl (bb2c84a15c765da89fd832b0e73f26ce) C:\Windows\system32\DRIVERS\ssadmdfl.sys 15:22:22.0737 0872 ssadmdfl - ok 15:22:22.0768 0872 ssadmdm (6d0d132ddc6f43eda00dced6d8b1ca31) C:\Windows\system32\DRIVERS\ssadmdm.sys 15:22:22.0768 0872 ssadmdm - ok 15:22:22.0815 0872 ssadserd (1a5a397bc459f346ab56492b61ef79f6) C:\Windows\system32\DRIVERS\ssadserd.sys 15:22:22.0831 0872 ssadserd - ok 15:22:22.0862 0872 sscdbus (069351a1d7d291013177a90ae6edccbc) C:\Windows\system32\DRIVERS\sscdbus.sys 15:22:22.0877 0872 sscdbus - ok 15:22:22.0924 0872 sscdmdfl (1c925be223a5c0f9f469252292a48df6) C:\Windows\system32\DRIVERS\sscdmdfl.sys 15:22:22.0924 0872 sscdmdfl - ok 15:22:22.0955 0872 sscdmdm (ae3e77ae0fbdb07eb1ac3fed74a0695e) C:\Windows\system32\DRIVERS\sscdmdm.sys 15:22:22.0955 0872 sscdmdm - ok 15:22:23.0018 0872 sscdserd (6c239402a3303c66016f5f915e0e8698) C:\Windows\system32\DRIVERS\sscdserd.sys 15:22:23.0018 0872 sscdserd - ok 15:22:23.0049 0872 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll 15:22:23.0049 0872 SSDPSRV - ok 15:22:23.0065 0872 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll 15:22:23.0065 0872 SstpSvc - ok 15:22:23.0138 0872 Steam Client Service - ok 15:22:23.0264 0872 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 15:22:23.0269 0872 Stereo Service - ok 15:22:23.0292 0872 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 15:22:23.0293 0872 stexstor - ok 15:22:23.0332 0872 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll 15:22:23.0338 0872 StiSvc - ok 15:22:23.0356 0872 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys 15:22:23.0357 0872 storflt - ok 15:22:23.0370 0872 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys 15:22:23.0371 0872 storvsc - ok 15:22:23.0386 0872 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys 15:22:23.0387 0872 swenum - ok 15:22:23.0405 0872 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll 15:22:23.0410 0872 swprv - ok 15:22:23.0459 0872 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll 15:22:23.0471 0872 SysMain - ok 15:22:23.0476 0872 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll 15:22:23.0479 0872 TabletInputService - ok 15:22:23.0487 0872 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll 15:22:23.0491 0872 TapiSrv - ok 15:22:23.0509 0872 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll 15:22:23.0511 0872 TBS - ok 15:22:23.0602 0872 Tcpip (56c198ac82efa622dd93e9e43575f79c) C:\Windows\system32\drivers\tcpip.sys 15:22:23.0614 0872 Tcpip - ok 15:22:23.0739 0872 TCPIP6 (56c198ac82efa622dd93e9e43575f79c) C:\Windows\system32\DRIVERS\tcpip.sys 15:22:23.0746 0872 TCPIP6 - ok 15:22:23.0802 0872 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys 15:22:23.0803 0872 tcpipreg - ok 15:22:23.0821 0872 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys 15:22:23.0822 0872 TDPIPE - ok 15:22:23.0855 0872 TDTCP (7156308896d34ea75a582f9a09e50c17) C:\Windows\system32\drivers\tdtcp.sys 15:22:23.0856 0872 TDTCP - ok 15:22:23.0885 0872 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys 15:22:23.0887 0872 tdx - ok 15:22:23.0895 0872 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys 15:22:23.0896 0872 TermDD - ok 15:22:23.0927 0872 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll 15:22:23.0934 0872 TermService - ok 15:22:23.0946 0872 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll 15:22:23.0948 0872 Themes - ok 15:22:23.0967 0872 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll 15:22:23.0968 0872 THREADORDER - ok 15:22:23.0988 0872 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll 15:22:23.0990 0872 TrkWks - ok 15:22:24.0057 0872 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe 15:22:24.0059 0872 TrustedInstaller - ok 15:22:24.0069 0872 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys 15:22:24.0070 0872 tssecsrv - ok 15:22:24.0099 0872 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys 15:22:24.0101 0872 tunnel - ok 15:22:24.0117 0872 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 15:22:24.0117 0872 uagp35 - ok 15:22:24.0149 0872 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys 15:22:24.0149 0872 udfs - ok 15:22:24.0180 0872 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe 15:22:24.0180 0872 UI0Detect - ok 15:22:24.0211 0872 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys 15:22:24.0211 0872 uliagpkx - ok 15:22:24.0242 0872 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys 15:22:24.0242 0872 umbus - ok 15:22:24.0258 0872 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 15:22:24.0258 0872 UmPass - ok 15:22:24.0273 0872 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll 15:22:24.0273 0872 UmRdpService - ok 15:22:24.0308 0872 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll 15:22:24.0312 0872 upnphost - ok 15:22:24.0342 0872 usbccgp (c31ae588e403042632dc796cf09e30b0) C:\Windows\system32\DRIVERS\usbccgp.sys 15:22:24.0344 0872 usbccgp - ok 15:22:24.0359 0872 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys 15:22:24.0361 0872 usbcir - ok 15:22:24.0385 0872 usbehci (e4c436d914768ce965d5e659ba7eebd8) C:\Windows\system32\DRIVERS\usbehci.sys 15:22:24.0387 0872 usbehci - ok 15:22:24.0429 0872 usbhub (bdcd7156ec37448f08633fd899823620) C:\Windows\system32\DRIVERS\usbhub.sys 15:22:24.0433 0872 usbhub - ok 15:22:24.0477 0872 usbohci (eb2d819a639015253c871cda09d91d58) C:\Windows\system32\DRIVERS\usbohci.sys 15:22:24.0479 0872 usbohci - ok 15:22:24.0514 0872 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 15:22:24.0515 0872 usbprint - ok 15:22:24.0554 0872 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys 15:22:24.0555 0872 usbscan - ok 15:22:24.0578 0872 USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\Windows\system32\DRIVERS\USBSTOR.SYS 15:22:24.0579 0872 USBSTOR - ok 15:22:24.0604 0872 usbuhci (22480bf4e5a09192e5e30ba4dde79fa4) C:\Windows\system32\drivers\usbuhci.sys 15:22:24.0605 0872 usbuhci - ok 15:22:24.0654 0872 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll 15:22:24.0657 0872 UxSms - ok 15:22:24.0690 0872 VaultSvc (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe 15:22:24.0691 0872 VaultSvc - ok 15:22:24.0713 0872 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys 15:22:24.0714 0872 vdrvroot - ok 15:22:24.0743 0872 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe 15:22:24.0748 0872 vds - ok 15:22:24.0752 0872 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 15:22:24.0753 0872 vga - ok 15:22:24.0762 0872 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 15:22:24.0763 0872 VgaSave - ok 15:22:24.0778 0872 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys 15:22:24.0781 0872 vhdmp - ok 15:22:24.0799 0872 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys 15:22:24.0800 0872 viaagp - ok 15:22:24.0804 0872 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 15:22:24.0805 0872 ViaC7 - ok 15:22:24.0819 0872 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys 15:22:24.0820 0872 viaide - ok 15:22:24.0852 0872 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys 15:22:24.0854 0872 vmbus - ok 15:22:24.0857 0872 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys 15:22:24.0858 0872 VMBusHID - ok 15:22:24.0878 0872 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys 15:22:24.0879 0872 volmgr - ok 15:22:24.0902 0872 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 15:22:24.0905 0872 volmgrx - ok 15:22:24.0916 0872 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys 15:22:24.0919 0872 volsnap - ok 15:22:24.0982 0872 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 15:22:24.0984 0872 vsmraid - ok 15:22:25.0084 0872 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe 15:22:25.0095 0872 VSS - ok 15:22:25.0102 0872 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 15:22:25.0103 0872 vwifibus - ok 15:22:25.0116 0872 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll 15:22:25.0120 0872 W32Time - ok 15:22:25.0138 0872 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 15:22:25.0139 0872 WacomPen - ok 15:22:25.0161 0872 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 15:22:25.0162 0872 WANARP - ok 15:22:25.0165 0872 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 15:22:25.0165 0872 Wanarpv6 - ok 15:22:25.0223 0872 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe 15:22:25.0237 0872 wbengine - ok 15:22:25.0254 0872 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll 15:22:25.0257 0872 WbioSrvc - ok 15:22:25.0295 0872 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\Windows\System32\wcncsvc.dll 15:22:25.0295 0872 wcncsvc - ok 15:22:25.0295 0872 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll 15:22:25.0295 0872 WcsPlugInService - ok 15:22:25.0341 0872 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 15:22:25.0341 0872 Wd - ok 15:22:25.0373 0872 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 15:22:25.0388 0872 Wdf01000 - ok 15:22:25.0404 0872 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll 15:22:25.0404 0872 WdiServiceHost - ok 15:22:25.0404 0872 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll 15:22:25.0404 0872 WdiSystemHost - ok 15:22:25.0435 0872 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\Windows\System32\webclnt.dll 15:22:25.0435 0872 WebClient - ok 15:22:25.0466 0872 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll 15:22:25.0466 0872 Wecsvc - ok 15:22:25.0482 0872 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll 15:22:25.0482 0872 wercplsupport - ok 15:22:25.0513 0872 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll 15:22:25.0513 0872 WerSvc - ok 15:22:25.0529 0872 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 15:22:25.0529 0872 WfpLwf - ok 15:22:25.0544 0872 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 15:22:25.0544 0872 WIMMount - ok 15:22:25.0669 0872 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 15:22:25.0669 0872 WinDefend - ok 15:22:25.0685 0872 WinHttpAutoProxySvc - ok 15:22:25.0716 0872 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll 15:22:25.0716 0872 Winmgmt - ok 15:22:25.0791 0872 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll 15:22:25.0804 0872 WinRM - ok 15:22:25.0901 0872 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys 15:22:25.0902 0872 WinUsb - ok 15:22:25.0948 0872 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll 15:22:25.0958 0872 Wlansvc - ok 15:22:25.0986 0872 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys 15:22:25.0987 0872 WmiAcpi - ok 15:22:26.0004 0872 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe 15:22:26.0005 0872 wmiApSrv - ok 15:22:26.0107 0872 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe 15:22:26.0118 0872 WMPNetworkSvc - ok 15:22:26.0210 0872 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll 15:22:26.0212 0872 WPCSvc - ok 15:22:26.0223 0872 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll 15:22:26.0225 0872 WPDBusEnum - ok 15:22:26.0252 0872 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 15:22:26.0253 0872 ws2ifsl - ok 15:22:26.0302 0872 wscsvc (a661a76333057b383a06e65f0073222f) C:\Windows\system32\wscsvc.dll 15:22:26.0304 0872 wscsvc - ok 15:22:26.0307 0872 WSearch - ok 15:22:26.0412 0872 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll 15:22:26.0431 0872 wuauserv - ok 15:22:26.0465 0872 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys 15:22:26.0466 0872 WudfPf - ok 15:22:26.0496 0872 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys 15:22:26.0498 0872 WUDFRd - ok 15:22:26.0516 0872 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll 15:22:26.0519 0872 wudfsvc - ok 15:22:26.0546 0872 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll 15:22:26.0568 0872 WwanSvc - ok 15:22:26.0599 0872 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 15:22:26.0771 0872 \Device\Harddisk0\DR0 - ok 15:22:26.0771 0872 Boot (0x1200) (9542b1085d7d02f6d5acf2c73464e409) \Device\Harddisk0\DR0\Partition0 15:22:26.0771 0872 \Device\Harddisk0\DR0\Partition0 - ok 15:22:26.0786 0872 Boot (0x1200) (6ce298d2bf2a562ed4dff2781e467d12) \Device\Harddisk0\DR0\Partition1 15:22:26.0786 0872 \Device\Harddisk0\DR0\Partition1 - ok 15:22:26.0802 0872 Boot (0x1200) (e680a0ab6c941444a4951c461a06616c) \Device\Harddisk0\DR0\Partition2 15:22:26.0802 0872 \Device\Harddisk0\DR0\Partition2 - ok 15:22:26.0818 0872 Boot (0x1200) (d49eb0e5a98df9734c76aa7be824b9c5) \Device\Harddisk0\DR0\Partition3 15:22:26.0818 0872 \Device\Harddisk0\DR0\Partition3 - ok 15:22:26.0818 0872 ============================================================ 15:22:26.0818 0872 Scan finished 15:22:26.0818 0872 ============================================================ 15:22:26.0833 0584 Detected object count: 1 15:22:26.0833 0584 Actual detected object count: 1 15:22:41.0928 0584 C:\Windows\system32\DRIVERS\cdrom.sys - copied to quarantine 15:22:41.0962 0584 C:\Windows\$NtUninstallKB52670$\2845205544\@ - copied to quarantine 15:22:41.0978 0584 C:\Windows\$NtUninstallKB52670$\2845205544\Desktop.ini - copied to quarantine 15:22:41.0978 0584 C:\Windows\$NtUninstallKB52670$\2845205544\L\00000004.@ - copied to quarantine 15:22:41.0978 0584 C:\Windows\$NtUninstallKB52670$\2845205544\L\00000008.@ - copied to quarantine 15:22:41.0993 0584 C:\Windows\$NtUninstallKB52670$\2845205544\L\igkgilui - copied to quarantine 15:22:42.0009 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\00000004.@ - copied to quarantine 15:22:42.0024 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\00000008.@ - copied to quarantine 15:22:42.0040 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\000000cb.@ - copied to quarantine 15:22:42.0040 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\80000000.@ - copied to quarantine 15:22:42.0056 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\80000032.@ - copied to quarantine 15:22:42.0414 0584 Backup copy found, using it.. 15:22:42.0414 0584 C:\Windows\system32\DRIVERS\cdrom.sys - will be cured on reboot 15:22:44.0079 0584 C:\Windows\$NtUninstallKB52670$\2723931903 - will be deleted on reboot 15:22:44.0080 0584 C:\Windows\$NtUninstallKB52670$\2845205544\@ - will be deleted on reboot 15:22:44.0080 0584 C:\Windows\$NtUninstallKB52670$\2845205544\Desktop.ini - will be deleted on reboot 15:22:44.0080 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\00000004.@ - will be deleted on reboot 15:22:44.0080 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\00000008.@ - will be deleted on reboot 15:22:44.0081 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\000000cb.@ - will be deleted on reboot 15:22:44.0081 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\80000000.@ - will be deleted on reboot 15:22:44.0081 0584 C:\Windows\$NtUninstallKB52670$\2845205544\U\80000032.@ - will be deleted on reboot 15:22:44.0082 0584 cdrom ( Virus.Win32.ZAccess.k ) - User select action: Cure 15:22:54.0561 1396 Deinitialize success