Jump to content


 

Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan Horse dropper.generic_c.mmi

Started by dreamcaster40 , Jul 21 2012 04:08 PM

  • This topic is locked This topic is locked
4 replies to this topic

#1 dreamcaster40

dreamcaster40

    Member

  • Members
  • PipPip
  • 15 posts

Posted 21 July 2012 - 04:08 PM

Hello everyone,

I am having an issue with an apparent trojan horse virus detected by my antivirus program, AVG Anti-Virus Free 2012. The problem started earlier today, and seems to have occured after I installed a suddenly appearing update for Adobe Flash Player, which I ignorantly accepted. Since then, each time I start up my computer, the desktop icons are rearranged to the left as though the arrangement has been reset, and I have been getting the following warning from AVG Resident Shield frequently:

File name: c:\Windows\System32\services.exe
Threat name: Trojan horse Dropper.Generic_c.MMI

It should be noted that the process name and -ID were different at first, but after searching Google for a while, I found a recommendation of installing AVG PC Tuneup, which would supposedly solve the issue with the desktop icons. However, after installing and using the program, the warning from AVG Reisdent Shield started appearing even more frequently and is reappearing at least three times per minute as I am writing this post, with the process name and -ID changed to the ones displayed above. I do not remember what the initial name and ID were, nor do I know where to find this.

The frequent warning stirred me to search around the internet for possible solutions, concluding that many others are experiencing this issue and that it is likely because of a virus installed by the (fake) Adobe Flash Player update. The issue does not seem easily resolvable and most people were requested a lot of complicated information that I did not understand too well. Several people were advised a quick fix through "cmd.exe", but they reported recurring of the virus within a day, and therefore I did not attempt this. Elsewhere, a guide explained how to remove a "services.exe virus", telling me to go to the Task Manager and find services.exe in the Processes tab, but it was not listed there.

Furthermore, I am using Windows 7 and AVG Anti-Virus Free 2012. I have installed every recent update for both the operating system and the anti-virus program, and have performed several scans with AVG, each showing services.exe as a white-listed trojan horse virus, with the message "All problems have been solved." I have no idea what to do, and it seems to be getting out of hand, so I hope any of you can help me with this problem!

Thanks!

 

  • BC Ads
  • BleepingComputer.com

#2 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,366 posts
  • Gender:Male
  • Location:India

Posted 21 July 2012 - 04:39 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 dreamcaster40

dreamcaster40

    Member

  • Members
  • PipPip
  • 15 posts

Posted 21 July 2012 - 10:51 PM

Thank you for your help!!!

TDSSkiller:

17:41:43.0775 9560 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
17:41:44.0064 9560 ============================================================
17:41:44.0064 9560 Current date / time: 2012/07/21 17:41:44.0064
17:41:44.0064 9560 SystemInfo:
17:41:44.0064 9560
17:41:44.0065 9560 OS Version: 6.1.7601 ServicePack: 1.0
17:41:44.0065 9560 Product type: Workstation
17:41:44.0065 9560 ComputerName: DIANE-HP
17:41:44.0065 9560 UserName: Diane
17:41:44.0065 9560 Windows directory: C:\Windows
17:41:44.0065 9560 System windows directory: C:\Windows
17:41:44.0065 9560 Running under WOW64
17:41:44.0065 9560 Processor architecture: Intel x64
17:41:44.0065 9560 Number of processors: 4
17:41:44.0066 9560 Page size: 0x1000
17:41:44.0066 9560 Boot type: Normal boot
17:41:44.0066 9560 ============================================================
17:41:45.0300 9560 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:41:45.0327 9560 ============================================================
17:41:45.0327 9560 \Device\Harddisk0\DR0:
17:41:45.0330 9560 MBR partitions:
17:41:45.0330 9560 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:41:45.0330 9560 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x72C43800
17:41:45.0330 9560 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x72C76000, BlocksNum 0x1A90000
17:41:45.0330 9560 ============================================================
17:41:45.0346 9560 C: <-> \Device\Harddisk0\DR0\Partition1
17:41:45.0393 9560 D: <-> \Device\Harddisk0\DR0\Partition2
17:41:45.0394 9560 ============================================================
17:41:45.0394 9560 Initialize success
17:41:45.0394 9560 ============================================================
17:41:46.0476 10676 ============================================================
17:41:46.0476 10676 Scan started
17:41:46.0476 10676 Mode: Manual;
17:41:46.0476 10676 ============================================================
17:41:47.0923 10676 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:41:47.0938 10676 1394ohci - ok
17:41:47.0971 10676 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:41:47.0978 10676 ACPI - ok
17:41:48.0013 10676 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:41:48.0016 10676 AcpiPmi - ok
17:41:48.0154 10676 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:41:48.0156 10676 AdobeARMservice - ok
17:41:48.0289 10676 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:41:48.0295 10676 AdobeFlashPlayerUpdateSvc - ok
17:41:48.0349 10676 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:41:48.0362 10676 adp94xx - ok
17:41:48.0379 10676 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:41:48.0385 10676 adpahci - ok
17:41:48.0395 10676 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:41:48.0399 10676 adpu320 - ok
17:41:48.0426 10676 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:41:48.0428 10676 AeLookupSvc - ok
17:41:48.0507 10676 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:41:48.0517 10676 AFD - ok
17:41:48.0545 10676 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:41:48.0548 10676 agp440 - ok
17:41:48.0570 10676 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:41:48.0575 10676 ALG - ok
17:41:48.0591 10676 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:41:48.0594 10676 aliide - ok
17:41:48.0631 10676 AMD External Events Utility (ca0d6c1390f4b3baf2a0a69d1a7f8332) C:\Windows\system32\atiesrxx.exe
17:41:48.0637 10676 AMD External Events Utility - ok
17:41:48.0650 10676 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:41:48.0653 10676 amdide - ok
17:41:48.0673 10676 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:41:48.0675 10676 AmdK8 - ok
17:41:48.0928 10676 amdkmdag (75e4baca583ae02c11e9ac8747e2abe0) C:\Windows\system32\DRIVERS\atikmdag.sys
17:41:49.0036 10676 amdkmdag - ok
17:41:49.0082 10676 amdkmdap (b765cf4b32f347be747b21ae22641025) C:\Windows\system32\DRIVERS\atikmpag.sys
17:41:49.0087 10676 amdkmdap - ok
17:41:49.0102 10676 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:41:49.0105 10676 AmdPPM - ok
17:41:49.0128 10676 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:41:49.0130 10676 amdsata - ok
17:41:49.0142 10676 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:41:49.0146 10676 amdsbs - ok
17:41:49.0159 10676 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:41:49.0161 10676 amdxata - ok
17:41:49.0189 10676 amd_sata (8a2b4818215d8a6ff54dc3f0d63cbb2d) C:\Windows\system32\DRIVERS\amd_sata.sys
17:41:49.0191 10676 amd_sata - ok
17:41:49.0205 10676 amd_xata (a2d8977623e13591b15f6370c6cc37b0) C:\Windows\system32\DRIVERS\amd_xata.sys
17:41:49.0207 10676 amd_xata - ok
17:41:49.0237 10676 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:41:49.0239 10676 AppID - ok
17:41:49.0255 10676 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:41:49.0256 10676 AppIDSvc - ok
17:41:49.0284 10676 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:41:49.0286 10676 Appinfo - ok
17:41:49.0411 10676 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:41:49.0415 10676 Apple Mobile Device - ok
17:41:49.0426 10676 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:41:49.0430 10676 arc - ok
17:41:49.0450 10676 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:41:49.0452 10676 arcsas - ok
17:41:49.0473 10676 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:41:49.0474 10676 AsyncMac - ok
17:41:49.0487 10676 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:41:49.0489 10676 atapi - ok
17:41:49.0518 10676 AtiPcie (e82e61f46d1336447f4deff8c074f13e) C:\Windows\system32\DRIVERS\AtiPcie64.sys
17:41:49.0519 10676 AtiPcie - ok
17:41:49.0581 10676 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:41:49.0596 10676 AudioEndpointBuilder - ok
17:41:49.0603 10676 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:41:49.0607 10676 AudioSrv - ok
17:41:49.0992 10676 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
17:41:50.0063 10676 AVGIDSAgent - ok
17:41:50.0188 10676 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
17:41:50.0193 10676 AVGIDSDriver - ok
17:41:50.0254 10676 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
17:41:50.0257 10676 AVGIDSFilter - ok
17:41:50.0306 10676 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
17:41:50.0309 10676 AVGIDSHA - ok
17:41:50.0363 10676 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
17:41:50.0371 10676 Avgldx64 - ok
17:41:50.0398 10676 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
17:41:50.0402 10676 Avgmfx64 - ok
17:41:50.0420 10676 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
17:41:50.0424 10676 Avgrkx64 - ok
17:41:50.0447 10676 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
17:41:50.0453 10676 Avgtdia - ok
17:41:50.0486 10676 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
17:41:50.0489 10676 avgwd - ok
17:41:50.0516 10676 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:41:50.0519 10676 AxInstSV - ok
17:41:50.0553 10676 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:41:50.0562 10676 b06bdrv - ok
17:41:50.0582 10676 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:41:50.0586 10676 b57nd60a - ok
17:41:50.0643 10676 BBSvc (825f81a6f7dd073509db101f0ba6dc59) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
17:41:50.0647 10676 BBSvc - ok
17:41:50.0673 10676 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:41:50.0675 10676 BDESVC - ok
17:41:50.0698 10676 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:41:50.0700 10676 Beep - ok
17:41:50.0738 10676 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
17:41:50.0752 10676 BITS - ok
17:41:50.0761 10676 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:41:50.0763 10676 blbdrive - ok
17:41:50.0848 10676 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
17:41:50.0861 10676 Bonjour Service - ok
17:41:50.0910 10676 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:41:50.0914 10676 bowser - ok
17:41:50.0921 10676 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:41:50.0924 10676 BrFiltLo - ok
17:41:50.0932 10676 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:41:50.0934 10676 BrFiltUp - ok
17:41:50.0970 10676 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:41:50.0973 10676 Browser - ok
17:41:50.0996 10676 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:41:51.0001 10676 Brserid - ok
17:41:51.0007 10676 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:41:51.0009 10676 BrSerWdm - ok
17:41:51.0013 10676 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:41:51.0015 10676 BrUsbMdm - ok
17:41:51.0019 10676 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:41:51.0021 10676 BrUsbSer - ok
17:41:51.0039 10676 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:41:51.0040 10676 BTHMODEM - ok
17:41:51.0054 10676 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:41:51.0056 10676 bthserv - ok
17:41:51.0071 10676 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:41:51.0072 10676 cdfs - ok
17:41:51.0108 10676 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
17:41:51.0114 10676 cdrom - ok
17:41:51.0157 10676 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:41:51.0160 10676 CertPropSvc - ok
17:41:51.0165 10676 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:41:51.0168 10676 circlass - ok
17:41:51.0197 10676 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:41:51.0202 10676 CLFS - ok
17:41:51.0258 10676 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:41:51.0261 10676 clr_optimization_v2.0.50727_32 - ok
17:41:51.0312 10676 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:41:51.0317 10676 clr_optimization_v2.0.50727_64 - ok
17:41:51.0397 10676 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:41:51.0402 10676 clr_optimization_v4.0.30319_32 - ok
17:41:51.0450 10676 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:41:51.0455 10676 clr_optimization_v4.0.30319_64 - ok
17:41:51.0465 10676 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:41:51.0467 10676 CmBatt - ok
17:41:51.0498 10676 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:41:51.0499 10676 cmdide - ok
17:41:51.0568 10676 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
17:41:51.0614 10676 CNG - ok
17:41:51.0641 10676 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:41:51.0666 10676 Compbatt - ok
17:41:51.0703 10676 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:41:51.0706 10676 CompositeBus - ok
17:41:51.0713 10676 COMSysApp - ok
17:41:51.0855 10676 CouponAlert_2pService (622fcf264119f7df127be353f796b319) C:\PROGRA~2\COUPON~2\bar\1.bin\2pbarsvc.exe
17:41:51.0858 10676 CouponAlert_2pService - ok
17:41:51.0909 10676 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:41:51.0998 10676 crcdisk - ok
17:41:52.0078 10676 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
17:41:52.0081 10676 CryptSvc - ok
17:41:52.0195 10676 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:41:52.0208 10676 cvhsvc - ok
17:41:52.0255 10676 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:41:52.0261 10676 DcomLaunch - ok
17:41:52.0283 10676 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:41:52.0286 10676 defragsvc - ok
17:41:52.0321 10676 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:41:52.0323 10676 DfsC - ok
17:41:52.0378 10676 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:41:52.0388 10676 Dhcp - ok
17:41:52.0402 10676 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:41:52.0406 10676 discache - ok
17:41:52.0422 10676 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:41:52.0425 10676 Disk - ok
17:41:52.0463 10676 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:41:52.0470 10676 Dnscache - ok
17:41:52.0520 10676 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:41:52.0533 10676 dot3svc - ok
17:41:52.0575 10676 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:41:52.0581 10676 DPS - ok
17:41:52.0588 10676 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:41:52.0590 10676 drmkaud - ok
17:41:52.0670 10676 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:41:52.0687 10676 DXGKrnl - ok
17:41:52.0718 10676 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:41:52.0721 10676 EapHost - ok
17:41:52.0864 10676 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:41:52.0940 10676 ebdrv - ok
17:41:53.0022 10676 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:41:53.0027 10676 EFS - ok
17:41:53.0105 10676 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:41:53.0125 10676 ehRecvr - ok
17:41:53.0158 10676 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:41:53.0163 10676 ehSched - ok
17:41:53.0218 10676 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:41:53.0233 10676 elxstor - ok
17:41:53.0256 10676 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:41:53.0257 10676 ErrDev - ok
17:41:53.0294 10676 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:41:53.0304 10676 EventSystem - ok
17:41:53.0313 10676 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:41:53.0315 10676 exfat - ok
17:41:53.0338 10676 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:41:53.0341 10676 fastfat - ok
17:41:53.0411 10676 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:41:53.0432 10676 Fax - ok
17:41:53.0449 10676 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:41:53.0451 10676 fdc - ok
17:41:53.0466 10676 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:41:53.0468 10676 fdPHost - ok
17:41:53.0476 10676 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:41:53.0478 10676 FDResPub - ok
17:41:53.0507 10676 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:41:53.0510 10676 FileInfo - ok
17:41:53.0524 10676 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:41:53.0525 10676 Filetrace - ok
17:41:53.0530 10676 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:41:53.0532 10676 flpydisk - ok
17:41:53.0574 10676 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:41:53.0578 10676 FltMgr - ok
17:41:53.0650 10676 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:41:53.0670 10676 FontCache - ok
17:41:53.0722 10676 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:41:53.0725 10676 FontCache3.0.0.0 - ok
17:41:53.0741 10676 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:41:53.0744 10676 FsDepends - ok
17:41:53.0780 10676 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:41:53.0782 10676 Fs_Rec - ok
17:41:53.0822 10676 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:41:53.0826 10676 fvevol - ok
17:41:53.0837 10676 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:41:53.0838 10676 gagp30kx - ok
17:41:53.0932 10676 GameConsoleService (d154305de6090e6e84e525f84bb08a06) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:41:53.0935 10676 GameConsoleService - ok
17:41:53.0990 10676 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:41:53.0993 10676 GEARAspiWDM - ok
17:41:54.0067 10676 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:41:54.0099 10676 gpsvc - ok
17:41:54.0212 10676 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:41:54.0216 10676 gupdate - ok
17:41:54.0239 10676 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:41:54.0243 10676 gupdatem - ok
17:41:54.0288 10676 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:41:54.0290 10676 gusvc - ok
17:41:54.0304 10676 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:41:54.0306 10676 hcw85cir - ok
17:41:54.0348 10676 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:41:54.0359 10676 HdAudAddService - ok
17:41:54.0388 10676 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
17:41:54.0391 10676 HDAudBus - ok
17:41:54.0403 10676 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:41:54.0405 10676 HidBatt - ok
17:41:54.0413 10676 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:41:54.0416 10676 HidBth - ok
17:41:54.0421 10676 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:41:54.0423 10676 HidIr - ok
17:41:54.0442 10676 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
17:41:54.0443 10676 hidserv - ok
17:41:54.0469 10676 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
17:41:54.0470 10676 HidUsb - ok
17:41:54.0503 10676 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:41:54.0505 10676 hkmsvc - ok
17:41:54.0550 10676 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:41:54.0567 10676 HomeGroupListener - ok
17:41:54.0592 10676 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:41:54.0596 10676 HomeGroupProvider - ok
17:41:54.0647 10676 HP Health Check Service (37965381364b2e106e1dd7d74cdcaa43) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
17:41:54.0650 10676 HP Health Check Service - ok
17:41:54.0724 10676 HPClientSvc (3dc11a802353401332d49c3cbfbbe5fc) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
17:41:54.0735 10676 HPClientSvc - ok
17:41:54.0762 10676 HPDrvMntSvc.exe (a48a151d3fa7cb032a51453f087221c7) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:41:54.0765 10676 HPDrvMntSvc.exe - ok
17:41:54.0813 10676 hpqwmiex (71bd8a611e0677175d3938c9cea7339a) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:41:54.0830 10676 hpqwmiex - ok
17:41:54.0918 10676 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:41:54.0921 10676 HpSAMD - ok
17:41:54.0989 10676 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:41:55.0012 10676 HTTP - ok
17:41:55.0045 10676 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:41:55.0049 10676 hwpolicy - ok
17:41:55.0088 10676 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:41:55.0092 10676 i8042prt - ok
17:41:55.0130 10676 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:41:55.0145 10676 iaStorV - ok
17:41:55.0242 10676 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:41:55.0265 10676 idsvc - ok
17:41:55.0281 10676 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:41:55.0285 10676 iirsp - ok
17:41:55.0372 10676 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:41:55.0395 10676 IKEEXT - ok
17:41:55.0563 10676 IntcAzAudAddService (3c4b4ee54febb09f7e9f58776de96dca) C:\Windows\system32\drivers\RTKVHD64.sys
17:41:55.0601 10676 IntcAzAudAddService - ok
17:41:55.0639 10676 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:41:55.0641 10676 intelide - ok
17:41:55.0656 10676 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:41:55.0658 10676 intelppm - ok
17:41:55.0724 10676 IntuitUpdateService (3dc635b66dd7412e1c9c3a77b8d78f25) C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
17:41:55.0726 10676 IntuitUpdateService - ok
17:41:55.0801 10676 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
17:41:55.0803 10676 IntuitUpdateServiceV4 - ok
17:41:55.0830 10676 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:41:55.0835 10676 IPBusEnum - ok
17:41:55.0862 10676 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:41:55.0865 10676 IpFilterDriver - ok
17:41:55.0883 10676 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:41:55.0887 10676 IPMIDRV - ok
17:41:55.0898 10676 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:41:55.0902 10676 IPNAT - ok
17:41:56.0008 10676 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
17:41:56.0050 10676 iPod Service - ok
17:41:56.0084 10676 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:41:56.0087 10676 IRENUM - ok
17:41:56.0132 10676 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:41:56.0135 10676 isapnp - ok
17:41:56.0165 10676 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:41:56.0177 10676 iScsiPrt - ok
17:41:56.0208 10676 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
17:41:56.0210 10676 kbdclass - ok
17:41:56.0224 10676 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
17:41:56.0227 10676 kbdhid - ok
17:41:56.0256 10676 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:41:56.0260 10676 KeyIso - ok
17:41:56.0296 10676 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
17:41:56.0299 10676 KSecDD - ok
17:41:56.0336 10676 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
17:41:56.0341 10676 KSecPkg - ok
17:41:56.0370 10676 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:41:56.0373 10676 ksthunk - ok
17:41:56.0417 10676 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:41:56.0443 10676 KtmRm - ok
17:41:56.0492 10676 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
17:41:56.0506 10676 LanmanServer - ok
17:41:56.0538 10676 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:41:56.0547 10676 LanmanWorkstation - ok
17:41:56.0672 10676 LkCitadelServer (20cdb07017497c94a0bad253c4bafcbc) C:\Windows\SysWOW64\lkcitdl.exe
17:41:56.0692 10676 LkCitadelServer - ok
17:41:56.0723 10676 lkClassAds (c373079f8d6a3543faadb96c874cf06b) C:\Windows\SysWOW64\lkads.exe
17:41:56.0727 10676 lkClassAds - ok
17:41:56.0772 10676 lkTimeSync (ed1c2f1b9b7dedee5c6287211ac4422e) C:\Windows\SysWOW64\lktsrv.exe
17:41:56.0776 10676 lkTimeSync - ok
17:41:56.0865 10676 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:41:56.0868 10676 lltdio - ok
17:41:56.0924 10676 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:41:56.0936 10676 lltdsvc - ok
17:41:56.0963 10676 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:41:56.0967 10676 lmhosts - ok
17:41:57.0011 10676 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:41:57.0015 10676 LSI_FC - ok
17:41:57.0027 10676 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:41:57.0032 10676 LSI_SAS - ok
17:41:57.0064 10676 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:41:57.0068 10676 LSI_SAS2 - ok
17:41:57.0081 10676 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:41:57.0086 10676 LSI_SCSI - ok
17:41:57.0103 10676 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:41:57.0105 10676 luafv - ok
17:41:57.0133 10676 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:41:57.0136 10676 Mcx2Svc - ok
17:41:57.0140 10676 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:41:57.0141 10676 megasas - ok
17:41:57.0154 10676 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:41:57.0157 10676 MegaSR - ok
17:41:57.0171 10676 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:41:57.0174 10676 MMCSS - ok
17:41:57.0178 10676 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:41:57.0180 10676 Modem - ok
17:41:57.0188 10676 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:41:57.0189 10676 monitor - ok
17:41:57.0221 10676 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
17:41:57.0222 10676 mouclass - ok
17:41:57.0247 10676 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:41:57.0248 10676 mouhid - ok
17:41:57.0288 10676 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:41:57.0292 10676 mountmgr - ok
17:41:57.0334 10676 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:41:57.0339 10676 mpio - ok
17:41:57.0354 10676 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:41:57.0358 10676 mpsdrv - ok
17:41:57.0392 10676 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:41:57.0395 10676 MRxDAV - ok
17:41:57.0426 10676 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:41:57.0429 10676 mrxsmb - ok
17:41:57.0473 10676 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:41:57.0478 10676 mrxsmb10 - ok
17:41:57.0487 10676 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:41:57.0490 10676 mrxsmb20 - ok
17:41:57.0502 10676 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:41:57.0504 10676 msahci - ok
17:41:57.0523 10676 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:41:57.0527 10676 msdsm - ok
17:41:57.0550 10676 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:41:57.0554 10676 MSDTC - ok
17:41:57.0575 10676 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:41:57.0577 10676 Msfs - ok
17:41:57.0589 10676 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:41:57.0591 10676 mshidkmdf - ok
17:41:57.0602 10676 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:41:57.0603 10676 msisadrv - ok
17:41:57.0640 10676 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:41:57.0647 10676 MSiSCSI - ok
17:41:57.0653 10676 msiserver - ok
17:41:57.0668 10676 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:41:57.0670 10676 MSKSSRV - ok
17:41:57.0673 10676 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:41:57.0675 10676 MSPCLOCK - ok
17:41:57.0679 10676 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:41:57.0681 10676 MSPQM - ok
17:41:57.0722 10676 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:41:57.0727 10676 MsRPC - ok
17:41:57.0747 10676 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
17:41:57.0749 10676 mssmbios - ok
17:41:57.0753 10676 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:41:57.0755 10676 MSTEE - ok
17:41:57.0758 10676 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:41:57.0759 10676 MTConfig - ok
17:41:57.0764 10676 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:41:57.0765 10676 Mup - ok
17:41:57.0792 10676 mv2 (621c40398b1a0242acbcc2ba65c23a66) C:\Windows\system32\DRIVERS\mv2.sys
17:41:57.0793 10676 mv2 - ok
17:41:57.0959 10676 mxssvr (a3ba8a14490fdbf106939c37a125e82c) C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
17:41:57.0961 10676 mxssvr - ok
17:41:58.0016 10676 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:41:58.0031 10676 napagent - ok
17:41:58.0071 10676 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:41:58.0084 10676 NativeWifiP - ok
17:41:58.0149 10676 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:41:58.0162 10676 NDIS - ok
17:41:58.0181 10676 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:41:58.0183 10676 NdisCap - ok
17:41:58.0209 10676 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:41:58.0212 10676 NdisTapi - ok
17:41:58.0248 10676 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:41:58.0250 10676 Ndisuio - ok
17:41:58.0282 10676 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:41:58.0285 10676 NdisWan - ok
17:41:58.0313 10676 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:41:58.0316 10676 NDProxy - ok
17:41:58.0328 10676 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:41:58.0330 10676 NetBIOS - ok
17:41:58.0357 10676 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:41:58.0361 10676 NetBT - ok
17:41:58.0389 10676 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:41:58.0391 10676 Netlogon - ok
17:41:58.0434 10676 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:41:58.0445 10676 Netman - ok
17:41:58.0466 10676 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:41:58.0474 10676 netprofm - ok
17:41:58.0536 10676 netr28x (1982b291df9833fb3adc397ebd310a18) C:\Windows\system32\DRIVERS\netr28x.sys
17:41:58.0552 10676 netr28x - ok
17:41:58.0616 10676 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:41:58.0621 10676 NetTcpPortSharing - ok
17:41:58.0638 10676 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:41:58.0640 10676 nfrd960 - ok
17:41:58.0755 10676 NIDomainService (a36307747e7bb2dc015f9fe4350a4a08) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
17:41:58.0772 10676 NIDomainService - ok
17:41:58.0933 10676 NILM License Manager (b17093b9a2c5f874975c732c1a8ba771) C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe
17:41:58.0960 10676 NILM License Manager - ok
17:41:59.0046 10676 niSvcLoc - ok
17:41:59.0123 10676 NITaggerService (e559ce29cd58cd6b58f3654c24d7a812) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
17:41:59.0141 10676 NITaggerService - ok
17:41:59.0254 10676 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:41:59.0273 10676 NlaSvc - ok
17:41:59.0347 10676 Norton PC Checkup Application Launcher - ok
17:41:59.0379 10676 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:41:59.0382 10676 Npfs - ok
17:41:59.0409 10676 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:41:59.0415 10676 nsi - ok
17:41:59.0432 10676 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:41:59.0435 10676 nsiproxy - ok
17:41:59.0559 10676 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:41:59.0575 10676 Ntfs - ok
17:41:59.0610 10676 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:41:59.0612 10676 Null - ok
17:41:59.0657 10676 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:41:59.0662 10676 nvraid - ok
17:41:59.0683 10676 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:41:59.0686 10676 nvstor - ok
17:41:59.0701 10676 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:41:59.0704 10676 nv_agp - ok
17:41:59.0738 10676 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:41:59.0744 10676 ohci1394 - ok
17:41:59.0856 10676 OpcEnum (eae6208900e2986f66f68b30aef86e4d) C:\Windows\SysWOW64\OpcEnum.exe
17:41:59.0859 10676 OpcEnum - ok
17:41:59.0919 10676 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:41:59.0922 10676 ose - ok
17:42:00.0176 10676 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:42:00.0262 10676 osppsvc - ok
17:42:00.0324 10676 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:42:00.0335 10676 p2pimsvc - ok
17:42:00.0374 10676 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:42:00.0388 10676 p2psvc - ok
17:42:00.0410 10676 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:42:00.0413 10676 Parport - ok
17:42:00.0438 10676 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:42:00.0440 10676 partmgr - ok
17:42:00.0460 10676 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:42:00.0465 10676 PcaSvc - ok
17:42:00.0574 10676 PCCUJobMgr (2f86be1818c2d7ac90478e3323ee7fcb) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe
17:42:00.0577 10676 PCCUJobMgr - ok
17:42:00.0611 10676 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:42:00.0613 10676 pci - ok
17:42:00.0624 10676 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:42:00.0626 10676 pciide - ok
17:42:00.0639 10676 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:42:00.0643 10676 pcmcia - ok
17:42:00.0658 10676 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:42:00.0660 10676 pcw - ok
17:42:00.0680 10676 pdfcDispatcher - ok
17:42:00.0726 10676 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:42:00.0736 10676 PEAUTH - ok
17:42:00.0781 10676 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:42:00.0784 10676 PerfHost - ok
17:42:00.0883 10676 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:42:00.0904 10676 pla - ok
17:42:00.0947 10676 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:42:00.0957 10676 PlugPlay - ok
17:42:00.0970 10676 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:42:00.0973 10676 PNRPAutoReg - ok
17:42:00.0989 10676 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:42:00.0992 10676 PNRPsvc - ok
17:42:01.0056 10676 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:42:01.0076 10676 PolicyAgent - ok
17:42:01.0115 10676 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:42:01.0120 10676 Power - ok
17:42:01.0163 10676 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:42:01.0166 10676 PptpMiniport - ok
17:42:01.0183 10676 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:42:01.0186 10676 Processor - ok
17:42:01.0215 10676 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
17:42:01.0221 10676 ProfSvc - ok
17:42:01.0255 10676 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:42:01.0258 10676 ProtectedStorage - ok
17:42:01.0290 10676 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:42:01.0293 10676 Psched - ok
17:42:01.0371 10676 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:42:01.0396 10676 ql2300 - ok
17:42:01.0475 10676 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:42:01.0481 10676 ql40xx - ok
17:42:01.0513 10676 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:42:01.0528 10676 QWAVE - ok
17:42:01.0548 10676 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:42:01.0550 10676 QWAVEdrv - ok
17:42:01.0554 10676 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:42:01.0556 10676 RasAcd - ok
17:42:01.0567 10676 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:42:01.0569 10676 RasAgileVpn - ok
17:42:01.0581 10676 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:42:01.0585 10676 RasAuto - ok
17:42:01.0616 10676 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:42:01.0619 10676 Rasl2tp - ok
17:42:01.0663 10676 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:42:01.0682 10676 RasMan - ok
17:42:01.0705 10676 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:42:01.0710 10676 RasPppoe - ok
17:42:01.0728 10676 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:42:01.0732 10676 RasSstp - ok
17:42:01.0772 10676 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:42:01.0785 10676 rdbss - ok
17:42:01.0803 10676 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:42:01.0806 10676 rdpbus - ok
17:42:01.0828 10676 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:42:01.0829 10676 RDPCDD - ok
17:42:01.0845 10676 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:42:01.0847 10676 RDPENCDD - ok
17:42:01.0860 10676 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:42:01.0862 10676 RDPREFMP - ok
17:42:01.0900 10676 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
17:42:01.0907 10676 RDPWD - ok
17:42:01.0961 10676 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:42:01.0968 10676 rdyboost - ok
17:42:02.0014 10676 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:42:02.0020 10676 RemoteAccess - ok
17:42:02.0046 10676 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:42:02.0051 10676 RemoteRegistry - ok
17:42:02.0283 10676 RoxioNow Service (c1568e17039b2ec2b73a4f880ddd51e5) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
17:42:02.0292 10676 RoxioNow Service - ok
17:42:02.0303 10676 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:42:02.0310 10676 RpcEptMapper - ok
17:42:02.0337 10676 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:42:02.0340 10676 RpcLocator - ok
17:42:02.0397 10676 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:42:02.0408 10676 RpcSs - ok
17:42:02.0437 10676 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:42:02.0439 10676 rspndr - ok
17:42:02.0482 10676 RTL8167 (b15c021c2c9bb217a799d9532e8f04d4) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:42:02.0494 10676 RTL8167 - ok
17:42:02.0521 10676 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:42:02.0524 10676 SamSs - ok
17:42:02.0557 10676 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:42:02.0559 10676 sbp2port - ok
17:42:02.0585 10676 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:42:02.0591 10676 SCardSvr - ok
17:42:02.0624 10676 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:42:02.0626 10676 scfilter - ok
17:42:02.0709 10676 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:42:02.0737 10676 Schedule - ok
17:42:02.0773 10676 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:42:02.0775 10676 SCPolicySvc - ok
17:42:02.0809 10676 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:42:02.0814 10676 SDRSVC - ok
17:42:02.0881 10676 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:42:02.0893 10676 SeaPort - ok
17:42:02.0901 10676 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:42:02.0903 10676 secdrv - ok
17:42:02.0936 10676 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:42:02.0940 10676 seclogon - ok
17:42:02.0952 10676 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
17:42:02.0956 10676 SENS - ok
17:42:02.0965 10676 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:42:02.0969 10676 SensrSvc - ok
17:42:02.0994 10676 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:42:02.0996 10676 Serenum - ok
17:42:03.0005 10676 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:42:03.0008 10676 Serial - ok
17:42:03.0020 10676 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:42:03.0022 10676 sermouse - ok
17:42:03.0059 10676 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:42:03.0062 10676 SessionEnv - ok
17:42:03.0096 10676 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:42:03.0099 10676 sffdisk - ok
17:42:03.0106 10676 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:42:03.0110 10676 sffp_mmc - ok
17:42:03.0117 10676 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:42:03.0120 10676 sffp_sd - ok
17:42:03.0127 10676 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:42:03.0128 10676 sfloppy - ok
17:42:03.0208 10676 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
17:42:03.0230 10676 Sftfs - ok
17:42:03.0301 10676 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:42:03.0312 10676 sftlist - ok
17:42:03.0359 10676 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:42:03.0367 10676 Sftplay - ok
17:42:03.0399 10676 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:42:03.0402 10676 Sftredir - ok
17:42:03.0420 10676 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
17:42:03.0423 10676 Sftvol - ok
17:42:03.0451 10676 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:42:03.0457 10676 sftvsa - ok
17:42:03.0511 10676 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:42:03.0529 10676 ShellHWDetection - ok
17:42:03.0538 10676 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:42:03.0542 10676 SiSRaid2 - ok
17:42:03.0553 10676 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:42:03.0557 10676 SiSRaid4 - ok
17:42:03.0569 10676 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:42:03.0573 10676 Smb - ok
17:42:03.0582 10676 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:42:03.0585 10676 SNMPTRAP - ok
17:42:03.0599 10676 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:42:03.0601 10676 spldr - ok
17:42:03.0631 10676 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:42:03.0645 10676 Spooler - ok
17:42:03.0818 10676 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:42:03.0871 10676 sppsvc - ok
17:42:03.0933 10676 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:42:03.0935 10676 sppuinotify - ok
17:42:03.0992 10676 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:42:04.0001 10676 srv - ok
17:42:04.0025 10676 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:42:04.0034 10676 srv2 - ok
17:42:04.0049 10676 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:42:04.0052 10676 srvnet - ok
17:42:04.0081 10676 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:42:04.0086 10676 SSDPSRV - ok
17:42:04.0095 10676 ssfmonm (a4c4a1fedfbed04b39efae9f1311ed5e) C:\Windows\system32\DRIVERS\ssfmonm.sys
17:42:04.0096 10676 ssfmonm - ok
17:42:04.0115 10676 ssidrv (1cc88f50bd4e6fd6eac5c5365ceb6583) C:\Windows\system32\DRIVERS\ssidrv.sys
17:42:04.0117 10676 ssidrv - ok
17:42:04.0127 10676 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:42:04.0130 10676 SstpSvc - ok
17:42:04.0141 10676 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:42:04.0142 10676 stexstor - ok
17:42:04.0202 10676 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:42:04.0216 10676 stisvc - ok
17:42:04.0245 10676 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
17:42:04.0247 10676 swenum - ok
17:42:04.0280 10676 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:42:04.0295 10676 swprv - ok
17:42:04.0394 10676 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:42:04.0418 10676 SysMain - ok
17:42:04.0469 10676 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:42:04.0472 10676 TabletInputService - ok
17:42:04.0520 10676 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:42:04.0538 10676 TapiSrv - ok
17:42:04.0566 10676 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:42:04.0570 10676 TBS - ok
17:42:04.0679 10676 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
17:42:04.0698 10676 Tcpip - ok
17:42:04.0807 10676 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
17:42:04.0824 10676 TCPIP6 - ok
17:42:04.0879 10676 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:42:04.0882 10676 tcpipreg - ok
17:42:04.0905 10676 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:42:04.0908 10676 TDPIPE - ok
17:42:04.0934 10676 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:42:04.0936 10676 TDTCP - ok
17:42:04.0963 10676 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:42:04.0965 10676 tdx - ok
17:42:04.0989 10676 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
17:42:04.0992 10676 TermDD - ok
17:42:05.0036 10676 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:42:05.0054 10676 TermService - ok
17:42:05.0070 10676 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:42:05.0074 10676 Themes - ok
17:42:05.0096 10676 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:42:05.0099 10676 THREADORDER - ok
17:42:05.0112 10676 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:42:05.0117 10676 TrkWks - ok
17:42:05.0163 10676 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:42:05.0165 10676 TrustedInstaller - ok
17:42:05.0185 10676 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:42:05.0189 10676 tssecsrv - ok
17:42:05.0227 10676 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:42:05.0230 10676 TsUsbFlt - ok
17:42:05.0265 10676 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:42:05.0268 10676 tunnel - ok
17:42:05.0275 10676 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:42:05.0277 10676 uagp35 - ok
17:42:05.0304 10676 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:42:05.0317 10676 udfs - ok
17:42:05.0335 10676 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:42:05.0338 10676 UI0Detect - ok
17:42:05.0350 10676 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:42:05.0353 10676 uliagpkx - ok
17:42:05.0397 10676 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
17:42:05.0399 10676 umbus - ok
17:42:05.0410 10676 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:42:05.0411 10676 UmPass - ok
17:42:05.0446 10676 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:42:05.0457 10676 upnphost - ok
17:42:05.0500 10676 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
17:42:05.0502 10676 USBAAPL64 - ok
17:42:05.0511 10676 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:42:05.0513 10676 usbccgp - ok
17:42:05.0543 10676 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:42:05.0546 10676 usbcir - ok
17:42:05.0562 10676 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
17:42:05.0564 10676 usbehci - ok
17:42:05.0594 10676 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\DRIVERS\usbfilter.sys
17:42:05.0596 10676 usbfilter - ok
17:42:05.0626 10676 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:42:05.0637 10676 usbhub - ok
17:42:05.0649 10676 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
17:42:05.0651 10676 usbohci - ok
17:42:05.0660 10676 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:42:05.0662 10676 usbprint - ok
17:42:05.0683 10676 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:42:05.0685 10676 usbscan - ok
17:42:05.0701 10676 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:42:05.0703 10676 USBSTOR - ok
17:42:05.0715 10676 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:42:05.0717 10676 usbuhci - ok
17:42:05.0734 10676 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:42:05.0740 10676 UxSms - ok
17:42:05.0771 10676 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:42:05.0774 10676 VaultSvc - ok
17:42:05.0793 10676 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:42:05.0796 10676 vdrvroot - ok
17:42:05.0841 10676 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:42:05.0854 10676 vds - ok
17:42:05.0872 10676 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:42:05.0874 10676 vga - ok
17:42:05.0886 10676 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:42:05.0888 10676 VgaSave - ok
17:42:05.0916 10676 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:42:05.0920 10676 vhdmp - ok
17:42:05.0933 10676 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:42:05.0935 10676 viaide - ok
17:42:05.0942 10676 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:42:05.0944 10676 volmgr - ok
17:42:05.0999 10676 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:42:06.0008 10676 volmgrx - ok
17:42:06.0039 10676 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:42:06.0050 10676 volsnap - ok
17:42:06.0079 10676 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:42:06.0082 10676 vsmraid - ok
17:42:06.0195 10676 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:42:06.0221 10676 VSS - ok
17:42:06.0405 10676 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
17:42:06.0425 10676 vToolbarUpdater11.2.0 - ok
17:42:06.0514 10676 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
17:42:06.0516 10676 vwifibus - ok
17:42:06.0541 10676 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
17:42:06.0543 10676 vwififlt - ok
17:42:06.0549 10676 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
17:42:06.0551 10676 vwifimp - ok
17:42:06.0590 10676 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:42:06.0598 10676 W32Time - ok
17:42:06.0606 10676 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:42:06.0608 10676 WacomPen - ok
17:42:06.0625 10676 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:42:06.0628 10676 WANARP - ok
17:42:06.0632 10676 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:42:06.0634 10676 Wanarpv6 - ok
17:42:06.0714 10676 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:42:06.0731 10676 WatAdminSvc - ok
17:42:06.0822 10676 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:42:06.0846 10676 wbengine - ok
17:42:06.0902 10676 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:42:06.0917 10676 WbioSrvc - ok
17:42:06.0959 10676 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:42:06.0969 10676 wcncsvc - ok
17:42:06.0979 10676 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:42:06.0983 10676 WcsPlugInService - ok
17:42:06.0991 10676 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:42:06.0993 10676 Wd - ok
17:42:07.0034 10676 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:42:07.0052 10676 Wdf01000 - ok
17:42:07.0067 10676 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:42:07.0071 10676 WdiServiceHost - ok
17:42:07.0075 10676 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:42:07.0079 10676 WdiSystemHost - ok
17:42:07.0119 10676 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:42:07.0134 10676 WebClient - ok
17:42:07.0507 10676 WebrootSpySweeperService (f069de5b6af06b1cb26693e68bb74fea) C:\Program Files (x86)\Webroot\Security\current\plugins\antimalware\AEI.exe
17:42:07.0551 10676 WebrootSpySweeperService - ok
17:42:07.0582 10676 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:42:07.0586 10676 Wecsvc - ok
17:42:07.0601 10676 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:42:07.0604 10676 wercplsupport - ok
17:42:07.0626 10676 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:42:07.0628 10676 WerSvc - ok
17:42:07.0640 10676 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:42:07.0641 10676 WfpLwf - ok
17:42:07.0655 10676 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:42:07.0657 10676 WIMMount - ok
17:42:07.0661 10676 WinHttpAutoProxySvc - ok
17:42:07.0700 10676 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:42:07.0703 10676 Winmgmt - ok
17:42:07.0819 10676 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:42:07.0842 10676 WinRM - ok
17:42:07.0923 10676 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
17:42:07.0926 10676 WinUsb - ok
17:42:07.0999 10676 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:42:08.0023 10676 Wlansvc - ok
17:42:08.0191 10676 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:42:08.0236 10676 wlidsvc - ok
17:42:08.0277 10676 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
17:42:08.0279 10676 WmiAcpi - ok
17:42:08.0316 10676 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:42:08.0320 10676 wmiApSrv - ok
17:42:08.0334 10676 WMPNetworkSvc - ok
17:42:08.0356 10676 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:42:08.0360 10676 WPCSvc - ok
17:42:08.0394 10676 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:42:08.0399 10676 WPDBusEnum - ok
17:42:08.0618 10676 WRConsumerService (c7110ccaa3e9e21b3a52e98422f861bd) C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe
17:42:08.0684 10676 WRConsumerService - ok
17:42:08.0731 10676 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:42:08.0732 10676 ws2ifsl - ok
17:42:08.0735 10676 WSearch - ok
17:42:08.0907 10676 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
17:42:08.0948 10676 wuauserv - ok
17:42:09.0007 10676 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:42:09.0009 10676 WudfPf - ok
17:42:09.0025 10676 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:42:09.0028 10676 WUDFRd - ok
17:42:09.0063 10676 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:42:09.0069 10676 wudfsvc - ok
17:42:09.0096 10676 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:42:09.0110 10676 WwanSvc - ok
17:42:09.0141 10676 MBR (0x1B8) (a734c2027c4644981baa66e41f7dd1c3) \Device\Harddisk0\DR0
17:42:09.0324 10676 \Device\Harddisk0\DR0 - ok
17:42:09.0327 10676 Boot (0x1200) (d5afe618c8420bf39e42e1f1f0d4fd2d) \Device\Harddisk0\DR0\Partition0
17:42:09.0329 10676 \Device\Harddisk0\DR0\Partition0 - ok
17:42:09.0335 10676 Boot (0x1200) (3f86cf6c0c885c8a1786d8c0b36d0259) \Device\Harddisk0\DR0\Partition1
17:42:09.0337 10676 \Device\Harddisk0\DR0\Partition1 - ok
17:42:09.0371 10676 Boot (0x1200) (20fdfa1a20c16c132f0d348d115cd952) \Device\Harddisk0\DR0\Partition2
17:42:09.0372 10676 \Device\Harddisk0\DR0\Partition2 - ok
17:42:09.0373 10676 ============================================================
17:42:09.0373 10676 Scan finished
17:42:09.0373 10676 ============================================================
17:42:09.0384 6540 Detected object count: 0
17:42:09.0384 6540 Actual detected object count: 0
17:44:45.0831 12068 ============================================================
17:44:45.0831 12068 Scan started
17:44:45.0831 12068 Mode: Manual; TDLFS;
17:44:45.0831 12068 ============================================================
17:44:47.0092 12068 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:44:47.0093 12068 1394ohci - ok
17:44:47.0122 12068 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:44:47.0124 12068 ACPI - ok
17:44:47.0166 12068 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:44:47.0166 12068 AcpiPmi - ok
17:44:47.0283 12068 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:44:47.0284 12068 AdobeARMservice - ok
17:44:47.0411 12068 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:44:47.0416 12068 AdobeFlashPlayerUpdateSvc - ok
17:44:47.0500 12068 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:44:47.0503 12068 adp94xx - ok
17:44:47.0566 12068 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:44:47.0568 12068 adpahci - ok
17:44:47.0597 12068 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:44:47.0598 12068 adpu320 - ok
17:44:47.0629 12068 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:44:47.0630 12068 AeLookupSvc - ok
17:44:47.0741 12068 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:44:47.0744 12068 AFD - ok
17:44:47.0764 12068 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:44:47.0765 12068 agp440 - ok
17:44:47.0783 12068 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:44:47.0784 12068 ALG - ok
17:44:47.0814 12068 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:44:47.0815 12068 aliide - ok
17:44:47.0850 12068 AMD External Events Utility (ca0d6c1390f4b3baf2a0a69d1a7f8332) C:\Windows\system32\atiesrxx.exe
17:44:47.0852 12068 AMD External Events Utility - ok
17:44:47.0898 12068 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:44:47.0899 12068 amdide - ok
17:44:47.0911 12068 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:44:47.0912 12068 AmdK8 - ok
17:44:48.0644 12068 amdkmdag (75e4baca583ae02c11e9ac8747e2abe0) C:\Windows\system32\DRIVERS\atikmdag.sys
17:44:48.0680 12068 amdkmdag - ok
17:44:48.0839 12068 amdkmdap (b765cf4b32f347be747b21ae22641025) C:\Windows\system32\DRIVERS\atikmpag.sys
17:44:48.0841 12068 amdkmdap - ok
17:44:48.0862 12068 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:44:48.0863 12068 AmdPPM - ok
17:44:48.0907 12068 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:44:48.0908 12068 amdsata - ok
17:44:48.0944 12068 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:44:48.0946 12068 amdsbs - ok
17:44:48.0981 12068 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:44:48.0982 12068 amdxata - ok
17:44:49.0019 12068 amd_sata (8a2b4818215d8a6ff54dc3f0d63cbb2d) C:\Windows\system32\DRIVERS\amd_sata.sys
17:44:49.0020 12068 amd_sata - ok
17:44:49.0034 12068 amd_xata (a2d8977623e13591b15f6370c6cc37b0) C:\Windows\system32\DRIVERS\amd_xata.sys
17:44:49.0035 12068 amd_xata - ok
17:44:49.0059 12068 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:44:49.0060 12068 AppID - ok
17:44:49.0064 12068 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:44:49.0065 12068 AppIDSvc - ok
17:44:49.0071 12068 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:44:49.0072 12068 Appinfo - ok
17:44:49.0198 12068 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:44:49.0199 12068 Apple Mobile Device - ok
17:44:49.0242 12068 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:44:49.0243 12068 arc - ok
17:44:49.0271 12068 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:44:49.0272 12068 arcsas - ok
17:44:49.0285 12068 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:44:49.0286 12068 AsyncMac - ok
17:44:49.0300 12068 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:44:49.0301 12068 atapi - ok
17:44:49.0331 12068 AtiPcie (e82e61f46d1336447f4deff8c074f13e) C:\Windows\system32\DRIVERS\AtiPcie64.sys
17:44:49.0331 12068 AtiPcie - ok
17:44:49.0440 12068 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:44:49.0446 12068 AudioEndpointBuilder - ok
17:44:49.0451 12068 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:44:49.0456 12068 AudioSrv - ok
17:44:50.0447 12068 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
17:44:50.0474 12068 AVGIDSAgent - ok
17:44:50.0673 12068 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
17:44:50.0674 12068 AVGIDSDriver - ok
17:44:50.0732 12068 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
17:44:50.0733 12068 AVGIDSFilter - ok
17:44:50.0770 12068 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
17:44:50.0771 12068 AVGIDSHA - ok
17:44:50.0890 12068 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
17:44:50.0893 12068 Avgldx64 - ok
17:44:50.0932 12068 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
17:44:50.0933 12068 Avgmfx64 - ok
17:44:50.0951 12068 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
17:44:50.0952 12068 Avgrkx64 - ok
17:44:50.0969 12068 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
17:44:50.0971 12068 Avgtdia - ok
17:44:51.0235 12068 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
17:44:51.0237 12068 avgwd - ok
17:44:51.0271 12068 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:44:51.0272 12068 AxInstSV - ok
17:44:51.0330 12068 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:44:51.0333 12068 b06bdrv - ok
17:44:51.0409 12068 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:44:51.0410 12068 b57nd60a - ok
17:44:51.0505 12068 BBSvc (825f81a6f7dd073509db101f0ba6dc59) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
17:44:51.0506 12068 BBSvc - ok
17:44:51.0529 12068 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:44:51.0530 12068 BDESVC - ok
17:44:51.0546 12068 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:44:51.0547 12068 Beep - ok
17:44:51.0601 12068 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
17:44:51.0607 12068 BITS - ok
17:44:51.0627 12068 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:44:51.0628 12068 blbdrive - ok
17:44:51.0761 12068 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
17:44:51.0763 12068 Bonjour Service - ok
17:44:51.0819 12068 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:44:51.0822 12068 bowser - ok
17:44:51.0845 12068 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:44:51.0846 12068 BrFiltLo - ok
17:44:51.0850 12068 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:44:51.0851 12068 BrFiltUp - ok
17:44:51.0882 12068 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:44:51.0885 12068 Browser - ok
17:44:51.0911 12068 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:44:51.0913 12068 Brserid - ok
17:44:51.0918 12068 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:44:51.0919 12068 BrSerWdm - ok
17:44:51.0923 12068 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:44:51.0924 12068 BrUsbMdm - ok
17:44:51.0927 12068 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:44:51.0928 12068 BrUsbSer - ok
17:44:51.0977 12068 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:44:51.0980 12068 BTHMODEM - ok
17:44:52.0018 12068 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:44:52.0019 12068 bthserv - ok
17:44:52.0036 12068 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:44:52.0037 12068 cdfs - ok
17:44:52.0107 12068 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
17:44:52.0109 12068 cdrom - ok
17:44:52.0156 12068 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:44:52.0157 12068 CertPropSvc - ok
17:44:52.0162 12068 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:44:52.0163 12068 circlass - ok
17:44:52.0283 12068 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:44:52.0287 12068 CLFS - ok
17:44:52.0354 12068 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:44:52.0355 12068 clr_optimization_v2.0.50727_32 - ok
17:44:52.0419 12068 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:44:52.0423 12068 clr_optimization_v2.0.50727_64 - ok
17:44:52.0499 12068 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:44:52.0501 12068 clr_optimization_v4.0.30319_32 - ok
17:44:52.0552 12068 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:44:52.0554 12068 clr_optimization_v4.0.30319_64 - ok
17:44:52.0557 12068 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:44:52.0558 12068 CmBatt - ok
17:44:52.0595 12068 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:44:52.0596 12068 cmdide - ok
17:44:52.0720 12068 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
17:44:52.0723 12068 CNG - ok
17:44:52.0753 12068 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:44:52.0753 12068 Compbatt - ok
17:44:52.0783 12068 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:44:52.0784 12068 CompositeBus - ok
17:44:52.0787 12068 COMSysApp - ok
17:44:52.0886 12068 CouponAlert_2pService (622fcf264119f7df127be353f796b319) C:\PROGRA~2\COUPON~2\bar\1.bin\2pbarsvc.exe
17:44:52.0889 12068 CouponAlert_2pService - ok
17:44:52.0906 12068 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:44:52.0907 12068 crcdisk - ok
17:44:52.0984 12068 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
17:44:52.0986 12068 CryptSvc - ok
17:44:53.0116 12068 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:44:53.0121 12068 cvhsvc - ok
17:44:53.0212 12068 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:44:53.0226 12068 DcomLaunch - ok
17:44:53.0288 12068 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:44:53.0291 12068 defragsvc - ok
17:44:53.0335 12068 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:44:53.0336 12068 DfsC - ok
17:44:53.0368 12068 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:44:53.0370 12068 Dhcp - ok
17:44:53.0417 12068 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:44:53.0419 12068 discache - ok
17:44:53.0445 12068 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:44:53.0448 12068 Disk - ok
17:44:53.0480 12068 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:44:53.0482 12068 Dnscache - ok
17:44:53.0556 12068 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:44:53.0558 12068 dot3svc - ok
17:44:53.0601 12068 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:44:53.0603 12068 DPS - ok
17:44:53.0619 12068 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:44:53.0620 12068 drmkaud - ok
17:44:53.0757 12068 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:44:53.0762 12068 DXGKrnl - ok
17:44:53.0781 12068 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:44:53.0783 12068 EapHost - ok
17:44:54.0067 12068 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:44:54.0084 12068 ebdrv - ok
17:44:54.0193 12068 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:44:54.0195 12068 EFS - ok
17:44:54.0302 12068 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:44:54.0306 12068 ehRecvr - ok
17:44:54.0361 12068 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:44:54.0362 12068 ehSched - ok
17:44:54.0415 12068 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:44:54.0418 12068 elxstor - ok
17:44:54.0453 12068 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:44:54.0454 12068 ErrDev - ok
17:44:54.0533 12068 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:44:54.0536 12068 EventSystem - ok
17:44:54.0548 12068 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:44:54.0550 12068 exfat - ok
17:44:54.0568 12068 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:44:54.0570 12068 fastfat - ok
17:44:54.0695 12068 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:44:54.0699 12068 Fax - ok
17:44:54.0706 12068 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:44:54.0706 12068 fdc - ok
17:44:54.0721 12068 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:44:54.0722 12068 fdPHost - ok
17:44:54.0748 12068 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:44:54.0749 12068 FDResPub - ok
17:44:54.0773 12068 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:44:54.0774 12068 FileInfo - ok
17:44:54.0788 12068 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:44:54.0789 12068 Filetrace - ok
17:44:54.0793 12068 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:44:54.0794 12068 flpydisk - ok
17:44:54.0836 12068 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:44:54.0838 12068 FltMgr - ok
17:44:54.0924 12068 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:44:54.0930 12068 FontCache - ok
17:44:54.0993 12068 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:44:54.0994 12068 FontCache3.0.0.0 - ok
17:44:55.0004 12068 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:44:55.0005 12068 FsDepends - ok
17:44:55.0043 12068 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:44:55.0044 12068 Fs_Rec - ok
17:44:55.0094 12068 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:44:55.0095 12068 fvevol - ok
17:44:55.0136 12068 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:44:55.0137 12068 gagp30kx - ok
17:44:55.0282 12068 GameConsoleService (d154305de6090e6e84e525f84bb08a06) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:44:55.0284 12068 GameConsoleService - ok
17:44:55.0319 12068 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:44:55.0320 12068 GEARAspiWDM - ok
17:44:55.0420 12068 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:44:55.0424 12068 gpsvc - ok
17:44:55.0539 12068 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:44:55.0541 12068 gupdate - ok
17:44:55.0550 12068 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:44:55.0552 12068 gupdatem - ok
17:44:55.0629 12068 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:44:55.0631 12068 gusvc - ok
17:44:55.0650 12068 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:44:55.0652 12068 hcw85cir - ok
17:44:55.0692 12068 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:44:55.0694 12068 HdAudAddService - ok
17:44:55.0709 12068 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
17:44:55.0710 12068 HDAudBus - ok
17:44:55.0733 12068 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:44:55.0734 12068 HidBatt - ok
17:44:55.0741 12068 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:44:55.0742 12068 HidBth - ok
17:44:55.0748 12068 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:44:55.0749 12068 HidIr - ok
17:44:55.0803 12068 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
17:44:55.0804 12068 hidserv - ok
17:44:55.0818 12068 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
17:44:55.0818 12068 HidUsb - ok
17:44:55.0913 12068 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:44:55.0918 12068 hkmsvc - ok
17:44:55.0961 12068 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:44:55.0963 12068 HomeGroupListener - ok
17:44:55.0980 12068 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:44:55.0982 12068 HomeGroupProvider - ok
17:44:56.0059 12068 HP Health Check Service (37965381364b2e106e1dd7d74cdcaa43) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
17:44:56.0061 12068 HP Health Check Service - ok
17:44:56.0166 12068 HPClientSvc (3dc11a802353401332d49c3cbfbbe5fc) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
17:44:56.0168 12068 HPClientSvc - ok
17:44:56.0204 12068 HPDrvMntSvc.exe (a48a151d3fa7cb032a51453f087221c7) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:44:56.0205 12068 HPDrvMntSvc.exe - ok
17:44:56.0247 12068 hpqwmiex (71bd8a611e0677175d3938c9cea7339a) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:44:56.0250 12068 hpqwmiex - ok
17:44:56.0434 12068 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:44:56.0435 12068 HpSAMD - ok
17:44:56.0532 12068 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:44:56.0536 12068 HTTP - ok
17:44:56.0591 12068 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:44:56.0591 12068 hwpolicy - ok
17:44:56.0657 12068 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:44:56.0658 12068 i8042prt - ok
17:44:56.0694 12068 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:44:56.0697 12068 iaStorV - ok
17:44:56.0841 12068 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:44:56.0845 12068 idsvc - ok
17:44:56.0896 12068 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:44:56.0899 12068 iirsp - ok
17:44:56.0986 12068 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:44:56.0991 12068 IKEEXT - ok
17:44:57.0153 12068 IntcAzAudAddService (3c4b4ee54febb09f7e9f58776de96dca) C:\Windows\system32\drivers\RTKVHD64.sys
17:44:57.0166 12068 IntcAzAudAddService - ok
17:44:57.0250 12068 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:44:57.0251 12068 intelide - ok
17:44:57.0264 12068 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:44:57.0265 12068 intelppm - ok
17:44:57.0420 12068 IntuitUpdateService (3dc635b66dd7412e1c9c3a77b8d78f25) C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
17:44:57.0421 12068 IntuitUpdateService - ok
17:44:57.0464 12068 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
17:44:57.0465 12068 IntuitUpdateServiceV4 - ok
17:44:57.0483 12068 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:44:57.0485 12068 IPBusEnum - ok
17:44:57.0516 12068 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:44:57.0517 12068 IpFilterDriver - ok
17:44:57.0537 12068 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:44:57.0538 12068 IPMIDRV - ok
17:44:57.0556 12068 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:44:57.0558 12068 IPNAT - ok
17:44:57.0712 12068 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
17:44:57.0716 12068 iPod Service - ok
17:44:57.0738 12068 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:44:57.0739 12068 IRENUM - ok
17:44:57.0785 12068 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:44:57.0786 12068 isapnp - ok
17:44:57.0814 12068 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:44:57.0816 12068 iScsiPrt - ok
17:44:57.0827 12068 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
17:44:57.0828 12068 kbdclass - ok
17:44:57.0854 12068 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
17:44:57.0855 12068 kbdhid - ok
17:44:57.0868 12068 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:44:57.0869 12068 KeyIso - ok
17:44:57.0890 12068 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
17:44:57.0891 12068 KSecDD - ok
17:44:57.0933 12068 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
17:44:57.0934 12068 KSecPkg - ok
17:44:57.0965 12068 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:44:57.0966 12068 ksthunk - ok
17:44:58.0000 12068 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:44:58.0003 12068 KtmRm - ok
17:44:58.0058 12068 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
17:44:58.0061 12068 LanmanServer - ok
17:44:58.0100 12068 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:44:58.0103 12068 LanmanWorkstation - ok
17:44:58.0531 12068 LkCitadelServer (20cdb07017497c94a0bad253c4bafcbc) C:\Windows\SysWOW64\lkcitdl.exe
17:44:58.0536 12068 LkCitadelServer - ok
17:44:58.0568 12068 lkClassAds (c373079f8d6a3543faadb96c874cf06b) C:\Windows\SysWOW64\lkads.exe
17:44:58.0569 12068 lkClassAds - ok
17:44:58.0617 12068 lkTimeSync (ed1c2f1b9b7dedee5c6287211ac4422e) C:\Windows\SysWOW64\lktsrv.exe
17:44:58.0618 12068 lkTimeSync - ok
17:44:58.0701 12068 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:44:58.0702 12068 lltdio - ok
17:44:58.0731 12068 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:44:58.0734 12068 lltdsvc - ok
17:44:58.0750 12068 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:44:58.0751 12068 lmhosts - ok
17:44:58.0781 12068 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:44:58.0782 12068 LSI_FC - ok
17:44:58.0792 12068 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:44:58.0793 12068 LSI_SAS - ok
17:44:58.0800 12068 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:44:58.0801 12068 LSI_SAS2 - ok
17:44:58.0808 12068 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:44:58.0809 12068 LSI_SCSI - ok
17:44:58.0824 12068 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:44:58.0825 12068 luafv - ok
17:44:58.0854 12068 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:44:58.0855 12068 Mcx2Svc - ok
17:44:58.0887 12068 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:44:58.0887 12068 megasas - ok
17:44:58.0915 12068 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:44:58.0917 12068 MegaSR - ok
17:44:58.0965 12068 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:44:58.0966 12068 MMCSS - ok
17:44:58.0971 12068 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:44:58.0971 12068 Modem - ok
17:44:58.0983 12068 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:44:58.0984 12068 monitor - ok
17:44:59.0019 12068 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
17:44:59.0019 12068 mouclass - ok
17:44:59.0036 12068 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:44:59.0037 12068 mouhid - ok
17:44:59.0121 12068 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:44:59.0122 12068 mountmgr - ok
17:44:59.0175 12068 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:44:59.0176 12068 mpio - ok
17:44:59.0199 12068 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:44:59.0200 12068 mpsdrv - ok
17:44:59.0232 12068 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:44:59.0233 12068 MRxDAV - ok
17:44:59.0329 12068 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:44:59.0331 12068 mrxsmb - ok
17:44:59.0367 12068 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:44:59.0370 12068 mrxsmb10 - ok
17:44:59.0422 12068 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:44:59.0423 12068 mrxsmb20 - ok
17:44:59.0439 12068 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:44:59.0440 12068 msahci - ok
17:44:59.0465 12068 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:44:59.0467 12068 msdsm - ok
17:44:59.0613 12068 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:44:59.0615 12068 MSDTC - ok
17:44:59.0645 12068 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:44:59.0646 12068 Msfs - ok
17:44:59.0651 12068 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:44:59.0652 12068 mshidkmdf - ok
17:44:59.0681 12068 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:44:59.0681 12068 msisadrv - ok
17:44:59.0718 12068 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:44:59.0719 12068 MSiSCSI - ok
17:44:59.0725 12068 msiserver - ok
17:44:59.0738 12068 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:44:59.0739 12068 MSKSSRV - ok
17:44:59.0742 12068 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:44:59.0743 12068 MSPCLOCK - ok
17:44:59.0747 12068 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:44:59.0747 12068 MSPQM - ok
17:44:59.0838 12068 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:44:59.0841 12068 MsRPC - ok
17:44:59.0860 12068 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
17:44:59.0861 12068 mssmbios - ok
17:44:59.0891 12068 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:44:59.0892 12068 MSTEE - ok
17:44:59.0897 12068 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:44:59.0897 12068 MTConfig - ok
17:44:59.0946 12068 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:44:59.0947 12068 Mup - ok
17:44:59.0971 12068 mv2 (621c40398b1a0242acbcc2ba65c23a66) C:\Windows\system32\DRIVERS\mv2.sys
17:44:59.0972 12068 mv2 - ok
17:45:00.0173 12068 mxssvr (a3ba8a14490fdbf106939c37a125e82c) C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
17:45:00.0175 12068 mxssvr - ok
17:45:00.0270 12068 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:45:00.0276 12068 napagent - ok
17:45:00.0308 12068 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:45:00.0310 12068 NativeWifiP - ok
17:45:00.0422 12068 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:45:00.0427 12068 NDIS - ok
17:45:00.0474 12068 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:45:00.0475 12068 NdisCap - ok
17:45:00.0489 12068 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:45:00.0489 12068 NdisTapi - ok
17:45:00.0545 12068 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:45:00.0545 12068 Ndisuio - ok
17:45:00.0616 12068 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:45:00.0618 12068 NdisWan - ok
17:45:00.0681 12068 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:45:00.0682 12068 NDProxy - ok
17:45:00.0716 12068 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:45:00.0717 12068 NetBIOS - ok
17:45:00.0843 12068 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:45:00.0846 12068 NetBT - ok
17:45:00.0876 12068 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:45:00.0879 12068 Netlogon - ok
17:45:00.0942 12068 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:45:00.0945 12068 Netman - ok
17:45:01.0070 12068 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:45:01.0081 12068 netprofm - ok
17:45:01.0316 12068 netr28x (1982b291df9833fb3adc397ebd310a18) C:\Windows\system32\DRIVERS\netr28x.sys
17:45:01.0326 12068 netr28x - ok
17:45:01.0412 12068 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:45:01.0414 12068 NetTcpPortSharing - ok
17:45:01.0443 12068 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:45:01.0444 12068 nfrd960 - ok
17:45:01.0705 12068 NIDomainService (a36307747e7bb2dc015f9fe4350a4a08) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
17:45:01.0712 12068 NIDomainService - ok
17:45:02.0086 12068 NILM License Manager (b17093b9a2c5f874975c732c1a8ba771) C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe
17:45:02.0102 12068 NILM License Manager - ok
17:45:02.0336 12068 niSvcLoc - ok
17:45:02.0647 12068 NITaggerService (e559ce29cd58cd6b58f3654c24d7a812) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
17:45:02.0652 12068 NITaggerService - ok
17:45:02.0831 12068 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:45:02.0834 12068 NlaSvc - ok
17:45:02.0892 12068 Norton PC Checkup Application Launcher - ok
17:45:02.0931 12068 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:45:02.0932 12068 Npfs - ok
17:45:02.0981 12068 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:45:02.0982 12068 nsi - ok
17:45:02.0994 12068 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:45:02.0995 12068 nsiproxy - ok
17:45:03.0168 12068 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:45:03.0176 12068 Ntfs - ok
17:45:03.0264 12068 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:45:03.0265 12068 Null - ok
17:45:03.0337 12068 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:45:03.0339 12068 nvraid - ok
17:45:03.0362 12068 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:45:03.0363 12068 nvstor - ok
17:45:03.0381 12068 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:45:03.0382 12068 nv_agp - ok
17:45:03.0436 12068 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:45:03.0437 12068 ohci1394 - ok
17:45:03.0894 12068 OpcEnum (eae6208900e2986f66f68b30aef86e4d) C:\Windows\SysWOW64\OpcEnum.exe
17:45:03.0897 12068 OpcEnum - ok
17:45:04.0030 12068 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:45:04.0031 12068 ose - ok
17:45:04.0306 12068 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:45:04.0330 12068 osppsvc - ok
17:45:04.0414 12068 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:45:04.0417 12068 p2pimsvc - ok
17:45:04.0454 12068 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:45:04.0458 12068 p2psvc - ok
17:45:04.0499 12068 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:45:04.0500 12068 Parport - ok
17:45:04.0539 12068 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:45:04.0542 12068 partmgr - ok
17:45:04.0573 12068 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:45:04.0577 12068 PcaSvc - ok
17:45:04.0746 12068 PCCUJobMgr (2f86be1818c2d7ac90478e3323ee7fcb) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe
17:45:04.0747 12068 PCCUJobMgr - ok
17:45:04.0794 12068 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:45:04.0795 12068 pci - ok
17:45:04.0819 12068 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:45:04.0820 12068 pciide - ok
17:45:04.0836 12068 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:45:04.0838 12068 pcmcia - ok
17:45:04.0853 12068 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:45:04.0854 12068 pcw - ok
17:45:04.0871 12068 pdfcDispatcher - ok
17:45:04.0937 12068 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:45:04.0940 12068 PEAUTH - ok
17:45:05.0002 12068 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:45:05.0003 12068 PerfHost - ok
17:45:05.0147 12068 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:45:05.0155 12068 pla - ok
17:45:05.0271 12068 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:45:05.0283 12068 PlugPlay - ok
17:45:05.0316 12068 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:45:05.0317 12068 PNRPAutoReg - ok
17:45:05.0335 12068 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:45:05.0337 12068 PNRPsvc - ok
17:45:05.0463 12068 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:45:05.0470 12068 PolicyAgent - ok
17:45:05.0494 12068 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:45:05.0497 12068 Power - ok
17:45:05.0616 12068 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:45:05.0620 12068 PptpMiniport - ok
17:45:05.0638 12068 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:45:05.0641 12068 Processor - ok
17:45:05.0707 12068 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
17:45:05.0715 12068 ProfSvc - ok
17:45:05.0751 12068 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:45:05.0752 12068 ProtectedStorage - ok
17:45:05.0803 12068 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:45:05.0804 12068 Psched - ok
17:45:05.0925 12068 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:45:05.0933 12068 ql2300 - ok
17:45:06.0118 12068 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:45:06.0119 12068 ql40xx - ok
17:45:06.0140 12068 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:45:06.0142 12068 QWAVE - ok
17:45:06.0171 12068 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:45:06.0172 12068 QWAVEdrv - ok
17:45:06.0178 12068 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:45:06.0179 12068 RasAcd - ok
17:45:06.0236 12068 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:45:06.0237 12068 RasAgileVpn - ok
17:45:06.0250 12068 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:45:06.0252 12068 RasAuto - ok
17:45:06.0300 12068 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:45:06.0302 12068 Rasl2tp - ok
17:45:06.0356 12068 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:45:06.0359 12068 RasMan - ok
17:45:06.0386 12068 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:45:06.0387 12068 RasPppoe - ok
17:45:06.0416 12068 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:45:06.0417 12068 RasSstp - ok
17:45:06.0473 12068 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:45:06.0475 12068 rdbss - ok
17:45:06.0490 12068 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:45:06.0491 12068 rdpbus - ok
17:45:06.0506 12068 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:45:06.0507 12068 RDPCDD - ok
17:45:06.0515 12068 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:45:06.0516 12068 RDPENCDD - ok
17:45:06.0522 12068 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:45:06.0523 12068 RDPREFMP - ok
17:45:06.0560 12068 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
17:45:06.0561 12068 RDPWD - ok
17:45:06.0611 12068 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:45:06.0613 12068 rdyboost - ok
17:45:06.0651 12068 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:45:06.0653 12068 RemoteAccess - ok
17:45:06.0691 12068 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:45:06.0693 12068 RemoteRegistry - ok
17:45:06.0777 12068 RoxioNow Service (c1568e17039b2ec2b73a4f880ddd51e5) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
17:45:06.0780 12068 RoxioNow Service - ok
17:45:06.0786 12068 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:45:06.0788 12068 RpcEptMapper - ok
17:45:06.0807 12068 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:45:06.0809 12068 RpcLocator - ok
17:45:06.0911 12068 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:45:06.0915 12068 RpcSs - ok
17:45:06.0940 12068 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:45:06.0942 12068 rspndr - ok
17:45:06.0976 12068 RTL8167 (b15c021c2c9bb217a799d9532e8f04d4) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:45:06.0978 12068 RTL8167 - ok
17:45:07.0002 12068 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:45:07.0004 12068 SamSs - ok
17:45:07.0045 12068 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:45:07.0046 12068 sbp2port - ok
17:45:07.0085 12068 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:45:07.0088 12068 SCardSvr - ok
17:45:07.0121 12068 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:45:07.0121 12068 scfilter - ok
17:45:07.0241 12068 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:45:07.0248 12068 Schedule - ok
17:45:07.0293 12068 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:45:07.0295 12068 SCPolicySvc - ok
17:45:07.0342 12068 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:45:07.0345 12068 SDRSVC - ok
17:45:07.0445 12068 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:45:07.0448 12068 SeaPort - ok
17:45:07.0461 12068 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:45:07.0462 12068 secdrv - ok
17:45:07.0498 12068 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:45:07.0499 12068 seclogon - ok
17:45:07.0514 12068 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
17:45:07.0515 12068 SENS - ok
17:45:07.0527 12068 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:45:07.0529 12068 SensrSvc - ok
17:45:07.0539 12068 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:45:07.0540 12068 Serenum - ok
17:45:07.0547 12068 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:45:07.0548 12068 Serial - ok
17:45:07.0574 12068 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:45:07.0575 12068 sermouse - ok
17:45:07.0624 12068 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:45:07.0630 12068 SessionEnv - ok
17:45:07.0666 12068 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:45:07.0667 12068 sffdisk - ok
17:45:07.0672 12068 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:45:07.0673 12068 sffp_mmc - ok
17:45:07.0677 12068 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:45:07.0678 12068 sffp_sd - ok
17:45:07.0689 12068 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:45:07.0690 12068 sfloppy - ok
17:45:07.0845 12068 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
17:45:07.0850 12068 Sftfs - ok
17:45:07.0929 12068 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:45:07.0932 12068 sftlist - ok
17:45:08.0052 12068 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:45:08.0058 12068 Sftplay - ok
17:45:08.0095 12068 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:45:08.0097 12068 Sftredir - ok
17:45:08.0116 12068 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
17:45:08.0118 12068 Sftvol - ok
17:45:08.0209 12068 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:45:08.0215 12068 sftvsa - ok
17:45:08.0268 12068 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:45:08.0271 12068 ShellHWDetection - ok
17:45:08.0276 12068 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:45:08.0277 12068 SiSRaid2 - ok
17:45:08.0282 12068 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:45:08.0283 12068 SiSRaid4 - ok
17:45:08.0289 12068 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:45:08.0290 12068 Smb - ok
17:45:08.0297 12068 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:45:08.0298 12068 SNMPTRAP - ok
17:45:08.0312 12068 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:45:08.0313 12068 spldr - ok
17:45:08.0343 12068 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:45:08.0348 12068 Spooler - ok
17:45:08.0582 12068 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:45:08.0601 12068 sppsvc - ok
17:45:08.0849 12068 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:45:08.0855 12068 sppuinotify - ok
17:45:09.0076 12068 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:45:09.0079 12068 srv - ok
17:45:09.0104 12068 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:45:09.0106 12068 srv2 - ok
17:45:09.0120 12068 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:45:09.0122 12068 srvnet - ok
17:45:09.0156 12068 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:45:09.0159 12068 SSDPSRV - ok
17:45:09.0186 12068 ssfmonm (a4c4a1fedfbed04b39efae9f1311ed5e) C:\Windows\system32\DRIVERS\ssfmonm.sys
17:45:09.0187 12068 ssfmonm - ok
17:45:09.0226 12068 ssidrv (1cc88f50bd4e6fd6eac5c5365ceb6583) C:\Windows\system32\DRIVERS\ssidrv.sys
17:45:09.0227 12068 ssidrv - ok
17:45:09.0240 12068 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:45:09.0243 12068 SstpSvc - ok
17:45:09.0254 12068 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:45:09.0255 12068 stexstor - ok
17:45:09.0325 12068 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:45:09.0330 12068 stisvc - ok
17:45:09.0376 12068 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
17:45:09.0377 12068 swenum - ok
17:45:09.0441 12068 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:45:09.0445 12068 swprv - ok
17:45:09.0542 12068 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:45:09.0552 12068 SysMain - ok
17:45:09.0620 12068 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:45:09.0623 12068 TabletInputService - ok
17:45:09.0669 12068 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:45:09.0672 12068 TapiSrv - ok
17:45:09.0686 12068 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:45:09.0688 12068 TBS - ok
17:45:09.0929 12068 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
17:45:09.0939 12068 Tcpip - ok
17:45:10.0149 12068 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
17:45:10.0158 12068 TCPIP6 - ok
17:45:10.0216 12068 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:45:10.0217 12068 tcpipreg - ok
17:45:10.0235 12068 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:45:10.0235 12068 TDPIPE - ok
17:45:10.0264 12068 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:45:10.0265 12068 TDTCP - ok
17:45:10.0300 12068 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:45:10.0301 12068 tdx - ok
17:45:10.0311 12068 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
17:45:10.0312 12068 TermDD - ok
17:45:10.0381 12068 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:45:10.0386 12068 TermService - ok
17:45:10.0400 12068 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:45:10.0402 12068 Themes - ok
17:45:10.0465 12068 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:45:10.0472 12068 THREADORDER - ok
17:45:10.0494 12068 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:45:10.0496 12068 TrkWks - ok
17:45:10.0551 12068 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:45:10.0552 12068 TrustedInstaller - ok
17:45:10.0565 12068 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:45:10.0565 12068 tssecsrv - ok
17:45:10.0590 12068 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:45:10.0591 12068 TsUsbFlt - ok
17:45:10.0651 12068 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:45:10.0652 12068 tunnel - ok
17:45:10.0667 12068 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:45:10.0668 12068 uagp35 - ok
17:45:10.0787 12068 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:45:10.0789 12068 udfs - ok
17:45:10.0814 12068 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:45:10.0816 12068 UI0Detect - ok
17:45:10.0831 12068 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:45:10.0831 12068 uliagpkx - ok
17:45:10.0873 12068 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
17:45:10.0873 12068 umbus - ok
17:45:10.0878 12068 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:45:10.0879 12068 UmPass - ok
17:45:10.0920 12068 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:45:10.0924 12068 upnphost - ok
17:45:10.0968 12068 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
17:45:10.0970 12068 USBAAPL64 - ok
17:45:10.0982 12068 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:45:10.0983 12068 usbccgp - ok
17:45:11.0014 12068 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:45:11.0015 12068 usbcir - ok
17:45:11.0033 12068 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
17:45:11.0034 12068 usbehci - ok
17:45:11.0057 12068 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\DRIVERS\usbfilter.sys
17:45:11.0058 12068 usbfilter - ok
17:45:11.0094 12068 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:45:11.0096 12068 usbhub - ok
17:45:11.0112 12068 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
17:45:11.0113 12068 usbohci - ok
17:45:11.0148 12068 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:45:11.0149 12068 usbprint - ok
17:45:11.0172 12068 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:45:11.0173 12068 usbscan - ok
17:45:11.0189 12068 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:45:11.0191 12068 USBSTOR - ok
17:45:11.0212 12068 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:45:11.0213 12068 usbuhci - ok
17:45:11.0239 12068 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:45:11.0242 12068 UxSms - ok
17:45:11.0282 12068 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:45:11.0284 12068 VaultSvc - ok
17:45:11.0298 12068 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:45:11.0299 12068 vdrvroot - ok
17:45:11.0419 12068 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:45:11.0423 12068 vds - ok
17:45:11.0435 12068 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:45:11.0436 12068 vga - ok
17:45:11.0449 12068 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:45:11.0450 12068 VgaSave - ok
17:45:11.0470 12068 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:45:11.0471 12068 vhdmp - ok
17:45:11.0507 12068 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:45:11.0507 12068 viaide - ok
17:45:11.0515 12068 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:45:11.0516 12068 volmgr - ok
17:45:11.0541 12068 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:45:11.0544 12068 volmgrx - ok
17:45:11.0571 12068 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:45:11.0573 12068 volsnap - ok
17:45:11.0609 12068 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:45:11.0610 12068 vsmraid - ok
17:45:11.0729 12068 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:45:11.0739 12068 VSS - ok
17:45:11.0906 12068 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
17:45:11.0911 12068 vToolbarUpdater11.2.0 - ok
17:45:12.0077 12068 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
17:45:12.0078 12068 vwifibus - ok
17:45:12.0087 12068 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
17:45:12.0088 12068 vwififlt - ok
17:45:12.0102 12068 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
17:45:12.0103 12068 vwifimp - ok
17:45:12.0165 12068 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:45:12.0168 12068 W32Time - ok
17:45:12.0186 12068 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:45:12.0187 12068 WacomPen - ok
17:45:12.0212 12068 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:45:12.0214 12068 WANARP - ok
17:45:12.0216 12068 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:45:12.0217 12068 Wanarpv6 - ok
17:45:12.0355 12068 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:45:12.0362 12068 WatAdminSvc - ok
17:45:12.0486 12068 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:45:12.0495 12068 wbengine - ok
17:45:12.0547 12068 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:45:12.0549 12068 WbioSrvc - ok
17:45:12.0664 12068 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:45:12.0667 12068 wcncsvc - ok
17:45:12.0675 12068 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:45:12.0677 12068 WcsPlugInService - ok
17:45:12.0696 12068 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:45:12.0697 12068 Wd - ok
17:45:12.0860 12068 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:45:12.0864 12068 Wdf01000 - ok
17:45:12.0901 12068 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:45:12.0903 12068 WdiServiceHost - ok
17:45:12.0906 12068 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:45:12.0909 12068 WdiSystemHost - ok
17:45:12.0956 12068 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:45:12.0959 12068 WebClient - ok
17:45:13.0422 12068 WebrootSpySweeperService (f069de5b6af06b1cb26693e68bb74fea) C:\Program Files (x86)\Webroot\Security\current\plugins\antimalware\AEI.exe
17:45:13.0442 12068 WebrootSpySweeperService - ok
17:45:13.0577 12068 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:45:13.0580 12068 Wecsvc - ok
17:45:13.0592 12068 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:45:13.0594 12068 wercplsupport - ok
17:45:13.0614 12068 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:45:13.0616 12068 WerSvc - ok
17:45:13.0686 12068 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:45:13.0688 12068 WfpLwf - ok
17:45:13.0702 12068 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:45:13.0703 12068 WIMMount - ok
17:45:13.0710 12068 WinHttpAutoProxySvc - ok
17:45:13.0746 12068 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:45:13.0748 12068 Winmgmt - ok
17:45:14.0288 12068 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:45:14.0302 12068 WinRM - ok
17:45:14.0403 12068 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
17:45:14.0406 12068 WinUsb - ok
17:45:14.0488 12068 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:45:14.0494 12068 Wlansvc - ok
17:45:14.0762 12068 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:45:14.0773 12068 wlidsvc - ok
17:45:14.0832 12068 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
17:45:14.0833 12068 WmiAcpi - ok
17:45:14.0956 12068 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:45:14.0961 12068 wmiApSrv - ok
17:45:15.0022 12068 WMPNetworkSvc - ok
17:45:15.0044 12068 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:45:15.0046 12068 WPCSvc - ok
17:45:15.0082 12068 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:45:15.0085 12068 WPDBusEnum - ok
17:45:15.0356 12068 WRConsumerService (c7110ccaa3e9e21b3a52e98422f861bd) C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe
17:45:15.0373 12068 WRConsumerService - ok
17:45:15.0435 12068 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:45:15.0436 12068 ws2ifsl - ok
17:45:15.0439 12068 WSearch - ok
17:45:15.0671 12068 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
17:45:15.0684 12068 wuauserv - ok
17:45:15.0795 12068 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:45:15.0796 12068 WudfPf - ok
17:45:15.0823 12068 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:45:15.0825 12068 WUDFRd - ok
17:45:15.0865 12068 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:45:15.0868 12068 wudfsvc - ok
17:45:15.0901 12068 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:45:15.0904 12068 WwanSvc - ok
17:45:15.0937 12068 MBR (0x1B8) (a734c2027c4644981baa66e41f7dd1c3) \Device\Harddisk0\DR0
17:45:16.0313 12068 \Device\Harddisk0\DR0 - ok
17:45:16.0321 12068 Boot (0x1200) (d5afe618c8420bf39e42e1f1f0d4fd2d) \Device\Harddisk0\DR0\Partition0
17:45:16.0324 12068 \Device\Harddisk0\DR0\Partition0 - ok
17:45:16.0356 12068 Boot (0x1200) (3f86cf6c0c885c8a1786d8c0b36d0259) \Device\Harddisk0\DR0\Partition1
17:45:16.0358 12068 \Device\Harddisk0\DR0\Partition1 - ok
17:45:16.0400 12068 Boot (0x1200) (20fdfa1a20c16c132f0d348d115cd952) \Device\Harddisk0\DR0\Partition2
17:45:16.0432 12068 \Device\Harddisk0\DR0\Partition2 - ok
17:45:16.0433 12068 ============================================================
17:45:16.0433 12068 Scan finished
17:45:16.0433 12068 ============================================================
17:45:16.0450 7836 Detected object count: 0
17:45:16.0450 7836 Actual detected object count: 0
17:49:26.0130 7424 Deinitialize success


aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-20 22:16:38
-----------------------------
22:16:38.377 OS Version: Windows x64 6.1.7601 Service Pack 1
22:16:38.377 Number of processors: 4 586 0xA00
22:16:38.377 ComputerName: DIANE-HP UserName: Diane
22:16:41.228 Initialize success
22:18:22.374 AVAST engine defs: 12072001
22:19:38.200 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000057
22:19:38.201 Disk 0 Vendor: WDC_WD10 06.0 Size: 953869MB BusType: 11
22:19:38.234 Disk 0 MBR read successfully
22:19:38.237 Disk 0 MBR scan
22:19:38.263 Disk 0 unknown MBR code
22:19:38.275 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:19:38.297 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 940167 MB offset 206848
22:19:38.333 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13600 MB offset 1925668864
22:19:38.372 Disk 0 scanning C:\Windows\system32\drivers
22:19:46.699 Service scanning
22:20:05.414 Modules scanning
22:20:05.431 Disk 0 trace - called modules:
22:20:05.452 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
22:20:05.789 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80052aa790]
22:20:05.800 3 CLASSPNP.SYS[fffff880019a743f] -> nt!IofCallDriver -> [0xfffffa80051ebac0]
22:20:05.811 5 amd_xata.sys[fffff880010998b4] -> nt!IofCallDriver -> \Device\00000057[0xfffffa80051e69c0]
22:20:08.505 AVAST engine scan C:\Windows
22:20:11.535 AVAST engine scan C:\Windows\system32
22:22:06.674 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:22:08.755 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:23:42.050 AVAST engine scan C:\Windows\system32\drivers
22:23:55.110 AVAST engine scan C:\Users\Diane
22:28:16.588 Disk 0 MBR has been saved successfully to "C:\Users\Diane\Desktop\MBR.dat"
22:28:16.591 The log file has been saved successfully to "C:\Users\Diane\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-20 22:16:38
-----------------------------
22:16:38.377 OS Version: Windows x64 6.1.7601 Service Pack 1
22:16:38.377 Number of processors: 4 586 0xA00
22:16:38.377 ComputerName: DIANE-HP UserName: Diane
22:16:41.228 Initialize success
22:18:22.374 AVAST engine defs: 12072001
22:19:38.200 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000057
22:19:38.201 Disk 0 Vendor: WDC_WD10 06.0 Size: 953869MB BusType: 11
22:19:38.234 Disk 0 MBR read successfully
22:19:38.237 Disk 0 MBR scan
22:19:38.263 Disk 0 unknown MBR code
22:19:38.275 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:19:38.297 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 940167 MB offset 206848
22:19:38.333 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13600 MB offset 1925668864
22:19:38.372 Disk 0 scanning C:\Windows\system32\drivers
22:19:46.699 Service scanning
22:20:05.414 Modules scanning
22:20:05.431 Disk 0 trace - called modules:
22:20:05.452 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
22:20:05.789 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80052aa790]
22:20:05.800 3 CLASSPNP.SYS[fffff880019a743f] -> nt!IofCallDriver -> [0xfffffa80051ebac0]
22:20:05.811 5 amd_xata.sys[fffff880010998b4] -> nt!IofCallDriver -> \Device\00000057[0xfffffa80051e69c0]
22:20:08.505 AVAST engine scan C:\Windows
22:20:11.535 AVAST engine scan C:\Windows\system32
22:22:06.674 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:22:08.755 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:23:42.050 AVAST engine scan C:\Windows\system32\drivers
22:23:55.110 AVAST engine scan C:\Users\Diane
22:28:16.588 Disk 0 MBR has been saved successfully to "C:\Users\Diane\Desktop\MBR.dat"
22:28:16.591 The log file has been saved successfully to "C:\Users\Diane\Desktop\aswMBR.txt"
22:57:40.116 AVAST engine scan C:\ProgramData
23:34:14.201 Scan finished successfully
00:49:55.077 Disk 0 MBR has been saved successfully to "C:\Users\Diane\Desktop\MBR.dat"
00:49:55.120 The log file has been saved successfully to "C:\Users\Diane\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-21 17:43:29
-----------------------------
17:43:29.567 OS Version: Windows x64 6.1.7601 Service Pack 1
17:43:29.567 Number of processors: 4 586 0xA00
17:43:29.568 ComputerName: DIANE-HP UserName: Diane
17:43:32.490 Initialize success
17:43:40.027 AVAST engine defs: 12072001
17:44:11.323 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000057
17:44:11.326 Disk 0 Vendor: WDC_WD10 06.0 Size: 953869MB BusType: 11
17:44:11.339 Disk 0 MBR read successfully
17:44:11.342 Disk 0 MBR scan
17:44:11.347 Disk 0 unknown MBR code
17:44:11.351 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
17:44:11.366 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 940167 MB offset 206848
17:44:11.401 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13600 MB offset 1925668864
17:44:11.437 Disk 0 scanning C:\Windows\system32\drivers
17:44:20.643 Service scanning
17:44:39.526 Modules scanning
17:44:39.531 Disk 0 trace - called modules:
17:44:39.554 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
17:44:39.559 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80052b9790]
17:44:39.563 3 CLASSPNP.SYS[fffff88001b8843f] -> nt!IofCallDriver -> [0xfffffa80051fcac0]
17:44:39.567 5 amd_xata.sys[fffff880010c98b4] -> nt!IofCallDriver -> \Device\00000057[0xfffffa80051f89c0]
17:44:42.125 AVAST engine scan C:\Windows
17:44:45.050 AVAST engine scan C:\Windows\system32
17:46:34.549 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
17:46:36.612 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
17:48:29.913 AVAST engine scan C:\Windows\system32\drivers
17:48:57.335 AVAST engine scan C:\Users\Diane
18:21:59.356 AVAST engine scan C:\ProgramData
18:35:17.617 Scan finished successfully
18:37:24.390 Disk 0 MBR has been saved successfully to "C:\Users\Diane\Desktop\MBR.dat"
18:37:24.420 The log file has been saved successfully to "C:\Users\Diane\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-21 17:43:29
-----------------------------
17:43:29.567 OS Version: Windows x64 6.1.7601 Service Pack 1
17:43:29.567 Number of processors: 4 586 0xA00
17:43:29.568 ComputerName: DIANE-HP UserName: Diane
17:43:32.490 Initialize success
17:43:40.027 AVAST engine defs: 12072001
17:44:11.323 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000057
17:44:11.326 Disk 0 Vendor: WDC_WD10 06.0 Size: 953869MB BusType: 11
17:44:11.339 Disk 0 MBR read successfully
17:44:11.342 Disk 0 MBR scan
17:44:11.347 Disk 0 unknown MBR code
17:44:11.351 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
17:44:11.366 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 940167 MB offset 206848
17:44:11.401 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13600 MB offset 1925668864
17:44:11.437 Disk 0 scanning C:\Windows\system32\drivers
17:44:20.643 Service scanning
17:44:39.526 Modules scanning
17:44:39.531 Disk 0 trace - called modules:
17:44:39.554 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
17:44:39.559 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80052b9790]
17:44:39.563 3 CLASSPNP.SYS[fffff88001b8843f] -> nt!IofCallDriver -> [0xfffffa80051fcac0]
17:44:39.567 5 amd_xata.sys[fffff880010c98b4] -> nt!IofCallDriver -> \Device\00000057[0xfffffa80051f89c0]
17:44:42.125 AVAST engine scan C:\Windows
17:44:45.050 AVAST engine scan C:\Windows\system32
17:46:34.549 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
17:46:36.612 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
17:48:29.913 AVAST engine scan C:\Windows\system32\drivers
17:48:57.335 AVAST engine scan C:\Users\Diane
18:21:59.356 AVAST engine scan C:\ProgramData
18:35:17.617 Scan finished successfully
18:37:24.390 Disk 0 MBR has been saved successfully to "C:\Users\Diane\Desktop\MBR.dat"
18:37:24.420 The log file has been saved successfully to "C:\Users\Diane\Desktop\aswMBR.txt"
18:38:12.784 Disk 0 MBR has been saved successfully to "C:\Users\Diane\Desktop\MBR.dat"
18:38:12.784 The log file has been saved successfully to "C:\Users\Diane\Desktop\aswMBR.


ESET online scanner:

ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=6674f0e1a5c2584fb291de957bd70e98
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-07-21 11:51:54
# local_time=2012-07-21 07:51:54 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1024 16777215 100 0 26890291 26890291 0 0
# compatibility_mode=3584 16777215 100 0 0 0 0 0
# compatibility_mode=5893 16776574 66 94 31942081 94450684 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=267201
# found=7
# cleaned=6
# scan_time=7480
C:\Users\Diane\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\4f444273-7c74c176 Java/TrojanDownloader.Agent.NDR trojan (deleted - quarantined) 00000000000000000000000000000000 C
C:\Users\Diane\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3e667cb8-1ea37abc multiple threats (deleted - quarantined) 00000000000000000000000000000000 C
C:\Users\Diane\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\40b3013f-18fb9857 Java/Exploit.Blacole.AN trojan (deleted - quarantined) 00000000000000000000000000000000 C
C:\Windows\Installer\{348b4c32-5ba0-68b7-aaf3-f19de01bd588}\U\00000008.@ Win64/Agent.BA trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Windows\Installer\{348b4c32-5ba0-68b7-aaf3-f19de01bd588}\U\80000000.@ Win64/Sirefef.AE trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Windows\Installer\{348b4c32-5ba0-68b7-aaf3-f19de01bd588}\U\80000032.@ a variant of Win32/Sirefef.FD trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
${Memory} multiple threats 00000000000000000000000000000000 I



Again, thank you for your help,

Tyler

#4 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,366 posts
  • Gender:Male
  • Location:India

Posted 21 July 2012 - 10:52 PM

We need advanced tools to remove this one

Read the guide here

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck

#5 Orange Blossom

Orange Blossom

    OBleepin Investigator

  • Moderator
  • PipPipPipPipPipPip
  • 32,328 posts
  • Gender:Not Telling
  • Location:Bloomington, IN

Posted 22 July 2012 - 08:46 PM

Hello,

Now that you have posted a log here: http://www.bleepingcomputer.com/forums/topic461937.html you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic. Good luck with your log.

Orange Blossom :cherry:
For the time being, please PM another moderator for assistance. A time to weep and a time to laugh; A time to mourn and a time to dance.

Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SuperAntiSpyware, SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript
Back to Am I infected? What do I do?


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·