09:25:26.0087 0816 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
09:25:26.0507 0816 ============================================================
09:25:26.0507 0816 Current date / time: 2012/08/14 09:25:26.0507
09:25:26.0507 0816 SystemInfo:
09:25:26.0507 0816
09:25:26.0517 0816 OS Version: 6.1.7600 ServicePack: 0.0
09:25:26.0517 0816 Product type: Workstation
09:25:26.0517 0816 ComputerName: LUNAROSSA
09:25:26.0517 0816 UserName: Savio
09:25:26.0517 0816 Windows directory: C:\Windows
09:25:26.0517 0816 System windows directory: C:\Windows
09:25:26.0517 0816 Processor architecture: Intel x86
09:25:26.0517 0816 Number of processors: 2
09:25:26.0517 0816 Page size: 0x1000
09:25:26.0517 0816 Boot type: Normal boot
09:25:26.0517 0816 ============================================================
09:25:28.0577 0816 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
09:25:28.0577 0816 ============================================================
09:25:28.0577 0816 \Device\Harddisk0\DR0:
09:25:28.0587 0816 MBR partitions:
09:25:28.0587 0816 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x6DF8F4B
09:25:28.0607 0816 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x6DF8FC9, BlocksNum 0x2711637
09:25:28.0607 0816 ============================================================
09:25:28.0637 0816 C: <-> \Device\Harddisk0\DR0\Partition1
09:25:28.0677 0816 D: <-> \Device\Harddisk0\DR0\Partition0
09:25:28.0677 0816 ============================================================
09:25:28.0677 0816 Initialize success
09:25:28.0677 0816 ============================================================
09:25:32.0427 5468 ============================================================
09:25:32.0427 5468 Scan started
09:25:32.0427 5468 Mode: Manual;
09:25:32.0427 5468 ============================================================
09:25:33.0115 5468 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
09:25:33.0131 5468 1394ohci - ok
09:25:33.0177 5468 Accelerometer (cc1f1d3d70dc13c2c281488d347d4415) C:\Windows\system32\DRIVERS\Accelerometer.sys
09:25:33.0177 5468 Accelerometer - ok
09:25:33.0271 5468 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
09:25:33.0318 5468 ACPI - ok
09:25:33.0333 5468 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
09:25:33.0333 5468 AcpiPmi - ok
09:25:33.0536 5468 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
09:25:33.0536 5468 AdobeARMservice - ok
09:25:33.0599 5468 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:25:33.0630 5468 AdobeFlashPlayerUpdateSvc - ok
09:25:33.0677 5468 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
09:25:33.0692 5468 adp94xx - ok
09:25:33.0786 5468 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
09:25:33.0833 5468 adpahci - ok
09:25:33.0864 5468 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
09:25:33.0879 5468 adpu320 - ok
09:25:33.0911 5468 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
09:25:33.0926 5468 AeLookupSvc - ok
09:25:33.0973 5468 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
09:25:33.0989 5468 AFD - ok
09:25:34.0098 5468 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\Windows\system32\DRIVERS\AGRSM.sys
09:25:34.0145 5468 AgereSoftModem - ok
09:25:34.0176 5468 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
09:25:34.0176 5468 agp440 - ok
09:25:34.0207 5468 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
09:25:34.0223 5468 aic78xx - ok
09:25:34.0254 5468 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
09:25:34.0254 5468 ALG - ok
09:25:34.0285 5468 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
09:25:34.0285 5468 aliide - ok
09:25:34.0301 5468 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
09:25:34.0316 5468 amdagp - ok
09:25:34.0316 5468 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
09:25:34.0316 5468 amdide - ok
09:25:34.0332 5468 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
09:25:34.0332 5468 AmdK8 - ok
09:25:34.0347 5468 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
09:25:34.0347 5468 AmdPPM - ok
09:25:34.0379 5468 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
09:25:34.0379 5468 amdsata - ok
09:25:34.0389 5468 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
09:25:34.0409 5468 amdsbs - ok
09:25:34.0409 5468 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
09:25:34.0409 5468 amdxata - ok
09:25:34.0449 5468 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
09:25:34.0449 5468 AppID - ok
09:25:34.0479 5468 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
09:25:34.0479 5468 AppIDSvc - ok
09:25:34.0509 5468 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
09:25:34.0509 5468 Appinfo - ok
09:25:34.0549 5468 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
09:25:34.0559 5468 AppMgmt - ok
09:25:34.0569 5468 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
09:25:34.0569 5468 arc - ok
09:25:34.0579 5468 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
09:25:34.0599 5468 arcsas - ok
09:25:34.0629 5468 aswFsBlk (1c1f3d6dddc046c920c493a779649f66) C:\Windows\system32\drivers\aswFsBlk.sys
09:25:34.0629 5468 aswFsBlk - ok
09:25:34.0679 5468 aswMonFlt (a48d8015af2a0d8b4937613ffbfd28de) C:\Windows\system32\drivers\aswMonFlt.sys
09:25:34.0679 5468 aswMonFlt - ok
09:25:34.0709 5468 aswRdr (4a951beba9e49410cde478b6f6abb252) C:\Windows\System32\Drivers\aswrdr2.sys
09:25:34.0709 5468 aswRdr - ok
09:25:34.0749 5468 aswSnx (73dbcf808e00580f2a47f93dd9b03876) C:\Windows\system32\drivers\aswSnx.sys
09:25:34.0789 5468 aswSnx - ok
09:25:34.0819 5468 aswSP (6cbd7d3a33f498d09c831cdd732da2e0) C:\Windows\system32\drivers\aswSP.sys
09:25:34.0839 5468 aswSP - ok
09:25:34.0839 5468 aswTdi (7109a9aa551f37cd168c02368465957e) C:\Windows\system32\drivers\aswTdi.sys
09:25:34.0849 5468 aswTdi - ok
09:25:34.0879 5468 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
09:25:34.0879 5468 AsyncMac - ok
09:25:34.0899 5468 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
09:25:34.0899 5468 atapi - ok
09:25:34.0959 5468 ATSwpWDF (befe54e9bc648a3c79c917a63b6ee7da) C:\Windows\system32\Drivers\ATSwpWDF.sys
09:25:34.0999 5468 ATSwpWDF - ok
09:25:35.0389 5468 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
09:25:35.0419 5468 AudioEndpointBuilder - ok
09:25:35.0429 5468 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
09:25:35.0429 5468 Audiosrv - ok
09:25:35.0539 5468 avast! Antivirus (2f7c0f3e39c45e0127fb78b2f18a41f3) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:25:35.0539 5468 avast! Antivirus - ok
09:25:35.0579 5468 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
09:25:35.0589 5468 AxInstSV - ok
09:25:35.0649 5468 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
09:25:35.0679 5468 b06bdrv - ok
09:25:35.0759 5468 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
09:25:35.0779 5468 b57nd60x - ok
09:25:35.0809 5468 BCM42RLY (06740bca09a1d6a7b2d753f17d0bb10b) C:\Windows\system32\drivers\BCM42RLY.sys
09:25:35.0809 5468 BCM42RLY - ok
09:25:35.0969 5468 BCM43XX (40fb1d9065e668cd4beeff0a804c40e0) C:\Windows\system32\DRIVERS\bcmwl6.sys
09:25:36.0109 5468 BCM43XX - ok
09:25:36.0239 5468 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
09:25:36.0239 5468 BDESVC - ok
09:25:36.0309 5468 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
09:25:36.0309 5468 Beep - ok
09:25:36.0359 5468 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
09:25:36.0389 5468 BFE - ok
09:25:36.0449 5468 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\System32\qmgr.dll
09:25:36.0499 5468 BITS - ok
09:25:36.0519 5468 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
09:25:36.0519 5468 blbdrive - ok
09:25:36.0559 5468 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys
09:25:36.0559 5468 bowser - ok
09:25:36.0579 5468 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:25:36.0579 5468 BrFiltLo - ok
09:25:36.0589 5468 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:25:36.0589 5468 BrFiltUp - ok
09:25:36.0609 5468 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
09:25:36.0629 5468 Browser - ok
09:25:36.0649 5468 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
09:25:36.0669 5468 Brserid - ok
09:25:36.0679 5468 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
09:25:36.0689 5468 BrSerWdm - ok
09:25:36.0689 5468 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
09:25:36.0689 5468 BrUsbMdm - ok
09:25:36.0699 5468 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
09:25:36.0699 5468 BrUsbSer - ok
09:25:36.0739 5468 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\DRIVERS\BthEnum.sys
09:25:36.0739 5468 BthEnum - ok
09:25:36.0749 5468 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
09:25:36.0749 5468 BTHMODEM - ok
09:25:36.0769 5468 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
09:25:36.0779 5468 BthPan - ok
09:25:36.0859 5468 BTHPORT (4a34888e13224678dd062466afec4240) C:\Windows\system32\Drivers\BTHport.sys
09:25:36.0879 5468 BTHPORT - ok
09:25:36.0919 5468 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
09:25:36.0919 5468 bthserv - ok
09:25:36.0929 5468 BTHUSB (fa04c63916fa221dbb91fce153d07a55) C:\Windows\system32\Drivers\BTHUSB.sys
09:25:36.0939 5468 BTHUSB - ok
09:25:36.0989 5468 btwaudio (d57d29132efe13a83133d9bd449e0cf1) C:\Windows\system32\drivers\btwaudio.sys
09:25:36.0999 5468 btwaudio - ok
09:25:37.0009 5468 btwavdt (d282c14a69357d0e1bafaecc2ca98c3a) C:\Windows\system32\DRIVERS\btwavdt.sys
09:25:37.0029 5468 btwavdt - ok
09:25:37.0209 5468 btwdins (7d2dd14e60ce4ff3308d66fda7990546) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
09:25:37.0240 5468 btwdins - ok
09:25:37.0271 5468 btwl2cap (aafd7cb76ba61fbb08e302da208c974a) C:\Windows\system32\DRIVERS\btwl2cap.sys
09:25:37.0271 5468 btwl2cap - ok
09:25:37.0302 5468 btwrchid (02eb4d2b05967df2d32f29c84ab1fb17) C:\Windows\system32\DRIVERS\btwrchid.sys
09:25:37.0318 5468 btwrchid - ok
09:25:37.0365 5468 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
09:25:37.0365 5468 cdfs - ok
09:25:37.0396 5468 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
09:25:37.0411 5468 cdrom - ok
09:25:37.0443 5468 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
09:25:37.0443 5468 CertPropSvc - ok
09:25:37.0474 5468 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
09:25:37.0474 5468 circlass - ok
09:25:37.0505 5468 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
09:25:37.0521 5468 CLFS - ok
09:25:37.0599 5468 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:25:37.0614 5468 clr_optimization_v2.0.50727_32 - ok
09:25:37.0614 5468 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
09:25:37.0630 5468 CmBatt - ok
09:25:37.0630 5468 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
09:25:37.0630 5468 cmdide - ok
09:25:37.0661 5468 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
09:25:37.0677 5468 CNG - ok
09:25:37.0858 5468 Com4QLBEx (c7a0e61d5714ac20de52d4f66ec773b8) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
09:25:37.0878 5468 Com4QLBEx - ok
09:25:37.0918 5468 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
09:25:37.0928 5468 Compbatt - ok
09:25:37.0948 5468 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
09:25:37.0948 5468 CompositeBus - ok
09:25:37.0968 5468 COMSysApp - ok
09:25:37.0988 5468 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
09:25:37.0988 5468 crcdisk - ok
09:25:38.0038 5468 CryptSvc (520a108a2657f4bca7fced9ca7d885de) C:\Windows\system32\cryptsvc.dll
09:25:38.0048 5468 CryptSvc - ok
09:25:38.0108 5468 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
09:25:38.0128 5468 CSC - ok
09:25:38.0158 5468 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll
09:25:38.0188 5468 CscService - ok
09:25:38.0248 5468 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
09:25:38.0288 5468 DcomLaunch - ok
09:25:38.0328 5468 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
09:25:38.0338 5468 defragsvc - ok
09:25:38.0398 5468 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
09:25:38.0398 5468 DfsC - ok
09:25:38.0448 5468 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
09:25:38.0468 5468 Dhcp - ok
09:25:38.0478 5468 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
09:25:38.0478 5468 discache - ok
09:25:38.0508 5468 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
09:25:38.0518 5468 Disk - ok
09:25:38.0538 5468 Dnscache (d0722e963d3c6145446874241401b209) C:\Windows\System32\dnsrslvr.dll
09:25:38.0548 5468 Dnscache - ok
09:25:38.0578 5468 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
09:25:38.0588 5468 dot3svc - ok
09:25:38.0608 5468 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
09:25:38.0618 5468 DPS - ok
09:25:38.0648 5468 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
09:25:38.0648 5468 drmkaud - ok
09:25:38.0708 5468 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys
09:25:38.0748 5468 DXGKrnl - ok
09:25:38.0778 5468 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
09:25:38.0788 5468 EapHost - ok
09:25:38.0948 5468 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
09:25:39.0118 5468 ebdrv - ok
09:25:39.0218 5468 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
09:25:39.0228 5468 EFS - ok
09:25:39.0288 5468 ehRecvr (3a74a6e33685662b125a3269b1f2114f) C:\Windows\ehome\ehRecvr.exe
09:25:39.0318 5468 ehRecvr - ok
09:25:39.0348 5468 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
09:25:39.0358 5468 ehSched - ok
09:25:39.0448 5468 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
09:25:39.0478 5468 elxstor - ok
09:25:39.0508 5468 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
09:25:39.0518 5468 ErrDev - ok
09:25:39.0568 5468 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
09:25:39.0588 5468 EventSystem - ok
09:25:39.0618 5468 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
09:25:39.0628 5468 exfat - ok
09:25:39.0638 5468 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
09:25:39.0648 5468 fastfat - ok
09:25:39.0728 5468 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
09:25:39.0758 5468 Fax - ok
09:25:39.0758 5468 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
09:25:39.0768 5468 fdc - ok
09:25:39.0788 5468 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
09:25:39.0788 5468 fdPHost - ok
09:25:39.0808 5468 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
09:25:39.0808 5468 FDResPub - ok
09:25:39.0828 5468 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
09:25:39.0838 5468 FileInfo - ok
09:25:39.0838 5468 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
09:25:39.0838 5468 Filetrace - ok
09:25:39.0858 5468 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
09:25:39.0858 5468 flpydisk - ok
09:25:39.0888 5468 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
09:25:39.0888 5468 FltMgr - ok
09:25:39.0958 5468 FontCache (151258fc2ec8c48bdf8a53350ae0a676) C:\Windows\system32\FntCache.dll
09:25:40.0008 5468 FontCache - ok
09:25:40.0088 5468 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:25:40.0088 5468 FontCache3.0.0.0 - ok
09:25:40.0098 5468 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
09:25:40.0108 5468 FsDepends - ok
09:25:40.0118 5468 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
09:25:40.0118 5468 Fs_Rec - ok
09:25:40.0148 5468 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
09:25:40.0148 5468 fvevol - ok
09:25:40.0178 5468 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
09:25:40.0178 5468 gagp30kx - ok
09:25:40.0228 5468 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
09:25:40.0258 5468 gpsvc - ok
09:25:40.0308 5468 HBtnKey (c172f0d0329e46513b09e1fc60a27b9d) C:\Windows\system32\DRIVERS\cpqbttn.sys
09:25:40.0308 5468 HBtnKey - ok
09:25:40.0318 5468 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
09:25:40.0318 5468 hcw85cir - ok
09:25:40.0408 5468 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
09:25:40.0418 5468 HdAudAddService - ok
09:25:40.0448 5468 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
09:25:40.0458 5468 HDAudBus - ok
09:25:40.0478 5468 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
09:25:40.0478 5468 HidBatt - ok
09:25:40.0488 5468 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
09:25:40.0498 5468 HidBth - ok
09:25:40.0518 5468 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
09:25:40.0528 5468 HidIr - ok
09:25:40.0558 5468 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
09:25:40.0568 5468 hidserv - ok
09:25:40.0598 5468 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
09:25:40.0608 5468 HidUsb - ok
09:25:40.0628 5468 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
09:25:40.0638 5468 hkmsvc - ok
09:25:40.0658 5468 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
09:25:40.0688 5468 HomeGroupListener - ok
09:25:40.0718 5468 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
09:25:40.0738 5468 HomeGroupProvider - ok
09:25:40.0758 5468 hpdskflt (4ef10b866c62abbeaf7511cdd05a19be) C:\Windows\system32\DRIVERS\hpdskflt.sys
09:25:40.0768 5468 hpdskflt - ok
09:25:40.0798 5468 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
09:25:40.0798 5468 HpqKbFiltr - ok
09:25:40.0948 5468 hpqwmiex (fdf273a845f1ffcceadf363aaf47582f) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
09:25:40.0968 5468 hpqwmiex - ok
09:25:40.0998 5468 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
09:25:40.0998 5468 HpSAMD - ok
09:25:41.0018 5468 hpsrv (c0beb56ed79b59b7b33d0aa6c38a0ba6) C:\Windows\system32\Hpservice.exe
09:25:41.0018 5468 hpsrv - ok
09:25:41.0058 5468 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
09:25:41.0098 5468 HTTP - ok
09:25:41.0108 5468 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
09:25:41.0108 5468 hwpolicy - ok
09:25:41.0128 5468 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
09:25:41.0138 5468 i8042prt - ok
09:25:41.0188 5468 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
09:25:41.0208 5468 iaStorV - ok
09:25:41.0318 5468 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:25:41.0368 5468 idsvc - ok
09:25:41.0648 5468 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
09:25:41.0898 5468 igfx - ok
09:25:42.0028 5468 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
09:25:42.0028 5468 iirsp - ok
09:25:42.0098 5468 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
09:25:42.0148 5468 IKEEXT - ok
09:25:42.0158 5468 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
09:25:42.0158 5468 intelide - ok
09:25:42.0178 5468 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
09:25:42.0188 5468 intelppm - ok
09:25:42.0198 5468 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
09:25:42.0208 5468 IPBusEnum - ok
09:25:42.0228 5468 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:25:42.0228 5468 IpFilterDriver - ok
09:25:42.0268 5468 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
09:25:42.0298 5468 iphlpsvc - ok
09:25:42.0328 5468 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
09:25:42.0328 5468 IPMIDRV - ok
09:25:42.0358 5468 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
09:25:42.0358 5468 IPNAT - ok
09:25:42.0408 5468 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
09:25:42.0408 5468 IRENUM - ok
09:25:42.0408 5468 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
09:25:42.0418 5468 isapnp - ok
09:25:42.0448 5468 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
09:25:42.0458 5468 iScsiPrt - ok
09:25:42.0488 5468 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
09:25:42.0488 5468 kbdclass - ok
09:25:42.0498 5468 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
09:25:42.0508 5468 kbdhid - ok
09:25:42.0538 5468 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
09:25:42.0538 5468 KeyIso - ok
09:25:42.0548 5468 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
09:25:42.0558 5468 KSecDD - ok
09:25:42.0568 5468 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
09:25:42.0588 5468 KSecPkg - ok
09:25:42.0628 5468 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
09:25:42.0648 5468 KtmRm - ok
09:25:42.0708 5468 LanmanServer (bca92cb047a4326925ecef759dbaa233) C:\Windows\system32\srvsvc.dll
09:25:42.0728 5468 LanmanServer - ok
09:25:42.0758 5468 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
09:25:42.0768 5468 LanmanWorkstation - ok
09:25:42.0788 5468 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
09:25:42.0788 5468 lltdio - ok
09:25:42.0818 5468 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
09:25:42.0838 5468 lltdsvc - ok
09:25:42.0888 5468 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
09:25:42.0888 5468 lmhosts - ok
09:25:42.0928 5468 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
09:25:42.0928 5468 LSI_FC - ok
09:25:42.0948 5468 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
09:25:42.0948 5468 LSI_SAS - ok
09:25:42.0978 5468 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:25:42.0978 5468 LSI_SAS2 - ok
09:25:42.0988 5468 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:25:42.0998 5468 LSI_SCSI - ok
09:25:43.0008 5468 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
09:25:43.0018 5468 luafv - ok
09:25:43.0058 5468 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
09:25:43.0078 5468 Mcx2Svc - ok
09:25:43.0088 5468 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
09:25:43.0088 5468 megasas - ok
09:25:43.0118 5468 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
09:25:43.0128 5468 MegaSR - ok
09:25:43.0158 5468 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
09:25:43.0158 5468 MMCSS - ok
09:25:43.0178 5468 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
09:25:43.0178 5468 Modem - ok
09:25:43.0198 5468 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
09:25:43.0198 5468 monitor - ok
09:25:43.0208 5468 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
09:25:43.0208 5468 mouclass - ok
09:25:43.0228 5468 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
09:25:43.0228 5468 mouhid - ok
09:25:43.0238 5468 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
09:25:43.0238 5468 mountmgr - ok
09:25:43.0348 5468 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
09:25:43.0358 5468 MozillaMaintenance - ok
09:25:43.0398 5468 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
09:25:43.0408 5468 mpio - ok
09:25:43.0408 5468 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
09:25:43.0418 5468 mpsdrv - ok
09:25:43.0458 5468 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
09:25:43.0488 5468 MpsSvc - ok
09:25:43.0518 5468 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
09:25:43.0538 5468 MRxDAV - ok
09:25:43.0578 5468 mrxsmb (b4c76ef46322a9711c7b0f4e21ef6ea5) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:25:43.0588 5468 mrxsmb - ok
09:25:43.0618 5468 mrxsmb10 (e593d45024a3fdd11e93cc4a6ca91101) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:25:43.0638 5468 mrxsmb10 - ok
09:25:43.0668 5468 mrxsmb20 (a9f86c82c9cc3b679cc3957e1183a30f) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:25:43.0678 5468 mrxsmb20 - ok
09:25:43.0688 5468 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
09:25:43.0688 5468 msahci - ok
09:25:43.0708 5468 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
09:25:43.0718 5468 msdsm - ok
09:25:43.0748 5468 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
09:25:43.0758 5468 MSDTC - ok
09:25:43.0768 5468 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
09:25:43.0768 5468 Msfs - ok
09:25:43.0798 5468 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
09:25:43.0798 5468 mshidkmdf - ok
09:25:43.0808 5468 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
09:25:43.0808 5468 msisadrv - ok
09:25:43.0848 5468 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
09:25:43.0858 5468 MSiSCSI - ok
09:25:43.0858 5468 msiserver - ok
09:25:43.0908 5468 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
09:25:43.0908 5468 MSKSSRV - ok
09:25:43.0918 5468 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
09:25:43.0918 5468 MSPCLOCK - ok
09:25:43.0928 5468 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
09:25:43.0928 5468 MSPQM - ok
09:25:43.0948 5468 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
09:25:43.0958 5468 MsRPC - ok
09:25:43.0978 5468 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
09:25:43.0978 5468 mssmbios - ok
09:25:43.0988 5468 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
09:25:43.0988 5468 MSTEE - ok
09:25:43.0988 5468 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
09:25:43.0998 5468 MTConfig - ok
09:25:44.0008 5468 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
09:25:44.0008 5468 Mup - ok
09:25:44.0048 5468 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
09:25:44.0068 5468 napagent - ok
09:25:44.0108 5468 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
09:25:44.0128 5468 NativeWifiP - ok
09:25:44.0178 5468 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
09:25:44.0208 5468 NDIS - ok
09:25:44.0238 5468 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
09:25:44.0238 5468 NdisCap - ok
09:25:44.0278 5468 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
09:25:44.0278 5468 NdisTapi - ok
09:25:44.0308 5468 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
09:25:44.0308 5468 Ndisuio - ok
09:25:44.0328 5468 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
09:25:44.0338 5468 NdisWan - ok
09:25:44.0348 5468 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
09:25:44.0348 5468 NDProxy - ok
09:25:44.0358 5468 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
09:25:44.0358 5468 NetBIOS - ok
09:25:44.0388 5468 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
09:25:44.0388 5468 NetBT - ok
09:25:44.0458 5468 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
09:25:44.0468 5468 Netlogon - ok
09:25:44.0528 5468 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
09:25:44.0548 5468 Netman - ok
09:25:44.0598 5468 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
09:25:44.0618 5468 netprofm - ok
09:25:44.0698 5468 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:25:44.0708 5468 NetTcpPortSharing - ok
09:25:44.0758 5468 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
09:25:44.0758 5468 nfrd960 - ok
09:25:44.0788 5468 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
09:25:44.0808 5468 NlaSvc - ok
09:25:44.0818 5468 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
09:25:44.0818 5468 Npfs - ok
09:25:44.0858 5468 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
09:25:44.0868 5468 nsi - ok
09:25:44.0888 5468 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
09:25:44.0888 5468 nsiproxy - ok
09:25:44.0968 5468 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
09:25:45.0038 5468 Ntfs - ok
09:25:45.0058 5468 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
09:25:45.0058 5468 Null - ok
09:25:45.0088 5468 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
09:25:45.0098 5468 nvraid - ok
09:25:45.0118 5468 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
09:25:45.0128 5468 nvstor - ok
09:25:45.0138 5468 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
09:25:45.0158 5468 nv_agp - ok
09:25:45.0338 5468 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:25:45.0358 5468 odserv - ok
09:25:45.0698 5468 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
09:25:45.0708 5468 ohci1394 - ok
09:25:45.0758 5468 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:25:45.0768 5468 ose - ok
09:25:45.0808 5468 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
09:25:45.0838 5468 p2pimsvc - ok
09:25:45.0878 5468 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
09:25:45.0898 5468 p2psvc - ok
09:25:45.0928 5468 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
09:25:45.0928 5468 Parport - ok
09:25:45.0948 5468 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
09:25:45.0948 5468 partmgr - ok
09:25:45.0958 5468 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
09:25:45.0968 5468 Parvdm - ok
09:25:45.0988 5468 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
09:25:46.0008 5468 PcaSvc - ok
09:25:46.0028 5468 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
09:25:46.0038 5468 pci - ok
09:25:46.0058 5468 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
09:25:46.0058 5468 pciide - ok
09:25:46.0078 5468 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
09:25:46.0088 5468 pcmcia - ok
09:25:46.0098 5468 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
09:25:46.0098 5468 pcw - ok
09:25:46.0158 5468 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
09:25:46.0188 5468 PEAUTH - ok
09:25:46.0248 5468 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
09:25:46.0308 5468 PeerDistSvc - ok
09:25:46.0418 5468 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
09:25:46.0498 5468 pla - ok
09:25:46.0628 5468 PlugPlay (2cc2008f1296968fba162ed9f9afe328) C:\Windows\system32\umpnpmgr.dll
09:25:46.0658 5468 PlugPlay - ok
09:25:46.0738 5468 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
09:25:46.0748 5468 PNRPAutoReg - ok
09:25:46.0778 5468 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
09:25:46.0788 5468 PNRPsvc - ok
09:25:46.0828 5468 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
09:25:46.0858 5468 PolicyAgent - ok
09:25:46.0868 5468 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
09:25:46.0878 5468 Power - ok
09:25:46.0938 5468 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
09:25:46.0948 5468 PptpMiniport - ok
09:25:46.0978 5468 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
09:25:46.0978 5468 Processor - ok
09:25:47.0018 5468 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll
09:25:47.0038 5468 ProfSvc - ok
09:25:47.0068 5468 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
09:25:47.0068 5468 ProtectedStorage - ok
09:25:47.0118 5468 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
09:25:47.0128 5468 Psched - ok
09:25:47.0208 5468 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
09:25:47.0308 5468 ql2300 - ok
09:25:47.0428 5468 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
09:25:47.0438 5468 ql40xx - ok
09:25:47.0478 5468 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
09:25:47.0498 5468 QWAVE - ok
09:25:47.0518 5468 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
09:25:47.0518 5468 QWAVEdrv - ok
09:25:47.0528 5468 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
09:25:47.0538 5468 RasAcd - ok
09:25:47.0558 5468 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
09:25:47.0568 5468 RasAgileVpn - ok
09:25:47.0578 5468 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
09:25:47.0588 5468 RasAuto - ok
09:25:47.0608 5468 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:25:47.0618 5468 Rasl2tp - ok
09:25:47.0658 5468 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
09:25:47.0678 5468 RasMan - ok
09:25:47.0688 5468 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
09:25:47.0698 5468 RasPppoe - ok
09:25:47.0728 5468 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
09:25:47.0728 5468 RasSstp - ok
09:25:47.0758 5468 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
09:25:47.0778 5468 rdbss - ok
09:25:47.0808 5468 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
09:25:47.0808 5468 rdpbus - ok
09:25:47.0828 5468 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:25:47.0828 5468 RDPCDD - ok
09:25:47.0858 5468 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
09:25:47.0868 5468 RDPDR - ok
09:25:47.0898 5468 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
09:25:47.0898 5468 RDPENCDD - ok
09:25:47.0918 5468 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
09:25:47.0918 5468 RDPREFMP - ok
09:25:47.0958 5468 RDPWD (0399c725a9c95a6f1862b93f008ddf4a) C:\Windows\system32\drivers\RDPWD.sys
09:25:47.0968 5468 RDPWD - ok
09:25:47.0998 5468 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
09:25:47.0998 5468 rdyboost - ok
09:25:48.0018 5468 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
09:25:48.0038 5468 RemoteAccess - ok
09:25:48.0068 5468 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
09:25:48.0078 5468 RemoteRegistry - ok
09:25:48.0128 5468 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
09:25:48.0138 5468 RFCOMM - ok
09:25:48.0158 5468 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
09:25:48.0168 5468 RpcEptMapper - ok
09:25:48.0198 5468 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
09:25:48.0198 5468 RpcLocator - ok
09:25:48.0248 5468 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
09:25:48.0248 5468 RpcSs - ok
09:25:48.0268 5468 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
09:25:48.0278 5468 rspndr - ok
09:25:48.0298 5468 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
09:25:48.0298 5468 s3cap - ok
09:25:48.0318 5468 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
09:25:48.0328 5468 SamSs - ok
09:25:48.0358 5468 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
09:25:48.0368 5468 sbp2port - ok
09:25:48.0388 5468 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
09:25:48.0408 5468 SCardSvr - ok
09:25:48.0428 5468 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
09:25:48.0428 5468 scfilter - ok
09:25:48.0468 5468 Schedule (3e8b0c453e25613a1f59762a5c42aa75) C:\Windows\system32\schedsvc.dll
09:25:48.0508 5468 Schedule - ok
09:25:48.0558 5468 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
09:25:48.0558 5468 SCPolicySvc - ok
09:25:48.0598 5468 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
09:25:48.0608 5468 SDRSVC - ok
09:25:48.0628 5468 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
09:25:48.0638 5468 secdrv - ok
09:25:48.0658 5468 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
09:25:48.0658 5468 seclogon - ok
09:25:48.0678 5468 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
09:25:48.0678 5468 SENS - ok
09:25:48.0708 5468 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
09:25:48.0708 5468 SensrSvc - ok
09:25:48.0728 5468 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
09:25:48.0728 5468 Serenum - ok
09:25:48.0738 5468 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
09:25:48.0748 5468 Serial - ok
09:25:48.0748 5468 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
09:25:48.0748 5468 sermouse - ok
09:25:48.0798 5468 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
09:25:48.0808 5468 SessionEnv - ok
09:25:48.0808 5468 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
09:25:48.0818 5468 sffdisk - ok
09:25:48.0818 5468 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
09:25:48.0818 5468 sffp_mmc - ok
09:25:48.0828 5468 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
09:25:48.0828 5468 sffp_sd - ok
09:25:48.0838 5468 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
09:25:48.0838 5468 sfloppy - ok
09:25:48.0878 5468 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
09:25:48.0898 5468 SharedAccess - ok
09:25:48.0938 5468 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
09:25:48.0958 5468 ShellHWDetection - ok
09:25:48.0968 5468 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
09:25:48.0968 5468 sisagp - ok
09:25:48.0998 5468 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:25:48.0998 5468 SiSRaid2 - ok
09:25:49.0008 5468 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
09:25:49.0008 5468 SiSRaid4 - ok
09:25:49.0028 5468 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
09:25:49.0028 5468 Smb - ok
09:25:49.0048 5468 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
09:25:49.0058 5468 SNMPTRAP - ok
09:25:49.0238 5468 SOSPCService (5c1596d7fdfcf815566a586ff9578621) C:\Program Files\SOS PC Self\clientBase\bin\ATAService.exe
09:25:49.0248 5468 SOSPCService - ok
09:25:49.0278 5468 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
09:25:49.0278 5468 spldr - ok
09:25:49.0308 5468 Spooler (49b6dd6ab3715b7a67965f17194e98a9) C:\Windows\System32\spoolsv.exe
09:25:49.0348 5468 Spooler - ok
09:25:49.0518 5468 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
09:25:49.0668 5468 sppsvc - ok
09:25:49.0768 5468 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
09:25:49.0788 5468 sppuinotify - ok
09:25:49.0868 5468 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys
09:25:49.0878 5468 srv - ok
09:25:49.0898 5468 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys
09:25:49.0928 5468 srv2 - ok
09:25:49.0938 5468 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys
09:25:49.0948 5468 srvnet - ok
09:25:49.0978 5468 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
09:25:49.0998 5468 SSDPSRV - ok
09:25:50.0018 5468 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
09:25:50.0028 5468 SstpSvc - ok
09:25:50.0038 5468 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
09:25:50.0038 5468 stexstor - ok
09:25:50.0078 5468 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
09:25:50.0108 5468 StiSvc - ok
09:25:50.0148 5468 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
09:25:50.0148 5468 storflt - ok
09:25:50.0178 5468 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
09:25:50.0188 5468 StorSvc - ok
09:25:50.0198 5468 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
09:25:50.0198 5468 storvsc - ok
09:25:50.0238 5468 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
09:25:50.0238 5468 swenum - ok
09:25:50.0268 5468 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
09:25:50.0288 5468 swprv - ok
09:25:50.0298 5468 SWUMX20 - ok
09:25:50.0378 5468 SynTP (1de40024679cde0e573465253519730e) C:\Windows\system32\DRIVERS\SynTP.sys
09:25:50.0398 5468 SynTP - ok
09:25:50.0478 5468 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
09:25:50.0528 5468 SysMain - ok
09:25:50.0558 5468 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
09:25:50.0558 5468 TabletInputService - ok
09:25:50.0578 5468 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
09:25:50.0598 5468 TapiSrv - ok
09:25:50.0608 5468 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
09:25:50.0618 5468 TBS - ok
09:25:50.0738 5468 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys
09:25:50.0798 5468 Tcpip - ok
09:25:50.0828 5468 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys
09:25:50.0838 5468 TCPIP6 - ok
09:25:50.0848 5468 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
09:25:50.0858 5468 tcpipreg - ok
09:25:50.0878 5468 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
09:25:50.0878 5468 TDPIPE - ok
09:25:50.0908 5468 TDTCP (7156308896d34ea75a582f9a09e50c17) C:\Windows\system32\drivers\tdtcp.sys
09:25:50.0908 5468 TDTCP - ok
09:25:50.0928 5468 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
09:25:50.0938 5468 tdx - ok
09:25:50.0948 5468 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
09:25:50.0948 5468 TermDD - ok
09:25:50.0988 5468 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
09:25:51.0028 5468 TermService - ok
09:25:51.0038 5468 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
09:25:51.0048 5468 Themes - ok
09:25:51.0078 5468 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
09:25:51.0078 5468 THREADORDER - ok
09:25:51.0118 5468 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\Windows\system32\drivers\tpm.sys
09:25:51.0118 5468 TPM - ok
09:25:51.0148 5468 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
09:25:51.0158 5468 TrkWks - ok
09:25:51.0218 5468 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
09:25:51.0238 5468 TrustedInstaller - ok
09:25:51.0258 5468 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:25:51.0258 5468 tssecsrv - ok
09:25:51.0288 5468 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
09:25:51.0298 5468 tunnel - ok
09:25:51.0308 5468 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
09:25:51.0308 5468 uagp35 - ok
09:25:51.0338 5468 udfs (eb0a7bd4d471ac3ce55564a4c55b9d8e) C:\Windows\system32\DRIVERS\udfs.sys
09:25:51.0368 5468 udfs - ok
09:25:51.0388 5468 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
09:25:51.0398 5468 UI0Detect - ok
09:25:51.0428 5468 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
09:25:51.0428 5468 uliagpkx - ok
09:25:51.0438 5468 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
09:25:51.0448 5468 umbus - ok
09:25:51.0458 5468 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
09:25:51.0458 5468 UmPass - ok
09:25:51.0478 5468 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll
09:25:51.0508 5468 UmRdpService - ok
09:25:51.0558 5468 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
09:25:51.0578 5468 upnphost - ok
09:25:51.0598 5468 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
09:25:51.0618 5468 usbccgp - ok
09:25:51.0618 5468 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
09:25:51.0628 5468 usbcir - ok
09:25:51.0638 5468 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
09:25:51.0638 5468 usbehci - ok
09:25:51.0668 5468 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
09:25:51.0678 5468 usbhub - ok
09:25:51.0698 5468 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
09:25:51.0698 5468 usbohci - ok
09:25:51.0708 5468 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
09:25:51.0708 5468 usbprint - ok
09:25:51.0718 5468 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:25:51.0718 5468 USBSTOR - ok
09:25:51.0738 5468 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
09:25:51.0738 5468 usbuhci - ok
09:25:51.0768 5468 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
09:25:51.0778 5468 UxSms - ok
09:25:51.0808 5468 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
09:25:51.0818 5468 VaultSvc - ok
09:25:51.0818 5468 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
09:25:51.0818 5468 vdrvroot - ok
09:25:51.0868 5468 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
09:25:51.0898 5468 vds - ok
09:25:51.0908 5468 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
09:25:51.0918 5468 vga - ok
09:25:51.0918 5468 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
09:25:51.0918 5468 VgaSave - ok
09:25:51.0958 5468 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
09:25:51.0968 5468 vhdmp - ok
09:25:51.0998 5468 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
09:25:51.0998 5468 viaagp - ok
09:25:52.0018 5468 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
09:25:52.0028 5468 ViaC7 - ok
09:25:52.0048 5468 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
09:25:52.0048 5468 viaide - ok
09:25:52.0088 5468 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
09:25:52.0098 5468 vmbus - ok
09:25:52.0118 5468 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
09:25:52.0118 5468 VMBusHID - ok
09:25:52.0138 5468 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
09:25:52.0138 5468 volmgr - ok
09:25:52.0158 5468 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
09:25:52.0178 5468 volmgrx - ok
09:25:52.0198 5468 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
09:25:52.0218 5468 volsnap - ok
09:25:52.0258 5468 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
09:25:52.0258 5468 vsmraid - ok
09:25:52.0338 5468 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
09:25:52.0398 5468 VSS - ok
09:25:52.0418 5468 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
09:25:52.0418 5468 vwifibus - ok
09:25:52.0458 5468 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
09:25:52.0458 5468 vwififlt - ok
09:25:52.0498 5468 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
09:25:52.0498 5468 vwifimp - ok
09:25:52.0518 5468 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
09:25:52.0538 5468 W32Time - ok
09:25:52.0568 5468 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
09:25:52.0568 5468 WacomPen - ok
09:25:52.0598 5468 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
09:25:52.0598 5468 WANARP - ok
09:25:52.0608 5468 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
09:25:52.0618 5468 Wanarpv6 - ok
09:25:52.0738 5468 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
09:25:52.0808 5468 WatAdminSvc - ok
09:25:52.0878 5468 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
09:25:52.0958 5468 wbengine - ok
09:25:52.0968 5468 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
09:25:52.0988 5468 WbioSrvc - ok
09:25:53.0028 5468 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\Windows\System32\wcncsvc.dll
09:25:53.0058 5468 wcncsvc - ok
09:25:53.0058 5468 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
09:25:53.0068 5468 WcsPlugInService - ok
09:25:53.0098 5468 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
09:25:53.0098 5468 Wd - ok
09:25:53.0148 5468 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
09:25:53.0178 5468 Wdf01000 - ok
09:25:53.0218 5468 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
09:25:53.0228 5468 WdiServiceHost - ok
09:25:53.0228 5468 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
09:25:53.0238 5468 WdiSystemHost - ok
09:25:53.0378 5468 Web Assistant Updater (82943769ac01805a0d2ba74d0925a45d) C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
09:25:53.0388 5468 Web Assistant Updater - ok
09:25:53.0428 5468 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\Windows\System32\webclnt.dll
09:25:53.0448 5468 WebClient - ok
09:25:53.0478 5468 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
09:25:53.0498 5468 Wecsvc - ok
09:25:53.0518 5468 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
09:25:53.0528 5468 wercplsupport - ok
09:25:53.0558 5468 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
09:25:53.0558 5468 WerSvc - ok
09:25:53.0578 5468 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
09:25:53.0578 5468 WfpLwf - ok
09:25:53.0598 5468 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
09:25:53.0598 5468 WIMMount - ok
09:25:53.0678 5468 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
09:25:53.0718 5468 WinDefend - ok
09:25:53.0728 5468 WinHttpAutoProxySvc - ok
09:25:53.0808 5468 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
09:25:53.0818 5468 Winmgmt - ok
09:25:53.0918 5468 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
09:25:53.0978 5468 WinRM - ok
09:25:54.0058 5468 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
09:25:54.0108 5468 Wlansvc - ok
09:25:54.0238 5468 wltrysvc (de83ad216c71d31ac6ecfbdcf058f1bd) C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
09:25:54.0238 5468 wltrysvc - ok
09:25:54.0308 5468 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
09:25:54.0308 5468 WmiAcpi - ok
09:25:54.0368 5468 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
09:25:54.0378 5468 wmiApSrv - ok
09:25:54.0498 5468 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
09:25:54.0568 5468 WMPNetworkSvc - ok
09:25:54.0598 5468 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
09:25:54.0598 5468 WPCSvc - ok
09:25:54.0618 5468 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
09:25:54.0638 5468 WPDBusEnum - ok
09:25:54.0698 5468 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
09:25:54.0698 5468 ws2ifsl - ok
09:25:54.0728 5468 wscsvc (a661a76333057b383a06e65f0073222f) C:\Windows\System32\wscsvc.dll
09:25:54.0728 5468 wscsvc - ok
09:25:54.0738 5468 WSearch - ok
09:25:54.0848 5468 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
09:25:54.0948 5468 wuauserv - ok
09:25:55.0048 5468 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
09:25:55.0058 5468 WudfPf - ok
09:25:55.0088 5468 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:25:55.0098 5468 WUDFRd - ok
09:25:55.0118 5468 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
09:25:55.0138 5468 wudfsvc - ok
09:25:55.0168 5468 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
09:25:55.0198 5468 WwanSvc - ok
09:25:55.0248 5468 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
09:25:55.0738 5468 \Device\Harddisk0\DR0 - ok
09:25:55.0748 5468 Boot (0x1200) (9c58fc7ca7ad24a1bcd254e50a3ac082) \Device\Harddisk0\DR0\Partition0
09:25:55.0748 5468 \Device\Harddisk0\DR0\Partition0 - ok
09:25:55.0818 5468 Boot (0x1200) (b001469df114a89bb08a93a198e5bfdd) \Device\Harddisk0\DR0\Partition1
09:25:55.0848 5468 \Device\Harddisk0\DR0\Partition1 - ok
09:25:55.0848 5468 ============================================================
09:25:55.0848 5468 Scan finished
09:25:55.0848 5468 ============================================================
09:25:55.0878 5472 Detected object count: 0
09:25:55.0878 5472 Actual detected object count: 0


QURSTO E' IL REPORT NON E' USCITO NESSUN CURE O SKIP O RIAVVIA..... HA SCANNERIZZATO E MI H DATO QUESTO REPORT!!! CHE FACCIO????

ComboFix 12-08-13.01 - Savio 14/08/2012 10:35:57.1.2 - x86
Microsoft Windows 7 Professional 6.1.7600.0.1252.39.1040.18.1015.167 [GMT 2:00]
Eseguito da: c:\users\Savio\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Creato nuovo punto di ripristino
.
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Web Assistant\ExTEnsion32.dll
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome.manifest
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\background.html
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\browser.xul
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\crossrider.js
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\crossriderapi.js
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\dialog.js
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\options.js
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\options.xul
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\search_dialog.xul
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\chrome\content\update.html
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\defaults\preferences\prefs.js
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\install.rdf
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\locale\en-US\translations.dtd
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\button1.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\button2.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\button3.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\button4.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\button5.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\crossrider_statusbar.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\icon128.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\icon16.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\icon24.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\icon48.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\panelarrow-up.png
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\popup.css
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\popup.html
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\popup_binding.xml
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\skin.css
c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\extensions\crossriderapp4479@crossrider.com\skin\update.css
c:\windows\system32\oem3.inf
.
.
((((((((((((((((((((((((( Files Creati Da 2012-07-14 al 2012-08-14 )))))))))))))))))))))))))))))))))))
.
.
2012-08-14 08:43 . 2012-08-14 08:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-13 19:20 . 2012-08-13 19:20 -------- d-----w- c:\program files\Trend Micro
2012-08-12 13:33 . 2012-08-14 08:39 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9A3B902E-2BE6-4B6D-8BF5-5E6B00CE2CC6}\offreg.dll
2012-08-12 13:25 . 2012-08-12 13:27 -------- d-----w- c:\program files\SOS PC Self
2012-08-12 13:22 . 2012-08-12 13:22 -------- d-----w- c:\windows\Sun
2012-08-11 14:57 . 2012-08-11 14:57 -------- d-----w- c:\program files\pdfsam
2012-08-11 07:34 . 2012-08-11 07:34 -------- d-----w- c:\program files\DsNET Corp
2012-08-11 07:33 . 2012-08-11 07:33 -------- d-----w- c:\programdata\Ask
2012-08-11 07:31 . 1998-06-23 23:00 137000 ----a-w- c:\windows\system32\MSMAPI32.OCX
2012-08-11 07:31 . 2004-03-08 23:00 662288 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2012-08-11 07:31 . 2001-10-28 15:42 116224 ----a-w- c:\windows\system32\pdfcmnnt.dll
2012-08-11 07:31 . 1998-08-05 06:45 122128 ----a-w- c:\windows\system32\VB6IT.DLL
2012-08-11 07:31 . 1998-08-05 06:45 150528 ----a-w- c:\windows\system32\MSCMCIT.DLL
2012-08-11 07:31 . 1998-08-05 06:45 63488 ----a-w- c:\windows\system32\MSCC2IT.DLL
2012-08-11 07:31 . 1998-07-05 23:00 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL
2012-08-10 20:27 . 2012-08-10 20:27 -------- d-----w- c:\windows\Downloaded Installations
2012-08-10 19:40 . 2012-08-13 14:04 -------- d-----w- c:\program files\Giant Savings
2012-08-10 19:40 . 2012-08-11 07:32 -------- d-----w- c:\program files\PDFCreator
2012-08-09 21:02 . 2012-08-09 21:02 -------- d-----w- c:\program files\Glary Utilities
2012-08-09 18:34 . 2012-08-09 18:34 -------- d-----w- c:\programdata\Malwarebytes
2012-08-09 18:34 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-09 18:34 . 2012-08-09 18:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-09 13:39 . 2012-08-09 13:39 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2012-08-09 13:28 . 2010-03-04 03:57 190976 ----a-w- c:\windows\system32\drivers\ks.sys
2012-08-09 13:15 . 2012-08-09 13:15 -------- d-----w- c:\program files\CCleaner
2012-08-09 13:14 . 2012-06-09 17:21 178688 ----a-w- c:\windows\system32\unrar.dll
2012-08-09 13:14 . 2012-08-09 13:14 -------- d-----w- c:\program files\K-Lite Codec Pack
2012-08-09 12:35 . 2012-08-09 12:35 -------- d-----w- c:\program files\Photo Notifier and Animation Creator
2012-08-09 12:34 . 2012-08-09 12:34 -------- d-----w- c:\program files\IncrediMail
2012-08-09 12:19 . 2012-08-09 12:19 -------- d-----w- c:\programdata\IncrediMail
2012-08-09 11:51 . 2012-08-09 11:51 -------- d-----w- c:\windows\system32\Wat
2012-08-09 11:48 . 2012-03-06 05:59 3958128 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-09 11:48 . 2012-03-06 05:59 3902320 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-09 11:48 . 2010-09-14 06:07 276992 ----a-w- c:\windows\system32\wcncsvc.dll
2012-08-09 09:43 . 2010-10-27 04:40 1289536 ----a-w- c:\windows\system32\ntdll.dll
2012-08-09 09:41 . 2011-02-23 05:05 221696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2012-08-09 09:41 . 2011-02-23 05:05 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2012-08-09 09:41 . 2011-02-23 05:05 95744 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2012-08-09 09:41 . 2011-02-23 05:05 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2012-08-09 09:41 . 2010-05-05 06:46 363520 ----a-w- c:\windows\system32\StructuredQuery.dll
2012-08-09 09:41 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2012-08-09 09:41 . 2011-04-22 19:36 26496 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2012-08-09 09:34 . 2012-04-24 04:47 1156608 ----a-w- c:\windows\system32\crypt32.dll
2012-08-09 09:34 . 2012-04-24 04:47 139264 ----a-w- c:\windows\system32\cryptsvc.dll
2012-08-09 09:34 . 2012-04-24 04:47 103936 ----a-w- c:\windows\system32\cryptnet.dll
2012-08-09 09:18 . 2006-10-26 17:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2012-08-09 09:18 . 2009-02-27 01:42 31640 ----a-w- c:\windows\system32\msonpmon.dll
2012-08-09 09:16 . 2012-08-09 15:25 -------- d-----w- c:\program files\Microsoft Works
2012-08-09 09:15 . 2012-08-09 09:15 -------- d-----w- c:\windows\PCHEALTH
2012-08-09 09:15 . 2012-08-09 09:15 -------- d-----w- c:\program files\Microsoft.NET
2012-08-09 09:13 . 2012-08-09 09:13 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2012-08-09 09:12 . 2012-08-09 15:27 -------- d-----w- c:\programdata\Microsoft Help
2012-08-09 09:05 . 2012-08-09 09:05 -------- d-----w- c:\program files\Common Files\Java
2012-08-09 09:04 . 2012-08-09 09:04 -------- d-----w- c:\program files\Oracle
2012-08-09 09:04 . 2012-07-05 20:06 772544 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-08-09 09:04 . 2012-07-05 20:06 687544 ----a-w- c:\windows\system32\deployJava1.dll
2012-08-09 09:03 . 2012-08-09 09:03 -------- d-----w- c:\program files\Java
2012-08-09 08:28 . 2012-08-14 08:42 -------- d-----w- c:\program files\Web Assistant
2012-08-09 08:28 . 2012-08-09 08:28 -------- d-----w- c:\programdata\Photo Notifier and Animation Creator
2012-08-09 08:27 . 2012-08-09 08:28 -------- d-----w- c:\programdata\IM
2012-08-09 08:24 . 2012-08-09 08:24 -------- d-----w- c:\program files\VS Revo Group
2012-08-08 19:22 . 2012-08-08 19:22 -------- d-----w- c:\programdata\McAfee
2012-08-08 19:21 . 2012-08-08 19:21 -------- d-----w- c:\program files\Common Files\Adobe
2012-08-08 18:57 . 2012-08-09 08:25 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-08 18:57 . 2012-08-09 08:25 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-08 18:57 . 2012-08-08 18:57 -------- d-----w- c:\windows\system32\Macromed
2012-08-08 13:03 . 2012-08-08 13:03 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-08-08 13:02 . 2012-08-08 13:03 -------- dc----w- c:\windows\system32\DRVSTORE
2012-08-08 12:56 . 2009-07-01 10:46 108072 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2012-08-08 12:56 . 2009-04-07 13:32 29472 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2012-08-08 12:56 . 2009-07-01 10:46 18344 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2012-08-08 12:56 . 2009-07-01 10:46 86056 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2012-08-08 12:55 . 2012-08-08 12:55 -------- d-----w- c:\program files\WIDCOMM
2012-08-08 12:52 . 2012-08-08 12:52 -------- d-----w- c:\program files\Cisco
2012-08-08 12:49 . 2012-08-08 12:48 953856 ----a-w- c:\windows\system32\BCMLogon.dll
2012-08-08 12:41 . 2012-08-08 12:41 -------- d-----w- c:\users\Default\AppData\Roaming\hpqLog
2012-08-08 12:41 . 2009-04-29 05:46 15872 ----a-w- c:\windows\system32\drivers\HpqKbFiltr.sys
2012-08-08 12:41 . 2006-11-02 04:09 1419232 ----a-w- c:\windows\system32\drivers\wdfcoinstaller01005.dll
2012-08-08 12:41 . 2008-09-08 11:31 1885488 ----a-r- c:\windows\system32\BttnCmn.dll
2012-08-08 12:41 . 2008-09-08 11:31 1885488 ----a-w- c:\windows\system32\BttnCmns.dll
2012-08-08 12:41 . 2012-08-08 12:41 -------- d--h--w- c:\program files\InstallShield Installation Information
2012-08-08 12:40 . 2012-08-08 12:41 -------- d-----w- c:\windows\QLB
2012-08-08 12:36 . 2012-01-04 09:03 442880 ----a-w- c:\windows\system32\ntshrui.dll
2012-08-08 11:29 . 2010-11-02 04:46 728448 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2012-08-08 11:29 . 2011-02-03 05:45 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2012-08-08 11:29 . 2010-11-02 04:23 107520 ----a-w- c:\windows\system32\cdd.dll
2012-08-08 01:15 . 2012-08-08 01:15 -------- d-----w- c:\windows\system32\Lang
2012-08-08 01:15 . 2009-09-23 09:50 398336 ----a-w- c:\windows\system32\TVWizudlg.exe
2012-08-08 01:15 . 2009-09-23 09:49 140288 ----a-w- c:\windows\system32\igfxtvcx.dll
2012-08-08 01:15 . 2012-08-08 01:15 -------- d-----w- c:\program files\Intel
2012-08-08 01:11 . 2009-10-06 05:53 2613248 ----a-w- c:\windows\explorer.exe
2012-08-08 01:10 . 2009-10-07 02:30 246784 ----a-w- c:\windows\system32\drivers\udfs.sys
2012-08-08 01:09 . 2012-07-16 00:41 6891424 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9A3B902E-2BE6-4B6D-8BF5-5E6B00CE2CC6}\mpengine.dll
2012-08-08 01:05 . 2012-08-08 12:42 -------- d-----w- c:\program files\Hewlett-Packard
2012-08-08 01:05 . 2012-08-08 01:05 -------- d-----w- c:\windows\system32\x64
2012-08-08 01:05 . 2009-09-23 17:30 1002008 ----a-w- c:\windows\system32\igxpun.exe
2012-08-08 01:04 . 2012-08-08 01:04 -------- d-----w- c:\program files\Synaptics
2012-08-08 01:03 . 2012-08-08 12:48 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2012-08-08 01:03 . 2012-08-08 01:02 91376 ----a-w- c:\windows\system32\bcmwlcoi.dll
2012-08-08 01:03 . 2012-08-08 01:02 3555328 ----a-w- c:\windows\system32\bcmihvui.dll
2012-08-08 01:03 . 2012-08-08 01:02 3866624 ----a-w- c:\windows\system32\bcmihvsrv.dll
2012-08-08 01:03 . 2012-08-08 01:02 2661368 ----a-w- c:\windows\system32\drivers\BCMWL6.SYS
2012-08-08 01:03 . 2012-08-08 01:03 -------- d-----w- c:\program files\Broadcom
2012-08-08 01:02 . 2012-08-10 20:27 -------- d-----w- C:\SWSetup
2012-08-08 01:02 . 2012-02-15 05:44 826368 ----a-w- c:\windows\system32\rdpcore.dll
2012-08-08 01:02 . 2012-02-15 04:22 177152 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-08-08 01:02 . 2012-02-15 04:22 24064 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-08-08 01:01 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2012-08-08 00:56 . 2012-08-09 18:26 -------- d-----w- c:\windows\Panther
2012-08-08 00:55 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-08-08 00:55 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll
2012-08-08 00:55 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-08-08 00:55 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-08-08 00:55 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll
2012-08-08 00:55 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-08-08 00:55 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-08-08 00:55 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-08-08 00:55 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-08-08 00:24 . 2012-08-08 00:24 -------- d-----w- c:\program files\Google
2012-08-08 00:23 . 2012-07-03 16:21 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-08-08 00:23 . 2012-07-03 16:21 353688 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-08-08 00:23 . 2012-07-03 16:21 44784 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-08-08 00:23 . 2012-07-03 16:21 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-08-08 00:23 . 2012-07-03 16:21 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-08-08 00:23 . 2012-07-03 16:21 57656 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-14 00:15 . 2012-08-08 13:03 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2012-08-09 366576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-07-03 4273976]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-29 1545512]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-11-11 287800]
"Broadcom Wireless Manager UI"="c:\program files\Broadcom\Broadcom 802.11\WLTRAY.exe" [2012-08-08 4367360]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
"sospcSelf"="c:\program files\SOS PC Self\clientBase\bin\AtaSched.exe" [2012-07-25 86016]
.
c:\users\Savio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Ritaglio schermata e avvio di OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-30 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 SOSPCService;SOSPCService;c:\program files\SOS PC Self\clientBase\bin\ATAService.exe [x]
R2 Web Assistant Updater;Web Assistant Updater;c:\program files\Web Assistant\ExtensionUpdaterService.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 WatAdminSvc;Servizio Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
--- Altri Servizi/Drivers In Memoria ---
.
*NewlyCreated* - 96751602
*Deregistered* - 96751602
.
Contenuto della cartella 'Scheduled Tasks'
.
2012-08-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-08 08:25]
.
2012-08-14 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2012-08-09 20:16]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://it.ask.com/?l=dis&o=15383
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
IE: Invia immagine alla periferica &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Invia pagina alla periferica &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Savio\AppData\Roaming\Mozilla\Firefox\Profiles\y5y1nfps.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.diretta.it/
FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com//?loc=ff_address_bar&a=13UlC0btoS0&search=
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
.
AddRemove-SOSPCSelf - c:\program files\SOS PC Self\Disinstalla SOS PC Self
.
.
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Ora fine scansione: 2012-08-14 10:46:22
ComboFix-quarantined-files.txt 2012-08-14 08:46
.
Pre-Run: 6.319.517.696 byte disponibili
Post-Run: 6.235.398.144 byte disponibili
.
- - End Of File - - 63173E78B3BBA91E4A91D0E222D279EA

cancella questa cartella

c:\programdata\Ask

riesegui una scansione con avast e controlla se hai gli stessi rilevamenti