Don't like ads? PRO users don't see any ads ;-)
Public Pastes
Guest

tdss killer

By: a guest on Aug 7th, 2012  |  syntax: None  |  size: 40.76 KB  |  hits: 18  |  expires: Never
download  |  raw  |  embed  |  report abuse  |  print
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
  1. 01:58:54.0953 4048      TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
  2. 01:58:55.0187 4048      ============================================================
  3. 01:58:55.0187 4048      Current date / time: 2012/08/08 01:58:55.0187
  4. 01:58:55.0187 4048      SystemInfo:
  5. 01:58:55.0187 4048     
  6. 01:58:55.0187 4048      OS Version: 5.1.2600 ServicePack: 3.0
  7. 01:58:55.0187 4048      Product type: Workstation
  8. 01:58:55.0187 4048      ComputerName: IVAN-F7BE6E7C37
  9. 01:58:55.0187 4048      UserName: Gama
  10. 01:58:55.0187 4048      Windows directory: C:\WINDOWS
  11. 01:58:55.0187 4048      System windows directory: C:\WINDOWS
  12. 01:58:55.0187 4048      Processor architecture: Intel x86
  13. 01:58:55.0187 4048      Number of processors: 2
  14. 01:58:55.0187 4048      Page size: 0x1000
  15. 01:58:55.0187 4048      Boot type: Normal boot
  16. 01:58:55.0187 4048      ============================================================
  17. 01:58:58.0968 4048      Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
  18. 01:58:58.0984 4048      ============================================================
  19. 01:58:58.0984 4048      \Device\Harddisk0\DR0:
  20. 01:58:59.0015 4048      MBR partitions:
  21. 01:58:59.0015 4048      \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x6FC7C41
  22. 01:58:59.0031 4048      \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x6FC7CBF, BlocksNum 0x6FC7C41
  23. 01:58:59.0031 4048      ============================================================
  24. 01:58:59.0250 4048      C: <-> \Device\Harddisk0\DR0\Partition0
  25. 01:58:59.0984 4048      D: <-> \Device\Harddisk0\DR0\Partition1
  26. 01:58:59.0984 4048      ============================================================
  27. 01:58:59.0984 4048      Initialize success
  28. 01:58:59.0984 4048      ============================================================
  29. 01:59:17.0281 3616      ============================================================
  30. 01:59:17.0281 3616      Scan started
  31. 01:59:17.0281 3616      Mode: Manual;
  32. 01:59:17.0281 3616      ============================================================
  33. 01:59:18.0687 3616      !SASCORE        (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
  34. 01:59:18.0734 3616      !SASCORE - ok
  35. 01:59:18.0843 3616      Abiosdsk - ok
  36. 01:59:18.0859 3616      abp480n5 - ok
  37. 01:59:18.0906 3616      AC2003          (abdae0ff36a5ca1def07657d4c34ffcb) C:\WINDOWS\system32\Drivers\AC2003.sys
  38. 01:59:18.0921 3616      AC2003 - ok
  39. 01:59:18.0968 3616      ACPI            (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
  40. 01:59:18.0968 3616      ACPI - ok
  41. 01:59:18.0984 3616      ACPIEC          (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
  42. 01:59:19.0000 3616      ACPIEC - ok
  43. 01:59:19.0031 3616      ADIHdAudAddService (be4beb3fde3edfad4ef2760722717b0f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
  44. 01:59:19.0062 3616      ADIHdAudAddService - ok
  45. 01:59:19.0062 3616      adpu160m - ok
  46. 01:59:19.0078 3616      AEAudio         (358063ab6c1c4173b735525cdfa65f94) C:\WINDOWS\system32\drivers\AEAudio.sys
  47. 01:59:19.0093 3616      AEAudio - ok
  48. 01:59:19.0109 3616      aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
  49. 01:59:19.0140 3616      aec - ok
  50. 01:59:19.0171 3616      AFD             (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
  51. 01:59:19.0187 3616      AFD - ok
  52. 01:59:19.0281 3616      AgereSoftModem  (90456051c422e09bc36e6340dd891f0c) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
  53. 01:59:19.0343 3616      AgereSoftModem - ok
  54. 01:59:19.0343 3616      Aha154x - ok
  55. 01:59:19.0359 3616      aic78u2 - ok
  56. 01:59:19.0375 3616      aic78xx - ok
  57. 01:59:19.0406 3616      Alerter         (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
  58. 01:59:19.0421 3616      Alerter - ok
  59. 01:59:19.0437 3616      ALG             (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
  60. 01:59:19.0437 3616      ALG - ok
  61. 01:59:19.0453 3616      AliIde - ok
  62. 01:59:19.0468 3616      AmdK8           (efbb0956baed786e137351b5ca272aef) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
  63. 01:59:19.0484 3616      AmdK8 - ok
  64. 01:59:19.0484 3616      amsint - ok
  65. 01:59:19.0578 3616      AntiVirSchedulerService (b4837fe56d76b2e9ea90e5365cf6a2be) C:\Program Files\Avira\AntiVir Desktop\sched.exe
  66. 01:59:19.0593 3616      AntiVirSchedulerService - ok
  67. 01:59:19.0640 3616      AntiVirService  (df5a3016052755c910a206058b4a1729) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
  68. 01:59:19.0671 3616      AntiVirService - ok
  69. 01:59:19.0718 3616      AppMgmt         (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
  70. 01:59:19.0734 3616      AppMgmt - ok
  71. 01:59:19.0734 3616      asc - ok
  72. 01:59:19.0750 3616      asc3350p - ok
  73. 01:59:19.0765 3616      asc3550 - ok
  74. 01:59:19.0859 3616      aspnet_state    (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
  75. 01:59:19.0921 3616      aspnet_state - ok
  76. 01:59:19.0953 3616      AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
  77. 01:59:19.0968 3616      AsyncMac - ok
  78. 01:59:20.0000 3616      atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
  79. 01:59:20.0000 3616      atapi - ok
  80. 01:59:20.0015 3616      Atdisk - ok
  81. 01:59:20.0062 3616      Ati HotKey Poller (2911a46a482f1bbe39f47bac4cf6f609) C:\WINDOWS\system32\Ati2evxx.exe
  82. 01:59:20.0093 3616      Ati HotKey Poller - ok
  83. 01:59:20.0140 3616      ATI Smart       (2b2cc2c47f5de490f27d4292f0edc034) C:\WINDOWS\system32\ati2sgag.exe
  84. 01:59:20.0187 3616      ATI Smart - ok
  85. 01:59:20.0406 3616      ati2mtag        (e9375396f55b58c2042c7c9844d297e3) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
  86. 01:59:20.0500 3616      ati2mtag - ok
  87. 01:59:20.0718 3616      Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
  88. 01:59:20.0750 3616      Atmarpc - ok
  89. 01:59:20.0812 3616      AudioSrv        (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
  90. 01:59:20.0812 3616      AudioSrv - ok
  91. 01:59:20.0843 3616      audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
  92. 01:59:20.0859 3616      audstub - ok
  93. 01:59:21.0046 3616      avgio           (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
  94. 01:59:21.0062 3616      avgio - ok
  95. 01:59:21.0109 3616      avgntflt        (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
  96. 01:59:21.0140 3616      avgntflt - ok
  97. 01:59:21.0421 3616      avipbb          (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
  98. 01:59:21.0468 3616      avipbb - ok
  99. 01:59:21.0656 3616      b57w2k          (133ad3794572bce689763a8356c7ed06) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
  100. 01:59:21.0671 3616      b57w2k - ok
  101. 01:59:21.0796 3616      BCM43XX         (9208c78bd9283f79a30252ad954c77a2) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
  102. 01:59:21.0843 3616      BCM43XX - ok
  103. 01:59:21.0875 3616      Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
  104. 01:59:21.0875 3616      Beep - ok
  105. 01:59:21.0921 3616      BITS            (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
  106. 01:59:22.0015 3616      BITS - ok
  107. 01:59:22.0046 3616      Browser         (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
  108. 01:59:22.0062 3616      Browser - ok
  109. 01:59:22.0093 3616      cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
  110. 01:59:22.0093 3616      cbidf2k - ok
  111. 01:59:22.0109 3616      cd20xrnt - ok
  112. 01:59:22.0125 3616      Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
  113. 01:59:22.0125 3616      Cdaudio - ok
  114. 01:59:22.0171 3616      Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
  115. 01:59:22.0171 3616      Cdfs - ok
  116. 01:59:22.0187 3616      Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
  117. 01:59:22.0203 3616      Cdrom - ok
  118. 01:59:22.0203 3616      Changer - ok
  119. 01:59:22.0234 3616      CiSvc           (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
  120. 01:59:22.0234 3616      CiSvc - ok
  121. 01:59:22.0250 3616      ClipSrv         (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
  122. 01:59:22.0265 3616      ClipSrv - ok
  123. 01:59:22.0328 3616      clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
  124. 01:59:22.0421 3616      clr_optimization_v2.0.50727_32 - ok
  125. 01:59:22.0437 3616      CmBatt          (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
  126. 01:59:22.0453 3616      CmBatt - ok
  127. 01:59:22.0468 3616      CmdIde - ok
  128. 01:59:22.0484 3616      Compbatt        (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
  129. 01:59:22.0484 3616      Compbatt - ok
  130. 01:59:22.0484 3616      COMSysApp - ok
  131. 01:59:22.0500 3616      Cpqarray - ok
  132. 01:59:22.0546 3616      CryptSvc        (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
  133. 01:59:22.0562 3616      CryptSvc - ok
  134. 01:59:22.0562 3616      dac2w2k - ok
  135. 01:59:22.0562 3616      dac960nt - ok
  136. 01:59:22.0625 3616      DcomLaunch      (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
  137. 01:59:22.0640 3616      DcomLaunch - ok
  138. 01:59:22.0671 3616      Dhcp            (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
  139. 01:59:22.0687 3616      Dhcp - ok
  140. 01:59:22.0687 3616      Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
  141. 01:59:22.0703 3616      Disk - ok
  142. 01:59:22.0703 3616      dmadmin - ok
  143. 01:59:22.0796 3616      dmboot          (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
  144. 01:59:22.0859 3616      dmboot - ok
  145. 01:59:22.0875 3616      dmio            (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
  146. 01:59:22.0890 3616      dmio - ok
  147. 01:59:22.0906 3616      dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
  148. 01:59:22.0921 3616      dmload - ok
  149. 01:59:22.0953 3616      dmserver        (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
  150. 01:59:22.0953 3616      dmserver - ok
  151. 01:59:22.0984 3616      DMusic          (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
  152. 01:59:22.0984 3616      DMusic - ok
  153. 01:59:23.0015 3616      Dnscache        (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
  154. 01:59:23.0031 3616      Dnscache - ok
  155. 01:59:23.0046 3616      Dot3svc         (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
  156. 01:59:23.0062 3616      Dot3svc - ok
  157. 01:59:23.0078 3616      dpti2o - ok
  158. 01:59:23.0093 3616      drmkaud         (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
  159. 01:59:23.0109 3616      drmkaud - ok
  160. 01:59:23.0125 3616      DrvAgent32      (651554e483712b708ede864d0ca1aa73) C:\WINDOWS\system32\Drivers\DrvAgent32.sys
  161. 01:59:23.0125 3616      DrvAgent32 - ok
  162. 01:59:23.0500 3616      dtsoftbus01     (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
  163. 01:59:23.0515 3616      dtsoftbus01 - ok
  164. 01:59:23.0546 3616      EapHost         (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
  165. 01:59:23.0546 3616      EapHost - ok
  166. 01:59:23.0593 3616      ERSvc           (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
  167. 01:59:23.0593 3616      ERSvc - ok
  168. 01:59:23.0640 3616      Eventlog        (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
  169. 01:59:23.0656 3616      Eventlog - ok
  170. 01:59:23.0687 3616      EventSystem     (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
  171. 01:59:23.0703 3616      EventSystem - ok
  172. 01:59:23.0734 3616      Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
  173. 01:59:23.0734 3616      Fastfat - ok
  174. 01:59:23.0781 3616      FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
  175. 01:59:23.0796 3616      FastUserSwitchingCompatibility - ok
  176. 01:59:23.0828 3616      Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
  177. 01:59:23.0843 3616      Fdc - ok
  178. 01:59:23.0859 3616      Fips            (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
  179. 01:59:23.0859 3616      Fips - ok
  180. 01:59:23.0968 3616      FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
  181. 01:59:24.0000 3616      FLEXnet Licensing Service - ok
  182. 01:59:24.0031 3616      Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
  183. 01:59:24.0031 3616      Flpydisk - ok
  184. 01:59:24.0062 3616      FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
  185. 01:59:24.0078 3616      FltMgr - ok
  186. 01:59:24.0171 3616      FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
  187. 01:59:24.0187 3616      FontCache3.0.0.0 - ok
  188. 01:59:24.0218 3616      Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
  189. 01:59:24.0218 3616      Fs_Rec - ok
  190. 01:59:24.0234 3616      Ftdisk          (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
  191. 01:59:24.0250 3616      Ftdisk - ok
  192. 01:59:24.0281 3616      Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
  193. 01:59:24.0296 3616      Gpc - ok
  194. 01:59:24.0328 3616      gusvc           (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
  195. 01:59:24.0343 3616      gusvc - ok
  196. 01:59:24.0390 3616      HDAudBus        (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
  197. 01:59:24.0421 3616      HDAudBus - ok
  198. 01:59:24.0453 3616      helpsvc         (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
  199. 01:59:24.0484 3616      helpsvc - ok
  200. 01:59:24.0484 3616      HidServ - ok
  201. 01:59:24.0500 3616      hidusb          (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
  202. 01:59:24.0515 3616      hidusb - ok
  203. 01:59:24.0546 3616      hkmsvc          (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
  204. 01:59:24.0546 3616      hkmsvc - ok
  205. 01:59:24.0578 3616      HP24X           (04ebefe45b300a4edee5a38dc2791291) C:\WINDOWS\system32\DRIVERS\HP24X.sys
  206. 01:59:24.0593 3616      HP24X - ok
  207. 01:59:24.0593 3616      hpn - ok
  208. 01:59:24.0656 3616      HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
  209. 01:59:24.0656 3616      HTTP - ok
  210. 01:59:24.0671 3616      HTTPFilter      (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
  211. 01:59:24.0671 3616      HTTPFilter - ok
  212. 01:59:24.0718 3616      hwdatacard      (2310ca92d37d97c9231adf1796b47b9d) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
  213. 01:59:24.0718 3616      hwdatacard - ok
  214. 01:59:24.0734 3616      i2omgmt - ok
  215. 01:59:24.0734 3616      i2omp - ok
  216. 01:59:24.0750 3616      i8042prt        (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
  217. 01:59:24.0765 3616      i8042prt - ok
  218. 01:59:24.0890 3616      idsvc           (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
  219. 01:59:24.0937 3616      idsvc - ok
  220. 01:59:24.0953 3616      Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
  221. 01:59:24.0968 3616      Imapi - ok
  222. 01:59:25.0015 3616      ImapiService    (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
  223. 01:59:25.0015 3616      ImapiService - ok
  224. 01:59:25.0031 3616      ini910u - ok
  225. 01:59:25.0031 3616      IntelIde - ok
  226. 01:59:25.0078 3616      Ip6Fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
  227. 01:59:25.0078 3616      Ip6Fw - ok
  228. 01:59:25.0125 3616      IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
  229. 01:59:25.0125 3616      IpFilterDriver - ok
  230. 01:59:25.0203 3616      IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
  231. 01:59:25.0203 3616      IpInIp - ok
  232. 01:59:25.0234 3616      IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
  233. 01:59:25.0250 3616      IpNat - ok
  234. 01:59:25.0250 3616      IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
  235. 01:59:25.0265 3616      IPSec - ok
  236. 01:59:25.0281 3616      IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
  237. 01:59:25.0296 3616      IRENUM - ok
  238. 01:59:25.0312 3616      isapnp          (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
  239. 01:59:25.0328 3616      isapnp - ok
  240. 01:59:25.0437 3616      JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe
  241. 01:59:25.0453 3616      JavaQuickStarterService - ok
  242. 01:59:25.0468 3616      Kbdclass        (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
  243. 01:59:25.0468 3616      Kbdclass - ok
  244. 01:59:25.0484 3616      kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
  245. 01:59:25.0515 3616      kmixer - ok
  246. 01:59:25.0546 3616      KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
  247. 01:59:25.0562 3616      KSecDD - ok
  248. 01:59:25.0593 3616      lanmanserver    (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
  249. 01:59:25.0625 3616      lanmanserver - ok
  250. 01:59:25.0671 3616      lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
  251. 01:59:25.0687 3616      lanmanworkstation - ok
  252. 01:59:25.0687 3616      lbrtfdc - ok
  253. 01:59:25.0734 3616      LmHosts         (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
  254. 01:59:25.0734 3616      LmHosts - ok
  255. 01:59:25.0843 3616      MDM             (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
  256. 01:59:25.0859 3616      MDM - ok
  257. 01:59:25.0890 3616      Messenger       (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
  258. 01:59:25.0906 3616      Messenger - ok
  259. 01:59:25.0984 3616      Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
  260. 01:59:26.0000 3616      Microsoft Office Groove Audit Service - ok
  261. 01:59:26.0015 3616      mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
  262. 01:59:26.0031 3616      mnmdd - ok
  263. 01:59:26.0062 3616      mnmsrvc         (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
  264. 01:59:26.0062 3616      mnmsrvc - ok
  265. 01:59:26.0093 3616      Modem           (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
  266. 01:59:26.0093 3616      Modem - ok
  267. 01:59:26.0109 3616      Mouclass        (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
  268. 01:59:26.0125 3616      Mouclass - ok
  269. 01:59:26.0156 3616      mouhid          (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
  270. 01:59:26.0156 3616      mouhid - ok
  271. 01:59:26.0187 3616      MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
  272. 01:59:26.0203 3616      MountMgr - ok
  273. 01:59:26.0265 3616      MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
  274. 01:59:26.0281 3616      MozillaMaintenance - ok
  275. 01:59:26.0281 3616      mraid35x - ok
  276. 01:59:26.0328 3616      MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
  277. 01:59:26.0343 3616      MRxDAV - ok
  278. 01:59:26.0390 3616      MRxSmb          (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
  279. 01:59:26.0421 3616      MRxSmb - ok
  280. 01:59:26.0468 3616      MSDTC           (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
  281. 01:59:26.0468 3616      MSDTC - ok
  282. 01:59:26.0484 3616      Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
  283. 01:59:26.0484 3616      Msfs - ok
  284. 01:59:26.0500 3616      MSIServer - ok
  285. 01:59:26.0531 3616      MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
  286. 01:59:26.0531 3616      MSKSSRV - ok
  287. 01:59:26.0546 3616      MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
  288. 01:59:26.0546 3616      MSPCLOCK - ok
  289. 01:59:26.0562 3616      MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
  290. 01:59:26.0562 3616      MSPQM - ok
  291. 01:59:26.0609 3616      mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
  292. 01:59:26.0609 3616      mssmbios - ok
  293. 01:59:26.0656 3616      Mup             (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
  294. 01:59:26.0671 3616      Mup - ok
  295. 01:59:26.0812 3616      napagent        (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
  296. 01:59:26.0843 3616      napagent - ok
  297. 01:59:26.0890 3616      NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
  298. 01:59:26.0921 3616      NDIS - ok
  299. 01:59:26.0984 3616      NdisTapi        (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
  300. 01:59:27.0000 3616      NdisTapi - ok
  301. 01:59:27.0031 3616      Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
  302. 01:59:27.0031 3616      Ndisuio - ok
  303. 01:59:27.0046 3616      NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
  304. 01:59:27.0062 3616      NdisWan - ok
  305. 01:59:27.0140 3616      NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
  306. 01:59:27.0156 3616      NDProxy - ok
  307. 01:59:27.0156 3616      NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
  308. 01:59:27.0171 3616      NetBIOS - ok
  309. 01:59:27.0218 3616      NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
  310. 01:59:27.0234 3616      NetBT - ok
  311. 01:59:27.0312 3616      NetDDE          (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
  312. 01:59:27.0343 3616      NetDDE - ok
  313. 01:59:27.0343 3616      NetDDEdsdm      (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
  314. 01:59:27.0343 3616      NetDDEdsdm - ok
  315. 01:59:27.0390 3616      Netlogon        (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
  316. 01:59:27.0390 3616      Netlogon - ok
  317. 01:59:27.0421 3616      Netman          (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
  318. 01:59:27.0437 3616      Netman - ok
  319. 01:59:27.0515 3616      NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
  320. 01:59:27.0531 3616      NetTcpPortSharing - ok
  321. 01:59:27.0593 3616      Nla             (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
  322. 01:59:27.0593 3616      Nla - ok
  323. 01:59:27.0609 3616      nmwcd           (4a8a2aa0706b659175169decf198e9d7) C:\WINDOWS\system32\drivers\ccdcmb.sys
  324. 01:59:27.0625 3616      nmwcd - ok
  325. 01:59:27.0640 3616      nmwcdc          (fd3e61831095ac62e6840d986b5a2016) C:\WINDOWS\system32\drivers\ccdcmbo.sys
  326. 01:59:27.0656 3616      nmwcdc - ok
  327. 01:59:27.0687 3616      Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
  328. 01:59:27.0703 3616      Npfs - ok
  329. 01:59:27.0781 3616      Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
  330. 01:59:27.0812 3616      Ntfs - ok
  331. 01:59:27.0828 3616      NtLmSsp         (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
  332. 01:59:27.0828 3616      NtLmSsp - ok
  333. 01:59:27.0921 3616      NtmsSvc         (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
  334. 01:59:27.0937 3616      NtmsSvc - ok
  335. 01:59:27.0984 3616      Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
  336. 01:59:28.0000 3616      Null - ok
  337. 01:59:28.0078 3616      NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
  338. 01:59:28.0078 3616      NwlnkFlt - ok
  339. 01:59:28.0109 3616      NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
  340. 01:59:28.0125 3616      NwlnkFwd - ok
  341. 01:59:28.0234 3616      odserv          (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
  342. 01:59:28.0281 3616      odserv - ok
  343. 01:59:28.0375 3616      ose             (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
  344. 01:59:28.0390 3616      ose - ok
  345. 01:59:28.0453 3616      Parport         (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
  346. 01:59:28.0500 3616      Parport - ok
  347. 01:59:28.0546 3616      PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
  348. 01:59:28.0546 3616      PartMgr - ok
  349. 01:59:28.0625 3616      ParVdm          (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
  350. 01:59:28.0640 3616      ParVdm - ok
  351. 01:59:28.0703 3616      pccsmcfd        (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
  352. 01:59:28.0703 3616      pccsmcfd - ok
  353. 01:59:28.0734 3616      PCI             (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
  354. 01:59:28.0750 3616      PCI - ok
  355. 01:59:28.0765 3616      PCIDump - ok
  356. 01:59:28.0781 3616      PCIIde          (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
  357. 01:59:28.0796 3616      PCIIde - ok
  358. 01:59:28.0812 3616      Pcmcia          (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
  359. 01:59:28.0828 3616      Pcmcia - ok
  360. 01:59:28.0828 3616      PDCOMP - ok
  361. 01:59:28.0843 3616      PDFRAME - ok
  362. 01:59:28.0843 3616      PDRELI - ok
  363. 01:59:28.0859 3616      PDRFRAME - ok
  364. 01:59:28.0859 3616      perc2 - ok
  365. 01:59:28.0875 3616      perc2hib - ok
  366. 01:59:28.0937 3616      PlugPlay        (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
  367. 01:59:28.0937 3616      PlugPlay - ok
  368. 01:59:29.0031 3616      PolicyAgent     (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
  369. 01:59:29.0031 3616      PolicyAgent - ok
  370. 01:59:29.0093 3616      PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
  371. 01:59:29.0140 3616      PptpMiniport - ok
  372. 01:59:29.0171 3616      Processor       (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
  373. 01:59:29.0187 3616      Processor - ok
  374. 01:59:29.0187 3616      ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
  375. 01:59:29.0187 3616      ProtectedStorage - ok
  376. 01:59:29.0218 3616      PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
  377. 01:59:29.0218 3616      PSched - ok
  378. 01:59:29.0281 3616      Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
  379. 01:59:29.0296 3616      Ptilink - ok
  380. 01:59:29.0406 3616      PxHelp20        (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
  381. 01:59:29.0421 3616      PxHelp20 - ok
  382. 01:59:29.0437 3616      ql1080 - ok
  383. 01:59:29.0437 3616      Ql10wnt - ok
  384. 01:59:29.0453 3616      ql12160 - ok
  385. 01:59:29.0453 3616      ql1240 - ok
  386. 01:59:29.0468 3616      ql1280 - ok
  387. 01:59:29.0500 3616      RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
  388. 01:59:29.0515 3616      RasAcd - ok
  389. 01:59:29.0546 3616      RasAuto         (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
  390. 01:59:29.0546 3616      RasAuto - ok
  391. 01:59:29.0578 3616      Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
  392. 01:59:29.0593 3616      Rasl2tp - ok
  393. 01:59:29.0640 3616      RasMan          (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
  394. 01:59:29.0671 3616      RasMan - ok
  395. 01:59:29.0703 3616      RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
  396. 01:59:29.0703 3616      RasPppoe - ok
  397. 01:59:29.0718 3616      Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
  398. 01:59:29.0718 3616      Raspti - ok
  399. 01:59:29.0750 3616      Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
  400. 01:59:29.0781 3616      Rdbss - ok
  401. 01:59:29.0812 3616      RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
  402. 01:59:29.0812 3616      RDPCDD - ok
  403. 01:59:29.0859 3616      rdpdr           (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
  404. 01:59:29.0890 3616      rdpdr - ok
  405. 01:59:29.0953 3616      RDPWD           (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
  406. 01:59:29.0953 3616      RDPWD - ok
  407. 01:59:30.0000 3616      RDSessMgr       (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
  408. 01:59:30.0015 3616      RDSessMgr - ok
  409. 01:59:30.0062 3616      redbook         (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
  410. 01:59:30.0078 3616      redbook - ok
  411. 01:59:30.0109 3616      RemoteAccess    (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
  412. 01:59:30.0109 3616      RemoteAccess - ok
  413. 01:59:30.0140 3616      RemoteRegistry  (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
  414. 01:59:30.0156 3616      RemoteRegistry - ok
  415. 01:59:30.0171 3616      RpcLocator      (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
  416. 01:59:30.0187 3616      RpcLocator - ok
  417. 01:59:30.0265 3616      RpcSs           (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
  418. 01:59:30.0281 3616      RpcSs - ok
  419. 01:59:30.0312 3616      RSVP            (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
  420. 01:59:30.0328 3616      RSVP - ok
  421. 01:59:30.0406 3616      s1018bus        (1c5c2cb892553d2cf3f45a4bb323fcd6) C:\WINDOWS\system32\DRIVERS\s1018bus.sys
  422. 01:59:30.0437 3616      s1018bus - ok
  423. 01:59:30.0468 3616      s1018mdfl       (38f5ea219593f19b6b3a1b9c169e3b61) C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys
  424. 01:59:30.0484 3616      s1018mdfl - ok
  425. 01:59:30.0500 3616      s1018mdm        (666af6b64fc7df92d3ca4819ea91631d) C:\WINDOWS\system32\DRIVERS\s1018mdm.sys
  426. 01:59:30.0515 3616      s1018mdm - ok
  427. 01:59:30.0531 3616      s1018mgmt       (f4ceda6e2ddff2af8bd745615a7ca9c0) C:\WINDOWS\system32\DRIVERS\s1018mgmt.sys
  428. 01:59:30.0546 3616      s1018mgmt - ok
  429. 01:59:30.0578 3616      s1018nd5        (3622d9ff2253dcbe885b10736609a4ca) C:\WINDOWS\system32\DRIVERS\s1018nd5.sys
  430. 01:59:30.0593 3616      s1018nd5 - ok
  431. 01:59:30.0609 3616      s1018obex       (49431efda842b474531c29ffae9f5d09) C:\WINDOWS\system32\DRIVERS\s1018obex.sys
  432. 01:59:30.0625 3616      s1018obex - ok
  433. 01:59:30.0640 3616      s1018unic       (ac6b514cb4474f4c867d7cdc9cd54f05) C:\WINDOWS\system32\DRIVERS\s1018unic.sys
  434. 01:59:30.0656 3616      s1018unic - ok
  435. 01:59:30.0718 3616      SamSs           (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
  436. 01:59:30.0718 3616      SamSs - ok
  437. 01:59:30.0812 3616      SASDIFSV        (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
  438. 01:59:30.0828 3616      SASDIFSV - ok
  439. 01:59:30.0843 3616      SASKUTIL        (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
  440. 01:59:30.0843 3616      SASKUTIL - ok
  441. 01:59:30.0875 3616      SCardSvr        (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
  442. 01:59:30.0890 3616      SCardSvr - ok
  443. 01:59:30.0937 3616      SCDEmu          (16b1abe7f3e35f21dac57592b6c5d464) C:\WINDOWS\system32\drivers\SCDEmu.sys
  444. 01:59:30.0937 3616      SCDEmu - ok
  445. 01:59:30.0984 3616      Schedule        (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
  446. 01:59:31.0015 3616      Schedule - ok
  447. 01:59:31.0109 3616      Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
  448. 01:59:31.0140 3616      Secdrv - ok
  449. 01:59:31.0171 3616      seclogon        (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
  450. 01:59:31.0187 3616      seclogon - ok
  451. 01:59:31.0250 3616      SENS            (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
  452. 01:59:31.0265 3616      SENS - ok
  453. 01:59:31.0343 3616      Serial          (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
  454. 01:59:31.0359 3616      Serial - ok
  455. 01:59:31.0593 3616      ServiceLayer    (58d5bfdf3adf49fe9cabd78cc61d92f6) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
  456. 01:59:31.0750 3616      ServiceLayer - ok
  457. 01:59:31.0781 3616      Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
  458. 01:59:31.0781 3616      Sfloppy - ok
  459. 01:59:31.0859 3616      SharedAccess    (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
  460. 01:59:31.0875 3616      SharedAccess - ok
  461. 01:59:31.0906 3616      ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
  462. 01:59:31.0921 3616      ShellHWDetection - ok
  463. 01:59:31.0921 3616      Simbad - ok
  464. 01:59:31.0937 3616      Sparrow - ok
  465. 01:59:31.0968 3616      splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
  466. 01:59:31.0984 3616      splitter - ok
  467. 01:59:32.0015 3616      Spooler         (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
  468. 01:59:32.0031 3616      Spooler - ok
  469. 01:59:32.0140 3616      sptd            (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys
  470. 01:59:32.0140 3616      Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
  471. 01:59:32.0140 3616      sptd ( LockedFile.Multi.Generic ) - warning
  472. 01:59:32.0140 3616      sptd - detected LockedFile.Multi.Generic (1)
  473. 01:59:32.0171 3616      sr              (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
  474. 01:59:32.0203 3616      sr - ok
  475. 01:59:32.0265 3616      srservice       (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
  476. 01:59:32.0281 3616      srservice - ok
  477. 01:59:32.0359 3616      Srv             (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
  478. 01:59:32.0390 3616      Srv - ok
  479. 01:59:32.0406 3616      SSDPSRV         (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
  480. 01:59:32.0406 3616      SSDPSRV - ok
  481. 01:59:32.0500 3616      ssmdrv          (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
  482. 01:59:32.0515 3616      ssmdrv - ok
  483. 01:59:32.0687 3616      stisvc          (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
  484. 01:59:32.0703 3616      stisvc - ok
  485. 01:59:32.0750 3616      swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
  486. 01:59:32.0750 3616      swenum - ok
  487. 01:59:32.0890 3616      SWIHPWMI        (58c341d38cfa462489b735d89df6df12) C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe
  488. 01:59:32.0906 3616      SWIHPWMI - ok
  489. 01:59:32.0937 3616      swmidi          (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
  490. 01:59:32.0953 3616      swmidi - ok
  491. 01:59:32.0953 3616      SwPrv - ok
  492. 01:59:32.0968 3616      symc810 - ok
  493. 01:59:32.0968 3616      symc8xx - ok
  494. 01:59:32.0984 3616      sym_hi - ok
  495. 01:59:32.0984 3616      sym_u3 - ok
  496. 01:59:33.0031 3616      SynTP           (6f9cff60129569ec39efc490f4bcde0e) C:\WINDOWS\system32\DRIVERS\SynTP.sys
  497. 01:59:33.0046 3616      SynTP - ok
  498. 01:59:33.0078 3616      sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
  499. 01:59:33.0078 3616      sysaudio - ok
  500. 01:59:33.0140 3616      SysmonLog       (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
  501. 01:59:33.0156 3616      SysmonLog - ok
  502. 01:59:33.0187 3616      TapiSrv         (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
  503. 01:59:33.0203 3616      TapiSrv - ok
  504. 01:59:33.0250 3616      Tcpip           (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
  505. 01:59:33.0265 3616      Tcpip - ok
  506. 01:59:33.0296 3616      TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
  507. 01:59:33.0312 3616      TDPIPE - ok
  508. 01:59:33.0328 3616      TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
  509. 01:59:33.0328 3616      TDTCP - ok
  510. 01:59:33.0359 3616      TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
  511. 01:59:33.0359 3616      TermDD - ok
  512. 01:59:33.0468 3616      TermService     (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
  513. 01:59:33.0484 3616      TermService - ok
  514. 01:59:33.0531 3616      Themes          (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
  515. 01:59:33.0531 3616      Themes - ok
  516. 01:59:33.0578 3616      TlntSvr         (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
  517. 01:59:33.0593 3616      TlntSvr - ok
  518. 01:59:33.0609 3616      TosIde - ok
  519. 01:59:33.0656 3616      TrkWks          (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
  520. 01:59:33.0671 3616      TrkWks - ok
  521. 01:59:33.0718 3616      Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
  522. 01:59:33.0734 3616      Udfs - ok
  523. 01:59:33.0734 3616      ultra - ok
  524. 01:59:33.0859 3616      UnlockerDriver5 (f365fa561c3ab455d8685770d208691a) C:\Program Files\Unlocker\UnlockerDriver5.sys
  525. 01:59:33.0875 3616      UnlockerDriver5 - ok
  526. 01:59:33.0921 3616      Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
  527. 01:59:33.0953 3616      Update - ok
  528. 01:59:33.0984 3616      upnphost        (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
  529. 01:59:34.0015 3616      upnphost - ok
  530. 01:59:34.0078 3616      upperdev        (587e643a4e2ffd9a00f114b057ceb773) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
  531. 01:59:34.0078 3616      upperdev - ok
  532. 01:59:34.0109 3616      UPS             (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
  533. 01:59:34.0125 3616      UPS - ok
  534. 01:59:34.0156 3616      usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
  535. 01:59:34.0156 3616      usbccgp - ok
  536. 01:59:34.0171 3616      usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
  537. 01:59:34.0187 3616      usbehci - ok
  538. 01:59:34.0234 3616      usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
  539. 01:59:34.0250 3616      usbhub - ok
  540. 01:59:34.0265 3616      usbohci         (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
  541. 01:59:34.0265 3616      usbohci - ok
  542. 01:59:34.0296 3616      usbser          (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
  543. 01:59:34.0312 3616      usbser - ok
  544. 01:59:34.0328 3616      UsbserFilt      (fca6a196d47cb972a0e4adc0db9cd17c) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
  545. 01:59:34.0343 3616      UsbserFilt - ok
  546. 01:59:34.0375 3616      USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
  547. 01:59:34.0375 3616      USBSTOR - ok
  548. 01:59:34.0390 3616      VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
  549. 01:59:34.0406 3616      VgaSave - ok
  550. 01:59:34.0406 3616      ViaIde - ok
  551. 01:59:34.0484 3616      VMCService      (b3bfbb9c45bdaf3ecb4d1456f9017f95) C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
  552. 01:59:34.0500 3616      VMCService - ok
  553. 01:59:34.0515 3616      VolSnap         (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
  554. 01:59:34.0515 3616      VolSnap - ok
  555. 01:59:34.0562 3616      VSS             (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
  556. 01:59:34.0578 3616      VSS - ok
  557. 01:59:34.0609 3616      W32Time         (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
  558. 01:59:34.0625 3616      W32Time - ok
  559. 01:59:34.0625 3616      Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
  560. 01:59:34.0640 3616      Wanarp - ok
  561. 01:59:34.0718 3616      Wdf01000        (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys
  562. 01:59:34.0750 3616      Wdf01000 - ok
  563. 01:59:34.0765 3616      WDICA - ok
  564. 01:59:34.0796 3616      wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
  565. 01:59:34.0796 3616      wdmaud - ok
  566. 01:59:34.0828 3616      WebClient       (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
  567. 01:59:34.0843 3616      WebClient - ok
  568. 01:59:34.0937 3616      winmgmt         (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
  569. 01:59:34.0953 3616      winmgmt - ok
  570. 01:59:35.0171 3616      wlidsvc         (5144ae67d60ec653f97ddf3feed29e77) c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
  571. 01:59:35.0234 3616      wlidsvc - ok
  572. 01:59:35.0312 3616      wltrysvc - ok
  573. 01:59:35.0390 3616      WmdmPmSN        (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
  574. 01:59:35.0421 3616      WmdmPmSN - ok
  575. 01:59:35.0781 3616      Wmi             (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
  576. 01:59:35.0890 3616      Wmi - ok
  577. 01:59:36.0078 3616      WmiAcpi         (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
  578. 01:59:36.0078 3616      WmiAcpi - ok
  579. 01:59:36.0203 3616      WmiApSrv        (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
  580. 01:59:36.0250 3616      WmiApSrv - ok
  581. 01:59:36.0296 3616      WpdUsb          (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
  582. 01:59:36.0312 3616      WpdUsb - ok
  583. 01:59:36.0359 3616      WS2IFSL         (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
  584. 01:59:36.0375 3616      WS2IFSL - ok
  585. 01:59:36.0437 3616      wscsvc          (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
  586. 01:59:36.0531 3616      wscsvc - ok
  587. 01:59:36.0546 3616      wuauserv        (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
  588. 01:59:36.0546 3616      wuauserv - ok
  589. 01:59:36.0625 3616      WudfPf          (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
  590. 01:59:36.0625 3616      WudfPf - ok
  591. 01:59:36.0828 3616      WudfRd          (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
  592. 01:59:36.0859 3616      WudfRd - ok
  593. 01:59:37.0218 3616      WudfSvc         (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
  594. 01:59:37.0390 3616      WudfSvc - ok
  595. 01:59:37.0578 3616      WZCSVC          (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
  596. 01:59:37.0593 3616      WZCSVC - ok
  597. 01:59:37.0671 3616      xmlprov         (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
  598. 01:59:37.0781 3616      xmlprov - ok
  599. 01:59:37.0843 3616      MBR (0x1B8)     (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
  600. 01:59:38.0562 3616      \Device\Harddisk0\DR0 - ok
  601. 01:59:39.0093 3616      Boot (0x1200)   (3dae57608bf179eeeca75ed801304824) \Device\Harddisk0\DR0\Partition0
  602. 01:59:40.0234 3616      \Device\Harddisk0\DR0\Partition0 - ok
  603. 01:59:40.0265 3616      Boot (0x1200)   (f26728cb9e55f21c8198e17f155d591a) \Device\Harddisk0\DR0\Partition1
  604. 01:59:40.0265 3616      \Device\Harddisk0\DR0\Partition1 - ok
  605. 01:59:40.0281 3616      ============================================================
  606. 01:59:40.0281 3616      Scan finished
  607. 01:59:40.0281 3616      ============================================================
  608. 01:59:40.0296 3592      Detected object count: 1
  609. 01:59:40.0296 3592      Actual detected object count: 1
  610. 02:04:30.0546 3592      C:\WINDOWS\system32\Drivers\sptd.sys - copied to quarantine
  611. 02:04:30.0546 3592      sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
  612. 02:04:41.0703 3564      Deinitialize success
create a new version of this paste RAW Paste Data