Scribd Logo
Загрузить

Добро пожаловать в Scribd!

  • TDSSKiller.2.8.7.0 21.08.2012 13.51.17 Log

    Загружено:

    Franch Maverick Arellano Lorilla
    26 просмотров21 страница

    Оригинальное название

    TDSSKiller.2.8.7.0_21.08.2012_13.51.17_log

    Авторское право

    © Attribution Non-Commercial (BY-NC)

    Доступные форматы

    TXT, PDF, TXT или читайте онлайн в Scribd

    Этот документ был вам полезен?

    Это неприемлемый материал?

    Пожаловаться на этот документ

    Авторское право:

    Attribution Non-Commercial (BY-NC)
    Скачайте в формате TXT, PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    26 просмотров21 страница

    TDSSKiller.2.8.7.0 21.08.2012 13.51.17 Log

    Загружено:

    Franch Maverick Arellano Lorilla

    Авторское право:

    Attribution Non-Commercial (BY-NC)
    Скачайте в формате TXT, PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    из 21

    13:51:17.0062 3520 TDSS rootkit removing tool 2.8.7.

    0 Aug 20 2012 17:30:03


    13:51:18.0171 3520 ============================================================
    13:51:18.0171 3520 Current date / time: 2012/08/21 13:51:18.0171
    13:51:18.0171 3520 SystemInfo:
    13:51:18.0171 3520
    13:51:18.0171 3520 OS Version: 5.1.2600 ServicePack: 3.0
    13:51:18.0171 3520 Product type: Workstation
    13:51:18.0171 3520 ComputerName: LORILLA-650B3C5
    13:51:18.0171 3520 UserName: Lorilla
    13:51:18.0171 3520 Windows directory: C:\WINDOWS
    13:51:18.0171 3520 System windows directory: C:\WINDOWS
    13:51:18.0171 3520 Processor architecture: Intel x86
    13:51:18.0171 3520 Number of processors: 8
    13:51:18.0171 3520 Page size: 0x1000
    13:51:18.0171 3520 Boot type: Normal boot
    13:51:18.0171 3520 ============================================================
    13:51:22.0000 3520 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb)
    , SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder
    : 0xFF, Type 'K0', Flags 0x00000054
    13:51:22.0125 3520 Drive \Device\Harddisk1\DR4 - Size: 0x3BA300000 (14.91 Gb),
    SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0
    xFF, Type 'W'
    13:51:22.0125 3520 ============================================================
    13:51:22.0125 3520 \Device\Harddisk0\DR0:
    13:51:22.0140 3520 MBR partitions:
    13:51:22.0140 3520 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x
    3F, BlocksNum 0x9003E79
    13:51:22.0140 3520 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x
    9004000, BlocksNum 0xC991800
    13:51:22.0156 3520 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x
    15996000, BlocksNum 0x249EF800
    13:51:22.0156 3520 \Device\Harddisk1\DR4:
    13:51:22.0156 3520 MBR partitions:
    13:51:22.0156 3520 \Device\Harddisk1\DR4\Partition1: MBR, Type 0xC, StartLBA 0x
    3F, BlocksNum 0x1DD17C1
    13:51:22.0156 3520 ============================================================
    13:51:22.0218 3520 D: <-> \Device\Harddisk0\DR0\Partition3
    13:51:22.0312 3520 E: <-> \Device\Harddisk0\DR0\Partition2
    13:51:22.0359 3520 C: <-> \Device\Harddisk0\DR0\Partition1
    13:51:22.0406 3520 ============================================================
    13:51:22.0406 3520 Initialize success
    13:51:22.0406 3520 ============================================================
    13:51:23.0937 3592 ============================================================
    13:51:23.0937 3592 Scan started
    13:51:23.0937 3592 Mode: Manual;
    13:51:23.0937 3592 ============================================================
    13:51:26.0343 3592 ================ Scan system memory ========================
    13:51:26.0343 3592 System memory - ok
    13:51:26.0343 3592 ================ Scan services =============================
    13:51:26.0546 3592 Abiosdsk - ok
    13:51:26.0546 3592 abp480n5 - ok
    13:51:26.0562 3592 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI
    C:\WIND
    OWS\system32\DRIVERS\ACPI.sys
    13:51:26.0578 3592 ACPI - ok
    13:51:26.0625 3592 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC
    C:\WIND
    OWS\system32\drivers\ACPIEC.sys
    13:51:26.0640 3592 ACPIEC - ok
    13:51:26.0687 3592 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateS
    vc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    13:51:26.0734 3592 AdobeFlashPlayerUpdateSvc - ok

    13:51:26.0734 3592 adpu160m - ok


    13:51:26.0781 3592 [ 8BED39E3C35D6A489438B8141717A557 ]
    OWS\system32\drivers\aec.sys
    13:51:26.0781 3592 aec - ok
    13:51:26.0828 3592 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ]
    OWS\System32\drivers\afd.sys
    13:51:26.0859 3592 AFD - ok
    13:51:26.0859 3592 Aha154x - ok
    13:51:26.0859 3592 aic32p - ok
    13:51:26.0859 3592 aic78u2 - ok
    13:51:26.0859 3592 aic78xx - ok
    13:51:26.0875 3592 [ A9A3DAA780CA6C9671A19D52456705B4 ]
    OWS\system32\alrsvc.dll
    13:51:26.0890 3592 Alerter - ok
    13:51:26.0890 3592 AliIde - ok
    13:51:26.0968 3592 [ 267FC636801EDC5AB28E14036349E3BE ]
    OWS\system32\drivers\Ambfilt.sys
    13:51:27.0046 3592 Ambfilt - ok
    13:51:27.0046 3592 amsint - ok
    13:51:27.0062 3592 [ D8849F77C0B66226335A59D26CB4EDC6 ]
    OWS\System32\appmgmts.dll
    13:51:27.0062 3592 AppMgmt - ok
    13:51:27.0062 3592 asc - ok
    13:51:27.0078 3592 asc3350p - ok
    13:51:27.0078 3592 asc3550 - ok
    13:51:27.0078 3592 [ 9D8CB58B9A9E177DDD599791A58A654D ]
    OWS\system32\drivers\AsIO.sys
    13:51:27.0109 3592 AsIO - ok
    13:51:27.0250 3592 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ]
    OWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    13:51:27.0250 3592 aspnet_state - ok
    13:51:27.0265 3592 [ B153AFFAC761E7F5FCFA822B9C4E97BC ]
    OWS\system32\DRIVERS\asyncmac.sys
    13:51:27.0265 3592 AsyncMac - ok
    13:51:27.0281 3592 [ 9F3A2F5AA6875C72BF062C712CFA2674 ]
    OWS\system32\DRIVERS\atapi.sys
    13:51:27.0281 3592 atapi - ok
    13:51:27.0281 3592 Atdisk - ok
    13:51:27.0312 3592 [ 9916C1225104BA14794209CFA8012159 ]
    OWS\system32\DRIVERS\atmarpc.sys
    13:51:27.0312 3592 Atmarpc - ok
    13:51:27.0343 3592 [ DEF7A7882BEC100FE0B2CE2549188F9D ]
    OWS\System32\audiosrv.dll
    13:51:27.0343 3592 AudioSrv - ok
    13:51:27.0359 3592 [ D9F724AA26C010A217C97606B160ED68 ]
    OWS\system32\DRIVERS\audstub.sys
    13:51:27.0375 3592 audstub - ok
    13:51:27.0437 3592 [ F0C0E213D6D811384A49981ADFF0B6C0 ]
    OWS\system32\DRIVERS\avc3.sys
    13:51:27.0468 3592 avc3 - ok
    13:51:27.0500 3592 [ A64529781E5B9CC454666A33A24E3E1D ]
    OWS\system32\DRIVERS\avchv.sys
    13:51:27.0515 3592 avchv - ok
    13:51:27.0562 3592 [ 2BCE314A25E71298ADD6794BFBD66266 ]
    OWS\system32\DRIVERS\avckf.sys
    13:51:27.0562 3592 avckf - ok
    13:51:27.0609 3592 BBSvc - ok
    13:51:27.0625 3592 [ 6BF743CBF3BCD09DAB79245E60E1AE62 ]
    ram Files\Microsoft\BingBar\7.1.362.0\SeaPort.exe
    13:51:27.0656 3592 BBUpdate - ok

    aec

    C:\WIND

    AFD

    C:\WIND

    Alerter

    C:\WIND

    Ambfilt

    C:\WIND

    AppMgmt

    C:\WIND

    AsIO

    C:\WIND

    aspnet_state

    C:\WIND

    AsyncMac

    C:\WIND

    atapi

    C:\WIND

    Atmarpc

    C:\WIND

    AudioSrv

    C:\WIND

    audstub

    C:\WIND

    avc3

    C:\WIND

    avchv

    C:\WIND

    avckf

    C:\WIND

    BBUpdate

    C:\Prog

    13:51:27.0781 3592 [ F7D825F7E47D8A7865F5D2156B1B7A24 ] bdftdif


    C:\Prog
    ram Files\Common Files\Bitdefender\Bitdefender Firewall\bdftdif.sys
    13:51:27.0781 3592 bdftdif - ok
    13:51:27.0812 3592 [ E260C0079B5C1107B87E98F356292004 ] BDSandBox
    C:\WIND
    OWS\system32\drivers\bdsandbox.sys
    13:51:27.0828 3592 BDSandBox - ok
    13:51:27.0968 3592 [ A9A33963C8358979827D1A75B20C0423 ] bdselfpr
    C:\Prog
    ram Files\Bitdefender\Bitdefender 2013\bdselfpr.sys
    13:51:27.0984 3592 bdselfpr - ok
    13:51:28.0000 3592 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep
    C:\WIND
    OWS\system32\drivers\Beep.sys
    13:51:28.0015 3592 Beep - ok
    13:51:28.0093 3592 [ 574738F61FCA2935F5265DC4E5691314 ] BITS
    C:\WIND
    OWS\system32\qmgr.dll
    13:51:28.0140 3592 BITS - ok
    13:51:28.0187 3592 [ FC6D1D80588D371F0321E15A75B2F8F2 ] Browser
    C:\WIND
    OWS\System32\browser.dll
    13:51:28.0187 3592 Browser - ok
    13:51:28.0234 3592 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k
    C:\WIND
    OWS\system32\drivers\cbidf2k.sys
    13:51:28.0234 3592 cbidf2k - ok
    13:51:28.0234 3592 cd20xrnt - ok
    13:51:28.0265 3592 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio
    C:\WIND
    OWS\system32\drivers\Cdaudio.sys
    13:51:28.0296 3592 Cdaudio - ok
    13:51:28.0343 3592 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs
    C:\WIND
    OWS\system32\drivers\Cdfs.sys
    13:51:28.0343 3592 Cdfs - ok
    13:51:28.0375 3592 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom
    C:\WIND
    OWS\system32\DRIVERS\cdrom.sys
    13:51:28.0437 3592 Cdrom - ok
    13:51:28.0437 3592 Changer - ok
    13:51:28.0453 3592 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc
    C:\WIND
    OWS\system32\cisvc.exe
    13:51:28.0468 3592 CiSvc - ok
    13:51:28.0500 3592 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv
    C:\WIND
    OWS\system32\clipsrv.exe
    13:51:28.0500 3592 ClipSrv - ok
    13:51:28.0562 3592 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.5
    0727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    13:51:28.0640 3592 clr_optimization_v2.0.50727_32 - ok
    13:51:28.0656 3592 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.3
    0319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    13:51:28.0765 3592 clr_optimization_v4.0.30319_32 - ok
    13:51:28.0765 3592 CmdIde - ok
    13:51:28.0937 3592 [ A0F7D6B070F15EAD9F4231B51B246E4C ] cmuda3
    C:\WIND
    OWS\system32\drivers\cmudax3.sys
    13:51:28.0984 3592 cmuda3 - ok
    13:51:28.0984 3592 COMSysApp - ok
    13:51:28.0984 3592 Cpqarray - ok
    13:51:29.0015 3592 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc
    C:\WIND
    OWS\System32\cryptsvc.dll
    13:51:29.0015 3592 CryptSvc - ok
    13:51:29.0031 3592 dac2w2k - ok
    13:51:29.0031 3592 dac960nt - ok
    13:51:29.0093 3592 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch
    C:\WIND
    OWS\system32\rpcss.dll
    13:51:29.0093 3592 DcomLaunch - ok
    13:51:29.0109 3592 [ C51DE19619D50CBD03708647ACA10E70 ] Dhcp
    C:\WIND
    OWS\System32\dhcpcsvc.dll

    13:51:29.0125 3592 Dhcp - ok


    13:51:29.0140 3592 [ 47B6AAEC570F2C11D8BAD80A064D8ED1 ] Disk
    C:\WIND
    OWS\system32\DRIVERS\disk.sys
    13:51:29.0140 3592 Disk - ok
    13:51:29.0140 3592 dmadmin - ok
    13:51:29.0250 3592 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot
    C:\WIND
    OWS\system32\drivers\dmboot.sys
    13:51:29.0296 3592 dmboot - ok
    13:51:29.0328 3592 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio
    C:\WIND
    OWS\system32\drivers\dmio.sys
    13:51:29.0343 3592 dmio - ok
    13:51:29.0375 3592 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload
    C:\WIND
    OWS\system32\drivers\dmload.sys
    13:51:29.0375 3592 dmload - ok
    13:51:29.0406 3592 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver
    C:\WIND
    OWS\System32\dmserver.dll
    13:51:29.0406 3592 dmserver - ok
    13:51:29.0421 3592 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic
    C:\WIND
    OWS\system32\drivers\DMusic.sys
    13:51:29.0421 3592 DMusic - ok
    13:51:29.0437 3592 [ D977659AE4D8ECE5286D99D1ED34614D ] Dnscache
    C:\WIND
    OWS\System32\dnsrslvr.dll
    13:51:29.0437 3592 Dnscache - ok
    13:51:29.0484 3592 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc
    C:\WIND
    OWS\System32\dot3svc.dll
    13:51:29.0484 3592 Dot3svc - ok
    13:51:29.0484 3592 dpti2o - ok
    13:51:29.0500 3592 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud
    C:\WIND
    OWS\system32\drivers\drmkaud.sys
    13:51:29.0500 3592 drmkaud - ok
    13:51:29.0515 3592 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost
    C:\WIND
    OWS\System32\eapsvc.dll
    13:51:29.0531 3592 EapHost - ok
    13:51:29.0546 3592 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc
    C:\WIND
    OWS\System32\ersvc.dll
    13:51:29.0546 3592 ERSvc - ok
    13:51:29.0578 3592 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog
    C:\WIND
    OWS\system32\services.exe
    13:51:29.0578 3592 Eventlog - ok
    13:51:29.0625 3592 [ F17F6226BDC0CD5F0BEF0DAF84D29BEC ] EventSystem
    C:\WIND
    OWS\system32\es.dll
    13:51:29.0640 3592 EventSystem - ok
    13:51:29.0671 3592 [ 4D893323DAE445E34A4C9038B0551BC9 ] exFat
    C:\WIND
    OWS\system32\drivers\exFat.sys
    13:51:29.0687 3592 exFat - ok
    13:51:29.0750 3592 Fabs - ok
    13:51:29.0781 3592 [ 38D332A6D56AF32635675F132548343E ] Fastfat
    C:\WIND
    OWS\system32\drivers\Fastfat.sys
    13:51:29.0812 3592 Fastfat - ok
    13:51:29.0843 3592 [ 888CD7B39C37E13A2419BECFAAF0A28C ] FastUserSwitchingCompat
    ibility C:\WINDOWS\System32\shsvcs.dll
    13:51:29.0859 3592 FastUserSwitchingCompatibility - ok
    13:51:29.0859 3592 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc
    C:\WIND
    OWS\system32\drivers\Fdc.sys
    13:51:29.0875 3592 Fdc - ok
    13:51:29.0890 3592 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips
    C:\WIND
    OWS\system32\drivers\Fips.sys
    13:51:29.0890 3592 Fips - ok
    13:51:30.0109 3592 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInst
    ance C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe

    13:51:30.0328 3592 FirebirdServerMAGIXInstance - ok


    13:51:30.0343 3592 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk
    C:\WIND
    OWS\system32\drivers\Flpydisk.sys
    13:51:30.0343 3592 Flpydisk - ok
    13:51:30.0359 3592 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr
    C:\WIND
    OWS\system32\DRIVERS\fltMgr.sys
    13:51:30.0359 3592 FltMgr - ok
    13:51:30.0406 3592 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WIN
    DOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    13:51:30.0406 3592 FontCache3.0.0.0 - ok
    13:51:30.0421 3592 [ 30D42943A54704EF13E2562911DBFCEA ] Fs_Rec
    C:\WIND
    OWS\system32\drivers\Fs_Rec.sys
    13:51:30.0437 3592 Fs_Rec - ok
    13:51:30.0453 3592 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk
    C:\WIND
    OWS\system32\DRIVERS\ftdisk.sys
    13:51:30.0453 3592 Ftdisk - ok
    13:51:30.0484 3592 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc
    C:\WIND
    OWS\system32\DRIVERS\msgpc.sys
    13:51:30.0484 3592 Gpc - ok
    13:51:30.0531 3592 [ 36E2FD64A7C47A2C5D827D86837E5DBD ] gzflt
    C:\WIND
    OWS\system32\DRIVERS\gzflt.sys
    13:51:30.0531 3592 gzflt - ok
    13:51:30.0562 3592 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus
    C:\WIND
    OWS\system32\DRIVERS\HDAudBus.sys
    13:51:30.0562 3592 HDAudBus - ok
    13:51:30.0578 3592 [ A88485DC6A7136C10D9A6C7E38FDFE3C ] HECI
    C:\WIND
    OWS\system32\DRIVERS\HECI.sys
    13:51:30.0593 3592 HECI - ok
    13:51:30.0625 3592 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc
    C:\WIND
    OWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    13:51:30.0625 3592 helpsvc - ok
    13:51:30.0625 3592 HidServ - ok
    13:51:30.0625 3592 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb
    C:\WIND
    OWS\system32\DRIVERS\hidusb.sys
    13:51:30.0625 3592 hidusb - ok
    13:51:30.0640 3592 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc
    C:\WIND
    OWS\System32\kmsvc.dll
    13:51:30.0640 3592 hkmsvc - ok
    13:51:30.0640 3592 hpn - ok
    13:51:30.0656 3592 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP
    C:\WIND
    OWS\system32\Drivers\HTTP.sys
    13:51:30.0656 3592 HTTP - ok
    13:51:30.0687 3592 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter
    C:\WIND
    OWS\System32\w3ssl.dll
    13:51:30.0687 3592 HTTPFilter - ok
    13:51:30.0687 3592 i2omgmt - ok
    13:51:30.0687 3592 i2omp - ok
    13:51:30.0703 3592 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt
    C:\WIND
    OWS\system32\DRIVERS\i8042prt.sys
    13:51:30.0703 3592 i8042prt - ok
    13:51:30.0718 3592 [ 2362971B61DC6D8CEA74B0FB2AF7EDF1 ] IDMTDI
    C:\WIND
    OWS\system32\DRIVERS\idmtdi.sys
    13:51:30.0718 3592 IDMTDI - ok
    13:51:30.0796 3592 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc
    C:\WIND
    OWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    13:51:30.0796 3592 idsvc - ok
    13:51:30.0812 3592 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi
    C:\WIND
    OWS\system32\DRIVERS\imapi.sys
    13:51:30.0812 3592 Imapi - ok
    13:51:30.0828 3592 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService
    C:\WIND

    OWS\system32\imapi.exe
    13:51:30.0828 3592 ImapiService - ok
    13:51:30.0843 3592 ini910u - ok
    13:51:30.0921 3592 [ C472FC1D265346E9500095F88A0345F9 ] IntcAzAudAddService C:\
    WINDOWS\system32\drivers\RtkHDAud.sys
    13:51:30.0953 3592 IntcAzAudAddService - ok
    13:51:30.0953 3592 IntelIde - ok
    13:51:30.0968 3592 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm
    C:\WIND
    OWS\system32\DRIVERS\intelppm.sys
    13:51:30.0984 3592 intelppm - ok
    13:51:30.0984 3592 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw
    C:\WIND
    OWS\system32\DRIVERS\Ip6Fw.sys
    13:51:30.0984 3592 Ip6Fw - ok
    13:51:31.0015 3592 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WIND
    OWS\system32\DRIVERS\ipfltdrv.sys
    13:51:31.0015 3592 IpFilterDriver - ok
    13:51:31.0015 3592 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp
    C:\WIND
    OWS\system32\DRIVERS\ipinip.sys
    13:51:31.0015 3592 IpInIp - ok
    13:51:31.0031 3592 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat
    C:\WIND
    OWS\system32\DRIVERS\ipnat.sys
    13:51:31.0031 3592 IpNat - ok
    13:51:31.0046 3592 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec
    C:\WIND
    OWS\system32\DRIVERS\ipsec.sys
    13:51:31.0046 3592 IPSec - ok
    13:51:31.0062 3592 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM
    C:\WIND
    OWS\system32\DRIVERS\irenum.sys
    13:51:31.0062 3592 IRENUM - ok
    13:51:31.0078 3592 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp
    C:\WIND
    OWS\system32\DRIVERS\isapnp.sys
    13:51:31.0078 3592 isapnp - ok
    13:51:31.0109 3592 [ 2F03CEB28307983F3B36216D35FFA5AA ] ISODrive
    C:\Prog
    ram Files\UltraISO\drivers\ISODrive.sys
    13:51:31.0109 3592 ISODrive - ok
    13:51:31.0140 3592 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass
    C:\WIND
    OWS\system32\DRIVERS\kbdclass.sys
    13:51:31.0140 3592 Kbdclass - ok
    13:51:31.0140 3592 [ 692BCF44383D056AED41B045A323D378 ] kmixer
    C:\WIND
    OWS\system32\drivers\kmixer.sys
    13:51:31.0140 3592 kmixer - ok
    13:51:31.0156 3592 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD
    C:\WIND
    OWS\system32\drivers\KSecDD.sys
    13:51:31.0156 3592 KSecDD - ok
    13:51:31.0171 3592 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer
    C:\WIND
    OWS\System32\srvsvc.dll
    13:51:31.0171 3592 LanmanServer - ok
    13:51:31.0203 3592 [ 3B9324D60DD321BAB7BF6F77931D3FD1 ] lanmanworkstation C:\WI
    NDOWS\System32\wkssvc.dll
    13:51:31.0203 3592 lanmanworkstation - ok
    13:51:31.0203 3592 lbrtfdc - ok
    13:51:31.0218 3592 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts
    C:\WIND
    OWS\System32\lmhsvc.dll
    13:51:31.0218 3592 LmHosts - ok
    13:51:31.0265 3592 [ A1C148801B4AF64847AEB9F3AD9594EF ] LMS
    C:\Prog
    ram Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    13:51:31.0265 3592 LMS - ok
    13:51:31.0281 3592 [ 8FD868E32459ECE2A1BB0169F513D31E ] mcdbus
    C:\WIND
    OWS\system32\DRIVERS\mcdbus.sys
    13:51:31.0296 3592 mcdbus - ok
    13:51:31.0312 3592 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger
    C:\WIND

    OWS\System32\msgsvc.dll
    13:51:31.0312 3592 Messenger - ok
    13:51:31.0359 3592 Microsoft SharePoint Workspace Audit Service - ok
    13:51:31.0375 3592 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd
    C:\WIND
    OWS\system32\drivers\mnmdd.sys
    13:51:31.0375 3592 mnmdd - ok
    13:51:31.0375 3592 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc
    C:\WIND
    OWS\system32\mnmsrvc.exe
    13:51:31.0390 3592 mnmsrvc - ok
    13:51:31.0406 3592 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem
    C:\WIND
    OWS\system32\drivers\Modem.sys
    13:51:31.0406 3592 Modem - ok
    13:51:31.0437 3592 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt
    C:\WIND
    OWS\system32\drivers\Monfilt.sys
    13:51:31.0453 3592 Monfilt - ok
    13:51:31.0468 3592 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass
    C:\WIND
    OWS\system32\DRIVERS\mouclass.sys
    13:51:31.0468 3592 Mouclass - ok
    13:51:31.0468 3592 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid
    C:\WIND
    OWS\system32\DRIVERS\mouhid.sys
    13:51:31.0468 3592 mouhid - ok
    13:51:31.0500 3592 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr
    C:\WIND
    OWS\system32\drivers\MountMgr.sys
    13:51:31.0500 3592 MountMgr - ok
    13:51:31.0546 3592 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\P
    rogram Files\Mozilla Maintenance Service\maintenanceservice.exe
    13:51:31.0562 3592 MozillaMaintenance - ok
    13:51:31.0562 3592 mraid35x - ok
    13:51:31.0578 3592 [ 0A25B866933D126D1E831FD025A278C2 ] MRxDAV
    C:\WIND
    OWS\system32\DRIVERS\mrxdav.sys
    13:51:31.0578 3592 MRxDAV - ok
    13:51:31.0609 3592 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb
    C:\WIND
    OWS\system32\DRIVERS\mrxsmb.sys
    13:51:31.0609 3592 MRxSmb - ok
    13:51:31.0640 3592 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC
    C:\WIND
    OWS\system32\msdtc.exe
    13:51:31.0640 3592 MSDTC - ok
    13:51:31.0671 3592 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs
    C:\WIND
    OWS\system32\drivers\Msfs.sys
    13:51:31.0671 3592 Msfs - ok
    13:51:31.0671 3592 MSIServer - ok
    13:51:31.0687 3592 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV
    C:\WIND
    OWS\system32\drivers\MSKSSRV.sys
    13:51:31.0703 3592 MSKSSRV - ok
    13:51:31.0703 3592 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK
    C:\WIND
    OWS\system32\drivers\MSPCLOCK.sys
    13:51:31.0703 3592 MSPCLOCK - ok
    13:51:31.0718 3592 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM
    C:\WIND
    OWS\system32\drivers\MSPQM.sys
    13:51:31.0718 3592 MSPQM - ok
    13:51:31.0750 3592 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios
    C:\WIND
    OWS\system32\DRIVERS\mssmbios.sys
    13:51:31.0750 3592 mssmbios - ok
    13:51:31.0796 3592 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor
    C:\WIND
    OWS\system32\DRIVERS\ASACPI.sys
    13:51:31.0796 3592 MTsensor - ok
    13:51:31.0812 3592 [ F7B1AD991491F02AF6DA70B00B8BF114 ] Mup
    C:\WIND
    OWS\system32\drivers\Mup.sys
    13:51:31.0812 3592 Mup - ok
    13:51:31.0828 3592 [ 0102140028FAD045756796E1C685D695 ] napagent
    C:\WIND

    OWS\System32\qagentrt.dll
    13:51:31.0843 3592 napagent - ok
    13:51:31.0890 3592 [ 9D1CCE440552500DED3A62F9D779CDB4 ]
    ram Files\Nero\Update\NASvc.exe
    13:51:31.0890 3592 NAUpdate - ok
    13:51:31.0953 3592 [ B498A14133BD09AD0817590ACE4470AD ]
    ram Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    13:51:31.0968 3592 NBService - ok
    13:51:31.0984 3592 [ B5B1080D35974C0E718D64280761BCD5 ]
    OWS\system32\drivers\NDIS.sys
    13:51:32.0000 3592 NDIS - ok
    13:51:32.0015 3592 [ 0109C4F3850DFBAB279542515386AE22 ]
    OWS\system32\DRIVERS\ndistapi.sys
    13:51:32.0015 3592 NdisTapi - ok
    13:51:32.0015 3592 [ F927A4434C5028758A842943EF1A3849 ]
    OWS\system32\DRIVERS\ndisuio.sys
    13:51:32.0015 3592 Ndisuio - ok
    13:51:32.0031 3592 [ B053A8411045FD0664B389A090CB2BBC ]
    OWS\system32\DRIVERS\ndiswan.sys
    13:51:32.0031 3592 NdisWan - ok
    13:51:32.0062 3592 [ 9282BD12DFB069D3889EB3FCC1000A9B ]
    OWS\system32\drivers\NDProxy.sys
    13:51:32.0062 3592 NDProxy - ok
    13:51:32.0078 3592 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ]
    OWS\system32\DRIVERS\netbios.sys
    13:51:32.0078 3592 NetBIOS - ok
    13:51:32.0093 3592 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ]
    OWS\system32\DRIVERS\netbt.sys
    13:51:32.0093 3592 NetBT - ok
    13:51:32.0109 3592 [ B857BA82860D7FF85AE29B095645563B ]
    OWS\system32\netdde.exe
    13:51:32.0125 3592 NetDDE - ok
    13:51:32.0125 3592 [ B857BA82860D7FF85AE29B095645563B ]
    OWS\system32\netdde.exe
    13:51:32.0125 3592 NetDDEdsdm - ok
    13:51:32.0140 3592 [ BF2466B3E18E970D8A976FB95FC1CA85 ]
    OWS\system32\lsass.exe
    13:51:32.0140 3592 Netlogon - ok
    13:51:32.0156 3592 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ]
    OWS\System32\netman.dll
    13:51:32.0156 3592 Netman - ok
    13:51:32.0171 3592 [ D34612C5D02D026535B3095D620626AE ]
    NDOWS\Microsoft.NET\Framework\v3.0\Windows Communication
    e
    13:51:32.0171 3592 NetTcpPortSharing - ok
    13:51:32.0187 3592 [ FCEE5FCB99F7C724593365C706D28388 ]
    OWS\System32\mswsock.dll
    13:51:32.0203 3592 Nla - ok
    13:51:32.0250 3592 [ A328A46D87BB92CE4D8A4528E9D84787 ]
    ogram Files\Common Files\Ahead\Lib\NMIndexingService.exe
    13:51:32.0265 3592 NMIndexingService - ok
    13:51:32.0281 3592 [ 3182D64AE053D6FB034F44B6DEF8034A ]
    OWS\system32\drivers\Npfs.sys
    13:51:32.0281 3592 Npfs - ok
    13:51:32.0296 3592 [ A0857C97770034FD2AF17DC4014B5ABD ]
    OWS\system32\drivers\Ntfs.sys
    13:51:32.0296 3592 Ntfs - ok
    13:51:32.0312 3592 [ BF2466B3E18E970D8A976FB95FC1CA85 ]
    OWS\system32\lsass.exe
    13:51:32.0312 3592 NtLmSsp - ok

    NAUpdate

    C:\Prog

    NBService

    C:\Prog

    NDIS

    C:\WIND

    NdisTapi

    C:\WIND

    Ndisuio

    C:\WIND

    NdisWan

    C:\WIND

    NDProxy

    C:\WIND

    NetBIOS

    C:\WIND

    NetBT

    C:\WIND

    NetDDE

    C:\WIND

    NetDDEdsdm

    C:\WIND

    Netlogon

    C:\WIND

    Netman

    C:\WIND

    NetTcpPortSharing C:\WI
    Foundation\SMSvcHost.ex
    Nla

    C:\WIND

    NMIndexingService C:\Pr
    Npfs

    C:\WIND

    Ntfs

    C:\WIND

    NtLmSsp

    C:\WIND

    13:51:32.0328 3592 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc


    C:\WIND
    OWS\system32\ntmssvc.dll
    13:51:32.0343 3592 NtmsSvc - ok
    13:51:32.0359 3592 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null
    C:\WIND
    OWS\system32\drivers\Null.sys
    13:51:32.0375 3592 Null - ok
    13:51:32.0515 3592 [ 8B2C874897EA498DA012284E12F9DB2B ] nv
    C:\WIND
    OWS\system32\DRIVERS\nv4_mini.sys
    13:51:32.0687 3592 nv - ok
    13:51:32.0734 3592 [ 32F7DEC3729B3BAE66EEBCAB7B03B18F ] NVSvc
    C:\WIND
    OWS\system32\nvsvc32.exe
    13:51:32.0734 3592 NVSvc - ok
    13:51:32.0859 3592 [ 2CC4E45B0EB4C48392CEC9C83B5B8E3B ] nvUpdatusService C:\Pro
    gram Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
    13:51:32.0859 3592 nvUpdatusService - ok
    13:51:32.0890 3592 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt
    C:\WIND
    OWS\system32\DRIVERS\nwlnkflt.sys
    13:51:32.0890 3592 NwlnkFlt - ok
    13:51:32.0906 3592 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd
    C:\WIND
    OWS\system32\DRIVERS\nwlnkfwd.sys
    13:51:32.0906 3592 NwlnkFwd - ok
    13:51:32.0953 3592 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose
    C:\Prog
    ram Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    13:51:32.0953 3592 ose - ok
    13:51:33.0062 3592 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc
    C:\Prog
    ram Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC
    .EXE
    13:51:33.0093 3592 osppsvc - ok
    13:51:33.0125 3592 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport
    C:\WIND
    OWS\system32\DRIVERS\parport.sys
    13:51:33.0125 3592 Parport - ok
    13:51:33.0125 3592 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr
    C:\WIND
    OWS\system32\drivers\PartMgr.sys
    13:51:33.0125 3592 PartMgr - ok
    13:51:33.0156 3592 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm
    C:\WIND
    OWS\system32\drivers\ParVdm.sys
    13:51:33.0156 3592 ParVdm - ok
    13:51:33.0171 3592 [ A219903CCF74233761D92BEF471A07B1 ] PCI
    C:\WIND
    OWS\system32\DRIVERS\pci.sys
    13:51:33.0171 3592 PCI - ok
    13:51:33.0171 3592 PCIDump - ok
    13:51:33.0187 3592 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde
    C:\WIND
    OWS\system32\DRIVERS\pciide.sys
    13:51:33.0187 3592 PCIIde - ok
    13:51:33.0187 3592 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia
    C:\WIND
    OWS\system32\drivers\Pcmcia.sys
    13:51:33.0187 3592 Pcmcia - ok
    13:51:33.0203 3592 PDCOMP - ok
    13:51:33.0203 3592 PDFRAME - ok
    13:51:33.0203 3592 PDRELI - ok
    13:51:33.0203 3592 PDRFRAME - ok
    13:51:33.0203 3592 perc2 - ok
    13:51:33.0203 3592 perc2hib - ok
    13:51:33.0218 3592 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay
    C:\WIND
    OWS\system32\services.exe
    13:51:33.0218 3592 PlugPlay - ok
    13:51:33.0234 3592 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent
    C:\WIND
    OWS\system32\lsass.exe
    13:51:33.0234 3592 PolicyAgent - ok
    13:51:33.0250 3592 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport
    C:\WIND

    OWS\system32\DRIVERS\raspptp.sys
    13:51:33.0265 3592 PptpMiniport - ok
    13:51:33.0265 3592 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WIN
    DOWS\system32\lsass.exe
    13:51:33.0265 3592 ProtectedStorage - ok
    13:51:33.0265 3592 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched
    C:\WIND
    OWS\system32\DRIVERS\psched.sys
    13:51:33.0281 3592 PSched - ok
    13:51:33.0296 3592 [ 0B6DEA0A1662CAB8F2BF339DC0752EF4 ] PSI_SVC_2
    c:\Prog
    ram Files\Common Files\Protexis\License Service\PsiService_2.exe
    13:51:33.0296 3592 PSI_SVC_2 - ok
    13:51:33.0312 3592 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink
    C:\WIND
    OWS\system32\DRIVERS\ptilink.sys
    13:51:33.0312 3592 Ptilink - ok
    13:51:33.0312 3592 ql1080 - ok
    13:51:33.0312 3592 Ql10wnt - ok
    13:51:33.0312 3592 ql12160 - ok
    13:51:33.0312 3592 ql1240 - ok
    13:51:33.0312 3592 ql1280 - ok
    13:51:33.0328 3592 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd
    C:\WIND
    OWS\system32\DRIVERS\rasacd.sys
    13:51:33.0328 3592 RasAcd - ok
    13:51:33.0328 3592 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto
    C:\WIND
    OWS\System32\rasauto.dll
    13:51:33.0343 3592 RasAuto - ok
    13:51:33.0343 3592 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp
    C:\WIND
    OWS\system32\DRIVERS\rasl2tp.sys
    13:51:33.0359 3592 Rasl2tp - ok
    13:51:33.0375 3592 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan
    C:\WIND
    OWS\System32\rasmans.dll
    13:51:33.0375 3592 RasMan - ok
    13:51:33.0390 3592 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe
    C:\WIND
    OWS\system32\DRIVERS\raspppoe.sys
    13:51:33.0390 3592 RasPppoe - ok
    13:51:33.0406 3592 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti
    C:\WIND
    OWS\system32\DRIVERS\raspti.sys
    13:51:33.0406 3592 Raspti - ok
    13:51:33.0421 3592 [ 9629383F70DB691CB6AA5BBD828CD9A9 ] Rdbss
    C:\WIND
    OWS\system32\DRIVERS\rdbss.sys
    13:51:33.0421 3592 Rdbss - ok
    13:51:33.0437 3592 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD
    C:\WIND
    OWS\system32\DRIVERS\RDPCDD.sys
    13:51:33.0437 3592 RDPCDD - ok
    13:51:33.0468 3592 [ 3A99642ED25A2FAD5B0BA55F09BA2F93 ] rdpdr
    C:\WIND
    OWS\system32\DRIVERS\rdpdr.sys
    13:51:33.0468 3592 rdpdr - ok
    13:51:33.0484 3592 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD
    C:\WIND
    OWS\system32\drivers\RDPWD.sys
    13:51:33.0500 3592 RDPWD - ok
    13:51:33.0515 3592 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr
    C:\WIND
    OWS\system32\sessmgr.exe
    13:51:33.0515 3592 RDSessMgr - ok
    13:51:33.0531 3592 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook
    C:\WIND
    OWS\system32\DRIVERS\redbook.sys
    13:51:33.0531 3592 redbook - ok
    13:51:33.0562 3592 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess
    C:\WIND
    OWS\System32\mprdim.dll
    13:51:33.0562 3592 RemoteAccess - ok
    13:51:33.0593 3592 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WIND
    OWS\system32\regsvc.dll

    13:51:33.0593 3592 RemoteRegistry - ok


    13:51:33.0609 3592 [ 8B5B8A11306190C6963D3473F052D3C8
    OWS\system32\DRIVERS\revoflt.sys
    13:51:33.0609 3592 Revoflt - ok
    13:51:33.0625 3592 [ AAED593F84AFA419BBAE8572AF87CF6A
    OWS\system32\locator.exe
    13:51:33.0625 3592 RpcLocator - ok
    13:51:33.0656 3592 [ 6B27A5C03DFB94B4245739065431322C
    OWS\system32\rpcss.dll
    13:51:33.0656 3592 RpcSs - ok
    13:51:33.0671 3592 [ 743D7D59767073A617B1DCC6C546F234
    OWS\system32\DRIVERS\rspndr.sys
    13:51:33.0671 3592 rspndr - ok
    13:51:33.0687 3592 [ 471B3F9741D762ABE75E9DEEA4787E47
    OWS\system32\rsvp.exe
    13:51:33.0687 3592 RSVP - ok
    13:51:33.0703 3592 [ A1AD65718870DBF2BCB81E3C1406469E
    OWS\system32\DRIVERS\Rtenicxp.sys
    13:51:33.0703 3592 RTLE8023xp - ok
    13:51:33.0718 3592 [ BF2466B3E18E970D8A976FB95FC1CA85
    OWS\system32\lsass.exe
    13:51:33.0718 3592 SamSs - ok
    13:51:33.0734 3592 [ 86D007E7A654B9A71D1D7D856B104353
    OWS\System32\SCardSvr.exe
    13:51:33.0734 3592 SCardSvr - ok
    13:51:33.0765 3592 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA
    OWS\system32\schedsvc.dll
    13:51:33.0765 3592 Schedule - ok
    13:51:33.0796 3592 [ 90A3935D05B494A5A39D37E71F09A677
    OWS\system32\DRIVERS\secdrv.sys
    13:51:33.0796 3592 Secdrv - ok
    13:51:33.0812 3592 [ CBE612E2BB6A10E3563336191EDA1250
    OWS\System32\seclogon.dll
    13:51:33.0812 3592 seclogon - ok
    13:51:33.0812 3592 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0
    OWS\system32\sens.dll
    13:51:33.0812 3592 SENS - ok
    13:51:33.0828 3592 [ 0F29512CCD6BEAD730039FB4BD2C85CE
    OWS\system32\DRIVERS\serenum.sys
    13:51:33.0828 3592 serenum - ok
    13:51:33.0843 3592 [ CCA207A8896D4C6A0C9CE29A4AE411A7
    OWS\system32\DRIVERS\serial.sys
    13:51:33.0843 3592 Serial - ok
    13:51:33.0843 3592 [ 8E6B8C671615D126FDC553D1E2DE5562
    OWS\system32\drivers\Sfloppy.sys
    13:51:33.0859 3592 Sfloppy - ok
    13:51:33.0875 3592 [ 4F10A2FA76B5BD54CD68AFA94E8ADB39
    OWS\System32\ipnathlp.dll
    13:51:33.0875 3592 SharedAccess - ok
    13:51:33.0875 3592 [ 888CD7B39C37E13A2419BECFAAF0A28C
    DOWS\System32\shsvcs.dll
    13:51:33.0875 3592 ShellHWDetection - ok
    13:51:33.0875 3592 Simbad - ok
    13:51:33.0890 3592 Sparrow - ok
    13:51:33.0906 3592 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F
    OWS\system32\drivers\splitter.sys
    13:51:33.0906 3592 splitter - ok
    13:51:33.0921 3592 [ 60784F891563FB1B767F70117FC2428F
    OWS\system32\spoolsv.exe
    13:51:33.0921 3592 Spooler - ok

    ] Revoflt

    C:\WIND

    ] RpcLocator

    C:\WIND

    ] RpcSs

    C:\WIND

    ] rspndr

    C:\WIND

    ] RSVP

    C:\WIND

    ] RTLE8023xp

    C:\WIND

    ] SamSs

    C:\WIND

    ] SCardSvr

    C:\WIND

    ] Schedule

    C:\WIND

    ] Secdrv

    C:\WIND

    ] seclogon

    C:\WIND

    ] SENS

    C:\WIND

    ] serenum

    C:\WIND

    ] Serial

    C:\WIND

    ] Sfloppy

    C:\WIND

    ] SharedAccess

    C:\WIND

    ] ShellHWDetection C:\WIN

    ] splitter

    C:\WIND

    ] Spooler

    C:\WIND

    13:51:33.0937 3592 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ]


    OWS\system32\DRIVERS\sr.sys
    13:51:33.0937 3592 sr - ok
    13:51:33.0937 3592 [ 3805DF0AC4296A34BA4BF93B346CC378 ]
    OWS\system32\srsvc.dll
    13:51:33.0953 3592 srservice - ok
    13:51:33.0968 3592 [ 47DDFC2F003F7F9F0592C6874962A2E7 ]
    OWS\system32\DRIVERS\srv.sys
    13:51:33.0968 3592 Srv - ok
    13:51:33.0984 3592 [ 0A5679B3714EDAB99E357057EE88FCA6 ]
    OWS\System32\ssdpsrv.dll
    13:51:33.0984 3592 SSDPSRV - ok
    13:51:34.0000 3592 [ 8BAD69CBAC032D4BBACFCE0306174C30 ]
    OWS\system32\wiaservc.dll
    13:51:34.0015 3592 stisvc - ok
    13:51:34.0031 3592 [ 3941D127AEF12E93ADDF6FE6EE027E0F ]
    OWS\system32\DRIVERS\swenum.sys
    13:51:34.0031 3592 swenum - ok
    13:51:34.0093 3592 [ F577910A133A592234EBAAD3F3AFA258 ]
    ram Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    13:51:34.0093 3592 SwitchBoard - ok
    13:51:34.0109 3592 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ]
    OWS\system32\drivers\swmidi.sys
    13:51:34.0109 3592 swmidi - ok
    13:51:34.0109 3592 SwPrv - ok
    13:51:34.0109 3592 symc810 - ok
    13:51:34.0109 3592 symc8xx - ok
    13:51:34.0109 3592 sym_hi - ok
    13:51:34.0125 3592 sym_u3 - ok
    13:51:34.0125 3592 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ]
    OWS\system32\drivers\sysaudio.sys
    13:51:34.0125 3592 sysaudio - ok
    13:51:34.0140 3592 [ C7ABBC59B43274B1109DF6B24D617051 ]
    OWS\system32\smlogsvc.exe
    13:51:34.0140 3592 SysmonLog - ok
    13:51:34.0171 3592 [ E2B32B10ACC5D97623275AAFB67E5F03 ]
    OWS\System32\tapisrv.dll
    13:51:34.0171 3592 TapiSrv - ok
    13:51:34.0187 3592 [ AD978A1B783B5719720CFF204B666C8E ]
    OWS\system32\DRIVERS\tcpip.sys
    13:51:34.0203 3592 Tcpip - ok
    13:51:34.0218 3592 [ 6471A66807F5E104E4885F5B67349397 ]
    OWS\system32\drivers\TDPIPE.sys
    13:51:34.0218 3592 TDPIPE - ok
    13:51:34.0234 3592 [ C56B6D0402371CF3700EB322EF3AAF61 ]
    OWS\system32\drivers\TDTCP.sys
    13:51:34.0234 3592 TDTCP - ok
    13:51:34.0250 3592 [ 88155247177638048422893737429D9E ]
    OWS\system32\DRIVERS\termdd.sys
    13:51:34.0250 3592 TermDD - ok
    13:51:34.0265 3592 [ FF3477C03BE7201C294C35F684B3479F ]
    OWS\System32\termsrv.dll
    13:51:34.0281 3592 TermService - ok
    13:51:34.0281 3592 [ 888CD7B39C37E13A2419BECFAAF0A28C ]
    OWS\System32\shsvcs.dll
    13:51:34.0296 3592 Themes - ok
    13:51:34.0312 3592 [ DB7205804759FF62C34E3EFD8A4CC76A ]
    OWS\system32\tlntsvr.exe
    13:51:34.0312 3592 TlntSvr - ok
    13:51:34.0312 3592 TosIde - ok

    sr

    C:\WIND

    srservice

    C:\WIND

    Srv

    C:\WIND

    SSDPSRV

    C:\WIND

    stisvc

    C:\WIND

    swenum

    C:\WIND

    SwitchBoard

    C:\Prog

    swmidi

    C:\WIND

    sysaudio

    C:\WIND

    SysmonLog

    C:\WIND

    TapiSrv

    C:\WIND

    Tcpip

    C:\WIND

    TDPIPE

    C:\WIND

    TDTCP

    C:\WIND

    TermDD

    C:\WIND

    TermService

    C:\WIND

    Themes

    C:\WIND

    TlntSvr

    C:\WIND

    13:51:34.0328 3592 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks


    OWS\system32\trkwks.dll
    13:51:34.0328 3592 TrkWks - ok
    13:51:34.0343 3592 [ 9016639C71328E4667D06119937AA20A ] trufos
    OWS\system32\DRIVERS\trufos.sys
    13:51:34.0359 3592 trufos - ok
    13:51:34.0375 3592 [ 503057408A12D652D7CD005B39FF25BD ] TTFixerService
    ram Files\NeoSmart Technologies\ToolTipFixer\ToolTipFixer.exe
    13:51:34.0375 3592 TTFixerService - ok
    13:51:34.0390 3592 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs
    OWS\system32\drivers\Udfs.sys
    13:51:34.0390 3592 Udfs - ok
    13:51:34.0390 3592 ultra - ok
    13:51:34.0453 3592 [ 41118D920B2B268C0ADC36421248CDCF ] UNS
    ram Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    13:51:34.0453 3592 UNS - ok
    13:51:34.0468 3592 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update
    OWS\system32\DRIVERS\update.sys
    13:51:34.0468 3592 Update - ok
    13:51:34.0500 3592 [ 71F8308C16A72F0D8EECA9E42E42B30B ] UPDATESRV
    ram Files\Bitdefender\Bitdefender 2013\updatesrv.exe
    13:51:34.0515 3592 UPDATESRV - ok
    13:51:34.0531 3592 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost
    OWS\System32\upnphost.dll
    13:51:34.0531 3592 upnphost - ok
    13:51:34.0562 3592 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS
    OWS\System32\ups.exe
    13:51:34.0562 3592 UPS - ok
    13:51:34.0578 3592 [ 152EE0BAA614388273A0B9AE9C9FD5A0 ] usbehci
    OWS\system32\DRIVERS\usbehci.sys
    13:51:34.0578 3592 usbehci - ok
    13:51:34.0593 3592 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub
    OWS\system32\DRIVERS\usbhub.sys
    13:51:34.0593 3592 usbhub - ok
    13:51:34.0609 3592 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR
    OWS\system32\DRIVERS\USBSTOR.SYS
    13:51:34.0609 3592 USBSTOR - ok
    13:51:34.0640 3592 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave
    OWS\System32\drivers\vga.sys
    13:51:34.0640 3592 VgaSave - ok
    13:51:34.0640 3592 ViaIde - ok
    13:51:34.0640 3592 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap
    OWS\system32\drivers\VolSnap.sys
    13:51:34.0640 3592 VolSnap - ok
    13:51:34.0656 3592 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS
    OWS\System32\vssvc.exe
    13:51:34.0656 3592 VSS - ok
    13:51:34.0687 3592 [ 938B153D34A4F161C1111308A0716BAB ] vsserv
    ram Files\Bitdefender\Bitdefender 2013\vsserv.exe
    13:51:34.0718 3592 vsserv - ok
    13:51:34.0734 3592 [ 9F8A0D0CBB2FA265A754516128C00E22 ] W32Time
    OWS\system32\w32time.dll
    13:51:34.0734 3592 W32Time - ok
    13:51:34.0750 3592 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp
    OWS\system32\DRIVERS\wanarp.sys
    13:51:34.0750 3592 Wanarp - ok
    13:51:34.0796 3592 [ D918617B46457B9AC28027722E30F647 ] Wdf01000
    OWS\system32\Drivers\wdf01000.sys
    13:51:34.0796 3592 Wdf01000 - ok
    13:51:34.0796 3592 WDICA - ok

    C:\WIND
    C:\WIND
    C:\Prog
    C:\WIND

    C:\Prog
    C:\WIND
    C:\Prog
    C:\WIND
    C:\WIND
    C:\WIND
    C:\WIND
    C:\WIND
    C:\WIND

    C:\WIND
    C:\WIND
    C:\Prog
    C:\WIND
    C:\WIND
    C:\WIND

    13:51:34.0812 3592 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud


    C:\WIND
    OWS\system32\drivers\wdmaud.sys
    13:51:34.0812 3592 wdmaud - ok
    13:51:34.0828 3592 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient
    C:\WIND
    OWS\System32\webclnt.dll
    13:51:34.0828 3592 WebClient - ok
    13:51:34.0890 3592 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt
    C:\WIND
    OWS\system32\wbem\WMIsvc.dll
    13:51:34.0906 3592 winmgmt - ok
    13:51:34.0906 3592 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN
    C:\WIND
    OWS\system32\MsPMSNSv.dll
    13:51:34.0921 3592 WmdmPmSN - ok
    13:51:34.0937 3592 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi
    C:\WIND
    OWS\System32\advapi32.dll
    13:51:34.0937 3592 Wmi - ok
    13:51:34.0953 3592 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv
    C:\WIND
    OWS\system32\wbem\wmiapsrv.exe
    13:51:34.0953 3592 WmiApSrv - ok
    13:51:34.0968 3592 WMPNetworkSvc - ok
    13:51:35.0015 3592 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\W
    INDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
    13:51:35.0015 3592 WPFFontCache_v0400 - ok
    13:51:35.0031 3592 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc
    C:\WIND
    OWS\system32\wscsvc.dll
    13:51:35.0046 3592 wscsvc - ok
    13:51:35.0078 3592 [ E53AE6443F6319D7EC22672CD473EADB ] wuauserv
    C:\WIND
    OWS\system32\wuauserv.dll
    13:51:35.0078 3592 wuauserv - ok
    13:51:35.0078 3592 WudfPf - ok
    13:51:35.0078 3592 WudfRd - ok
    13:51:35.0078 3592 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc
    C:\WIND
    OWS\System32\WUDFSvc.dll
    13:51:35.0093 3592 WudfSvc - ok
    13:51:35.0109 3592 [ 349B8D2BB755E8C3B0E3E82A87663E55 ] WZCSVC
    C:\WIND
    OWS\System32\wzcsvc.dll
    13:51:35.0125 3592 WZCSVC - ok
    13:51:35.0140 3592 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov
    C:\WIND
    OWS\System32\xmlprov.dll
    13:51:35.0140 3592 xmlprov - ok
    13:51:35.0156 3592 ================ Scan global ===============================
    13:51:35.0156 3592 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\bas
    esrv.dll
    13:51:35.0171 3592 [ B23423313519C522E0E73BA170D3CE71 ] C:\WINDOWS\system32\win
    srv.dll
    13:51:35.0187 3592 [ B23423313519C522E0E73BA170D3CE71 ] C:\WINDOWS\system32\win
    srv.dll
    13:51:35.0203 3592 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\ser
    vices.exe
    13:51:35.0203 3592 [Global] - ok
    13:51:35.0203 3592 ================ Scan MBR ==================================
    13:51:35.0203 3592 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
    13:51:35.0453 3592 \Device\Harddisk0\DR0 - ok
    13:51:35.0453 3592 [ AD0FAC01F8924ADFA64A24475ED43F8B ] \Device\Harddisk1\DR4
    13:51:36.0171 3592 \Device\Harddisk1\DR4 ( Rootkit.Win32.BackBoot.gen ) - warni
    ng
    13:51:36.0171 3592 \Device\Harddisk1\DR4 - detected Rootkit.Win32.BackBoot.gen
    (1)
    13:51:36.0171 3592 ================ Scan VBR ==================================
    13:51:36.0171 3592 [ 81CA69BA7905016B3A7C700BF32D639B ] \Device\Harddisk0\DR0\P
    artition1

    13:51:36.0171 3592 \Device\Harddisk0\DR0\Partition1 - ok


    13:51:36.0187 3592 [ BCA1F2172E0921F59A36A39126E3C470 ] \Device\Harddisk0\DR0\P
    artition2
    13:51:36.0187 3592 \Device\Harddisk0\DR0\Partition2 - ok
    13:51:36.0203 3592 [ 5FA87C4EE3CBCF21D239C990F9B2F67C ] \Device\Harddisk0\DR0\P
    artition3
    13:51:36.0203 3592 \Device\Harddisk0\DR0\Partition3 - ok
    13:51:36.0203 3592 [ D327D8E34C75B35455778733C7648E78 ] \Device\Harddisk1\DR4\P
    artition1
    13:51:36.0203 3592 \Device\Harddisk1\DR4\Partition1 - ok
    13:51:36.0203 3592 ============================================================
    13:51:36.0203 3592 Scan finished
    13:51:36.0203 3592 ============================================================
    13:51:36.0203 3584 Detected object count: 1
    13:51:36.0203 3584 Actual detected object count: 1
    13:51:53.0281 3584 \Device\Harddisk1\DR4 ( Rootkit.Win32.BackBoot.gen ) - skipp
    ed by user
    13:51:53.0281 3584 \Device\Harddisk1\DR4 ( Rootkit.Win32.BackBoot.gen ) - User
    select action: Skip
    13:51:57.0968 1280 ============================================================
    13:51:57.0968 1280 Scan started
    13:51:57.0968 1280 Mode: Manual;
    13:51:57.0968 1280 ============================================================
    13:51:58.0562 1280 ================ Scan system memory ========================
    13:51:58.0562 1280 System memory - ok
    13:51:58.0562 1280 ================ Scan services =============================
    13:51:58.0656 1280 Abiosdsk - ok
    13:51:58.0656 1280 abp480n5 - ok
    13:51:58.0671 1280 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI
    C:\WIND
    OWS\system32\DRIVERS\ACPI.sys
    13:51:58.0671 1280 ACPI - ok
    13:51:58.0687 1280 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC
    C:\WIND
    OWS\system32\drivers\ACPIEC.sys
    13:51:58.0687 1280 ACPIEC - ok
    13:51:58.0734 1280 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateS
    vc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    13:51:58.0734 1280 AdobeFlashPlayerUpdateSvc - ok
    13:51:58.0734 1280 adpu160m - ok
    13:51:58.0750 1280 [ 8BED39E3C35D6A489438B8141717A557 ] aec
    C:\WIND
    OWS\system32\drivers\aec.sys
    13:51:58.0750 1280 aec - ok
    13:51:58.0781 1280 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD
    C:\WIND
    OWS\System32\drivers\afd.sys
    13:51:58.0781 1280 AFD - ok
    13:51:58.0796 1280 Aha154x - ok
    13:51:58.0796 1280 aic32p - ok
    13:51:58.0796 1280 aic78u2 - ok
    13:51:58.0796 1280 aic78xx - ok
    13:51:58.0812 1280 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter
    C:\WIND
    OWS\system32\alrsvc.dll
    13:51:58.0812 1280 Alerter - ok
    13:51:58.0812 1280 AliIde - ok
    13:51:58.0843 1280 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt
    C:\WIND
    OWS\system32\drivers\Ambfilt.sys
    13:51:58.0859 1280 Ambfilt - ok
    13:51:58.0859 1280 amsint - ok
    13:51:58.0859 1280 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt
    C:\WIND
    OWS\System32\appmgmts.dll
    13:51:58.0859 1280 AppMgmt - ok
    13:51:58.0859 1280 asc - ok

    13:51:58.0875 1280 asc3350p - ok


    13:51:58.0875 1280 asc3550 - ok
    13:51:58.0890 1280 [ 9D8CB58B9A9E177DDD599791A58A654D ] AsIO
    OWS\system32\drivers\AsIO.sys
    13:51:58.0890 1280 AsIO - ok
    13:51:58.0953 1280 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state
    OWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    13:51:58.0953 1280 aspnet_state - ok
    13:51:58.0968 1280 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac
    OWS\system32\DRIVERS\asyncmac.sys
    13:51:58.0968 1280 AsyncMac - ok
    13:51:58.0984 1280 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi
    OWS\system32\DRIVERS\atapi.sys
    13:51:58.0984 1280 atapi - ok
    13:51:58.0984 1280 Atdisk - ok
    13:51:59.0000 1280 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc
    OWS\system32\DRIVERS\atmarpc.sys
    13:51:59.0000 1280 Atmarpc - ok
    13:51:59.0000 1280 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv
    OWS\System32\audiosrv.dll
    13:51:59.0000 1280 AudioSrv - ok
    13:51:59.0000 1280 [ D9F724AA26C010A217C97606B160ED68 ] audstub
    OWS\system32\DRIVERS\audstub.sys
    13:51:59.0000 1280 audstub - ok
    13:51:59.0031 1280 [ F0C0E213D6D811384A49981ADFF0B6C0 ] avc3
    OWS\system32\DRIVERS\avc3.sys
    13:51:59.0031 1280 avc3 - ok
    13:51:59.0046 1280 [ A64529781E5B9CC454666A33A24E3E1D ] avchv
    OWS\system32\DRIVERS\avchv.sys
    13:51:59.0046 1280 avchv - ok
    13:51:59.0062 1280 [ 2BCE314A25E71298ADD6794BFBD66266 ] avckf
    OWS\system32\DRIVERS\avckf.sys
    13:51:59.0062 1280 avckf - ok
    13:51:59.0093 1280 BBSvc - ok
    13:51:59.0109 1280 [ 6BF743CBF3BCD09DAB79245E60E1AE62 ] BBUpdate
    ram Files\Microsoft\BingBar\7.1.362.0\SeaPort.exe
    13:51:59.0109 1280 BBUpdate - ok
    13:51:59.0171 1280 [ F7D825F7E47D8A7865F5D2156B1B7A24 ] bdftdif
    ram Files\Common Files\Bitdefender\Bitdefender Firewall\bdftdif.sys
    13:51:59.0171 1280 bdftdif - ok
    13:51:59.0187 1280 [ E260C0079B5C1107B87E98F356292004 ] BDSandBox
    OWS\system32\drivers\bdsandbox.sys
    13:51:59.0187 1280 BDSandBox - ok
    13:51:59.0250 1280 [ A9A33963C8358979827D1A75B20C0423 ] bdselfpr
    ram Files\Bitdefender\Bitdefender 2013\bdselfpr.sys
    13:51:59.0250 1280 bdselfpr - ok
    13:51:59.0265 1280 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep
    OWS\system32\drivers\Beep.sys
    13:51:59.0265 1280 Beep - ok
    13:51:59.0296 1280 [ 574738F61FCA2935F5265DC4E5691314 ] BITS
    OWS\system32\qmgr.dll
    13:51:59.0296 1280 BITS - ok
    13:51:59.0312 1280 [ FC6D1D80588D371F0321E15A75B2F8F2 ] Browser
    OWS\System32\browser.dll
    13:51:59.0312 1280 Browser - ok
    13:51:59.0328 1280 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k
    OWS\system32\drivers\cbidf2k.sys
    13:51:59.0328 1280 cbidf2k - ok
    13:51:59.0328 1280 cd20xrnt - ok
    13:51:59.0343 1280 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio

    C:\WIND
    C:\WIND
    C:\WIND
    C:\WIND

    C:\WIND
    C:\WIND
    C:\WIND
    C:\WIND
    C:\WIND
    C:\WIND

    C:\Prog
    C:\Prog
    C:\WIND
    C:\Prog
    C:\WIND
    C:\WIND
    C:\WIND
    C:\WIND

    C:\WIND

    OWS\system32\drivers\Cdaudio.sys
    13:51:59.0343 1280 Cdaudio - ok
    13:51:59.0359 1280 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs
    C:\WIND
    OWS\system32\drivers\Cdfs.sys
    13:51:59.0359 1280 Cdfs - ok
    13:51:59.0359 1280 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom
    C:\WIND
    OWS\system32\DRIVERS\cdrom.sys
    13:51:59.0359 1280 Cdrom - ok
    13:51:59.0359 1280 Changer - ok
    13:51:59.0375 1280 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc
    C:\WIND
    OWS\system32\cisvc.exe
    13:51:59.0375 1280 CiSvc - ok
    13:51:59.0390 1280 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv
    C:\WIND
    OWS\system32\clipsrv.exe
    13:51:59.0390 1280 ClipSrv - ok
    13:51:59.0421 1280 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.5
    0727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    13:51:59.0421 1280 clr_optimization_v2.0.50727_32 - ok
    13:51:59.0437 1280 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.3
    0319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    13:51:59.0437 1280 clr_optimization_v4.0.30319_32 - ok
    13:51:59.0437 1280 CmdIde - ok
    13:51:59.0468 1280 [ A0F7D6B070F15EAD9F4231B51B246E4C ] cmuda3
    C:\WIND
    OWS\system32\drivers\cmudax3.sys
    13:51:59.0468 1280 cmuda3 - ok
    13:51:59.0468 1280 COMSysApp - ok
    13:51:59.0484 1280 Cpqarray - ok
    13:51:59.0500 1280 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc
    C:\WIND
    OWS\System32\cryptsvc.dll
    13:51:59.0500 1280 CryptSvc - ok
    13:51:59.0500 1280 dac2w2k - ok
    13:51:59.0500 1280 dac960nt - ok
    13:51:59.0531 1280 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch
    C:\WIND
    OWS\system32\rpcss.dll
    13:51:59.0531 1280 DcomLaunch - ok
    13:51:59.0546 1280 [ C51DE19619D50CBD03708647ACA10E70 ] Dhcp
    C:\WIND
    OWS\System32\dhcpcsvc.dll
    13:51:59.0546 1280 Dhcp - ok
    13:51:59.0546 1280 [ 47B6AAEC570F2C11D8BAD80A064D8ED1 ] Disk
    C:\WIND
    OWS\system32\DRIVERS\disk.sys
    13:51:59.0546 1280 Disk - ok
    13:51:59.0546 1280 dmadmin - ok
    13:51:59.0578 1280 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot
    C:\WIND
    OWS\system32\drivers\dmboot.sys
    13:51:59.0578 1280 dmboot - ok
    13:51:59.0593 1280 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio
    C:\WIND
    OWS\system32\drivers\dmio.sys
    13:51:59.0593 1280 dmio - ok
    13:51:59.0609 1280 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload
    C:\WIND
    OWS\system32\drivers\dmload.sys
    13:51:59.0609 1280 dmload - ok
    13:51:59.0625 1280 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver
    C:\WIND
    OWS\System32\dmserver.dll
    13:51:59.0625 1280 dmserver - ok
    13:51:59.0640 1280 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic
    C:\WIND
    OWS\system32\drivers\DMusic.sys
    13:51:59.0640 1280 DMusic - ok
    13:51:59.0656 1280 [ D977659AE4D8ECE5286D99D1ED34614D ] Dnscache
    C:\WIND
    OWS\System32\dnsrslvr.dll
    13:51:59.0656 1280 Dnscache - ok

    13:51:59.0671 1280 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc


    C:\WIND
    OWS\System32\dot3svc.dll
    13:51:59.0671 1280 Dot3svc - ok
    13:51:59.0671 1280 dpti2o - ok
    13:51:59.0671 1280 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud
    C:\WIND
    OWS\system32\drivers\drmkaud.sys
    13:51:59.0671 1280 drmkaud - ok
    13:51:59.0687 1280 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost
    C:\WIND
    OWS\System32\eapsvc.dll
    13:51:59.0687 1280 EapHost - ok
    13:51:59.0703 1280 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc
    C:\WIND
    OWS\System32\ersvc.dll
    13:51:59.0703 1280 ERSvc - ok
    13:51:59.0718 1280 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog
    C:\WIND
    OWS\system32\services.exe
    13:51:59.0718 1280 Eventlog - ok
    13:51:59.0734 1280 [ F17F6226BDC0CD5F0BEF0DAF84D29BEC ] EventSystem
    C:\WIND
    OWS\system32\es.dll
    13:51:59.0750 1280 EventSystem - ok
    13:51:59.0781 1280 [ 4D893323DAE445E34A4C9038B0551BC9 ] exFat
    C:\WIND
    OWS\system32\drivers\exFat.sys
    13:51:59.0781 1280 exFat - ok
    13:51:59.0812 1280 Fabs - ok
    13:51:59.0843 1280 [ 38D332A6D56AF32635675F132548343E ] Fastfat
    C:\WIND
    OWS\system32\drivers\Fastfat.sys
    13:51:59.0843 1280 Fastfat - ok
    13:51:59.0859 1280 [ 888CD7B39C37E13A2419BECFAAF0A28C ] FastUserSwitchingCompat
    ibility C:\WINDOWS\System32\shsvcs.dll
    13:51:59.0859 1280 FastUserSwitchingCompatibility - ok
    13:51:59.0875 1280 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc
    C:\WIND
    OWS\system32\drivers\Fdc.sys
    13:51:59.0875 1280 Fdc - ok
    13:51:59.0875 1280 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips
    C:\WIND
    OWS\system32\drivers\Fips.sys
    13:51:59.0875 1280 Fips - ok
    13:51:59.0937 1280 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInst
    ance C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
    13:51:59.0953 1280 FirebirdServerMAGIXInstance - ok
    13:51:59.0953 1280 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk
    C:\WIND
    OWS\system32\drivers\Flpydisk.sys
    13:51:59.0953 1280 Flpydisk - ok
    13:51:59.0984 1280 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr
    C:\WIND
    OWS\system32\DRIVERS\fltMgr.sys
    13:51:59.0984 1280 FltMgr - ok
    13:52:00.0015 1280 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WIN
    DOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    13:52:00.0015 1280 FontCache3.0.0.0 - ok
    13:52:00.0031 1280 [ 30D42943A54704EF13E2562911DBFCEA ] Fs_Rec
    C:\WIND
    OWS\system32\drivers\Fs_Rec.sys
    13:52:00.0031 1280 Fs_Rec - ok
    13:52:00.0046 1280 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk
    C:\WIND
    OWS\system32\DRIVERS\ftdisk.sys
    13:52:00.0062 1280 Ftdisk - ok
    13:52:00.0078 1280 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc
    C:\WIND
    OWS\system32\DRIVERS\msgpc.sys
    13:52:00.0078 1280 Gpc - ok
    13:52:00.0109 1280 [ 36E2FD64A7C47A2C5D827D86837E5DBD ] gzflt
    C:\WIND
    OWS\system32\DRIVERS\gzflt.sys
    13:52:00.0109 1280 gzflt - ok
    13:52:00.0125 1280 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus
    C:\WIND

    OWS\system32\DRIVERS\HDAudBus.sys
    13:52:00.0125 1280 HDAudBus - ok
    13:52:00.0140 1280 [ A88485DC6A7136C10D9A6C7E38FDFE3C
    OWS\system32\DRIVERS\HECI.sys
    13:52:00.0140 1280 HECI - ok
    13:52:00.0171 1280 [ 4FCCA060DFE0C51A09DD5C3843888BCD
    OWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    13:52:00.0187 1280 helpsvc - ok
    13:52:00.0187 1280 HidServ - ok
    13:52:00.0187 1280 [ CCF82C5EC8A7326C3066DE870C06DAF1
    OWS\system32\DRIVERS\hidusb.sys
    13:52:00.0187 1280 hidusb - ok
    13:52:00.0203 1280 [ 8878BD685E490239777BFE51320B88E9
    OWS\System32\kmsvc.dll
    13:52:00.0203 1280 hkmsvc - ok
    13:52:00.0203 1280 hpn - ok
    13:52:00.0218 1280 [ F80A415EF82CD06FFAF0D971528EAD38
    OWS\system32\Drivers\HTTP.sys
    13:52:00.0218 1280 HTTP - ok
    13:52:00.0234 1280 [ 6100A808600F44D999CEBDEF8841C7A3
    OWS\System32\w3ssl.dll
    13:52:00.0250 1280 HTTPFilter - ok
    13:52:00.0250 1280 i2omgmt - ok
    13:52:00.0250 1280 i2omp - ok
    13:52:00.0250 1280 [ 4A0B06AA8943C1E332520F7440C0AA30
    OWS\system32\DRIVERS\i8042prt.sys
    13:52:00.0250 1280 i8042prt - ok
    13:52:00.0265 1280 [ 2362971B61DC6D8CEA74B0FB2AF7EDF1
    OWS\system32\DRIVERS\idmtdi.sys
    13:52:00.0265 1280 IDMTDI - ok
    13:52:00.0312 1280 [ C01AC32DC5C03076CFB852CB5DA5229C
    OWS\Microsoft.NET\Framework\v3.0\Windows Communication
    13:52:00.0312 1280 idsvc - ok
    13:52:00.0328 1280 [ 083A052659F5310DD8B6A6CB05EDCF8E
    OWS\system32\DRIVERS\imapi.sys
    13:52:00.0328 1280 Imapi - ok
    13:52:00.0343 1280 [ 30DEAF54A9755BB8546168CFE8A6B5E1
    OWS\system32\imapi.exe
    13:52:00.0343 1280 ImapiService - ok
    13:52:00.0343 1280 ini910u - ok
    13:52:00.0421 1280 [ C472FC1D265346E9500095F88A0345F9
    WINDOWS\system32\drivers\RtkHDAud.sys
    13:52:00.0453 1280 IntcAzAudAddService - ok
    13:52:00.0453 1280 IntelIde - ok
    13:52:00.0468 1280 [ 8C953733D8F36EB2133F5BB58808B66B
    OWS\system32\DRIVERS\intelppm.sys
    13:52:00.0468 1280 intelppm - ok
    13:52:00.0484 1280 [ 3BB22519A194418D5FEC05D800A19AD0
    OWS\system32\DRIVERS\Ip6Fw.sys
    13:52:00.0484 1280 Ip6Fw - ok
    13:52:00.0500 1280 [ 731F22BA402EE4B62748ADAF6363C182
    OWS\system32\DRIVERS\ipfltdrv.sys
    13:52:00.0500 1280 IpFilterDriver - ok
    13:52:00.0515 1280 [ B87AB476DCF76E72010632B5550955F5
    OWS\system32\DRIVERS\ipinip.sys
    13:52:00.0515 1280 IpInIp - ok
    13:52:00.0531 1280 [ CC748EA12C6EFFDE940EE98098BF96BB
    OWS\system32\DRIVERS\ipnat.sys
    13:52:00.0531 1280 IpNat - ok
    13:52:00.0546 1280 [ 23C74D75E36E7158768DD63D92789A91

    ] HECI

    C:\WIND

    ] helpsvc

    C:\WIND

    ] hidusb

    C:\WIND

    ] hkmsvc

    C:\WIND

    ] HTTP

    C:\WIND

    ] HTTPFilter

    C:\WIND

    ] i8042prt

    C:\WIND

    ] IDMTDI

    C:\WIND

    ] idsvc
    C:\WIND
    Foundation\infocard.exe
    ] Imapi

    C:\WIND

    ] ImapiService

    C:\WIND

    ] IntcAzAudAddService C:\

    ] intelppm

    C:\WIND

    ] Ip6Fw

    C:\WIND

    ] IpFilterDriver C:\WIND
    ] IpInIp

    C:\WIND

    ] IpNat

    C:\WIND

    ] IPSec

    C:\WIND

    OWS\system32\DRIVERS\ipsec.sys
    13:52:00.0546 1280 IPSec - ok
    13:52:00.0562 1280 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM
    C:\WIND
    OWS\system32\DRIVERS\irenum.sys
    13:52:00.0562 1280 IRENUM - ok
    13:52:00.0578 1280 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp
    C:\WIND
    OWS\system32\DRIVERS\isapnp.sys
    13:52:00.0578 1280 isapnp - ok
    13:52:00.0609 1280 [ 2F03CEB28307983F3B36216D35FFA5AA ] ISODrive
    C:\Prog
    ram Files\UltraISO\drivers\ISODrive.sys
    13:52:00.0625 1280 ISODrive - ok
    13:52:00.0671 1280 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass
    C:\WIND
    OWS\system32\DRIVERS\kbdclass.sys
    13:52:00.0671 1280 Kbdclass - ok
    13:52:00.0687 1280 [ 692BCF44383D056AED41B045A323D378 ] kmixer
    C:\WIND
    OWS\system32\drivers\kmixer.sys
    13:52:00.0687 1280 kmixer - ok
    13:52:00.0718 1280 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD
    C:\WIND
    OWS\system32\drivers\KSecDD.sys
    13:52:00.0718 1280 KSecDD - ok
    13:52:00.0765 1280 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer
    C:\WIND
    OWS\System32\srvsvc.dll
    13:52:00.0765 1280 LanmanServer - ok
    13:52:00.0828 1280 [ 3B9324D60DD321BAB7BF6F77931D3FD1 ] lanmanworkstation C:\WI
    NDOWS\System32\wkssvc.dll
    13:52:00.0828 1280 lanmanworkstation - ok
    13:52:00.0828 1280 lbrtfdc - ok
    13:52:00.0843 1280 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts
    C:\WIND
    OWS\System32\lmhsvc.dll
    13:52:00.0843 1280 LmHosts - ok
    13:52:00.0906 1280 [ A1C148801B4AF64847AEB9F3AD9594EF ] LMS
    C:\Prog
    ram Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    13:52:00.0906 1280 LMS - ok
    13:52:00.0921 1280 [ 8FD868E32459ECE2A1BB0169F513D31E ] mcdbus
    C:\WIND
    OWS\system32\DRIVERS\mcdbus.sys
    13:52:00.0921 1280 mcdbus - ok
    13:52:00.0921 1280 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger
    C:\WIND
    OWS\System32\msgsvc.dll
    13:52:00.0937 1280 Messenger - ok
    13:52:00.0953 1280 Microsoft SharePoint Workspace Audit Service - ok
    13:52:00.0984 1280 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd
    C:\WIND
    OWS\system32\drivers\mnmdd.sys
    13:52:00.0984 1280 mnmdd - ok
    13:52:00.0984 1280 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc
    C:\WIND
    OWS\system32\mnmsrvc.exe
    13:52:00.0984 1280 mnmsrvc - ok
    13:52:01.0000 1280 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem
    C:\WIND
    OWS\system32\drivers\Modem.sys
    13:52:01.0015 1280 Modem - ok
    13:52:01.0046 1280 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt
    C:\WIND
    OWS\system32\drivers\Monfilt.sys
    13:52:01.0046 1280 Monfilt - ok
    13:52:01.0062 1280 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass
    C:\WIND
    OWS\system32\DRIVERS\mouclass.sys
    13:52:01.0062 1280 Mouclass - ok
    13:52:01.0093 1280 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid
    C:\WIND
    OWS\system32\DRIVERS\mouhid.sys
    13:52:01.0093 1280 mouhid - ok
    13:52:01.0109 1280 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr
    C:\WIND
    OWS\system32\drivers\MountMgr.sys

    13:52:01.0109 1280 MountMgr - ok


    13:52:01.0140 1280 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\P
    rogram Files\Mozilla Maintenance Service\maintenanceservice.exe
    13:52:01.0140 1280 MozillaMaintenance - ok
    13:52:01.0140 1280 mraid35x - ok
    13:52:01.0156 1280 [ 0A25B866933D126D1E831FD025A278C2 ] MRxDAV
    C:\WIND
    OWS\system32\DRIVERS\mrxdav.sys
    13:52:01.0156 1280 MRxDAV - ok
    13:52:01.0187 1280 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb
    C:\WIND
    OWS\system32\DRIVERS\mrxsmb.sys
    13:52:01.0187 1280 MRxSmb - ok
    13:52:01.0203 1280 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC
    C:\WIND
    OWS\system32\msdtc.exe
    13:52:01.0218 1280 MSDTC - ok
    13:52:01.0218 1280 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs
    C:\WIND
    OWS\system32\drivers\Msfs.sys
    13:52:01.0218 1280 Msfs - ok
    13:52:01.0218 1280 MSIServer - ok
    13:52:01.0250 1280 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV
    C:\WIND
    OWS\system32\drivers\MSKSSRV.sys
    13:52:01.0250 1280 MSKSSRV - ok
    13:52:01.0250 1280 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK
    C:\WIND
    OWS\system32\drivers\MSPCLOCK.sys
    13:52:01.0250 1280 MSPCLOCK - ok
    13:52:01.0265 1280 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM
    C:\WIND
    OWS\system32\drivers\MSPQM.sys
    13:52:01.0265 1280 MSPQM - ok
    13:52:01.0281 1280 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios
    C:\WIND
    OWS\system32\DRIVERS\mssmbios.sys
    13:52:01.0281 1280 mssmbios - ok
    13:52:01.0296 1280 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor
    C:\WIND
    OWS\system32\DRIVERS\ASACPI.sys
    13:52:01.0296 1280 MTsensor - ok

    Вам также может понравиться