Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ive been infected by the Happili virus


  • Please log in to reply
20 replies to this topic

#1 smac27

smac27

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 24 April 2012 - 08:40 AM

Hello all. I have been infected by the happili virus and am now getting the bsod. I have uninstalled Avira and installed microsoft security essentials. After a full hard drive scan it removed several viruses but it was acting funky.Ive removed internet explorer also to no avail. I have also use microsoft security scan and it said i had no viruses. Any help that could be provided would be most appreciated.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:12 AM

Posted 24 April 2012 - 10:06 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 25 April 2012 - 07:46 AM

Thank you! I will try this right now...

#4 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 25 April 2012 - 08:13 AM

08:57:22.0623 1884 TDSS rootkit removing tool 2.7.29.0 Apr 18 2012 16:44:20
08:57:31.0292 1884 ============================================================
08:57:31.0292 1884 Current date / time: 2012/04/25 08:57:31.0292
08:57:31.0292 1884 SystemInfo:
08:57:31.0292 1884
08:57:31.0293 1884 OS Version: 6.1.7601 ServicePack: 1.0
08:57:31.0293 1884 Product type: Workstation
08:57:31.0293 1884 ComputerName: OWNER-PC
08:57:31.0293 1884 UserName: Owner
08:57:31.0293 1884 Windows directory: C:\Windows
08:57:31.0294 1884 System windows directory: C:\Windows
08:57:31.0294 1884 Processor architecture: Intel x86
08:57:31.0294 1884 Number of processors: 2
08:57:31.0294 1884 Page size: 0x1000
08:57:31.0294 1884 Boot type: Safe boot with network
08:57:31.0294 1884 ============================================================
08:57:32.0178 1884 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
08:57:32.0182 1884 \Device\Harddisk0\DR0:
08:57:32.0183 1884 MBR partitions:
08:57:32.0183 1884 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1BC800
08:57:32.0236 1884 C: <-> \Device\Harddisk0\DR0\Partition0
08:57:32.0236 1884 Initialize success
08:57:32.0236 1884 ============================================================
08:57:50.0191 0980 ============================================================
08:57:50.0192 0980 Scan started
08:57:50.0192 0980 Mode: Manual;
08:57:50.0192 0980 ============================================================
08:57:50.0689 0980 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
08:57:50.0694 0980 1394ohci - ok
08:57:50.0923 0980 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
08:57:50.0930 0980 ACPI - ok
08:57:51.0184 0980 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
08:57:51.0186 0980 AcpiPmi - ok
08:57:51.0446 0980 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:57:51.0454 0980 AdobeFlashPlayerUpdateSvc - ok
08:57:51.0707 0980 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
08:57:51.0717 0980 adp94xx - ok
08:57:51.0984 0980 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
08:57:51.0996 0980 adpahci - ok
08:57:52.0228 0980 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
08:57:52.0234 0980 adpu320 - ok
08:57:52.0379 0980 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
08:57:52.0397 0980 AeLookupSvc - ok
08:57:52.0677 0980 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
08:57:52.0685 0980 AFD - ok
08:57:52.0883 0980 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
08:57:52.0886 0980 agp440 - ok
08:57:53.0234 0980 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
08:57:53.0237 0980 aic78xx - ok
08:57:53.0420 0980 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
08:57:53.0423 0980 ALG - ok
08:57:53.0561 0980 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
08:57:53.0564 0980 aliide - ok
08:57:53.0761 0980 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
08:57:53.0764 0980 amdagp - ok
08:57:54.0019 0980 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
08:57:54.0021 0980 amdide - ok
08:57:54.0243 0980 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
08:57:54.0245 0980 AmdK8 - ok
08:57:54.0370 0980 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
08:57:54.0373 0980 AmdPPM - ok
08:57:54.0495 0980 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
08:57:54.0501 0980 amdsata - ok
08:57:54.0665 0980 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
08:57:54.0670 0980 amdsbs - ok
08:57:54.0868 0980 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
08:57:54.0871 0980 amdxata - ok
08:57:54.0992 0980 Amsp (9ed21a1a053ea3796db011c6d5419625) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
08:57:54.0998 0980 Amsp - ok
08:57:55.0102 0980 AntiVirSchedulerService (9015bc03f62940527ec92d45ee89e46f) C:\Program Files\Avira\AntiVir Desktop\sched.exe
08:57:55.0107 0980 AntiVirSchedulerService - ok
08:57:55.0180 0980 AntiVirService (b8720a787c1223492e6f319465e996ce) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
08:57:55.0186 0980 AntiVirService - ok
08:57:55.0879 0980 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
08:57:55.0882 0980 AppID - ok
08:57:56.0054 0980 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
08:57:56.0057 0980 AppIDSvc - ok
08:57:56.0220 0980 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
08:57:56.0223 0980 Appinfo - ok
08:57:56.0343 0980 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:57:56.0350 0980 Apple Mobile Device - ok
08:57:56.0590 0980 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
08:57:56.0593 0980 arc - ok
08:57:56.0801 0980 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
08:57:56.0804 0980 arcsas - ok
08:57:57.0061 0980 AsUpIO (e67493490466b5f04b58c22d2590e8ca) C:\Windows\system32\drivers\AsUpIO.sys
08:57:57.0064 0980 AsUpIO - ok
08:57:57.0236 0980 AsusService (c4fb2613d3c75364bb159b9c23a00e7a) C:\Windows\System32\AsusService.exe
08:57:57.0243 0980 AsusService - ok
08:57:57.0350 0980 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
08:57:57.0353 0980 AsyncMac - ok
08:57:57.0585 0980 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
08:57:57.0590 0980 atapi - ok
08:57:58.0045 0980 athr (b01751cc563aecac09bbe36aaa21fbef) C:\Windows\system32\DRIVERS\athr.sys
08:57:58.0080 0980 athr - ok
08:57:58.0259 0980 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
08:57:58.0271 0980 AudioEndpointBuilder - ok
08:57:58.0289 0980 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
08:57:58.0295 0980 Audiosrv - ok
08:57:58.0447 0980 avgio (6a646c46b9415e13095aa9b352040a7a) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
08:57:58.0448 0980 avgio - ok
08:57:58.0683 0980 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
08:57:58.0685 0980 avgntflt - ok
08:57:58.0926 0980 avipbb (452e382340bb0c5e694ed9d3625356d0) C:\Windows\system32\DRIVERS\avipbb.sys
08:57:58.0929 0980 avipbb - ok
08:57:59.0085 0980 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
08:57:59.0093 0980 AxInstSV - ok
08:57:59.0329 0980 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
08:57:59.0339 0980 b06bdrv - ok
08:57:59.0557 0980 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
08:57:59.0564 0980 b57nd60x - ok
08:57:59.0736 0980 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
08:57:59.0740 0980 BDESVC - ok
08:57:59.0886 0980 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
08:57:59.0889 0980 Beep - ok
08:58:00.0046 0980 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
08:58:00.0057 0980 BFE - ok
08:58:00.0156 0980 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
08:58:00.0246 0980 BITS - ok
08:58:00.0456 0980 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
08:58:00.0459 0980 blbdrive - ok
08:58:00.0586 0980 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
08:58:00.0595 0980 Bonjour Service - ok
08:58:00.0818 0980 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
08:58:00.0821 0980 bowser - ok
08:58:01.0019 0980 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
08:58:01.0022 0980 BrFiltLo - ok
08:58:01.0218 0980 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
08:58:01.0220 0980 BrFiltUp - ok
08:58:01.0369 0980 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
08:58:01.0373 0980 Browser - ok
08:58:01.0501 0980 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
08:58:01.0508 0980 Brserid - ok
08:58:01.0720 0980 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
08:58:01.0723 0980 BrSerWdm - ok
08:58:01.0929 0980 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
08:58:01.0931 0980 BrUsbMdm - ok
08:58:02.0149 0980 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
08:58:02.0151 0980 BrUsbSer - ok
08:58:02.0370 0980 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
08:58:02.0373 0980 BTHMODEM - ok
08:58:02.0535 0980 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
08:58:02.0539 0980 bthserv - ok
08:58:02.0664 0980 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
08:58:02.0666 0980 cdfs - ok
08:58:02.0883 0980 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
08:58:02.0886 0980 cdrom - ok
08:58:03.0119 0980 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
08:58:03.0124 0980 CertPropSvc - ok
08:58:03.0335 0980 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
08:58:03.0338 0980 circlass - ok
08:58:03.0483 0980 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
08:58:03.0490 0980 CLFS - ok
08:58:03.0671 0980 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:58:03.0682 0980 clr_optimization_v2.0.50727_32 - ok
08:58:03.0850 0980 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:58:03.0909 0980 clr_optimization_v4.0.30319_32 - ok
08:58:04.0108 0980 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
08:58:04.0111 0980 CmBatt - ok
08:58:04.0319 0980 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
08:58:04.0322 0980 cmdide - ok
08:58:04.0520 0980 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
08:58:04.0529 0980 CNG - ok
08:58:04.0757 0980 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
08:58:04.0760 0980 Compbatt - ok
08:58:04.0975 0980 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
08:58:04.0977 0980 CompositeBus - ok
08:58:05.0107 0980 COMSysApp - ok
08:58:05.0273 0980 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
08:58:05.0275 0980 crcdisk - ok
08:58:05.0447 0980 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
08:58:05.0452 0980 CryptSvc - ok
08:58:05.0606 0980 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
08:58:05.0640 0980 cvhsvc - ok
08:58:05.0896 0980 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
08:58:05.0909 0980 DcomLaunch - ok
08:58:05.0960 0980 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
08:58:05.0967 0980 defragsvc - ok
08:58:06.0102 0980 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
08:58:06.0105 0980 DfsC - ok
08:58:06.0284 0980 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
08:58:06.0292 0980 Dhcp - ok
08:58:06.0396 0980 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
08:58:06.0397 0980 discache - ok
08:58:06.0626 0980 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
08:58:06.0629 0980 Disk - ok
08:58:06.0761 0980 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
08:58:06.0767 0980 Dnscache - ok
08:58:06.0865 0980 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
08:58:06.0873 0980 dot3svc - ok
08:58:07.0117 0980 Dot4 (b5e479eb83707dd698f66953e922042c) C:\Windows\system32\DRIVERS\Dot4.sys
08:58:07.0122 0980 Dot4 - ok
08:58:07.0355 0980 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\Windows\system32\drivers\Dot4Prt.sys
08:58:07.0358 0980 Dot4Print - ok
08:58:07.0590 0980 dot4usb (cf491ff38d62143203c065260567e2f7) C:\Windows\system32\DRIVERS\dot4usb.sys
08:58:07.0593 0980 dot4usb - ok
08:58:07.0737 0980 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
08:58:07.0744 0980 DPS - ok
08:58:07.0971 0980 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
08:58:07.0974 0980 drmkaud - ok
08:58:08.0195 0980 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
08:58:08.0221 0980 DXGKrnl - ok
08:58:08.0375 0980 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
08:58:08.0379 0980 EapHost - ok
08:58:08.0602 0980 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
08:58:08.0703 0980 ebdrv - ok
08:58:08.0866 0980 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
08:58:08.0871 0980 EFS - ok
08:58:09.0049 0980 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
08:58:09.0059 0980 elxstor - ok
08:58:09.0272 0980 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
08:58:09.0274 0980 ErrDev - ok
08:58:09.0461 0980 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
08:58:09.0470 0980 EventSystem - ok
08:58:09.0589 0980 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
08:58:09.0594 0980 exfat - ok
08:58:09.0800 0980 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
08:58:09.0806 0980 fastfat - ok
08:58:09.0966 0980 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
08:58:09.0990 0980 Fax - ok
08:58:10.0129 0980 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
08:58:10.0132 0980 fdc - ok
08:58:10.0268 0980 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
08:58:10.0275 0980 fdPHost - ok
08:58:10.0328 0980 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
08:58:10.0332 0980 FDResPub - ok
08:58:10.0471 0980 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
08:58:10.0475 0980 FileInfo - ok
08:58:10.0680 0980 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
08:58:10.0683 0980 Filetrace - ok
08:58:10.0890 0980 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
08:58:10.0893 0980 flpydisk - ok
08:58:11.0115 0980 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
08:58:11.0121 0980 FltMgr - ok
08:58:11.0286 0980 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
08:58:11.0321 0980 FontCache - ok
08:58:11.0463 0980 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
08:58:11.0468 0980 FontCache3.0.0.0 - ok
08:58:11.0669 0980 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
08:58:11.0672 0980 FsDepends - ok
08:58:11.0872 0980 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
08:58:11.0875 0980 Fs_Rec - ok
08:58:12.0100 0980 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
08:58:12.0106 0980 fvevol - ok
08:58:12.0348 0980 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
08:58:12.0351 0980 gagp30kx - ok
08:58:12.0602 0980 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:58:12.0604 0980 GEARAspiWDM - ok
08:58:12.0747 0980 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
08:58:12.0775 0980 gpsvc - ok
08:58:12.0908 0980 gupdate - ok
08:58:12.0963 0980 gupdatem - ok
08:58:13.0055 0980 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
08:58:13.0061 0980 gusvc - ok
08:58:13.0265 0980 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
08:58:13.0267 0980 hcw85cir - ok
08:58:13.0502 0980 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
08:58:13.0510 0980 HdAudAddService - ok
08:58:13.0738 0980 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
08:58:13.0743 0980 HDAudBus - ok
08:58:13.0936 0980 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
08:58:13.0939 0980 HidBatt - ok
08:58:14.0147 0980 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
08:58:14.0150 0980 HidBth - ok
08:58:14.0356 0980 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
08:58:14.0359 0980 HidIr - ok
08:58:14.0517 0980 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
08:58:14.0521 0980 hidserv - ok
08:58:14.0753 0980 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
08:58:14.0756 0980 HidUsb - ok
08:58:14.0892 0980 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
08:58:14.0900 0980 hkmsvc - ok
08:58:14.0973 0980 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
08:58:14.0982 0980 HomeGroupListener - ok
08:58:15.0084 0980 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
08:58:15.0093 0980 HomeGroupProvider - ok
08:58:15.0320 0980 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
08:58:15.0323 0980 HpSAMD - ok
08:58:15.0585 0980 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
08:58:15.0605 0980 HTTP - ok
08:58:15.0815 0980 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
08:58:15.0816 0980 hwpolicy - ok
08:58:16.0069 0980 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
08:58:16.0075 0980 i8042prt - ok
08:58:16.0217 0980 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
08:58:16.0240 0980 IAANTMON - ok
08:58:16.0488 0980 iaStor (d483687eace0c065ee772481a96e05f5) C:\Windows\system32\DRIVERS\iaStor.sys
08:58:16.0492 0980 iaStor - ok
08:58:16.0755 0980 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
08:58:16.0764 0980 iaStorV - ok
08:58:16.0899 0980 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:58:16.0939 0980 idsvc - ok
08:58:17.0300 0980 igfx (81f7c715528ab621c6af58869d4b07b9) C:\Windows\system32\DRIVERS\igdkmd32.sys
08:58:17.0431 0980 igfx - ok
08:58:17.0681 0980 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
08:58:17.0683 0980 iirsp - ok
08:58:17.0848 0980 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
08:58:17.0877 0980 IKEEXT - ok
08:58:18.0189 0980 IntcAzAudAddService (db96b8bd676bb24bd4f1dc53ca1f182c) C:\Windows\system32\drivers\RTKVHDA.sys
08:58:18.0271 0980 IntcAzAudAddService - ok
08:58:18.0467 0980 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
08:58:18.0470 0980 intelide - ok
08:58:18.0734 0980 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
08:58:18.0737 0980 intelppm - ok
08:58:18.0871 0980 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
08:58:18.0876 0980 IPBusEnum - ok
08:58:19.0002 0980 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:58:19.0005 0980 IpFilterDriver - ok
08:58:19.0156 0980 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
08:58:19.0179 0980 iphlpsvc - ok
08:58:19.0314 0980 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
08:58:19.0318 0980 IPMIDRV - ok
08:58:19.0521 0980 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
08:58:19.0524 0980 IPNAT - ok
08:58:19.0671 0980 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
08:58:19.0705 0980 iPod Service - ok
08:58:19.0940 0980 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
08:58:19.0942 0980 IRENUM - ok
08:58:20.0154 0980 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
08:58:20.0158 0980 isapnp - ok
08:58:20.0389 0980 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
08:58:20.0395 0980 iScsiPrt - ok
08:58:20.0654 0980 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
08:58:20.0656 0980 kbdclass - ok
08:58:20.0898 0980 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
08:58:20.0900 0980 kbdhid - ok
08:58:21.0140 0980 kbfiltr (3eb803312987ff44265c87cb960df6ab) C:\Windows\system32\DRIVERS\kbfiltr.sys
08:58:21.0142 0980 kbfiltr - ok
08:58:21.0281 0980 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
08:58:21.0285 0980 KeyIso - ok
08:58:21.0401 0980 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
08:58:21.0404 0980 KSecDD - ok
08:58:21.0614 0980 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
08:58:21.0620 0980 KSecPkg - ok
08:58:21.0750 0980 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
08:58:21.0761 0980 KtmRm - ok
08:58:21.0928 0980 L1C (a158cea8644b8a5c1ec0e9a81b70f65a) C:\Windows\system32\DRIVERS\L1C62x86.sys
08:58:21.0930 0980 L1C - ok
08:58:22.0100 0980 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
08:58:22.0110 0980 LanmanServer - ok
08:58:22.0227 0980 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
08:58:22.0245 0980 LanmanWorkstation - ok
08:58:22.0494 0980 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
08:58:22.0498 0980 lltdio - ok
08:58:22.0663 0980 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
08:58:22.0683 0980 lltdsvc - ok
08:58:22.0764 0980 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
08:58:22.0769 0980 lmhosts - ok
08:58:22.0979 0980 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
08:58:22.0983 0980 LSI_FC - ok
08:58:23.0212 0980 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
08:58:23.0216 0980 LSI_SAS - ok
08:58:23.0432 0980 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
08:58:23.0436 0980 LSI_SAS2 - ok
08:58:23.0643 0980 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
08:58:23.0649 0980 LSI_SCSI - ok
08:58:23.0898 0980 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
08:58:23.0902 0980 luafv - ok
08:58:24.0130 0980 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
08:58:24.0132 0980 megasas - ok
08:58:24.0344 0980 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
08:58:24.0350 0980 MegaSR - ok
08:58:24.0795 0980 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
08:58:24.0806 0980 MMCSS - ok
08:58:25.0244 0980 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
08:58:25.0247 0980 Modem - ok
08:58:25.0523 0980 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
08:58:25.0526 0980 monitor - ok
08:58:25.0852 0980 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
08:58:25.0854 0980 mouclass - ok
08:58:26.0147 0980 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
08:58:26.0157 0980 mouhid - ok
08:58:26.0422 0980 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
08:58:26.0428 0980 mountmgr - ok
08:58:26.0835 0980 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
08:58:26.0840 0980 MpFilter - ok
08:58:27.0069 0980 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
08:58:27.0072 0980 mpio - ok
08:58:27.0331 0980 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
08:58:27.0334 0980 MpNWMon - ok
08:58:27.0543 0980 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
08:58:27.0547 0980 mpsdrv - ok
08:58:27.0692 0980 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
08:58:27.0716 0980 MpsSvc - ok
08:58:27.0891 0980 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
08:58:27.0895 0980 MRxDAV - ok
08:58:28.0121 0980 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
08:58:28.0126 0980 mrxsmb - ok
08:58:28.0318 0980 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:58:28.0324 0980 mrxsmb10 - ok
08:58:28.0532 0980 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:58:28.0535 0980 mrxsmb20 - ok
08:58:28.0726 0980 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
08:58:28.0729 0980 msahci - ok
08:58:28.0950 0980 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
08:58:28.0954 0980 msdsm - ok
08:58:29.0099 0980 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
08:58:29.0108 0980 MSDTC - ok
08:58:29.0263 0980 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
08:58:29.0266 0980 Msfs - ok
08:58:29.0483 0980 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
08:58:29.0485 0980 mshidkmdf - ok
08:58:29.0702 0980 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
08:58:29.0705 0980 msisadrv - ok
08:58:29.0878 0980 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
08:58:29.0884 0980 MSiSCSI - ok
08:58:29.0916 0980 msiserver - ok
08:58:30.0066 0980 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
08:58:30.0069 0980 MSKSSRV - ok
08:58:30.0191 0980 MsMpSvc (cfce43b70ca0cc4dcc8adb62b792b173) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
08:58:30.0193 0980 MsMpSvc - ok
08:58:30.0419 0980 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
08:58:30.0421 0980 MSPCLOCK - ok
08:58:30.0639 0980 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
08:58:30.0641 0980 MSPQM - ok
08:58:30.0862 0980 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
08:58:30.0868 0980 MsRPC - ok
08:58:31.0092 0980 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
08:58:31.0093 0980 mssmbios - ok
08:58:31.0499 0980 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
08:58:31.0501 0980 MSTEE - ok
08:58:31.0708 0980 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
08:58:31.0711 0980 MTConfig - ok
08:58:31.0919 0980 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
08:58:31.0921 0980 Mup - ok
08:58:32.0082 0980 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
08:58:32.0094 0980 napagent - ok
08:58:32.0334 0980 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
08:58:32.0341 0980 NativeWifiP - ok
08:58:32.0570 0980 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
08:58:32.0596 0980 NDIS - ok
08:58:32.0821 0980 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
08:58:32.0824 0980 NdisCap - ok
08:58:33.0064 0980 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
08:58:33.0067 0980 NdisTapi - ok
08:58:33.0322 0980 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
08:58:33.0325 0980 Ndisuio - ok
08:58:33.0534 0980 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
08:58:33.0540 0980 NdisWan - ok
08:58:33.0751 0980 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
08:58:33.0754 0980 NDProxy - ok
08:58:33.0934 0980 Net Driver HPZ12 (510c138564486ff926a3f773205c63d1) C:\Windows\system32\HPZinw12.dll
08:58:33.0938 0980 Net Driver HPZ12 - ok
08:58:34.0076 0980 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
08:58:34.0080 0980 NetBIOS - ok
08:58:34.0298 0980 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
08:58:34.0303 0980 NetBT - ok
08:58:34.0444 0980 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
08:58:34.0448 0980 Netlogon - ok
08:58:34.0610 0980 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
08:58:34.0621 0980 Netman - ok
08:58:34.0742 0980 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
08:58:34.0754 0980 netprofm - ok
08:58:34.0913 0980 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:58:34.0919 0980 NetTcpPortSharing - ok
08:58:35.0156 0980 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
08:58:35.0159 0980 nfrd960 - ok
08:58:35.0369 0980 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
08:58:35.0373 0980 NisDrv - ok
08:58:35.0525 0980 NisSrv (a5cb074f34bbd89948e34a630d459c0c) c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
08:58:35.0532 0980 NisSrv - ok
08:58:35.0688 0980 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
08:58:35.0699 0980 NlaSvc - ok
08:58:35.0806 0980 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
08:58:35.0809 0980 Npfs - ok
08:58:35.0938 0980 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
08:58:35.0945 0980 nsi - ok
08:58:36.0102 0980 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
08:58:36.0104 0980 nsiproxy - ok
08:58:36.0375 0980 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
08:58:36.0434 0980 Ntfs - ok
08:58:36.0631 0980 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
08:58:36.0633 0980 Null - ok
08:58:36.0856 0980 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
08:58:36.0862 0980 nvraid - ok
08:58:37.0059 0980 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
08:58:37.0065 0980 nvstor - ok
08:58:37.0278 0980 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
08:58:37.0282 0980 nv_agp - ok
08:58:37.0477 0980 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
08:58:37.0480 0980 ohci1394 - ok
08:58:37.0593 0980 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:58:37.0599 0980 ose - ok
08:58:37.0763 0980 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:58:37.0888 0980 osppsvc - ok
08:58:38.0052 0980 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
08:58:38.0062 0980 p2pimsvc - ok
08:58:38.0254 0980 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
08:58:38.0277 0980 p2psvc - ok
08:58:38.0410 0980 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
08:58:38.0414 0980 Parport - ok
08:58:38.0628 0980 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
08:58:38.0632 0980 partmgr - ok
08:58:38.0839 0980 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
08:58:38.0841 0980 Parvdm - ok
08:58:38.0981 0980 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
08:58:38.0990 0980 PcaSvc - ok
08:58:39.0096 0980 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
08:58:39.0102 0980 pci - ok
08:58:39.0311 0980 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
08:58:39.0314 0980 pciide - ok
08:58:39.0525 0980 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
08:58:39.0531 0980 pcmcia - ok
08:58:39.0733 0980 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
08:58:39.0736 0980 pcw - ok
08:58:39.0977 0980 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
08:58:40.0001 0980 PEAUTH - ok
08:58:40.0242 0980 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
08:58:40.0310 0980 pla - ok
08:58:40.0403 0980 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
08:58:40.0415 0980 PlugPlay - ok
08:58:40.0576 0980 Pml Driver HPZ12 (37e5e8ffbad35605daeec3224ea0e465) C:\Windows\system32\HPZipm12.dll
08:58:40.0581 0980 Pml Driver HPZ12 - ok
08:58:40.0645 0980 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
08:58:40.0651 0980 PNRPAutoReg - ok
08:58:40.0704 0980 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
08:58:40.0711 0980 PNRPsvc - ok
08:58:40.0779 0980 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
08:58:40.0789 0980 PolicyAgent - ok
08:58:40.0930 0980 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
08:58:40.0943 0980 Power - ok
08:58:41.0098 0980 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
08:58:41.0101 0980 PptpMiniport - ok
08:58:41.0316 0980 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
08:58:41.0319 0980 Processor - ok
08:58:41.0504 0980 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
08:58:41.0512 0980 ProfSvc - ok
08:58:41.0608 0980 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
08:58:41.0612 0980 ProtectedStorage - ok
08:58:41.0777 0980 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
08:58:41.0780 0980 Psched - ok
08:58:42.0138 0980 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
08:58:42.0184 0980 ql2300 - ok
08:58:42.0415 0980 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
08:58:42.0419 0980 ql40xx - ok
08:58:42.0569 0980 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
08:58:42.0578 0980 QWAVE - ok
08:58:42.0712 0980 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
08:58:42.0715 0980 QWAVEdrv - ok
08:58:42.0932 0980 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
08:58:42.0935 0980 RasAcd - ok
08:58:43.0165 0980 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
08:58:43.0167 0980 RasAgileVpn - ok
08:58:43.0320 0980 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
08:58:43.0330 0980 RasAuto - ok
08:58:43.0572 0980 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
08:58:43.0576 0980 Rasl2tp - ok
08:58:43.0737 0980 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
08:58:43.0750 0980 RasMan - ok
08:58:43.0870 0980 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
08:58:43.0874 0980 RasPppoe - ok
08:58:44.0095 0980 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
08:58:44.0099 0980 RasSstp - ok
08:58:44.0312 0980 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
08:58:44.0319 0980 rdbss - ok
08:58:44.0520 0980 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
08:58:44.0523 0980 rdpbus - ok
08:58:44.0728 0980 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
08:58:44.0729 0980 RDPCDD - ok
08:58:44.0993 0980 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
08:58:44.0995 0980 RDPENCDD - ok
08:58:45.0202 0980 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
08:58:45.0204 0980 RDPREFMP - ok
08:58:45.0402 0980 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
08:58:45.0408 0980 RDPWD - ok
08:58:45.0657 0980 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
08:58:45.0663 0980 rdyboost - ok
08:58:45.0789 0980 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
08:58:45.0794 0980 RemoteAccess - ok
08:58:45.0853 0980 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
08:58:45.0865 0980 RemoteRegistry - ok
08:58:45.0965 0980 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
08:58:45.0971 0980 RpcEptMapper - ok
08:58:46.0055 0980 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
08:58:46.0060 0980 RpcLocator - ok
08:58:46.0133 0980 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
08:58:46.0141 0980 RpcSs - ok
08:58:46.0284 0980 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
08:58:46.0287 0980 rspndr - ok
08:58:46.0430 0980 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
08:58:46.0434 0980 SamSs - ok
08:58:46.0599 0980 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
08:58:46.0602 0980 sbp2port - ok
08:58:46.0694 0980 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
08:58:46.0703 0980 SCardSvr - ok
08:58:46.0815 0980 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
08:58:46.0817 0980 scfilter - ok
08:58:46.0966 0980 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
08:58:47.0000 0980 Schedule - ok
08:58:47.0088 0980 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
08:58:47.0090 0980 SCPolicySvc - ok
08:58:47.0163 0980 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
08:58:47.0175 0980 SDRSVC - ok
08:58:47.0428 0980 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
08:58:47.0431 0980 secdrv - ok
08:58:47.0562 0980 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
08:58:47.0568 0980 seclogon - ok
08:58:47.0684 0980 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
08:58:47.0696 0980 SENS - ok
08:58:47.0836 0980 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
08:58:47.0838 0980 Serenum - ok
08:58:48.0057 0980 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
08:58:48.0061 0980 Serial - ok
08:58:48.0265 0980 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
08:58:48.0268 0980 sermouse - ok
08:58:48.0432 0980 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
08:58:48.0440 0980 SessionEnv - ok
08:58:48.0551 0980 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
08:58:48.0554 0980 sffdisk - ok
08:58:48.0747 0980 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
08:58:48.0750 0980 sffp_mmc - ok
08:58:48.0947 0980 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
08:58:48.0950 0980 sffp_sd - ok
08:58:49.0146 0980 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
08:58:49.0149 0980 sfloppy - ok
08:58:49.0373 0980 Sftfs (d9b734638dd8dba9d59aad3189cd0fad) C:\Windows\system32\DRIVERS\Sftfslh.sys
08:58:49.0396 0980 Sftfs - ok
08:58:49.0578 0980 sftlist (cb73bc422c07fb611f194da18d1e7f36) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
08:58:49.0609 0980 sftlist - ok
08:58:49.0815 0980 Sftplay (2f61bd46c0bff4eb36e1e359ca17bfc5) C:\Windows\system32\DRIVERS\Sftplaylh.sys
08:58:49.0820 0980 Sftplay - ok
08:58:50.0015 0980 Sftredir (518bac0179f94304f422696b47c0ec12) C:\Windows\system32\DRIVERS\Sftredirlh.sys
08:58:50.0018 0980 Sftredir - ok
08:58:50.0210 0980 Sftvol (747325236d88b3f05ffd27ff9ec711c5) C:\Windows\system32\DRIVERS\Sftvollh.sys
08:58:50.0214 0980 Sftvol - ok
08:58:50.0312 0980 sftvsa (a5812f0281ca5081bf696626f9bf324d) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
08:58:50.0319 0980 sftvsa - ok
08:58:50.0453 0980 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
08:58:50.0464 0980 SharedAccess - ok
08:58:50.0541 0980 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
08:58:50.0564 0980 ShellHWDetection - ok
08:58:50.0765 0980 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
08:58:50.0768 0980 sisagp - ok
08:58:51.0007 0980 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
08:58:51.0010 0980 SiSRaid2 - ok
08:58:51.0217 0980 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
08:58:51.0221 0980 SiSRaid4 - ok
08:58:51.0438 0980 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
08:58:51.0442 0980 Smb - ok
08:58:51.0625 0980 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
08:58:51.0631 0980 SNMPTRAP - ok
08:58:51.0757 0980 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
08:58:51.0761 0980 spldr - ok
08:58:51.0916 0980 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
08:58:51.0939 0980 Spooler - ok
08:58:52.0093 0980 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
08:58:52.0194 0980 sppsvc - ok
08:58:52.0317 0980 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
08:58:52.0324 0980 sppuinotify - ok
08:58:52.0448 0980 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
08:58:52.0456 0980 srv - ok
08:58:52.0672 0980 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
08:58:52.0680 0980 srv2 - ok
08:58:52.0883 0980 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
08:58:52.0887 0980 srvnet - ok
08:58:53.0032 0980 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
08:58:53.0043 0980 SSDPSRV - ok
08:58:53.0250 0980 ssmdrv (654dfea96bc82b4acda4f37e5e4a3bbf) C:\Windows\system32\DRIVERS\ssmdrv.sys
08:58:53.0253 0980 ssmdrv - ok
08:58:53.0383 0980 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
08:58:53.0391 0980 SstpSvc - ok
08:58:53.0503 0980 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
08:58:53.0506 0980 stexstor - ok
08:58:53.0676 0980 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
08:58:53.0699 0980 StiSvc - ok
08:58:53.0844 0980 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
08:58:53.0845 0980 swenum - ok
08:58:54.0020 0980 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
08:58:54.0032 0980 swprv - ok
08:58:54.0276 0980 SynTP (8bd10dc8809dc69a1c5a795cb10add76) C:\Windows\system32\DRIVERS\SynTP.sys
08:58:54.0280 0980 SynTP - ok
08:58:54.0440 0980 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
08:58:54.0479 0980 SysMain - ok
08:58:54.0547 0980 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
08:58:54.0555 0980 TabletInputService - ok
08:58:54.0712 0980 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
08:58:54.0723 0980 TapiSrv - ok
08:58:54.0807 0980 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
08:58:54.0814 0980 TBS - ok
08:58:54.0975 0980 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
08:58:55.0020 0980 Tcpip - ok
08:58:55.0327 0980 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
08:58:55.0341 0980 TCPIP6 - ok
08:58:55.0597 0980 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
08:58:55.0607 0980 tcpipreg - ok
08:58:55.0847 0980 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
08:58:55.0850 0980 TDPIPE - ok
08:58:56.0062 0980 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
08:58:56.0065 0980 TDTCP - ok
08:58:56.0269 0980 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
08:58:56.0272 0980 tdx - ok
08:58:56.0478 0980 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
08:58:56.0479 0980 TermDD - ok
08:58:56.0647 0980 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
08:58:56.0680 0980 TermService - ok
08:58:56.0807 0980 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
08:58:56.0814 0980 Themes - ok
08:58:56.0866 0980 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
08:58:56.0870 0980 THREADORDER - ok
08:58:56.0946 0980 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
08:58:56.0957 0980 TrkWks - ok
08:58:57.0043 0980 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
08:58:57.0049 0980 TrustedInstaller - ok
08:58:57.0224 0980 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
08:58:57.0228 0980 tssecsrv - ok
08:58:57.0456 0980 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
08:58:57.0459 0980 TsUsbFlt - ok
08:58:57.0713 0980 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
08:58:57.0717 0980 tunnel - ok
08:58:57.0929 0980 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
08:58:57.0932 0980 uagp35 - ok
08:58:58.0148 0980 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
08:58:58.0155 0980 udfs - ok
08:58:58.0304 0980 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
08:58:58.0311 0980 UI0Detect - ok
08:58:58.0453 0980 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
08:58:58.0457 0980 uliagpkx - ok
08:58:58.0655 0980 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
08:58:58.0658 0980 umbus - ok
08:58:58.0887 0980 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
08:58:58.0889 0980 UmPass - ok
08:58:59.0030 0980 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
08:58:59.0043 0980 upnphost - ok
08:58:59.0216 0980 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
08:58:59.0220 0980 USBAAPL - ok
08:58:59.0428 0980 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
08:58:59.0433 0980 usbccgp - ok
08:58:59.0632 0980 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
08:58:59.0636 0980 usbcir - ok
08:58:59.0832 0980 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\drivers\usbehci.sys
08:58:59.0835 0980 usbehci - ok
08:59:00.0069 0980 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
08:59:00.0075 0980 usbhub - ok
08:59:00.0273 0980 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
08:59:00.0276 0980 usbohci - ok
08:59:00.0534 0980 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
08:59:00.0537 0980 usbprint - ok
08:59:00.0774 0980 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
08:59:00.0777 0980 usbscan - ok
08:59:00.0990 0980 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:59:00.0993 0980 USBSTOR - ok
08:59:01.0195 0980 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
08:59:01.0198 0980 usbuhci - ok
08:59:01.0457 0980 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
08:59:01.0463 0980 usbvideo - ok
08:59:01.0593 0980 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
08:59:01.0601 0980 UxSms - ok
08:59:01.0672 0980 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
08:59:01.0675 0980 VaultSvc - ok
08:59:01.0783 0980 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
08:59:01.0785 0980 vdrvroot - ok
08:59:01.0932 0980 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
08:59:01.0955 0980 vds - ok
08:59:02.0178 0980 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
08:59:02.0181 0980 vga - ok
08:59:02.0387 0980 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
08:59:02.0390 0980 VgaSave - ok
08:59:02.0609 0980 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
08:59:02.0614 0980 vhdmp - ok
08:59:02.0868 0980 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
08:59:02.0871 0980 viaagp - ok
08:59:03.0070 0980 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
08:59:03.0073 0980 ViaC7 - ok
08:59:03.0295 0980 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
08:59:03.0318 0980 viaide - ok
08:59:03.0518 0980 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
08:59:03.0522 0980 volmgr - ok
08:59:03.0740 0980 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
08:59:03.0748 0980 volmgrx - ok
08:59:03.0965 0980 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
08:59:03.0972 0980 volsnap - ok
08:59:04.0214 0980 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
08:59:04.0219 0980 vsmraid - ok
08:59:04.0384 0980 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
08:59:04.0418 0980 VSS - ok
08:59:04.0587 0980 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
08:59:04.0590 0980 vwifibus - ok
08:59:04.0819 0980 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
08:59:04.0822 0980 vwififlt - ok
08:59:05.0050 0980 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
08:59:05.0053 0980 vwifimp - ok
08:59:05.0207 0980 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
08:59:05.0230 0980 W32Time - ok
08:59:05.0380 0980 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
08:59:05.0383 0980 WacomPen - ok
08:59:05.0601 0980 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
08:59:05.0604 0980 WANARP - ok
08:59:05.0614 0980 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
08:59:05.0617 0980 Wanarpv6 - ok
08:59:05.0797 0980 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
08:59:05.0909 0980 wbengine - ok
08:59:06.0054 0980 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
08:59:06.0064 0980 WbioSrvc - ok
08:59:06.0118 0980 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
08:59:06.0129 0980 wcncsvc - ok
08:59:06.0162 0980 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
08:59:06.0170 0980 WcsPlugInService - ok
08:59:06.0294 0980 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
08:59:06.0297 0980 Wd - ok
08:59:06.0526 0980 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
08:59:06.0546 0980 Wdf01000 - ok
08:59:06.0686 0980 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
08:59:06.0694 0980 WdiServiceHost - ok
08:59:06.0707 0980 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
08:59:06.0714 0980 WdiSystemHost - ok
08:59:06.0802 0980 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
08:59:06.0812 0980 WebClient - ok
08:59:06.0867 0980 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
08:59:06.0877 0980 Wecsvc - ok
08:59:06.0923 0980 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
08:59:06.0931 0980 wercplsupport - ok
08:59:07.0110 0980 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
08:59:07.0120 0980 WerSvc - ok
08:59:07.0248 0980 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
08:59:07.0251 0980 WfpLwf - ok
08:59:07.0449 0980 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
08:59:07.0453 0980 WIMMount - ok
08:59:07.0554 0980 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
08:59:07.0582 0980 WinDefend - ok
08:59:07.0603 0980 WinHttpAutoProxySvc - ok
08:59:07.0795 0980 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
08:59:07.0820 0980 Winmgmt - ok
08:59:08.0006 0980 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
08:59:08.0074 0980 WinRM - ok
08:59:08.0333 0980 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
08:59:08.0337 0980 WinUsb - ok
08:59:08.0495 0980 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
08:59:08.0531 0980 Wlansvc - ok
08:59:08.0681 0980 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
08:59:08.0683 0980 WmiAcpi - ok
08:59:08.0853 0980 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
08:59:08.0857 0980 wmiApSrv - ok
08:59:09.0012 0980 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
08:59:09.0060 0980 WMPNetworkSvc - ok
08:59:09.0196 0980 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
08:59:09.0205 0980 WPCSvc - ok
08:59:09.0264 0980 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
08:59:09.0274 0980 WPDBusEnum - ok
08:59:09.0384 0980 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
08:59:09.0386 0980 ws2ifsl - ok
08:59:09.0541 0980 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
08:59:09.0550 0980 wscsvc - ok
08:59:09.0568 0980 WSearch - ok
08:59:09.0687 0980 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
08:59:09.0744 0980 wuauserv - ok
08:59:09.0903 0980 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
08:59:09.0907 0980 WudfPf - ok
08:59:10.0111 0980 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
08:59:10.0115 0980 WUDFRd - ok
08:59:10.0283 0980 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
08:59:10.0292 0980 wudfsvc - ok
08:59:10.0337 0980 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
08:59:10.0347 0980 WwanSvc - ok
08:59:10.0434 0980 MBR (0x1B8) (f05261c246ce4b3c544521ffff7aef5d) \Device\Harddisk0\DR0
08:59:11.0527 0980 \Device\Harddisk0\DR0 ( Rootkit.Win32.BackBoot.gen ) - warning
08:59:11.0527 0980 \Device\Harddisk0\DR0 - detected Rootkit.Win32.BackBoot.gen (1)
08:59:11.0545 0980 Boot (0x1200) (c63ddb072a189e05c7c87e3ae4d9a1cd) \Device\Harddisk0\DR0\Partition0
08:59:11.0548 0980 \Device\Harddisk0\DR0\Partition0 - ok
08:59:11.0549 0980 ============================================================
08:59:11.0549 0980 Scan finished
08:59:11.0549 0980 ============================================================
08:59:11.0586 1872 Detected object count: 1
08:59:11.0586 1872 Actual detected object count: 1
09:00:05.0890 1872 \Device\Harddisk0\DR0 ( Rootkit.Win32.BackBoot.gen ) - skipped by user
09:00:05.0890 1872 \Device\Harddisk0\DR0 ( Rootkit.Win32.BackBoot.gen ) - User select action: Skip
09:03:58.0074 0348 ============================================================
09:03:58.0074 0348 Scan started
09:03:58.0074 0348 Mode: Manual; TDLFS;
09:03:58.0074 0348 ============================================================
09:03:58.0579 0348 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
09:03:58.0582 0348 1394ohci - ok
09:03:58.0874 0348 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
09:03:58.0878 0348 ACPI - ok
09:03:59.0142 0348 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
09:03:59.0143 0348 AcpiPmi - ok
09:03:59.0415 0348 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:03:59.0419 0348 AdobeFlashPlayerUpdateSvc - ok
09:03:59.0764 0348 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
09:03:59.0769 0348 adp94xx - ok
09:04:00.0140 0348 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
09:04:00.0144 0348 adpahci - ok
09:04:00.0461 0348 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
09:04:00.0464 0348 adpu320 - ok
09:04:00.0711 0348 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
09:04:00.0713 0348 AeLookupSvc - ok
09:04:01.0011 0348 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
09:04:01.0017 0348 AFD - ok
09:04:01.0337 0348 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
09:04:01.0339 0348 agp440 - ok
09:04:01.0721 0348 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
09:04:01.0723 0348 aic78xx - ok
09:04:02.0116 0348 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
09:04:02.0118 0348 ALG - ok
09:04:02.0511 0348 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
09:04:02.0512 0348 aliide - ok
09:04:02.0908 0348 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
09:04:02.0910 0348 amdagp - ok
09:04:03.0213 0348 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
09:04:03.0214 0348 amdide - ok
09:04:03.0599 0348 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
09:04:03.0600 0348 AmdK8 - ok
09:04:03.0907 0348 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
09:04:03.0909 0348 AmdPPM - ok
09:04:04.0248 0348 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
09:04:04.0250 0348 amdsata - ok
09:04:04.0651 0348 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
09:04:04.0655 0348 amdsbs - ok
09:04:05.0017 0348 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
09:04:05.0018 0348 amdxata - ok
09:04:05.0107 0348 Amsp (9ed21a1a053ea3796db011c6d5419625) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
09:04:05.0110 0348 Amsp - ok
09:04:05.0261 0348 AntiVirSchedulerService (9015bc03f62940527ec92d45ee89e46f) C:\Program Files\Avira\AntiVir Desktop\sched.exe
09:04:05.0263 0348 AntiVirSchedulerService - ok
09:04:05.0317 0348 AntiVirService (b8720a787c1223492e6f319465e996ce) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
09:04:05.0320 0348 AntiVirService - ok
09:04:05.0741 0348 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
09:04:05.0742 0348 AppID - ok
09:04:06.0015 0348 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
09:04:06.0016 0348 AppIDSvc - ok
09:04:06.0181 0348 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
09:04:06.0182 0348 Appinfo - ok
09:04:06.0326 0348 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:04:06.0329 0348 Apple Mobile Device - ok
09:04:06.0739 0348 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
09:04:06.0741 0348 arc - ok
09:04:07.0081 0348 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
09:04:07.0083 0348 arcsas - ok
09:04:07.0430 0348 AsUpIO (e67493490466b5f04b58c22d2590e8ca) C:\Windows\system32\drivers\AsUpIO.sys
09:04:07.0431 0348 AsUpIO - ok
09:04:07.0759 0348 AsusService (c4fb2613d3c75364bb159b9c23a00e7a) C:\Windows\System32\AsusService.exe
09:04:07.0762 0348 AsusService - ok
09:04:08.0159 0348 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
09:04:08.0160 0348 AsyncMac - ok
09:04:08.0691 0348 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
09:04:08.0692 0348 atapi - ok
09:04:09.0216 0348 athr (b01751cc563aecac09bbe36aaa21fbef) C:\Windows\system32\DRIVERS\athr.sys
09:04:09.0229 0348 athr - ok
09:04:09.0486 0348 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
09:04:09.0492 0348 AudioEndpointBuilder - ok
09:04:09.0557 0348 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
09:04:09.0562 0348 Audiosrv - ok
09:04:09.0751 0348 avgio (6a646c46b9415e13095aa9b352040a7a) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
09:04:09.0752 0348 avgio - ok
09:04:10.0240 0348 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
09:04:10.0241 0348 avgntflt - ok
09:04:10.0714 0348 avipbb (452e382340bb0c5e694ed9d3625356d0) C:\Windows\system32\DRIVERS\avipbb.sys
09:04:10.0717 0348 avipbb - ok
09:04:11.0005 0348 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
09:04:11.0007 0348 AxInstSV - ok
09:04:11.0448 0348 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
09:04:11.0453 0348 b06bdrv - ok
09:04:11.0863 0348 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
09:04:11.0866 0348 b57nd60x - ok
09:04:12.0273 0348 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
09:04:12.0275 0348 BDESVC - ok
09:04:12.0796 0348 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
09:04:12.0797 0348 Beep - ok
09:04:13.0099 0348 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
09:04:13.0106 0348 BFE - ok
09:04:13.0474 0348 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
09:04:13.0487 0348 BITS - ok
09:04:13.0950 0348 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
09:04:13.0951 0348 blbdrive - ok
09:04:14.0080 0348 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
09:04:14.0085 0348 Bonjour Service - ok
09:04:14.0312 0348 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
09:04:14.0314 0348 bowser - ok
09:04:14.0711 0348 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:04:14.0713 0348 BrFiltLo - ok
09:04:15.0031 0348 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:04:15.0032 0348 BrFiltUp - ok
09:04:15.0490 0348 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
09:04:15.0492 0348 Browser - ok
09:04:15.0911 0348 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
09:04:15.0916 0348 Brserid - ok
09:04:16.0369 0348 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
09:04:16.0370 0348 BrSerWdm - ok
09:04:16.0776 0348 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
09:04:16.0778 0348 BrUsbMdm - ok
09:04:17.0183 0348 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
09:04:17.0184 0348 BrUsbSer - ok
09:04:17.0636 0348 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
09:04:17.0637 0348 BTHMODEM - ok
09:04:17.0988 0348 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
09:04:17.0990 0348 bthserv - ok
09:04:18.0347 0348 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
09:04:18.0349 0348 cdfs - ok
09:04:18.0722 0348 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
09:04:18.0724 0348 cdrom - ok
09:04:19.0145 0348 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
09:04:19.0147 0348 CertPropSvc - ok
09:04:19.0570 0348 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
09:04:19.0572 0348 circlass - ok
09:04:19.0872 0348 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
09:04:19.0877 0348 CLFS - ok
09:04:20.0071 0348 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:04:20.0073 0348 clr_optimization_v2.0.50727_32 - ok
09:04:20.0239 0348 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:04:20.0241 0348 clr_optimization_v4.0.30319_32 - ok
09:04:20.0563 0348 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
09:04:20.0565 0348 CmBatt - ok
09:04:20.0885 0348 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
09:04:20.0886 0348 cmdide - ok
09:04:21.0339 0348 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
09:04:21.0344 0348 CNG - ok
09:04:21.0806 0348 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
09:04:21.0808 0348 Compbatt - ok
09:04:22.0211 0348 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
09:04:22.0212 0348 CompositeBus - ok
09:04:22.0399 0348 COMSysApp - ok
09:04:22.0641 0348 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
09:04:22.0642 0348 crcdisk - ok
09:04:22.0936 0348 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
09:04:22.0939 0348 CryptSvc - ok
09:04:23.0109 0348 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
09:04:23.0121 0348 cvhsvc - ok
09:04:23.0462 0348 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
09:04:23.0471 0348 DcomLaunch - ok
09:04:23.0835 0348 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
09:04:23.0839 0348 defragsvc - ok
09:04:24.0198 0348 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
09:04:24.0199 0348 DfsC - ok
09:04:24.0434 0348 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
09:04:24.0439 0348 Dhcp - ok
09:04:25.0019 0348 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
09:04:25.0020 0348 discache - ok
09:04:25.0503 0348 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
09:04:25.0504 0348 Disk - ok
09:04:25.0793 0348 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
09:04:25.0797 0348 Dnscache - ok
09:04:26.0071 0348 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
09:04:26.0075 0348 dot3svc - ok
09:04:26.0456 0348 Dot4 (b5e479eb83707dd698f66953e922042c) C:\Windows\system32\DRIVERS\Dot4.sys
09:04:26.0458 0348 Dot4 - ok
09:04:26.0782 0348 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\Windows\system32\drivers\Dot4Prt.sys
09:04:26.0783 0348 Dot4Print - ok
09:04:27.0193 0348 dot4usb (cf491ff38d62143203c065260567e2f7) C:\Windows\system32\DRIVERS\dot4usb.sys
09:04:27.0194 0348 dot4usb - ok
09:04:27.0439 0348 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
09:04:27.0442 0348 DPS - ok
09:04:27.0805 0348 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
09:04:27.0806 0348 drmkaud - ok
09:04:28.0502 0348 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
09:04:28.0511 0348 DXGKrnl - ok
09:04:28.0704 0348 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
09:04:28.0707 0348 EapHost - ok
09:04:29.0263 0348 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
09:04:29.0297 0348 ebdrv - ok
09:04:29.0591 0348 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
09:04:29.0596 0348 EFS - ok
09:04:29.0994 0348 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
09:04:30.0001 0348 elxstor - ok
09:04:30.0426 0348 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
09:04:30.0428 0348 ErrDev - ok
09:04:30.0814 0348 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
09:04:30.0821 0348 EventSystem - ok
09:04:31.0185 0348 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
09:04:31.0187 0348 exfat - ok
09:04:31.0604 0348 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
09:04:31.0606 0348 fastfat - ok
09:04:31.0896 0348 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
09:04:31.0903 0348 Fax - ok
09:04:32.0318 0348 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
09:04:32.0320 0348 fdc - ok
09:04:32.0468 0348 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
09:04:32.0471 0348 fdPHost - ok
09:04:32.0561 0348 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
09:04:32.0563 0348 FDResPub - ok
09:04:32.0825 0348 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
09:04:32.0827 0348 FileInfo - ok
09:04:33.0211 0348 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
09:04:33.0212 0348 Filetrace - ok
09:04:33.0618 0348 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
09:04:33.0619 0348 flpydisk - ok
09:04:34.0008 0348 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
09:04:34.0011 0348 FltMgr - ok
09:04:34.0401 0348 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
09:04:34.0414 0348 FontCache - ok
09:04:34.0587 0348 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:04:34.0588 0348 FontCache3.0.0.0 - ok
09:04:34.0968 0348 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
09:04:34.0971 0348 FsDepends - ok
09:04:35.0370 0348 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
09:04:35.0371 0348 Fs_Rec - ok
09:04:35.0652 0348 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
09:04:35.0655 0348 fvevol - ok
09:04:36.0056 0348 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
09:04:36.0058 0348 gagp30kx - ok
09:04:36.0375 0348 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:04:36.0377 0348 GEARAspiWDM - ok
09:04:36.0785 0348 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
09:04:36.0795 0348 gpsvc - ok
09:04:36.0902 0348 gupdate - ok
09:04:37.0012 0348 gupdatem - ok
09:04:37.0072 0348 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:04:37.0074 0348 gusvc - ok
09:04:37.0490 0348 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
09:04:37.0491 0348 hcw85cir - ok
09:04:37.0843 0348 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
09:04:37.0847 0348 HdAudAddService - ok
09:04:38.0238 0348 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
09:04:38.0241 0348 HDAudBus - ok
09:04:38.0668 0348 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
09:04:38.0669 0348 HidBatt - ok
09:04:39.0154 0348 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
09:04:39.0156 0348 HidBth - ok
09:04:39.0539 0348 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
09:04:39.0540 0348 HidIr - ok
09:04:39.0919 0348 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
09:04:39.0922 0348 hidserv - ok
09:04:40.0320 0348 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
09:04:40.0321 0348 HidUsb - ok
09:04:40.0526 0348 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
09:04:40.0532 0348 hkmsvc - ok
09:04:40.0705 0348 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
09:04:40.0713 0348 HomeGroupListener - ok
09:04:40.0916 0348 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
09:04:40.0921 0348 HomeGroupProvider - ok
09:04:41.0306 0348 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
09:04:41.0309 0348 HpSAMD - ok
09:04:41.0780 0348 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
09:04:41.0788 0348 HTTP - ok
09:04:42.0021 0348 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
09:04:42.0022 0348 hwpolicy - ok
09:04:42.0451 0348 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
09:04:42.0453 0348 i8042prt - ok
09:04:42.0633 0348 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
09:04:42.0639 0348 IAANTMON - ok
09:04:43.0035 0348 iaStor (d483687eace0c065ee772481a96e05f5) C:\Windows\system32\DRIVERS\iaStor.sys
09:04:43.0040 0348 iaStor - ok
09:04:43.0371 0348 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
09:04:43.0376 0348 iaStorV - ok
09:04:43.0644 0348 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:04:43.0655 0348 idsvc - ok
09:04:44.0223 0348 igfx (81f7c715528ab621c6af58869d4b07b9) C:\Windows\system32\DRIVERS\igdkmd32.sys
09:04:44.0277 0348 igfx - ok
09:04:44.0624 0348 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
09:04:44.0625 0348 iirsp - ok
09:04:44.0902 0348 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
09:04:44.0913 0348 IKEEXT - ok
09:04:45.0343 0348 IntcAzAudAddService (db96b8bd676bb24bd4f1dc53ca1f182c) C:\Windows\system32\drivers\RTKVHDA.sys
09:04:45.0373 0348 IntcAzAudAddService - ok
09:04:45.0795 0348 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
09:04:45.0797 0348 intelide - ok
09:04:46.0238 0348 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
09:04:46.0240 0348 intelppm - ok
09:04:46.0441 0348 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
09:04:46.0445 0348 IPBusEnum - ok
09:04:46.0815 0348 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:04:46.0816 0348 IpFilterDriver - ok
09:04:47.0046 0348 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
09:04:47.0057 0348 iphlpsvc - ok
09:04:47.0325 0348 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
09:04:47.0327 0348 IPMIDRV - ok
09:04:47.0719 0348 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
09:04:47.0721 0348 IPNAT - ok
09:04:48.0014 0348 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
09:04:48.0026 0348 iPod Service - ok
09:04:48.0325 0348 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
09:04:48.0326 0348 IRENUM - ok
09:04:48.0649 0348 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
09:04:48.0651 0348 isapnp - ok
09:04:48.0961 0348 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
09:04:48.0965 0348 iScsiPrt - ok
09:04:49.0236 0348 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
09:04:49.0238 0348 kbdclass - ok
09:04:49.0679 0348 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
09:04:49.0681 0348 kbdhid - ok
09:04:50.0021 0348 kbfiltr (3eb803312987ff44265c87cb960df6ab) C:\Windows\system32\DRIVERS\kbfiltr.sys
09:04:50.0022 0348 kbfiltr - ok
09:04:50.0227 0348 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
09:04:50.0230 0348 KeyIso - ok
09:04:50.0556 0348 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
09:04:50.0558 0348 KSecDD - ok
09:04:50.0967 0348 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
09:04:50.0970 0348 KSecPkg - ok
09:04:51.0280 0348 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
09:04:51.0290 0348 KtmRm - ok
09:04:51.0556 0348 L1C (a158cea8644b8a5c1ec0e9a81b70f65a) C:\Windows\system32\DRIVERS\L1C62x86.sys
09:04:51.0558 0348 L1C - ok
09:04:51.0740 0348 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
09:04:51.0746 0348 LanmanServer - ok
09:04:52.0010 0348 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
09:04:52.0018 0348 LanmanWorkstation - ok
09:04:52.0397 0348 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
09:04:52.0399 0348 lltdio - ok
09:04:52.0677 0348 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
09:04:52.0684 0348 lltdsvc - ok
09:04:52.0910 0348 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
09:04:52.0914 0348 lmhosts - ok
09:04:53.0270 0348 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
09:04:53.0272 0348 LSI_FC - ok
09:04:53.0733 0348 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
09:04:53.0735 0348 LSI_SAS - ok
09:04:54.0030 0348 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:04:54.0032 0348 LSI_SAS2 - ok
09:04:54.0417 0348 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:04:54.0419 0348 LSI_SCSI - ok
09:04:54.0937 0348 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
09:04:54.0939 0348 luafv - ok
09:04:55.0322 0348 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
09:04:55.0323 0348 megasas - ok
09:04:55.0623 0348 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
09:04:55.0627 0348 MegaSR - ok
09:04:55.0855 0348 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
09:04:55.0860 0348 MMCSS - ok
09:04:56.0249 0348 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
09:04:56.0251 0348 Modem - ok
09:04:56.0561 0348 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
09:04:56.0563 0348 monitor - ok
09:04:56.0857 0348 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
09:04:56.0859 0348 mouclass - ok
09:04:57.0152 0348 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
09:04:57.0154 0348 mouhid - ok
09:04:57.0504 0348 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
09:04:57.0506 0348 mountmgr - ok
09:04:57.0885 0348 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
09:04:57.0888 0348 MpFilter - ok
09:04:58.0129 0348 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
09:04:58.0132 0348 mpio - ok
09:04:58.0479 0348 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
09:04:58.0480 0348 MpNWMon - ok
09:04:58.0779 0348 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
09:04:58.0781 0348 mpsdrv - ok
09:04:59.0103 0348 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
09:04:59.0112 0348 MpsSvc - ok
09:04:59.0403 0348 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
09:04:59.0406 0348 MRxDAV - ok
09:04:59.0743 0348 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:04:59.0746 0348 mrxsmb - ok
09:05:00.0148 0348 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:05:00.0152 0348 mrxsmb10 - ok
09:05:00.0505 0348 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:05:00.0508 0348 mrxsmb20 - ok
09:05:00.0776 0348 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
09:05:00.0777 0348 msahci - ok
09:05:01.0220 0348 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
09:05:01.0223 0348 msdsm - ok
09:05:01.0346 0348 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
09:05:01.0353 0348 MSDTC - ok
09:05:01.0499 0348 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
09:05:01.0501 0348 Msfs - ok
09:05:01.0808 0348 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
09:05:01.0809 0348 mshidkmdf - ok
09:05:02.0203 0348 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
09:05:02.0204 0348 msisadrv - ok
09:05:02.0379 0348 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
09:05:02.0384 0348 MSiSCSI - ok
09:05:02.0408 0348 msiserver - ok
09:05:02.0534 0348 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
09:05:02.0535 0348 MSKSSRV - ok
09:05:02.0702 0348 MsMpSvc (cfce43b70ca0cc4dcc8adb62b792b173) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
09:05:02.0703 0348 MsMpSvc - ok
09:05:03.0117 0348 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
09:05:03.0119 0348 MSPCLOCK - ok
09:05:03.0404 0348 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
09:05:03.0406 0348 MSPQM - ok
09:05:03.0628 0348 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
09:05:03.0631 0348 MsRPC - ok
09:05:04.0000 0348 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
09:05:04.0001 0348 mssmbios - ok
09:05:04.0220 0348 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
09:05:04.0222 0348 MSTEE - ok
09:05:04.0462 0348 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
09:05:04.0464 0348 MTConfig - ok
09:05:04.0761 0348 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
09:05:04.0763 0348 Mup - ok
09:05:04.0936 0348 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
09:05:04.0946 0348 napagent - ok
09:05:05.0363 0348 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
09:05:05.0367 0348 NativeWifiP - ok
09:05:05.0612 0348 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
09:05:05.0623 0348 NDIS - ok
09:05:05.0894 0348 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
09:05:05.0896 0348 NdisCap - ok
09:05:06.0214 0348 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
09:05:06.0216 0348 NdisTapi - ok
09:05:06.0460 0348 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
09:05:06.0462 0348 Ndisuio - ok
09:05:06.0827 0348 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
09:05:06.0830 0348 NdisWan - ok
09:05:07.0044 0348 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
09:05:07.0047 0348 NDProxy - ok
09:05:07.0095 0348 Net Driver HPZ12 (510c138564486ff926a3f773205c63d1) C:\Windows\system32\HPZinw12.dll
09:05:07.0099 0348 Net Driver HPZ12 - ok
09:05:07.0204 0348 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
09:05:07.0207 0348 NetBIOS - ok
09:05:07.0437 0348 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
09:05:07.0440 0348 NetBT - ok
09:05:07.0759 0348 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
09:05:07.0764 0348 Netlogon - ok
09:05:07.0870 0348 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
09:05:07.0879 0348 Netman - ok
09:05:07.0960 0348 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
09:05:07.0971 0348 netprofm - ok
09:05:08.0162 0348 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:05:08.0164 0348 NetTcpPortSharing - ok
09:05:08.0449 0348 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
09:05:08.0451 0348 nfrd960 - ok
09:05:08.0707 0348 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
09:05:08.0709 0348 NisDrv - ok
09:05:08.0840 0348 NisSrv (a5cb074f34bbd89948e34a630d459c0c) c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
09:05:08.0843 0348 NisSrv - ok
09:05:09.0070 0348 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
09:05:09.0078 0348 NlaSvc - ok
09:05:09.0197 0348 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
09:05:09.0199 0348 Npfs - ok
09:05:09.0396 0348 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
09:05:09.0402 0348 nsi - ok
09:05:09.0649 0348 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
09:05:09.0650 0348 nsiproxy - ok
09:05:09.0991 0348 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
09:05:10.0011 0348 Ntfs - ok
09:05:10.0243 0348 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
09:05:10.0245 0348 Null - ok
09:05:10.0458 0348 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
09:05:10.0461 0348 nvraid - ok
09:05:10.0683 0348 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
09:05:10.0686 0348 nvstor - ok
09:05:11.0001 0348 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
09:05:11.0003 0348 nv_agp - ok
09:05:11.0377 0348 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
09:05:11.0378 0348 ohci1394 - ok
09:05:11.0492 0348 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:05:11.0495 0348 ose - ok
09:05:12.0039 0348 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:05:12.0095 0348 osppsvc - ok
09:05:12.0304 0348 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
09:05:12.0312 0348 p2pimsvc - ok
09:05:12.0512 0348 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
09:05:12.0521 0348 p2psvc - ok
09:05:12.0849 0348 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
09:05:12.0850 0348 Parport - ok
09:05:13.0144 0348 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
09:05:13.0146 0348 partmgr - ok
09:05:13.0464 0348 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
09:05:13.0466 0348 Parvdm - ok
09:05:13.0661 0348 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
09:05:13.0668 0348 PcaSvc - ok
09:05:13.0865 0348 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
09:05:13.0869 0348 pci - ok
09:05:14.0135 0348 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
09:05:14.0136 0348 pciide - ok
09:05:14.0525 0348 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
09:05:14.0528 0348 pcmcia - ok
09:05:14.0898 0348 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
09:05:14.0900 0348 pcw - ok
09:05:15.0346 0348 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
09:05:15.0354 0348 PEAUTH - ok
09:05:15.0728 0348 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
09:05:15.0748 0348 pla - ok
09:05:16.0078 0348 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
09:05:16.0087 0348 PlugPlay - ok
09:05:16.0269 0348 Pml Driver HPZ12 (37e5e8ffbad35605daeec3224ea0e465) C:\Windows\system32\HPZipm12.dll
09:05:16.0273 0348 Pml Driver HPZ12 - ok
09:05:16.0437 0348 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
09:05:16.0442 0348 PNRPAutoReg - ok
09:05:16.0508 0348 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
09:05:16.0518 0348 PNRPsvc - ok
09:05:16.0638 0348 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
09:05:16.0647 0348 PolicyAgent - ok
09:05:16.0733 0348 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
09:05:16.0742 0348 Power - ok
09:05:16.0978 0348 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
09:05:16.0980 0348 PptpMiniport - ok
09:05:17.0329 0348 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
09:05:17.0331 0348 Processor - ok
09:05:17.0500 0348 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
09:05:17.0507 0348 ProfSvc - ok
09:05:17.0588 0348 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
09:05:17.0591 0348 ProtectedStorage - ok
09:05:17.0899 0348 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
09:05:17.0902 0348 Psched - ok
09:05:18.0419 0348 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
09:05:18.0435 0348 ql2300 - ok
09:05:18.0703 0348 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
09:05:18.0705 0348 ql40xx - ok
09:05:18.0966 0348 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
09:05:18.0974 0348 QWAVE - ok
09:05:19.0429 0348 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
09:05:19.0430 0348 QWAVEdrv - ok
09:05:19.0946 0348 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
09:05:19.0948 0348 RasAcd - ok
09:05:20.0344 0348 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
09:05:20.0345 0348 RasAgileVpn - ok
09:05:20.0587 0348 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
09:05:20.0595 0348 RasAuto - ok
09:05:20.0938 0348 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:05:20.0940 0348 Rasl2tp - ok
09:05:21.0170 0348 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
09:05:21.0179 0348 RasMan - ok
09:05:21.0577 0348 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
09:05:21.0579 0348 RasPppoe - ok
09:05:21.0862 0348 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
09:05:21.0865 0348 RasSstp - ok
09:05:22.0184 0348 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
09:05:22.0187 0348 rdbss - ok
09:05:22.0646 0348 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
09:05:22.0647 0348 rdpbus - ok
09:05:22.0975 0348 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:05:22.0976 0348 RDPCDD - ok
09:05:23.0306 0348 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
09:05:23.0307 0348 RDPENCDD - ok
09:05:23.0702 0348 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
09:05:23.0703 0348 RDPREFMP - ok
09:05:24.0100 0348 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
09:05:24.0103 0348 RDPWD - ok
09:05:24.0487 0348 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
09:05:24.0490 0348 rdyboost - ok
09:05:24.0761 0348 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
09:05:24.0766 0348 RemoteAccess - ok
09:05:25.0013 0348 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
09:05:25.0019 0348 RemoteRegistry - ok
09:05:25.0289 0348 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
09:05:25.0294 0348 RpcEptMapper - ok
09:05:25.0501 0348 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
09:05:25.0504 0348 RpcLocator - ok
09:05:25.0821 0348 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
09:05:25.0830 0348 RpcSs - ok
09:05:26.0125 0348 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
09:05:26.0127 0348 rspndr - ok
09:05:26.0348 0348 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
09:05:26.0352 0348 SamSs - ok
09:05:26.0660 0348 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
09:05:26.0662 0348 sbp2port - ok
09:05:26.0899 0348 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
09:05:26.0907 0348 SCardSvr - ok
09:05:27.0141 0348 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
09:05:27.0142 0348 scfilter - ok
09:05:27.0501 0348 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
09:05:27.0513 0348 Schedule - ok
09:05:27.0832 0348 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
09:05:27.0834 0348 SCPolicySvc - ok
09:05:28.0094 0348 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
09:05:28.0103 0348 SDRSVC - ok
09:05:28.0437 0348 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
09:05:28.0438 0348 secdrv - ok
09:05:28.0648 0348 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
09:05:28.0653 0348 seclogon - ok
09:05:28.0924 0348 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
09:05:28.0929 0348 SENS - ok
09:05:29.0329 0348 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
09:05:29.0330 0348 Serenum - ok
09:05:29.0737 0348 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
09:05:29.0739 0348 Serial - ok
09:05:30.0000 0348 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
09:05:30.0002 0348 sermouse - ok
09:05:30.0388 0348 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
09:05:30.0395 0348 SessionEnv - ok
09:05:30.0572 0348 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
09:05:30.0574 0348 sffdisk - ok
09:05:30.0867 0348 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
09:05:30.0869 0348 sffp_mmc - ok
09:05:31.0178 0348 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
09:05:31.0179 0348 sffp_sd - ok
09:05:31.0575 0348 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
09:05:31.0577 0348 sfloppy - ok
09:05:31.0858 0348 Sftfs (d9b734638dd8dba9d59aad3189cd0fad) C:\Windows\system32\DRIVERS\Sftfslh.sys
09:05:31.0868 0348 Sftfs - ok
09:05:31.0996 0348 sftlist (cb73bc422c07fb611f194da18d1e7f36) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
09:05:32.0003 0348 sftlist - ok
09:05:32.0232 0348 Sftplay (2f61bd46c0bff4eb36e1e359ca17bfc5) C:\Windows\system32\DRIVERS\Sftplaylh.sys
09:05:32.0237 0348 Sftplay - ok
09:05:32.0465 0348 Sftredir (518bac0179f94304f422696b47c0ec12) C:\Windows\system32\DRIVERS\Sftredirlh.sys
09:05:32.0468 0348 Sftredir - ok
09:05:32.0760 0348 Sftvol (747325236d88b3f05ffd27ff9ec711c5) C:\Windows\system32\DRIVERS\Sftvollh.sys
09:05:32.0762 0348 Sftvol - ok
09:05:32.0950 0348 sftvsa (a5812f0281ca5081bf696626f9bf324d) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
09:05:32.0954 0348 sftvsa - ok
09:05:33.0179 0348 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
09:05:33.0187 0348 SharedAccess - ok
09:05:33.0454 0348 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
09:05:33.0463 0348 ShellHWDetection - ok
09:05:33.0788 0348 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
09:05:33.0790 0348 sisagp - ok
09:05:34.0052 0348 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:05:34.0053 0348 SiSRaid2 - ok
09:05:34.0306 0348 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
09:05:34.0308 0348 SiSRaid4 - ok
09:05:34.0736 0348 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
09:05:34.0738 0348 Smb - ok
09:05:35.0198 0348 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
09:05:35.0204 0348 SNMPTRAP - ok
09:05:35.0661 0348 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
09:05:35.0663 0348 spldr - ok
09:05:36.0017 0348 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
09:05:36.0025 0348 Spooler - ok
09:05:36.0659 0348 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
09:05:36.0701 0348 sppsvc - ok
09:05:36.0936 0348 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
09:05:36.0942 0348 sppuinotify - ok
09:05:37.0166 0348 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
09:05:37.0170 0348 srv - ok
09:05:37.0554 0348 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
09:05:37.0559 0348 srv2 - ok
09:05:38.0084 0348 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
09:05:38.0087 0348 srvnet - ok
09:05:38.0278 0348 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
09:05:38.0286 0348 SSDPSRV - ok
09:05:38.0749 0348 ssmdrv (654dfea96bc82b4acda4f37e5e4a3bbf) C:\Windows\system32\DRIVERS\ssmdrv.sys
09:05:38.0751 0348 ssmdrv - ok
09:05:39.0058 0348 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
09:05:39.0065 0348 SstpSvc - ok
09:05:39.0508 0348 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
09:05:39.0510 0348 stexstor - ok
09:05:39.0754 0348 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
09:05:39.0765 0348 StiSvc - ok
09:05:40.0278 0348 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
09:05:40.0280 0348 swenum - ok
09:05:40.0611 0348 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
09:05:40.0619 0348 swprv - ok
09:05:41.0118 0348 SynTP (8bd10dc8809dc69a1c5a795cb10add76) C:\Windows\system32\DRIVERS\SynTP.sys
09:05:41.0122 0348 SynTP - ok
09:05:41.0394 0348 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
09:05:41.0416 0348 SysMain - ok
09:05:41.0697 0348 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
09:05:41.0703 0348 TabletInputService - ok
09:05:42.0105 0348 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
09:05:42.0113 0348 TapiSrv - ok
09:05:42.0353 0348 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
09:05:42.0358 0348 TBS - ok
09:05:43.0071 0348 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
09:05:43.0086 0348 Tcpip - ok
09:05:43.0567 0348 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
09:05:43.0581 0348 TCPIP6 - ok
09:05:43.0913 0348 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
09:05:43.0915 0348 tcpipreg - ok
09:05:44.0416 0348 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
09:05:44.0418 0348 TDPIPE - ok
09:05:44.0962 0348 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
09:05:44.0963 0348 TDTCP - ok
09:05:45.0322 0348 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
09:05:45.0324 0348 tdx - ok
09:05:45.0542 0348 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
09:05:45.0544 0348 TermDD - ok
09:05:45.0797 0348 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
09:05:45.0809 0348 TermService - ok
09:05:46.0049 0348 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
09:05:46.0056 0348 Themes - ok
09:05:46.0152 0348 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
09:05:46.0158 0348 THREADORDER - ok
09:05:46.0254 0348 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
09:05:46.0260 0348 TrkWks - ok
09:05:46.0329 0348 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
09:05:46.0333 0348 TrustedInstaller - ok
09:05:46.0510 0348 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:05:46.0512 0348 tssecsrv - ok
09:05:46.0753 0348 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
09:05:46.0755 0348 TsUsbFlt - ok
09:05:47.0197 0348 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
09:05:47.0199 0348 tunnel - ok
09:05:47.0600 0348 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
09:05:47.0603 0348 uagp35 - ok
09:05:47.0896 0348 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
09:05:47.0900 0348 udfs - ok
09:05:48.0194 0348 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
09:05:48.0200 0348 UI0Detect - ok
09:05:48.0410 0348 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
09:05:48.0412 0348 uliagpkx - ok
09:05:48.0689 0348 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
09:05:48.0690 0348 umbus - ok
09:05:48.0943 0348 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
09:05:48.0944 0348 UmPass - ok
09:05:49.0176 0348 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
09:05:49.0188 0348 upnphost - ok
09:05:49.0337 0348 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
09:05:49.0339 0348 USBAAPL - ok
09:05:49.0660 0348 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
09:05:49.0662 0348 usbccgp - ok
09:05:50.0084 0348 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
09:05:50.0086 0348 usbcir - ok
09:05:50.0438 0348 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\drivers\usbehci.sys
09:05:50.0440 0348 usbehci - ok
09:05:50.0786 0348 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
09:05:50.0791 0348 usbhub - ok
09:05:51.0066 0348 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
09:05:51.0068 0348 usbohci - ok
09:05:51.0459 0348 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
09:05:51.0462 0348 usbprint - ok
09:05:51.0755 0348 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
09:05:51.0757 0348 usbscan - ok
09:05:52.0080 0348 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:05:52.0082 0348 USBSTOR - ok
09:05:52.0572 0348 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
09:05:52.0573 0348 usbuhci - ok
09:05:52.0823 0348 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
09:05:52.0826 0348 usbvideo - ok
09:05:53.0134 0348 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
09:05:53.0140 0348 UxSms - ok
09:05:53.0401 0348 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
09:05:53.0404 0348 VaultSvc - ok
09:05:53.0764 0348 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
09:05:53.0766 0348 vdrvroot - ok
09:05:54.0046 0348 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
09:05:54.0057 0348 vds - ok
09:05:54.0324 0348 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
09:05:54.0326 0348 vga - ok
09:05:54.0721 0348 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
09:05:54.0723 0348 VgaSave - ok
09:05:55.0086 0348 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
09:05:55.0089 0348 vhdmp - ok
09:05:55.0489 0348 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
09:05:55.0491 0348 viaagp - ok
09:05:55.0845 0348 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
09:05:55.0847 0348 ViaC7 - ok
09:05:56.0136 0348 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
09:05:56.0137 0348 viaide - ok
09:05:56.0557 0348 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
09:05:56.0559 0348 volmgr - ok
09:05:56.0953 0348 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
09:05:56.0958 0348 volmgrx - ok
09:05:57.0321 0348 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
09:05:57.0325 0348 volsnap - ok
09:05:57.0625 0348 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
09:05:57.0628 0348 vsmraid - ok
09:05:57.0941 0348 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
09:05:57.0963 0348 VSS - ok
09:05:58.0329 0348 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
09:05:58.0330 0348 vwifibus - ok
09:05:58.0594 0348 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
09:05:58.0596 0348 vwififlt - ok
09:05:58.0891 0348 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
09:05:58.0892 0348 vwifimp - ok
09:05:59.0129 0348 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
09:05:59.0137 0348 W32Time - ok
09:05:59.0408 0348 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
09:05:59.0410 0348 WacomPen - ok
09:05:59.0717 0348 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
09:05:59.0719 0348 WANARP - ok
09:05:59.0734 0348 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
09:05:59.0737 0348 Wanarpv6 - ok
09:06:00.0070 0348 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
09:06:00.0093 0348 wbengine - ok
09:06:00.0302 0348 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
09:06:00.0309 0348 WbioSrvc - ok
09:06:00.0531 0348 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
09:06:00.0541 0348 wcncsvc - ok
09:06:00.0718 0348 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
09:06:00.0725 0348 WcsPlugInService - ok
09:06:00.0943 0348 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
09:06:00.0945 0348 Wd - ok
09:06:01.0257 0348 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
09:06:01.0263 0348 Wdf01000 - ok
09:06:01.0440 0348 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
09:06:01.0446 0348 WdiServiceHost - ok
09:06:01.0477 0348 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
09:06:01.0483 0348 WdiSystemHost - ok
09:06:01.0736 0348 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
09:06:01.0744 0348 WebClient - ok
09:06:01.0952 0348 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
09:06:01.0958 0348 Wecsvc - ok
09:06:02.0129 0348 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
09:06:02.0135 0348 wercplsupport - ok
09:06:02.0448 0348 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
09:06:02.0455 0348 WerSvc - ok
09:06:02.0740 0348 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
09:06:02.0741 0348 WfpLwf - ok
09:06:03.0073 0348 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
09:06:03.0074 0348 WIMMount - ok
09:06:03.0244 0348 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
09:06:03.0252 0348 WinDefend - ok
09:06:03.0284 0348 WinHttpAutoProxySvc - ok
09:06:03.0651 0348 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
09:06:03.0655 0348 Winmgmt - ok
09:06:04.0093 0348 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
09:06:04.0113 0348 WinRM - ok
09:06:04.0376 0348 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
09:06:04.0377 0348 WinUsb - ok
09:06:04.0605 0348 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
09:06:04.0619 0348 Wlansvc - ok
09:06:04.0955 0348 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
09:06:04.0957 0348 WmiAcpi - ok
09:06:05.0281 0348 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
09:06:05.0284 0348 wmiApSrv - ok
09:06:05.0552 0348 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
09:06:05.0569 0348 WMPNetworkSvc - ok
09:06:05.0767 0348 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
09:06:05.0775 0348 WPCSvc - ok
09:06:05.0935 0348 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
09:06:05.0941 0348 WPDBusEnum - ok
09:06:06.0274 0348 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
09:06:06.0276 0348 ws2ifsl - ok
09:06:06.0475 0348 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
09:06:06.0482 0348 wscsvc - ok
09:06:06.0623 0348 WSearch - ok
09:06:06.0757 0348 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
09:06:06.0789 0348 wuauserv - ok
09:06:07.0179 0348 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
09:06:07.0182 0348 WudfPf - ok
09:06:07.0408 0348 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:06:07.0412 0348 WUDFRd - ok
09:06:07.0647 0348 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
09:06:07.0658 0348 wudfsvc - ok
09:06:08.0019 0348 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
09:06:08.0028 0348 WwanSvc - ok
09:06:08.0084 0348 MBR (0x1B8) (f05261c246ce4b3c544521ffff7aef5d) \Device\Harddisk0\DR0
09:06:12.0666 0348 \Device\Harddisk0\DR0 ( Rootkit.Win32.BackBoot.gen ) - warning
09:06:12.0666 0348 \Device\Harddisk0\DR0 - detected Rootkit.Win32.BackBoot.gen (1)
09:06:12.0847 0348 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:06:12.0847 0348 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:06:12.0881 0348 Boot (0x1200) (c63ddb072a189e05c7c87e3ae4d9a1cd) \Device\Harddisk0\DR0\Partition0
09:06:12.0892 0348 \Device\Harddisk0\DR0\Partition0 - ok
09:06:12.0893 0348 ============================================================
09:06:12.0893 0348 Scan finished
09:06:12.0893 0348 ============================================================
09:06:12.0936 1412 Detected object count: 2
09:06:12.0936 1412 Actual detected object count: 2

#5 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 25 April 2012 - 09:04 AM

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-04-25 10:02:46
Windows 6.1.7601 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\iaStor0 ST925031 rev.0002
Running: 5qnbe49k.exe; Driver: C:\Users\Owner\AppData\Local\Temp\kwloapow.sys


---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwSaveKey + 13C1 81C4F359 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 81C88D52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
? system32\drivers\79277043.sys The system cannot find the path specified. !

---- User code sections - GMER 1.0.15 ----

.text C:\Windows\system32\svchost.exe[896] ntdll.dll!NtWriteFile 77246A68 5 Bytes JMP 00013967
.text C:\Windows\system32\svchost.exe[896] kernel32.dll!SetUnhandledExceptionFilter 7583F4FB 5 Bytes [33, C0, C2, 04, 00] {XOR EAX, EAX; RET 0x4}
.text C:\Windows\system32\svchost.exe[896] USER32.dll!GetCursorPos 75CEA4B3 5 Bytes JMP 000142BF
.text C:\Windows\system32\svchost.exe[896] USER32.dll!GetForegroundWindow 75CF335D 5 Bytes JMP 0001436E
.text C:\Windows\system32\svchost.exe[896] USER32.dll!IsWindowVisible 75CF4D69 5 Bytes JMP 00014395
.text C:\Windows\system32\svchost.exe[896] USER32.dll!WindowFromPoint 75D16BE9 5 Bytes JMP 0001430E
.text C:\Windows\system32\svchost.exe[896] USER32.dll!MessageBoxIndirectW 75D3E963 6 Bytes [33, C0, 40, C2, 04, 00] {XOR EAX, EAX; INC EAX; RET 0x4}
.text C:\Windows\system32\svchost.exe[896] WS2_32.dll!GetAddrInfoW 75974889 5 Bytes JMP 0001425B
.text C:\Windows\system32\svchost.exe[896] ole32.dll!CoGetClassObject 75BB54AD 5 Bytes JMP 00014430
.text C:\Windows\system32\svchost.exe[896] ole32.dll!CoCreateInstance 75BC9D0B 5 Bytes JMP 0001445A
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtCreateFile + 6 772455CE 4 Bytes [28, 00, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtCreateFile + B 772455D3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtMapViewOfSection + 6 77245C2E 1 Byte [28]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtMapViewOfSection + 6 77245C2E 4 Bytes [28, 03, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtMapViewOfSection + B 77245C33 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenFile + 6 77245CDE 4 Bytes [68, 00, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenFile + B 77245CE3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenProcess + 6 77245D8E 4 Bytes [A8, 01, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenProcess + B 77245D93 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenProcessToken + B 77245DA3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenProcessTokenEx + 6 77245DAE 4 Bytes [A8, 02, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenProcessTokenEx + B 77245DB3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenThread + 6 77245E0E 4 Bytes [68, 01, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenThread + B 77245E13 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenThreadToken + 6 77245E1E 4 Bytes [68, 02, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenThreadToken + B 77245E23 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtOpenThreadTokenEx + B 77245E33 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtQueryAttributesFile + 6 77245F3E 4 Bytes [A8, 00, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtQueryAttributesFile + B 77245F43 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtQueryFullAttributesFile + B 77245FF3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtSetInformationFile + 6 7724663E 4 Bytes [28, 01, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtSetInformationFile + B 77246643 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtSetInformationThread + 6 7724669E 4 Bytes [28, 02, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtSetInformationThread + B 772466A3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtUnmapViewOfSection + 6 772469BE 1 Byte [68]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtUnmapViewOfSection + 6 772469BE 4 Bytes [68, 03, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1592] ntdll.dll!NtUnmapViewOfSection + B 772469C3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtCreateFile + 6 772455CE 4 Bytes [28, 00, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtCreateFile + B 772455D3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtMapViewOfSection + 6 77245C2E 1 Byte [28]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtMapViewOfSection + 6 77245C2E 4 Bytes [28, 03, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtMapViewOfSection + B 77245C33 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenFile + 6 77245CDE 4 Bytes [68, 00, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenFile + B 77245CE3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenProcess + 6 77245D8E 4 Bytes [A8, 01, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenProcess + B 77245D93 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenProcessToken + B 77245DA3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenProcessTokenEx + 6 77245DAE 4 Bytes [A8, 02, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenProcessTokenEx + B 77245DB3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenThread + 6 77245E0E 4 Bytes [68, 01, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenThread + B 77245E13 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenThreadToken + 6 77245E1E 4 Bytes [68, 02, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenThreadToken + B 77245E23 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtOpenThreadTokenEx + B 77245E33 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtQueryAttributesFile + 6 77245F3E 4 Bytes [A8, 00, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtQueryAttributesFile + B 77245F43 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtQueryFullAttributesFile + B 77245FF3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtSetInformationFile + 6 7724663E 4 Bytes [28, 01, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtSetInformationFile + B 77246643 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtSetInformationThread + 6 7724669E 4 Bytes [28, 02, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtSetInformationThread + B 772466A3 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtUnmapViewOfSection + 6 772469BE 1 Byte [68]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtUnmapViewOfSection + 6 772469BE 4 Bytes [68, 03, 07, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[1860] ntdll.dll!NtUnmapViewOfSection + B 772469C3 1 Byte [E2]

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\ACPI_HAL \Device\0000004d halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)
Device \Driver\39549624 \Device\KLMD16012012_207010 79277043.sys

---- Disk sectors - GMER 1.0.15 ----

Disk \Device\Harddisk0\DR0 sector 00: rootkit-like behavior

---- EOF - GMER 1.0.15 ----

#6 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 25 April 2012 - 09:35 AM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-25 10:08:17
-----------------------------
10:08:17.298 OS Version: Windows 6.1.7601 Service Pack 1
10:08:17.298 Number of processors: 2 586 0x1C0A
10:08:17.331 ComputerName: OWNER-PC UserName: Owner
10:08:19.316 Initialize success
10:09:30.870 AVAST engine defs: 12042500
10:09:36.323 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
10:09:36.330 Disk 0 Vendor: ST925031 0002 Size: 238475MB BusType: 3
10:09:36.339 Disk 0 MBR read successfully
10:09:36.348 Disk 0 MBR scan
10:09:36.452 Disk 0 unknown MBR code
10:09:36.461 Disk 0 MBR hidden
10:09:36.478 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 238457 MB offset 2048
10:09:36.529 Disk 0 Partition 2 00 EF EFI FAT 16 MB offset 488361984
10:09:36.547 Disk 0 scanning sectors +488394752
10:09:36.637 Disk 0 scanning C:\Windows\system32\drivers
10:09:55.350 Service scanning
10:10:17.100 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
10:10:46.118 Modules scanning
10:11:01.035 Disk 0 trace - called modules:
10:11:01.082 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x854d84b1]<<
10:11:01.099 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85237280]
10:11:01.117 3 CLASSPNP.SYS[86b7e59e] -> nt!IofCallDriver -> [0x8486a310]
10:11:01.148 5 ACPI.sys[864943d4] -> nt!IofCallDriver -> \IAAStorageDevice-0[0x83ba1028]
10:11:01.166 \Driver\iaStor[0x854448e8] -> IRP_MJ_CREATE -> 0x854d84b1
10:11:02.308 AVAST engine scan C:\Windows
10:11:05.456 AVAST engine scan C:\Windows\system32
10:15:53.748 AVAST engine scan C:\Windows\system32\drivers
10:16:14.180 AVAST engine scan C:\Users\Owner
10:32:29.293 AVAST engine scan C:\ProgramData
10:33:02.637 File: C:\ProgramData\Microsoft\Windows\DRM\7167.tmp **INFECTED** Win32:Alureon-ATB [Trj]
10:33:26.835 Scan finished successfully
10:33:47.850 Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat"
10:33:47.870 The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:12 AM

Posted 25 April 2012 - 12:32 PM

Update and run TDSSkiller once again and post the new log

good luck

#8 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 25 April 2012 - 03:31 PM

I would appear that I am in the clear! I am able to use my laptop normally!


16:22:07.0397 1728 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
16:22:08.0308 1728 ============================================================
16:22:08.0308 1728 Current date / time: 2012/04/25 16:22:08.0308
16:22:08.0308 1728 SystemInfo:
16:22:08.0308 1728
16:22:08.0309 1728 OS Version: 6.1.7601 ServicePack: 1.0
16:22:08.0309 1728 Product type: Workstation
16:22:08.0309 1728 ComputerName: OWNER-PC
16:22:08.0309 1728 UserName: Owner
16:22:08.0310 1728 Windows directory: C:\Windows
16:22:08.0310 1728 System windows directory: C:\Windows
16:22:08.0310 1728 Processor architecture: Intel x86
16:22:08.0310 1728 Number of processors: 2
16:22:08.0310 1728 Page size: 0x1000
16:22:08.0310 1728 Boot type: Normal boot
16:22:08.0310 1728 ============================================================
16:22:16.0231 1728 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:22:16.0278 1728 ============================================================
16:22:16.0278 1728 \Device\Harddisk0\DR0:
16:22:16.0279 1728 MBR partitions:
16:22:16.0279 1728 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1BC800
16:22:16.0280 1728 ============================================================
16:22:16.0423 1728 C: <-> \Device\Harddisk0\DR0\Partition0
16:22:16.0423 1728 ============================================================
16:22:16.0424 1728 Initialize success
16:22:16.0424 1728 ============================================================
16:22:34.0075 2652 ============================================================
16:22:34.0076 2652 Scan started
16:22:34.0076 2652 Mode: Manual; TDLFS;
16:22:34.0076 2652 ============================================================
16:22:37.0607 2652 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
16:22:37.0685 2652 1394ohci - ok
16:22:37.0803 2652 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
16:22:37.0821 2652 ACPI - ok
16:22:37.0885 2652 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
16:22:37.0915 2652 AcpiPmi - ok
16:22:38.0067 2652 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:22:38.0534 2652 AdobeFlashPlayerUpdateSvc - ok
16:22:38.0684 2652 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
16:22:38.0727 2652 adp94xx - ok
16:22:38.0858 2652 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
16:22:38.0957 2652 adpahci - ok
16:22:39.0007 2652 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
16:22:39.0134 2652 adpu320 - ok
16:22:39.0238 2652 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
16:22:39.0303 2652 AeLookupSvc - ok
16:22:39.0557 2652 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
16:22:39.0587 2652 AFD - ok
16:22:39.0682 2652 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
16:22:39.0751 2652 agp440 - ok
16:22:39.0857 2652 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
16:22:39.0967 2652 aic78xx - ok
16:22:40.0166 2652 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
16:22:40.0318 2652 ALG - ok
16:22:40.0417 2652 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
16:22:40.0443 2652 aliide - ok
16:22:40.0484 2652 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
16:22:40.0584 2652 amdagp - ok
16:22:40.0668 2652 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
16:22:40.0695 2652 amdide - ok
16:22:40.0800 2652 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
16:22:40.0864 2652 AmdK8 - ok
16:22:40.0932 2652 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
16:22:41.0010 2652 AmdPPM - ok
16:22:41.0273 2652 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
16:22:41.0455 2652 amdsata - ok
16:22:41.0566 2652 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
16:22:41.0782 2652 amdsbs - ok
16:22:41.0897 2652 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
16:22:41.0989 2652 amdxata - ok
16:22:42.0336 2652 Amsp (9ed21a1a053ea3796db011c6d5419625) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
16:22:42.0383 2652 Amsp - ok
16:22:42.0543 2652 AntiVirSchedulerService (9015bc03f62940527ec92d45ee89e46f) C:\Program Files\Avira\AntiVir Desktop\sched.exe
16:22:43.0238 2652 AntiVirSchedulerService - ok
16:22:43.0450 2652 AntiVirService (b8720a787c1223492e6f319465e996ce) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
16:22:43.0760 2652 AntiVirService - ok
16:22:43.0921 2652 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
16:22:43.0990 2652 AppID - ok
16:22:44.0107 2652 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
16:22:44.0166 2652 AppIDSvc - ok
16:22:44.0265 2652 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
16:22:44.0267 2652 Appinfo - ok
16:22:44.0543 2652 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:22:44.0563 2652 Apple Mobile Device - ok
16:22:44.0689 2652 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
16:22:44.0756 2652 arc - ok
16:22:44.0887 2652 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
16:22:44.0958 2652 arcsas - ok
16:22:45.0104 2652 AsUpIO (e67493490466b5f04b58c22d2590e8ca) C:\Windows\system32\drivers\AsUpIO.sys
16:22:45.0148 2652 AsUpIO - ok
16:22:45.0296 2652 AsusService (c4fb2613d3c75364bb159b9c23a00e7a) C:\Windows\System32\AsusService.exe
16:22:45.0562 2652 AsusService - ok
16:22:45.0670 2652 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
16:22:45.0743 2652 AsyncMac - ok
16:22:45.0836 2652 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
16:22:45.0877 2652 atapi - ok
16:22:46.0375 2652 athr (b01751cc563aecac09bbe36aaa21fbef) C:\Windows\system32\DRIVERS\athr.sys
16:22:46.0539 2652 athr - ok
16:22:47.0735 2652 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
16:22:47.0884 2652 AudioEndpointBuilder - ok
16:22:47.0904 2652 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
16:22:47.0914 2652 Audiosrv - ok
16:22:48.0186 2652 avgio (6a646c46b9415e13095aa9b352040a7a) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
16:22:48.0251 2652 avgio - ok
16:22:48.0641 2652 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
16:22:48.0738 2652 avgntflt - ok
16:22:48.0917 2652 avipbb (452e382340bb0c5e694ed9d3625356d0) C:\Windows\system32\DRIVERS\avipbb.sys
16:22:49.0042 2652 avipbb - ok
16:22:49.0200 2652 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
16:22:49.0284 2652 AxInstSV - ok
16:22:49.0693 2652 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
16:22:49.0943 2652 b06bdrv - ok
16:22:50.0137 2652 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
16:22:50.0333 2652 b57nd60x - ok
16:22:50.0630 2652 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
16:22:50.0690 2652 BDESVC - ok
16:22:50.0744 2652 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
16:22:50.0797 2652 Beep - ok
16:22:51.0093 2652 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
16:22:51.0265 2652 BFE - ok
16:22:51.0535 2652 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
16:22:51.0685 2652 BITS - ok
16:22:51.0943 2652 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
16:22:52.0075 2652 blbdrive - ok
16:22:52.0427 2652 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
16:22:52.0447 2652 Bonjour Service - ok
16:22:52.0609 2652 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
16:22:52.0724 2652 bowser - ok
16:22:52.0771 2652 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:22:52.0805 2652 BrFiltLo - ok
16:22:52.0819 2652 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:22:52.0849 2652 BrFiltUp - ok
16:22:53.0012 2652 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
16:22:53.0078 2652 Browser - ok
16:22:53.0191 2652 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
16:22:53.0293 2652 Brserid - ok
16:22:53.0314 2652 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
16:22:53.0413 2652 BrSerWdm - ok
16:22:53.0455 2652 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:22:53.0496 2652 BrUsbMdm - ok
16:22:53.0517 2652 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
16:22:53.0559 2652 BrUsbSer - ok
16:22:53.0659 2652 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
16:22:53.0808 2652 BTHMODEM - ok
16:22:53.0983 2652 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
16:22:54.0047 2652 bthserv - ok
16:22:54.0240 2652 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
16:22:54.0336 2652 cdfs - ok
16:22:54.0417 2652 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
16:22:54.0457 2652 cdrom - ok
16:22:54.0586 2652 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
16:22:54.0671 2652 CertPropSvc - ok
16:22:54.0812 2652 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
16:22:54.0892 2652 circlass - ok
16:22:55.0032 2652 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
16:22:55.0058 2652 CLFS - ok
16:22:55.0476 2652 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:22:55.0666 2652 clr_optimization_v2.0.50727_32 - ok
16:22:56.0021 2652 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:22:56.0173 2652 clr_optimization_v4.0.30319_32 - ok
16:22:56.0214 2652 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
16:22:56.0266 2652 CmBatt - ok
16:22:56.0315 2652 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
16:22:56.0341 2652 cmdide - ok
16:22:56.0643 2652 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
16:22:56.0731 2652 CNG - ok
16:22:56.0881 2652 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
16:22:56.0916 2652 Compbatt - ok
16:22:56.0979 2652 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
16:22:57.0030 2652 CompositeBus - ok
16:22:57.0075 2652 COMSysApp - ok
16:22:57.0188 2652 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
16:22:57.0239 2652 crcdisk - ok
16:22:57.0463 2652 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
16:22:57.0635 2652 CryptSvc - ok
16:22:58.0142 2652 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:22:58.0197 2652 cvhsvc - ok
16:22:58.0488 2652 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
16:22:58.0521 2652 DcomLaunch - ok
16:22:58.0861 2652 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
16:22:58.0971 2652 defragsvc - ok
16:22:59.0232 2652 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
16:22:59.0344 2652 DfsC - ok
16:22:59.0801 2652 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
16:22:59.0906 2652 Dhcp - ok
16:23:00.0057 2652 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
16:23:00.0073 2652 discache - ok
16:23:00.0239 2652 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
16:23:00.0320 2652 Disk - ok
16:23:00.0463 2652 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
16:23:00.0529 2652 Dnscache - ok
16:23:00.0593 2652 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
16:23:00.0805 2652 dot3svc - ok
16:23:00.0898 2652 Dot4 (b5e479eb83707dd698f66953e922042c) C:\Windows\system32\DRIVERS\Dot4.sys
16:23:00.0994 2652 Dot4 - ok
16:23:01.0080 2652 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\Windows\system32\drivers\Dot4Prt.sys
16:23:01.0110 2652 Dot4Print - ok
16:23:01.0273 2652 dot4usb (cf491ff38d62143203c065260567e2f7) C:\Windows\system32\DRIVERS\dot4usb.sys
16:23:01.0339 2652 dot4usb - ok
16:23:01.0419 2652 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
16:23:01.0498 2652 DPS - ok
16:23:01.0648 2652 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
16:23:01.0672 2652 drmkaud - ok
16:23:01.0925 2652 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
16:23:02.0070 2652 DXGKrnl - ok
16:23:02.0295 2652 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
16:23:02.0371 2652 EapHost - ok
16:23:05.0024 2652 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
16:23:05.0300 2652 ebdrv - ok
16:23:07.0693 2652 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
16:23:07.0790 2652 EFS - ok
16:23:08.0212 2652 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
16:23:08.0568 2652 elxstor - ok
16:23:08.0772 2652 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
16:23:08.0851 2652 ErrDev - ok
16:23:09.0437 2652 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
16:23:09.0660 2652 EventSystem - ok
16:23:10.0155 2652 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
16:23:10.0219 2652 exfat - ok
16:23:10.0610 2652 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
16:23:10.0718 2652 fastfat - ok
16:23:11.0272 2652 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
16:23:11.0930 2652 Fax - ok
16:23:11.0962 2652 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
16:23:12.0013 2652 fdc - ok
16:23:12.0125 2652 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
16:23:12.0221 2652 fdPHost - ok
16:23:12.0392 2652 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
16:23:12.0447 2652 FDResPub - ok
16:23:12.0735 2652 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
16:23:12.0889 2652 FileInfo - ok
16:23:12.0985 2652 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
16:23:13.0033 2652 Filetrace - ok
16:23:13.0084 2652 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
16:23:13.0144 2652 flpydisk - ok
16:23:13.0388 2652 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
16:23:13.0465 2652 FltMgr - ok
16:23:13.0656 2652 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
16:23:13.0692 2652 FontCache - ok
16:23:14.0086 2652 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:23:14.0089 2652 FontCache3.0.0.0 - ok
16:23:14.0338 2652 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
16:23:14.0412 2652 FsDepends - ok
16:23:14.0498 2652 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
16:23:14.0527 2652 Fs_Rec - ok
16:23:14.0839 2652 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
16:23:14.0856 2652 fvevol - ok
16:23:15.0053 2652 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:23:15.0161 2652 gagp30kx - ok
16:23:15.0271 2652 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:23:15.0349 2652 GEARAspiWDM - ok
16:23:15.0942 2652 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
16:23:16.0130 2652 gpsvc - ok
16:23:16.0505 2652 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:23:16.0511 2652 gupdate - ok
16:23:16.0560 2652 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:23:16.0564 2652 gupdatem - ok
16:23:16.0780 2652 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:23:16.0989 2652 gusvc - ok
16:23:17.0331 2652 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
16:23:17.0382 2652 hcw85cir - ok
16:23:17.0570 2652 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
16:23:17.0631 2652 HdAudAddService - ok
16:23:17.0849 2652 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
16:23:17.0853 2652 HDAudBus - ok
16:23:17.0937 2652 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
16:23:18.0030 2652 HidBatt - ok
16:23:18.0072 2652 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
16:23:18.0138 2652 HidBth - ok
16:23:18.0206 2652 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
16:23:18.0257 2652 HidIr - ok
16:23:18.0396 2652 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
16:23:18.0555 2652 hidserv - ok
16:23:18.0675 2652 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
16:23:18.0742 2652 HidUsb - ok
16:23:18.0971 2652 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
16:23:19.0048 2652 hkmsvc - ok
16:23:19.0425 2652 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
16:23:19.0538 2652 HomeGroupListener - ok
16:23:19.0884 2652 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
16:23:19.0944 2652 HomeGroupProvider - ok
16:23:20.0146 2652 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
16:23:20.0265 2652 HpSAMD - ok
16:23:20.0997 2652 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
16:23:21.0074 2652 HTTP - ok
16:23:21.0128 2652 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
16:23:21.0131 2652 hwpolicy - ok
16:23:21.0315 2652 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
16:23:21.0410 2652 i8042prt - ok
16:23:21.0966 2652 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
16:23:22.0034 2652 IAANTMON - ok
16:23:22.0325 2652 iaStor (d483687eace0c065ee772481a96e05f5) C:\Windows\system32\DRIVERS\iaStor.sys
16:23:22.0331 2652 iaStor - ok
16:23:22.0862 2652 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
16:23:22.0953 2652 iaStorV - ok
16:23:23.0499 2652 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:23:24.0093 2652 idsvc - ok
16:23:28.0737 2652 igfx (81f7c715528ab621c6af58869d4b07b9) C:\Windows\system32\DRIVERS\igdkmd32.sys
16:23:29.0311 2652 igfx - ok
16:23:30.0100 2652 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
16:23:30.0201 2652 iirsp - ok
16:23:30.0455 2652 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
16:23:30.0721 2652 IKEEXT - ok
16:23:33.0242 2652 IntcAzAudAddService (db96b8bd676bb24bd4f1dc53ca1f182c) C:\Windows\system32\drivers\RTKVHDA.sys
16:23:33.0518 2652 IntcAzAudAddService - ok
16:23:34.0684 2652 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
16:23:34.0709 2652 intelide - ok
16:23:34.0801 2652 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
16:23:34.0805 2652 intelppm - ok
16:23:34.0902 2652 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
16:23:35.0019 2652 IPBusEnum - ok
16:23:35.0192 2652 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:23:35.0356 2652 IpFilterDriver - ok
16:23:35.0475 2652 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
16:23:35.0666 2652 iphlpsvc - ok
16:23:35.0765 2652 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
16:23:35.0901 2652 IPMIDRV - ok
16:23:36.0236 2652 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
16:23:36.0312 2652 IPNAT - ok
16:23:37.0138 2652 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
16:23:37.0177 2652 iPod Service - ok
16:23:38.0778 2652 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
16:23:38.0820 2652 IRENUM - ok
16:23:38.0935 2652 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
16:23:39.0010 2652 isapnp - ok
16:23:39.0212 2652 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
16:23:39.0320 2652 iScsiPrt - ok
16:23:39.0434 2652 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
16:23:39.0553 2652 kbdclass - ok
16:23:39.0657 2652 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
16:23:39.0731 2652 kbdhid - ok
16:23:39.0833 2652 kbfiltr (3eb803312987ff44265c87cb960df6ab) C:\Windows\system32\DRIVERS\kbfiltr.sys
16:23:39.0858 2652 kbfiltr - ok
16:23:39.0952 2652 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:23:39.0959 2652 KeyIso - ok
16:23:40.0051 2652 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
16:23:40.0138 2652 KSecDD - ok
16:23:40.0262 2652 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
16:23:40.0374 2652 KSecPkg - ok
16:23:40.0835 2652 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
16:23:40.0947 2652 KtmRm - ok
16:23:41.0061 2652 L1C (a158cea8644b8a5c1ec0e9a81b70f65a) C:\Windows\system32\DRIVERS\L1C62x86.sys
16:23:41.0138 2652 L1C - ok
16:23:41.0685 2652 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
16:23:41.0785 2652 LanmanServer - ok
16:23:41.0891 2652 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
16:23:42.0007 2652 LanmanWorkstation - ok
16:23:42.0129 2652 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
16:23:42.0250 2652 lltdio - ok
16:23:42.0768 2652 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
16:23:42.0884 2652 lltdsvc - ok
16:23:42.0922 2652 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
16:23:43.0019 2652 lmhosts - ok
16:23:43.0235 2652 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:23:43.0349 2652 LSI_FC - ok
16:23:43.0511 2652 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:23:43.0623 2652 LSI_SAS - ok
16:23:43.0645 2652 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:23:43.0714 2652 LSI_SAS2 - ok
16:23:43.0772 2652 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:23:43.0873 2652 LSI_SCSI - ok
16:23:44.0024 2652 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
16:23:44.0130 2652 luafv - ok
16:23:44.0236 2652 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
16:23:44.0282 2652 megasas - ok
16:23:44.0607 2652 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
16:23:44.0665 2652 MegaSR - ok
16:23:44.0821 2652 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
16:23:44.0842 2652 MMCSS - ok
16:23:44.0939 2652 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
16:23:45.0002 2652 Modem - ok
16:23:45.0097 2652 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
16:23:45.0100 2652 monitor - ok
16:23:45.0215 2652 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
16:23:45.0317 2652 mouclass - ok
16:23:45.0434 2652 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
16:23:45.0494 2652 mouhid - ok
16:23:45.0547 2652 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
16:23:45.0551 2652 mountmgr - ok
16:23:45.0807 2652 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
16:23:45.0943 2652 MpFilter - ok
16:23:46.0011 2652 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
16:23:46.0202 2652 mpio - ok
16:23:46.0780 2652 MpKsl4d1aa899 - ok
16:23:46.0960 2652 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
16:23:47.0047 2652 MpNWMon - ok
16:23:47.0229 2652 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
16:23:47.0352 2652 mpsdrv - ok
16:23:47.0809 2652 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
16:23:47.0964 2652 MpsSvc - ok
16:23:48.0148 2652 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
16:23:48.0246 2652 MRxDAV - ok
16:23:48.0404 2652 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:23:48.0453 2652 mrxsmb - ok
16:23:48.0525 2652 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:23:48.0582 2652 mrxsmb10 - ok
16:23:48.0831 2652 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:23:48.0963 2652 mrxsmb20 - ok
16:23:49.0088 2652 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
16:23:49.0141 2652 msahci - ok
16:23:49.0295 2652 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
16:23:49.0365 2652 msdsm - ok
16:23:49.0424 2652 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
16:23:49.0582 2652 MSDTC - ok
16:23:49.0980 2652 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
16:23:50.0157 2652 Msfs - ok
16:23:50.0233 2652 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
16:23:50.0262 2652 mshidkmdf - ok
16:23:50.0481 2652 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
16:23:50.0518 2652 msisadrv - ok
16:23:50.0918 2652 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
16:23:51.0022 2652 MSiSCSI - ok
16:23:51.0039 2652 msiserver - ok
16:23:51.0093 2652 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
16:23:51.0126 2652 MSKSSRV - ok
16:23:51.0360 2652 MsMpSvc (cfce43b70ca0cc4dcc8adb62b792b173) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
16:23:51.0363 2652 MsMpSvc - ok
16:23:51.0401 2652 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
16:23:51.0435 2652 MSPCLOCK - ok
16:23:51.0453 2652 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
16:23:51.0513 2652 MSPQM - ok
16:23:51.0627 2652 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
16:23:51.0881 2652 MsRPC - ok
16:23:51.0977 2652 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
16:23:51.0979 2652 mssmbios - ok
16:23:52.0052 2652 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
16:23:52.0076 2652 MSTEE - ok
16:23:52.0115 2652 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
16:23:52.0155 2652 MTConfig - ok
16:23:52.0238 2652 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
16:23:52.0588 2652 Mup - ok
16:23:52.0687 2652 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
16:23:52.0714 2652 napagent - ok
16:23:52.0955 2652 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
16:23:53.0037 2652 NativeWifiP - ok
16:23:53.0602 2652 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
16:23:53.0650 2652 NDIS - ok
16:23:53.0957 2652 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
16:23:54.0018 2652 NdisCap - ok
16:23:54.0179 2652 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
16:23:54.0249 2652 NdisTapi - ok
16:23:54.0689 2652 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
16:23:54.0973 2652 Ndisuio - ok
16:23:55.0107 2652 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
16:23:55.0153 2652 NdisWan - ok
16:23:55.0230 2652 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
16:23:55.0342 2652 NDProxy - ok
16:23:55.0555 2652 Net Driver HPZ12 (510c138564486ff926a3f773205c63d1) C:\Windows\system32\HPZinw12.dll
16:23:55.0659 2652 Net Driver HPZ12 - ok
16:23:55.0712 2652 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
16:23:55.0798 2652 NetBIOS - ok
16:23:55.0854 2652 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
16:23:55.0875 2652 NetBT - ok
16:23:55.0912 2652 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:23:55.0919 2652 Netlogon - ok
16:23:56.0029 2652 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
16:23:56.0148 2652 Netman - ok
16:23:56.0574 2652 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
16:23:56.0677 2652 netprofm - ok
16:23:57.0173 2652 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:23:57.0438 2652 NetTcpPortSharing - ok
16:23:57.0758 2652 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
16:23:57.0854 2652 nfrd960 - ok
16:23:57.0993 2652 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:23:58.0002 2652 NisDrv - ok
16:23:58.0645 2652 NisSrv (a5cb074f34bbd89948e34a630d459c0c) c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
16:23:58.0713 2652 NisSrv - ok
16:23:58.0869 2652 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
16:23:58.0987 2652 NlaSvc - ok
16:23:59.0067 2652 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
16:23:59.0160 2652 Npfs - ok
16:23:59.0300 2652 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
16:23:59.0352 2652 nsi - ok
16:23:59.0412 2652 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
16:23:59.0415 2652 nsiproxy - ok
16:24:00.0157 2652 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
16:24:01.0387 2652 Ntfs - ok
16:24:02.0820 2652 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
16:24:02.0848 2652 Null - ok
16:24:03.0168 2652 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
16:24:03.0324 2652 nvraid - ok
16:24:03.0545 2652 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
16:24:03.0775 2652 nvstor - ok
16:24:03.0921 2652 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
16:24:04.0114 2652 nv_agp - ok
16:24:04.0401 2652 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
16:24:04.0833 2652 ohci1394 - ok
16:24:05.0029 2652 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:24:05.0441 2652 ose - ok
16:24:07.0428 2652 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:24:09.0959 2652 osppsvc - ok
16:24:11.0693 2652 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
16:24:11.0771 2652 p2pimsvc - ok
16:24:11.0993 2652 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
16:24:12.0131 2652 p2psvc - ok
16:24:13.0005 2652 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
16:24:13.0237 2652 Parport - ok
16:24:13.0512 2652 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
16:24:13.0633 2652 partmgr - ok
16:24:13.0857 2652 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
16:24:13.0888 2652 Parvdm - ok
16:24:14.0188 2652 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
16:24:14.0315 2652 PcaSvc - ok
16:24:14.0514 2652 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
16:24:14.0625 2652 pci - ok
16:24:14.0672 2652 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
16:24:14.0697 2652 pciide - ok
16:24:14.0984 2652 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
16:24:15.0035 2652 pcmcia - ok
16:24:15.0146 2652 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
16:24:15.0207 2652 pcw - ok
16:24:15.0898 2652 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
16:24:16.0083 2652 PEAUTH - ok
16:24:18.0016 2652 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
16:24:18.0395 2652 pla - ok
16:24:19.0801 2652 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
16:24:19.0944 2652 PlugPlay - ok
16:24:20.0038 2652 Pml Driver HPZ12 (37e5e8ffbad35605daeec3224ea0e465) C:\Windows\system32\HPZipm12.dll
16:24:20.0092 2652 Pml Driver HPZ12 - ok
16:24:20.0161 2652 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
16:24:20.0216 2652 PNRPAutoReg - ok
16:24:20.0339 2652 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
16:24:20.0376 2652 PNRPsvc - ok
16:24:20.0968 2652 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
16:24:21.0080 2652 PolicyAgent - ok
16:24:21.0164 2652 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
16:24:21.0240 2652 Power - ok
16:24:21.0486 2652 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
16:24:21.0588 2652 PptpMiniport - ok
16:24:21.0704 2652 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
16:24:21.0857 2652 Processor - ok
16:24:22.0367 2652 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
16:24:22.0491 2652 ProfSvc - ok
16:24:22.0631 2652 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:24:22.0638 2652 ProtectedStorage - ok
16:24:22.0759 2652 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
16:24:22.0764 2652 Psched - ok
16:24:23.0784 2652 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
16:24:24.0014 2652 ql2300 - ok
16:24:25.0803 2652 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
16:24:25.0960 2652 ql40xx - ok
16:24:26.0174 2652 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
16:24:26.0374 2652 QWAVE - ok
16:24:26.0481 2652 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
16:24:26.0621 2652 QWAVEdrv - ok
16:24:26.0670 2652 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
16:24:26.0798 2652 RasAcd - ok
16:24:26.0913 2652 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:24:27.0033 2652 RasAgileVpn - ok
16:24:27.0337 2652 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
16:24:27.0474 2652 RasAuto - ok
16:24:27.0515 2652 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:24:27.0600 2652 Rasl2tp - ok
16:24:27.0731 2652 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
16:24:27.0853 2652 RasMan - ok
16:24:27.0901 2652 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
16:24:27.0936 2652 RasPppoe - ok
16:24:28.0050 2652 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
16:24:28.0187 2652 RasSstp - ok
16:24:28.0341 2652 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
16:24:28.0415 2652 rdbss - ok
16:24:28.0495 2652 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
16:24:28.0528 2652 rdpbus - ok
16:24:28.0603 2652 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:24:28.0607 2652 RDPCDD - ok
16:24:28.0659 2652 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
16:24:28.0662 2652 RDPENCDD - ok
16:24:28.0736 2652 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
16:24:28.0739 2652 RDPREFMP - ok
16:24:28.0911 2652 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
16:24:29.0084 2652 RDPWD - ok
16:24:29.0278 2652 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
16:24:29.0521 2652 rdyboost - ok
16:24:29.0652 2652 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
16:24:29.0771 2652 RemoteAccess - ok
16:24:29.0970 2652 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
16:24:30.0085 2652 RemoteRegistry - ok
16:24:30.0126 2652 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
16:24:30.0176 2652 RpcEptMapper - ok
16:24:30.0230 2652 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
16:24:30.0292 2652 RpcLocator - ok
16:24:30.0556 2652 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
16:24:30.0588 2652 RpcSs - ok
16:24:30.0687 2652 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
16:24:30.0760 2652 rspndr - ok
16:24:30.0817 2652 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:24:30.0823 2652 SamSs - ok
16:24:31.0168 2652 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
16:24:31.0290 2652 sbp2port - ok
16:24:31.0452 2652 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
16:24:31.0584 2652 SCardSvr - ok
16:24:31.0702 2652 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
16:24:31.0750 2652 scfilter - ok
16:24:32.0245 2652 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
16:24:32.0434 2652 Schedule - ok
16:24:32.0614 2652 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
16:24:32.0619 2652 SCPolicySvc - ok
16:24:32.0756 2652 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
16:24:32.0871 2652 SDRSVC - ok
16:24:33.0239 2652 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
16:24:33.0276 2652 secdrv - ok
16:24:33.0350 2652 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
16:24:33.0432 2652 seclogon - ok
16:24:33.0485 2652 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
16:24:33.0533 2652 SENS - ok
16:24:33.0583 2652 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
16:24:33.0614 2652 Serenum - ok
16:24:33.0679 2652 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
16:24:33.0905 2652 Serial - ok
16:24:33.0990 2652 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
16:24:34.0023 2652 sermouse - ok
16:24:34.0193 2652 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
16:24:34.0284 2652 SessionEnv - ok
16:24:34.0438 2652 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
16:24:34.0465 2652 sffdisk - ok
16:24:34.0525 2652 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
16:24:34.0556 2652 sffp_mmc - ok
16:24:34.0628 2652 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
16:24:34.0664 2652 sffp_sd - ok
16:24:34.0718 2652 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
16:24:34.0747 2652 sfloppy - ok
16:24:35.0309 2652 Sftfs (d9b734638dd8dba9d59aad3189cd0fad) C:\Windows\system32\DRIVERS\Sftfslh.sys
16:24:35.0479 2652 Sftfs - ok
16:24:35.0864 2652 sftlist (cb73bc422c07fb611f194da18d1e7f36) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
16:24:35.0907 2652 sftlist - ok
16:24:36.0887 2652 Sftplay (2f61bd46c0bff4eb36e1e359ca17bfc5) C:\Windows\system32\DRIVERS\Sftplaylh.sys
16:24:36.0962 2652 Sftplay - ok
16:24:36.0993 2652 Sftredir (518bac0179f94304f422696b47c0ec12) C:\Windows\system32\DRIVERS\Sftredirlh.sys
16:24:37.0037 2652 Sftredir - ok
16:24:37.0144 2652 Sftvol (747325236d88b3f05ffd27ff9ec711c5) C:\Windows\system32\DRIVERS\Sftvollh.sys
16:24:37.0192 2652 Sftvol - ok
16:24:37.0277 2652 sftvsa (a5812f0281ca5081bf696626f9bf324d) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
16:24:37.0290 2652 sftvsa - ok
16:24:37.0571 2652 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
16:24:37.0904 2652 SharedAccess - ok
16:24:38.0114 2652 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
16:24:38.0231 2652 ShellHWDetection - ok
16:24:38.0593 2652 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
16:24:38.0705 2652 sisagp - ok
16:24:38.0865 2652 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:24:38.0914 2652 SiSRaid2 - ok
16:24:39.0012 2652 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
16:24:39.0165 2652 SiSRaid4 - ok
16:24:39.0209 2652 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
16:24:39.0354 2652 Smb - ok
16:24:39.0439 2652 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
16:24:39.0531 2652 SNMPTRAP - ok
16:24:39.0581 2652 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
16:24:39.0620 2652 spldr - ok
16:24:39.0917 2652 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
16:24:40.0045 2652 Spooler - ok
16:24:41.0034 2652 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
16:24:41.0214 2652 sppsvc - ok
16:24:41.0857 2652 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
16:24:41.0945 2652 sppuinotify - ok
16:24:42.0286 2652 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
16:24:42.0376 2652 srv - ok
16:24:42.0555 2652 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
16:24:42.0709 2652 srv2 - ok
16:24:42.0989 2652 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
16:24:43.0076 2652 srvnet - ok
16:24:43.0160 2652 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
16:24:43.0374 2652 SSDPSRV - ok
16:24:43.0530 2652 ssmdrv (654dfea96bc82b4acda4f37e5e4a3bbf) C:\Windows\system32\DRIVERS\ssmdrv.sys
16:24:43.0573 2652 ssmdrv - ok
16:24:43.0840 2652 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
16:24:44.0004 2652 SstpSvc - ok
16:24:44.0092 2652 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
16:24:44.0173 2652 stexstor - ok
16:24:44.0282 2652 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
16:24:44.0443 2652 StiSvc - ok
16:24:44.0500 2652 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
16:24:44.0583 2652 swenum - ok
16:24:44.0765 2652 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
16:24:44.0939 2652 swprv - ok
16:24:45.0124 2652 SynTP (8bd10dc8809dc69a1c5a795cb10add76) C:\Windows\system32\DRIVERS\SynTP.sys
16:24:45.0256 2652 SynTP - ok
16:24:45.0508 2652 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
16:24:45.0576 2652 SysMain - ok
16:24:45.0908 2652 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
16:24:46.0062 2652 TabletInputService - ok
16:24:46.0142 2652 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
16:24:46.0283 2652 TapiSrv - ok
16:24:46.0452 2652 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
16:24:46.0538 2652 TBS - ok
16:24:47.0302 2652 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
16:24:47.0407 2652 Tcpip - ok
16:24:49.0908 2652 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
16:24:51.0056 2652 TCPIP6 - ok
16:24:52.0650 2652 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
16:24:52.0749 2652 tcpipreg - ok
16:24:52.0846 2652 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
16:24:52.0886 2652 TDPIPE - ok
16:24:52.0978 2652 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
16:24:53.0020 2652 TDTCP - ok
16:24:53.0493 2652 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
16:24:53.0653 2652 tdx - ok
16:24:53.0802 2652 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
16:24:53.0967 2652 TermDD - ok
16:24:55.0099 2652 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
16:24:55.0538 2652 TermService - ok
16:24:55.0639 2652 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
16:24:55.0707 2652 Themes - ok
16:24:55.0797 2652 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
16:24:55.0804 2652 THREADORDER - ok
16:24:55.0922 2652 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
16:24:55.0986 2652 TrkWks - ok
16:24:56.0100 2652 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
16:24:56.0116 2652 TrustedInstaller - ok
16:24:56.0484 2652 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:24:56.0533 2652 tssecsrv - ok
16:24:56.0639 2652 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
16:24:56.0731 2652 TsUsbFlt - ok
16:24:57.0157 2652 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
16:24:57.0230 2652 tunnel - ok
16:24:57.0455 2652 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
16:24:57.0680 2652 uagp35 - ok
16:24:58.0467 2652 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
16:24:58.0550 2652 udfs - ok
16:24:58.0809 2652 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
16:24:58.0838 2652 UI0Detect - ok
16:24:59.0026 2652 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
16:24:59.0483 2652 uliagpkx - ok
16:24:59.0815 2652 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
16:24:59.0878 2652 umbus - ok
16:24:59.0984 2652 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
16:25:00.0037 2652 UmPass - ok
16:25:00.0824 2652 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
16:25:01.0118 2652 upnphost - ok
16:25:01.0271 2652 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
16:25:01.0390 2652 USBAAPL - ok
16:25:01.0831 2652 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
16:25:01.0973 2652 usbccgp - ok
16:25:02.0189 2652 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
16:25:02.0304 2652 usbcir - ok
16:25:02.0460 2652 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\drivers\usbehci.sys
16:25:02.0538 2652 usbehci - ok
16:25:02.0853 2652 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
16:25:02.0924 2652 usbhub - ok
16:25:02.0998 2652 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
16:25:03.0049 2652 usbohci - ok
16:25:03.0166 2652 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
16:25:03.0232 2652 usbprint - ok
16:25:03.0285 2652 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
16:25:03.0424 2652 usbscan - ok
16:25:03.0567 2652 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:25:03.0859 2652 USBSTOR - ok
16:25:04.0011 2652 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
16:25:04.0177 2652 usbuhci - ok
16:25:05.0190 2652 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
16:25:05.0247 2652 usbvideo - ok
16:25:05.0346 2652 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
16:25:05.0403 2652 UxSms - ok
16:25:05.0488 2652 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:25:05.0496 2652 VaultSvc - ok
16:25:05.0657 2652 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
16:25:05.0707 2652 vdrvroot - ok
16:25:06.0361 2652 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
16:25:06.0643 2652 vds - ok
16:25:06.0787 2652 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
16:25:06.0837 2652 vga - ok
16:25:07.0548 2652 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
16:25:07.0630 2652 VgaSave - ok
16:25:07.0877 2652 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
16:25:08.0010 2652 vhdmp - ok
16:25:08.0128 2652 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
16:25:08.0278 2652 viaagp - ok
16:25:08.0476 2652 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
16:25:08.0540 2652 ViaC7 - ok
16:25:08.0689 2652 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
16:25:08.0723 2652 viaide - ok
16:25:08.0899 2652 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
16:25:08.0998 2652 volmgr - ok
16:25:09.0106 2652 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
16:25:09.0131 2652 volmgrx - ok
16:25:09.0404 2652 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
16:25:09.0597 2652 volsnap - ok
16:25:10.0092 2652 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
16:25:10.0264 2652 vsmraid - ok
16:25:11.0403 2652 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
16:25:11.0462 2652 VSS - ok
16:25:13.0265 2652 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
16:25:13.0301 2652 vwifibus - ok
16:25:13.0536 2652 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
16:25:13.0703 2652 vwififlt - ok
16:25:13.0777 2652 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
16:25:13.0807 2652 vwifimp - ok
16:25:14.0342 2652 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
16:25:14.0495 2652 W32Time - ok
16:25:14.0600 2652 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
16:25:14.0883 2652 WacomPen - ok
16:25:15.0062 2652 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
16:25:15.0172 2652 WANARP - ok
16:25:15.0183 2652 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
16:25:15.0186 2652 Wanarpv6 - ok
16:25:16.0286 2652 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
16:25:16.0625 2652 wbengine - ok
16:25:18.0543 2652 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
16:25:18.0751 2652 WbioSrvc - ok
16:25:19.0303 2652 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
16:25:19.0468 2652 wcncsvc - ok
16:25:19.0532 2652 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
16:25:19.0630 2652 WcsPlugInService - ok
16:25:20.0138 2652 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
16:25:20.0219 2652 Wd - ok
16:25:20.0627 2652 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
16:25:20.0717 2652 Wdf01000 - ok
16:25:20.0828 2652 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
16:25:20.0906 2652 WdiServiceHost - ok
16:25:20.0920 2652 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
16:25:20.0932 2652 WdiSystemHost - ok
16:25:20.0999 2652 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
16:25:21.0237 2652 WebClient - ok
16:25:21.0417 2652 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
16:25:21.0533 2652 Wecsvc - ok
16:25:21.0637 2652 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
16:25:21.0658 2652 wercplsupport - ok
16:25:21.0747 2652 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
16:25:21.0822 2652 WerSvc - ok
16:25:21.0984 2652 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
16:25:22.0014 2652 WfpLwf - ok
16:25:22.0096 2652 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
16:25:22.0131 2652 WIMMount - ok
16:25:22.0602 2652 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
16:25:22.0780 2652 WinDefend - ok
16:25:22.0843 2652 WinHttpAutoProxySvc - ok
16:25:23.0156 2652 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
16:25:23.0291 2652 Winmgmt - ok
16:25:23.0577 2652 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
16:25:23.0817 2652 WinRM - ok
16:25:24.0467 2652 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
16:25:24.0550 2652 WinUsb - ok
16:25:24.0890 2652 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
16:25:25.0174 2652 Wlansvc - ok
16:25:25.0300 2652 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
16:25:25.0303 2652 WmiAcpi - ok
16:25:25.0441 2652 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
16:25:25.0648 2652 wmiApSrv - ok
16:25:26.0025 2652 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
16:25:26.0634 2652 WMPNetworkSvc - ok
16:25:27.0355 2652 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
16:25:27.0422 2652 WPCSvc - ok
16:25:27.0493 2652 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
16:25:27.0597 2652 WPDBusEnum - ok
16:25:27.0808 2652 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
16:25:27.0846 2652 ws2ifsl - ok
16:25:27.0997 2652 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
16:25:28.0205 2652 wscsvc - ok
16:25:28.0223 2652 WSearch - ok
16:25:28.0638 2652 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
16:25:28.0716 2652 wuauserv - ok
16:25:29.0648 2652 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
16:25:29.0785 2652 WudfPf - ok
16:25:29.0901 2652 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:25:29.0951 2652 WUDFRd - ok
16:25:30.0027 2652 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
16:25:30.0113 2652 wudfsvc - ok
16:25:30.0260 2652 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
16:25:30.0383 2652 WwanSvc - ok
16:25:30.0551 2652 MBR (0x1B8) (f05261c246ce4b3c544521ffff7aef5d) \Device\Harddisk0\DR0
16:25:31.0290 2652 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:25:31.0290 2652 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:25:31.0363 2652 Boot (0x1200) (c63ddb072a189e05c7c87e3ae4d9a1cd) \Device\Harddisk0\DR0\Partition0
16:25:31.0374 2652 \Device\Harddisk0\DR0\Partition0 - ok
16:25:31.0376 2652 ============================================================
16:25:31.0376 2652 Scan finished
16:25:31.0376 2652 ============================================================
16:25:31.0430 0616 Detected object count: 1
16:25:31.0431 0616 Actual detected object count: 1


Thank you so much Naren! You are awesome!

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:12 AM

Posted 25 April 2012 - 03:50 PM

Appreciate your feedback :thumbup2:

Run aswmbr scan again and post the log


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#10 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 26 April 2012 - 04:55 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-25 10:08:17
-----------------------------
10:08:17.298 OS Version: Windows 6.1.7601 Service Pack 1
10:08:17.298 Number of processors: 2 586 0x1C0A
10:08:17.331 ComputerName: OWNER-PC UserName: Owner
10:08:19.316 Initialize success
10:09:30.870 AVAST engine defs: 12042500
10:09:36.323 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
10:09:36.330 Disk 0 Vendor: ST925031 0002 Size: 238475MB BusType: 3
10:09:36.339 Disk 0 MBR read successfully
10:09:36.348 Disk 0 MBR scan
10:09:36.452 Disk 0 unknown MBR code
10:09:36.461 Disk 0 MBR hidden
10:09:36.478 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 238457 MB offset 2048
10:09:36.529 Disk 0 Partition 2 00 EF EFI FAT 16 MB offset 488361984
10:09:36.547 Disk 0 scanning sectors +488394752
10:09:36.637 Disk 0 scanning C:\Windows\system32\drivers
10:09:55.350 Service scanning
10:10:17.100 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
10:10:46.118 Modules scanning
10:11:01.035 Disk 0 trace - called modules:
10:11:01.082 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x854d84b1]<<
10:11:01.099 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85237280]
10:11:01.117 3 CLASSPNP.SYS[86b7e59e] -> nt!IofCallDriver -> [0x8486a310]
10:11:01.148 5 ACPI.sys[864943d4] -> nt!IofCallDriver -> \IAAStorageDevice-0[0x83ba1028]
10:11:01.166 \Driver\iaStor[0x854448e8] -> IRP_MJ_CREATE -> 0x854d84b1
10:11:02.308 AVAST engine scan C:\Windows
10:11:05.456 AVAST engine scan C:\Windows\system32
10:15:53.748 AVAST engine scan C:\Windows\system32\drivers
10:16:14.180 AVAST engine scan C:\Users\Owner
10:32:29.293 AVAST engine scan C:\ProgramData
10:33:02.637 File: C:\ProgramData\Microsoft\Windows\DRM\7167.tmp **INFECTED** Win32:Alureon-ATB [Trj]
10:33:26.835 Scan finished successfully
10:33:47.850 Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat"
10:33:47.870 The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-26 17:34:41
-----------------------------
17:34:41.364 OS Version: Windows 6.1.7601 Service Pack 1
17:34:41.364 Number of processors: 2 586 0x1C0A
17:34:41.380 ComputerName: OWNER-PC UserName: Owner
17:34:51.276 Initialize success
17:35:10.858 AVAST engine defs: 12042500
17:35:17.950 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
17:35:17.950 Disk 0 Vendor: ST925031 0002 Size: 238475MB BusType: 3
17:35:17.996 Disk 0 MBR read successfully
17:35:17.996 Disk 0 MBR scan
17:35:18.012 Disk 0 unknown MBR code
17:35:18.028 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 238457 MB offset 2048
17:35:18.199 Disk 0 Partition 2 00 EF EFI FAT 16 MB offset 488361984
17:35:18.215 Disk 0 scanning sectors +488394752
17:35:18.542 Disk 0 scanning C:\Windows\system32\drivers
17:36:14.658 Service scanning
17:37:26.665 Service MpKsla89fd352 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3641636F-8711-4813-A142-5ECA6539A294}\MpKsla89fd352.sys **LOCKED** 32
17:37:26.916 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
17:38:23.818 Modules scanning
17:38:49.206 Disk 0 trace - called modules:
17:38:49.268 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll iaStor.sys
17:38:49.284 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84e5aa78]
17:38:49.299 3 CLASSPNP.SYS[86b9759e] -> nt!IofCallDriver -> [0x8446c700]
17:38:49.315 5 ACPI.sys[8649e3d4] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x8405f028]
17:38:50.313 AVAST engine scan C:\Windows
17:38:57.072 AVAST engine scan C:\Windows\system32
17:49:53.773 AVAST engine scan C:\Windows\system32\drivers
17:50:33.277 AVAST engine scan C:\Users\Owner
17:53:35.000 Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat"
17:53:35.371 The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR.txt"

#11 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 26 April 2012 - 07:42 PM

MiniToolBox by Farbar Version: 18-01-2012
Ran by Owner (administrator) on 26-04-2012 at 20:35:07
Microsoft Windows 7 Starter Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
::1 localhost


127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8132 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Owner-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 1A-4B-D6-55-5E-95
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.pa.comcast.net.
Description . . . . . . . . . . . : Atheros AR8132 PCI-E Fast Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 48-5B-39-12-65-59
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 1C-4B-D6-55-5E-95
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7991:d5c1:2775:810b%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, April 26, 2012 4:58:50 PM
Lease Expires . . . . . . . . . . : Friday, April 27, 2012 7:20:20 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 236735446
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-B7-17-14-1C-4B-D6-55-5E-95
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{18639CAB-C66C-4A66-A92A-BEB951897BF4}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.hsd1.pa.comcast.net.:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:38d1:812:3f57:fefd(Preferred)
Link-local IPv6 Address . . . . . : fe80::38d1:812:3f57:fefd%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{4508EFF8-DE36-4A6C-AAED-51E74EAEA81D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 173.194.43.34
173.194.43.41
173.194.43.32
173.194.43.39
173.194.43.35
173.194.43.37
173.194.43.33
173.194.43.38
173.194.43.46
173.194.43.40
173.194.43.36


Pinging google.com [173.194.43.36] with 32 bytes of data:
Reply from 173.194.43.36: bytes=32 time=18ms TTL=55
Reply from 173.194.43.36: bytes=32 time=14ms TTL=55

Ping statistics for 173.194.43.36:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 18ms, Average = 16ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=213ms TTL=50
Reply from 72.30.38.140: bytes=32 time=145ms TTL=48

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 145ms, Maximum = 213ms, Average = 179ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=28ms TTL=128
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 6ms, Maximum = 28ms, Average = 17ms
===========================================================================
Interface List
14...1a 4b d6 55 5e 95 ......Microsoft Virtual WiFi Miniport Adapter
11...48 5b 39 12 65 59 ......Atheros AR8132 PCI-E Fast Ethernet Controller (NDIS 6.20)
10...1c 4b d6 55 5e 95 ......Atheros AR9285 Wireless Network Adapter
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 281
192.168.1.2 255.255.255.255 On-link 192.168.1.2 281
192.168.1.255 255.255.255.255 On-link 192.168.1.2 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:38d1:812:3f57:fefd/128
On-link
10 281 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::38d1:812:3f57:fefd/128
On-link
10 281 fe80::7991:d5c1:2775:810b/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/26/2012 04:58:56 PM) (Source: Avira AntiVir) (User: SYSTEM)SYSTEM
Description: Unable to load file AVPREF.DLL.
Returned error code: 0x45a

Error: (04/26/2012 03:46:58 PM) (Source: Avira AntiVir) (User: SYSTEM)SYSTEM
Description: Unable to load file AVPREF.DLL.
Returned error code: 0x45a

Error: (04/26/2012 07:44:43 AM) (Source: Avira AntiVir) (User: SYSTEM)SYSTEM
Description: Unable to load file AVPREF.DLL.
Returned error code: 0x45a

Error: (04/26/2012 06:08:12 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19344

Error: (04/26/2012 06:08:12 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 19344

Error: (04/26/2012 06:08:12 AM) (Source: Bonjour Service) (User: )

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:12 AM

Posted 26 April 2012 - 08:37 PM

Mini toolbox log is incomplete.Please re run the scan

good luck

#13 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 28 April 2012 - 08:15 AM

MiniToolBox by Farbar Version: 18-01-2012
Ran by Owner (administrator) on 28-04-2012 at 09:12:24
Microsoft Windows 7 Starter Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
::1 localhost


127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8132 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Owner-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 1A-4B-D6-55-5E-95
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.pa.comcast.net.
Description . . . . . . . . . . . : Atheros AR8132 PCI-E Fast Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 48-5B-39-12-65-59
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 1C-4B-D6-55-5E-95
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7991:d5c1:2775:810b%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, April 27, 2012 12:38:26 AM
Lease Expires . . . . . . . . . . : Sunday, April 29, 2012 9:07:28 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 236735446
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-B7-17-14-1C-4B-D6-55-5E-95
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{18639CAB-C66C-4A66-A92A-BEB951897BF4}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.hsd1.pa.comcast.net.:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1c20:c46:3f57:fefd(Preferred)
Link-local IPv6 Address . . . . . : fe80::1c20:c46:3f57:fefd%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{4508EFF8-DE36-4A6C-AAED-51E74EAEA81D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 173.194.43.32
173.194.43.37
173.194.43.40
173.194.43.35
173.194.43.36
173.194.43.46
173.194.43.38
173.194.43.41
173.194.43.33
173.194.43.34
173.194.43.39


Pinging google.com [173.194.43.35] with 32 bytes of data:
Reply from 173.194.43.35: bytes=32 time=16ms TTL=55
Reply from 173.194.43.35: bytes=32 time=14ms TTL=55

Ping statistics for 173.194.43.35:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 16ms, Average = 15ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=63ms TTL=51
Reply from 209.191.122.70: bytes=32 time=70ms TTL=51

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 63ms, Maximum = 70ms, Average = 66ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=20ms TTL=128
Reply from 127.0.0.1: bytes=32 time=7ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 7ms, Maximum = 20ms, Average = 13ms
===========================================================================
Interface List
14...1a 4b d6 55 5e 95 ......Microsoft Virtual WiFi Miniport Adapter
11...48 5b 39 12 65 59 ......Atheros AR8132 PCI-E Fast Ethernet Controller (NDIS 6.20)
10...1c 4b d6 55 5e 95 ......Atheros AR9285 Wireless Network Adapter
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 281
192.168.1.2 255.255.255.255 On-link 192.168.1.2 281
192.168.1.255 255.255.255.255 On-link 192.168.1.2 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:1c20:c46:3f57:fefd/128
On-link
10 281 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::1c20:c46:3f57:fefd/128
On-link
10 281 fe80::7991:d5c1:2775:810b/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/28/2012 09:07:21 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13508844

Error: (04/28/2012 09:07:21 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13508844

Error: (04/28/2012 09:07:21 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/28/2012 09:07:20 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13507846

Error: (04/28/2012 09:07:20 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13507846

Error: (04/28/2012 09:07:20 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/28/2012 09:07:19 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13506770

Error: (04/28/2012 09:07:19 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13506770

Error: (04/28/2012 09:07:19 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/28/2012 05:22:19 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1451


System errors:
=============
Error: (04/28/2012 04:47:27 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (04/28/2012 00:53:36 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

Error: (04/27/2012 00:39:37 AM) (Source: DCOM) (User: )
Description: {063D34A4-BF84-4B8D-B699-E8CA06504DDE}

Error: (04/27/2012 00:39:26 AM) (Source: Microsoft Antimalware) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.

Feature: %%835

Error Code: 0x80004005

Error description: Unspecified error

Reason: %%842

Error: (04/27/2012 00:39:10 AM) (Source: Service Control Manager) (User: )
Description: The iPod Service service terminated with the following error:
%%-2147417831

Error: (04/27/2012 00:39:03 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (04/26/2012 04:59:38 PM) (Source: Microsoft Antimalware) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.

Feature: %%835

Error Code: 0x80004005

Error description: Unspecified error

Reason: %%842

Error: (04/26/2012 04:59:16 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (04/26/2012 03:48:36 PM) (Source: Microsoft Antimalware) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.

Feature: %%835

Error Code: 0x80004005

Error description: Unspecified error

Reason: %%842

Error: (04/26/2012 03:48:13 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom


Microsoft Office Sessions:
=========================
Error: (04/28/2012 09:07:21 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13508844

Error: (04/28/2012 09:07:21 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13508844

Error: (04/28/2012 09:07:21 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/28/2012 09:07:20 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13507846

Error: (04/28/2012 09:07:20 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13507846

Error: (04/28/2012 09:07:20 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/28/2012 09:07:19 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13506770

Error: (04/28/2012 09:07:19 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13506770

Error: (04/28/2012 09:07:19 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/28/2012 05:22:19 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1451


=========================== Installed Programs ============================

µTorrent (Version: 2.0.4)
32 Bit HP CIO Components Installer (Version: 6.1.1)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.233)
Adobe Flash Player 11 Plugin (Version: 11.2.202.233)
Adobe Reader 9.5.1 MUI (Version: 9.5.1)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.12.3.0)
Atheros Client Installation Program (Version: 7.0)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.10)
Avira AntiVir Personal - Free Antivirus
Bonjour (Version: 3.0.0.10)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (Version: 1.2.52)
E-Cam (Version: 2.0.2.1)
Eee Docking 3.3.0 (Version: 3.3.0)
Express Gate (Version: 1.2.17.13)
Google Chrome (Version: 18.0.1025.162)
Google Update Helper (Version: 1.3.21.111)
Hotkey Service (Version: 1.15)
Intel® Graphics Media Accelerator Driver (Version: 8.14.10.1929)
Intel® Matrix Storage Manager
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 22 (Version: 6.0.220)
Java™ 6 Update 29 (Version: 6.0.290)
Java™ 7 Update 3 (Version: 7.0.30)
Java™ SE Development Kit 7 Update 3 (Version: 1.7.0.30)
JavaFX 2.0.3 (Version: 2.0.3)
JavaFX 2.0.3 SDK (Version: 2.0.3)
Live 6.0.10
LiveUpdate (Version: 1.19)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 - English (Version: 14.0.5139.5005)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Online Services Sign In (Version: 1.0.1442.0)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MobileMe Control Panel (Version: 3.1.6.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
OOBERegBackup
Picasa 3 (Version: 3.8)
QuickTime (Version: 7.70.80.34)
Realtek High Definition Audio Driver (Version: 6.0.1.5948)
Rhapsody
Safari (Version: 5.34.50.0)
Super Hybrid Engine (Version: 2.10)
Synaptics Pointing Device Driver (Version: 13.2.6.1)
SystemSetting
Trend Micro Security (Version: 1.0)
Trend Micro Security (Version: 2.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

========================= Memory info: ===================================

Percentage of memory in use: 69%
Total physical RAM: 1014.18 MB
Available physical RAM: 308.16 MB
Total Pagefile: 2038.18 MB
Available Pagefile: 960.75 MB
Total Virtual: 2047.88 MB
Available Virtual: 1940.37 MB

========================= Partitions: =====================================

1 Drive c: (Win7) (Fixed) (Total:232.87 GB) (Free:140.24 GB) NTFS

========================= Users: ========================================

User accounts for \\OWNER-PC

Administrator Guest Owner


**** End of log ****

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:12 AM

Posted 28 April 2012 - 08:45 AM

Still waiting for malwarebytes and ESET online scanner :thumbup2:

#15 smac27

smac27
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 29 April 2012 - 10:23 AM

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.28.09

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
Owner :: OWNER-PC [administrator]

Protection: Enabled

4/29/2012 8:33:25 AM
mbam-log-2012-04-29 (08-33-25).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 319767
Time elapsed: 2 hour(s), 48 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users