Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

dropper.Generic_c.MMI


  • This topic is locked This topic is locked
64 replies to this topic

#1 markyellguy

markyellguy

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 07 July 2012 - 05:28 AM

Hey guys,
I am getting constant redirects in Firefox...
Blue screens...
AVG is giving constant pop-up about "dropper.Generic_c.MMI"

This thing has become the bane of my computer's existence.
Thanks in advance or any help!

Here is my log:

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_20
Run by Yarmers' at 5:08:33 on 2012-07-07
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.2942.719 [GMT -5:00]
.
AV: Norton 360 Premier Edition *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton 360 Premier Edition *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 Premier Edition *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2012\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k HsfXAudioService
C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe
-netsvcs
C:\Windows\system32\conhost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\KICONSPY.EXE
C:\Windows\System32\xManager\PKSKBD.EXE
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\AVG\AVG PC Tuneup\boostspeed.exe
C:\Windows\TEMP\0.43743240617892554
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
"C:\Windows\SysWOW64\svchost.exe" -k LocalServiceDns
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
"C:\Windows\SysWOW64\svchost.exe" -k LocalServiceDns
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uDefault_Page_URL = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&s=2&o=vp64&d=0609&m=md2614u&c=BB
uStart Page = hxxp://www.yahoo.com/
mWinlogon: Userinit=userinit.exe,
BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
BHO: Norton Identity Protection: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\coIEPlg.dll
BHO: Norton Vulnerability Protection: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\IPS\IPSBHO.DLL
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\coIEPlg.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Contribute Toolbar: {517bdde4-e3a7-4570-b21e-2b52b6139fc7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe
mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert link target to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
LSP: mswsock.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
TCP: DhcpNameServer = 10.0.0.1
TCP: Interfaces\{90749A05-B254-4B4B-AEE3-B97008485FCD} : DhcpNameServer = 10.0.0.1
TCP: Interfaces\{90749A05-B254-4B4B-AEE3-B97008485FCD}\2375942554130383 : DhcpNameServer = 192.168.1.254
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO-X64: ContributeBHO Class: {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: AVG Do Not Track: {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
BHO-X64: AVG Do Not Track - No File
BHO-X64: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\coIEPlg.dll
BHO-X64: Norton Identity Protection - No File
BHO-X64: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\IPS\IPSBHO.DLL
BHO-X64: Norton Vulnerability Protection - No File
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO-X64: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO-X64: SmartSelect - No File
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\coIEPlg.dll
TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB-X64: Contribute Toolbar: {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
mRun-x64: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
Hosts: 149.5.18.172 www.google-analytics.com.
Hosts: 149.5.18.172 ad-emea.doubleclick.net.
Hosts: 149.5.18.172 www.statcounter.com.
Hosts: 108.163.215.51 www.google-analytics.com.
Hosts: 108.163.215.51 ad-emea.doubleclick.net.
.
Note: multiple HOSTS entries found. Please refer to Attach.txt
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Yarmers'\AppData\Roaming\Mozilla\Firefox\Profiles\6hdsayz3.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.53\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.57\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Yarmers'\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: C:\Users\Yarmers'\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
FF - plugin: C:\Users\Yarmers'\AppData\Roaming\Mozilla\plugins\npicaN.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: AVG Do Not Track: {F53C93F1-07D5-430c-86D4-C9531B27DFAF} - C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\system32\DRIVERS\avgidsha.sys --> C:\Windows\system32\DRIVERS\avgidsha.sys [?]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R1 Avgfwfd;AVG network filter service;C:\Windows\system32\DRIVERS\avgfwd6a.sys --> C:\Windows\system32\DRIVERS\avgfwd6a.sys [?]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]
R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120507.001\BHDrvx64.sys [2012-5-8 1160824]
R1 ccSet_N360;Norton 360 Settings Manager;C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys --> C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys [?]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20120516.001\IDSviA64.sys [2012-5-16 488568]
R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\avgidsdrivera.sys --> C:\Windows\system32\DRIVERS\avgidsdrivera.sys [?]
R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\avgidsfiltera.sys --> C:\Windows\system32\DRIVERS\avgidsfiltera.sys [?]
R3 CAXHWAZL;CAXHWAZL;C:\Windows\system32\DRIVERS\CAXHWAZL.sys --> C:\Windows\system32\DRIVERS\CAXHWAZL.sys [?]
R3 O2MDRDR;O2MDRDR;C:\Windows\system32\DRIVERS\o2mdx64.sys --> C:\Windows\system32\DRIVERS\o2mdx64.sys [?]
R3 O2SDRDR;O2SDRDR;C:\Windows\system32\DRIVERS\o2sdx64.sys --> C:\Windows\system32\DRIVERS\o2sdx64.sys [?]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-2-3 138360]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\system32\DRIVERS\LEqdUsb.Sys --> C:\Windows\system32\DRIVERS\LEqdUsb.Sys [?]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\system32\DRIVERS\LHidEqd.Sys --> C:\Windows\system32\DRIVERS\LHidEqd.Sys [?]
.
=============== Created Last 30 ================
.
2012-07-07 09:15:16 -------- d-----w- C:\ProgramData\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
2012-07-06 21:33:25 -------- d-----w- C:\Users\Yarmers'\AppData\Roaming\AVG
2012-07-06 21:07:26 -------- d-----w- C:\Users\Yarmers'\AppData\Roaming\AVG2012
2012-07-06 21:05:36 -------- d-----w- C:\Windows\SysWow64\drivers\AVG
2012-07-06 21:01:50 -------- d--h--w- C:\$AVG
2012-07-06 21:01:47 -------- d-----w- C:\Windows\System32\drivers\AVG
2012-07-06 21:01:47 -------- d-----w- C:\ProgramData\AVG2012
2012-07-06 20:57:21 -------- d-----w- C:\Program Files (x86)\AVG
2012-07-06 20:46:34 -------- d--h--w- C:\ProgramData\Common Files
2012-07-06 20:45:28 -------- d-----w- C:\ProgramData\MFAData
2012-07-06 18:41:38 -------- d-sh--w- C:\Windows\SysWow64\%APPDATA%
2012-07-06 18:34:53 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-07-06 17:03:29 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-07-06 17:02:49 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-07-06 17:01:34 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-07-06 17:01:34 186752 ----a-w- C:\Windows\System32\wuwebv.dll
.
==================== Find3M ====================
.
2012-07-06 18:34:53 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-15 01:32:20 3144192 ----a-w- C:\Windows\System32\win32k.sys
2012-05-02 05:32:43 208896 ----a-w- C:\Windows\System32\profsvc.dll
2012-04-28 03:50:40 204800 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2012-04-26 05:34:38 76288 ----a-w- C:\Windows\System32\rdpwsx.dll
2012-04-26 05:34:37 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2012-04-26 05:28:32 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2012-04-24 05:59:45 182272 ----a-w- C:\Windows\System32\cryptsvc.dll
2012-04-24 05:59:45 1460224 ----a-w- C:\Windows\System32\crypt32.dll
2012-04-24 05:59:45 140288 ----a-w- C:\Windows\System32\cryptnet.dll
2012-04-24 04:47:04 139264 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2012-04-24 04:47:04 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2012-04-24 04:47:03 1156608 ----a-w- C:\Windows\SysWow64\crypt32.dll
2012-04-19 09:50:26 28480 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
.
============= FINISH: 5:14:16.63 ===============

BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:56 AM

Posted 07 July 2012 - 05:52 AM

Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your computer problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

Security Check

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.



Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 markyellguy

markyellguy
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 07 July 2012 - 12:44 PM

Hey Gringo,

Thanks for the assistance so far!

Security Check text is below:

Results of screen317's Security Check version 0.99.42
Windows 7 x64 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Security Center service is not running! This report may not be accurate!
Norton 360 Premier Edition
WMI entry may not exist for antivirus; attempting automatic update.
AVG2012 successfully updated!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.60.0.1800
AVG PC Tuneup
Java™ 6 Update 20
Java™ 6 Update 5
Java version out of Date!
Adobe Flash Player 11.1.102.63 Flash Player out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Firefox (3.6.28) Firefox out of Date!
Google Chrome 19.0.1084.52
Google Chrome 20.0.1132.47
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
AVG avgwdsvc.exe
AVG avgtray.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````


Combofix could not complete... It got only so far and then would go to "Blue Screen..." It got a little further after trying to run in Safe Mode with Networking, but still never completed before shutting down.
Blue Screen Recovery Details below:

Windows has recovered from an unexpected shutdown.

Details:
Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7600.2.0.0.768.3
Locale ID: 1033

Additional information about the problem:
BCCode: 1e
BCP1: FFFFFFFFC0000005
BCP2: FFFFF80002EAA677
BCP3: 0000000000000000
BCP4: 000000007EFA0000
OS Version: 6_1_7600
Service Pack: 0_0
Product: 768_1

Files that help describe the problem:
C:\Windows\Minidump\070712-101010-01.dmp
C:\Users\Yarmers'\AppData\Local\Temp\WER-172521-0.sysdata.xml

Read our privacy statement online:
http://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0409

If the online privacy statement is not available, please read our privacy statement offline:
C:\Windows\system32\en-US\erofflps.txt

Thanks again!

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:56 AM

Posted 07 July 2012 - 02:41 PM

Hello

download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt
[*]In the command window type in notepad and press Enter.
[*]The notepad opens. Under File menu select Open.
[*]Select "Computer" and find your flash drive letter and close the notepad.
[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.
[*]When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list]
Gringo[/b]
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 markyellguy

markyellguy
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 07 July 2012 - 09:33 PM

Thanks for the reply... Here is the log file:

Scan result of Farbar Recovery Scan Tool Version: 07-07-2012 04
Ran by SYSTEM at 07-07-2012 21:21:25
Running from G:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry (Whitelisted) =============

HKLM\...\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1560360 2008-08-20] (Synaptics, Inc.)
HKLM\...\Run: [KS Mouse Suite Daemon] KICONSPY.EXE [x]
HKLM\...\Run: [TPMXKST KB Suite Daemon] C:\Windows\system32\xManager\PKSKBD.EXE [526848 2008-10-15] (PRIMAX)
HKLM\...\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe" [2417032 2011-08-01] (Microsoft Corporation)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE [x]
HKLM\...\Run: [EKIJ5000StatusMonitor] C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [2922496 2011-06-16] (Eastman Kodak Company)
HKLM\...\Run: [Logitech Download Assistant] C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [1580368 2010-11-03] (Logitech, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [61440 2008-08-01] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" [2587008 2012-04-05] (AVG Technologies CZ, s.r.o.)
HKU\Yarmers'\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [163328 2009-07-13] (Microsoft Corporation)
HKLM\...\Runonce: [*WerKernelReporting] %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq [x]
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1

==================== Services (Whitelisted) ======

4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
3 Adobe Version Cue CS4; "C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe" -win32service [284016 2008-08-15] (Adobe Systems Incorporated)
2 AMService; C:\Windows\TEMP\lzfbotyonkroojyvfr.exe run [45056 2012-07-07] ()
2 avgfws; "C:\Program Files (x86)\AVG\AVG2012\avgfws.exe" [2321560 2012-06-13] (AVG Technologies CZ, s.r.o.)
2 AVGIDSAgent; "C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe" [5160568 2012-07-04] (AVG Technologies CZ, s.r.o.)
2 avgwd; "C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe" [193288 2012-02-14] (AVG Technologies CZ, s.r.o.)
4 mi-raysat_3dsmax2011_32; "C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe" [86016 2010-03-09] ()
2 N360; "C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe" /s "N360" /m "C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\diMaster.dll" /prefetch:1 [309688 2012-04-12] (Symantec Corporation)
4 RichVideo; "C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe" [241734 2008-10-06] ()
4 Roxio UPnP Renderer 11; "C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe" [313840 2008-08-13] (Sonic Solutions)
4 Roxio Upnp Server 11; "C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe" [367088 2008-08-13] (Sonic Solutions)
4 RoxLiveShare11; "C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe" [309744 2008-08-13] (Sonic Solutions)
4 RoxMediaDB11; "C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe" [1122304 2009-01-09] (Sonic Solutions)
4 RoxWatch11; "C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe" [170480 2008-08-13] (Sonic Solutions)
3 vds; C:\Windows\System32\vds.exe [532480 2009-07-13] (Microsoft Corporation)
4 CACLEARWIRE; "C:\Program Files (x86)\Clearwire\Connection Manager\ConAppsSvc.exe" /n "CACLEARWIRE" [x]
4 CLEARWIRERcAppSvc; "C:\Program Files (x86)\Clearwire\Connection Manager\RcAppSvc.exe" /n "CLEARWIRERcAppSvc" [x]

========================== Drivers (Whitelisted) =============

1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [48992 2011-05-22] (AVG Technologies CZ, s.r.o.)
3 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [124496 2011-12-23] (AVG Technologies CZ, s.r.o. )
3 AVGIDSFilter; C:\Windows\System32\DRIVERS\avgidsfiltera.sys [29776 2011-12-23] (AVG Technologies CZ, s.r.o. )
0 AVGIDSHA; C:\Windows\System32\Drivers\AVGIDSHA.sys [28480 2012-04-19] (AVG Technologies CZ, s.r.o. )
1 Avgldx64; C:\Windows\System32\Drivers\Avgldx64.sys [289872 2012-02-22] (AVG Technologies CZ, s.r.o.)
1 Avgmfx64; C:\Windows\System32\Drivers\Avgmfx64.sys [47696 2011-12-23] (AVG Technologies CZ, s.r.o.)
0 Avgrkx64; C:\Windows\System32\Drivers\Avgrkx64.sys [36944 2012-01-31] (AVG Technologies CZ, s.r.o.)
1 Avgtdia; C:\Windows\System32\Drivers\Avgtdia.sys [383808 2012-03-19] (AVG Technologies CZ, s.r.o.)
1 BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120507.001\BHDrvx64.sys [1160824 2012-04-02] (Symantec Corporation)
1 ccSet_N360; C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys [167048 2011-11-04] (Symantec Corporation)
1 eeCtrl; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [482936 2012-03-17] (Symantec Corporation)
3 EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138360 2012-02-03] (Symantec Corporation)
1 IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20120516.001\IDSvia64.sys [488568 2012-04-27] (Symantec Corporation)
3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\ENG64.SYS [120440 2012-05-16] (Symantec Corporation)
3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\EX64.SYS [2068600 2012-05-16] (Symantec Corporation)
3 O2MDRDR; C:\Windows\System32\DRIVERS\o2mdx64.sys [63264 2009-05-06] (O2Micro )
4 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-01-07] (Duplex Secure Ltd.)
3 SRTSP; C:\Windows\System32\Drivers\N360x64\0602000.009\SRTSP64.SYS [737912 2012-03-28] (Symantec Corporation)
1 SRTSPX; C:\Windows\system32\drivers\N360x64\0602000.009\SRTSPX64.SYS [37496 2012-03-28] (Symantec Corporation)
0 SymDS; C:\Windows\System32\drivers\N360x64\0602000.009\SYMDS64.SYS [451192 2011-08-15] (Symantec Corporation)
0 SymEFA; C:\Windows\System32\drivers\N360x64\0602000.009\SYMEFA64.SYS [1092728 2011-11-23] (Symantec Corporation)
3 SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [175736 2012-03-25] (Symantec Corporation)
1 SymIRON; C:\Windows\system32\drivers\N360x64\0602000.009\Ironx64.SYS [190072 2011-11-16] (Symantec Corporation)
1 SymNetS; C:\Windows\System32\Drivers\N360x64\0602000.009\SYMNETS.SYS [405624 2011-11-16] (Symantec Corporation)
3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
3 PCTINDIS5X64; \??\C:\Windows\system32\PCTINDIS5X64.SYS [x]

========================== NetSvcs (Whitelisted) ===========


============ One Month Created Files and Folders ==============

2012-07-07 21:21 - 2012-07-07 21:21 - 00000000 ____D C:\FRST
2012-07-07 10:04 - 2012-07-07 10:04 - 00274400 ____A C:\Windows\Minidump\070712-81026-01.dmp
2012-07-07 10:02 - 2012-07-07 10:02 - 00000272 ____A C:\Windows\Tasks\At10.job
2012-07-07 10:01 - 2012-07-07 10:04 - 00000340 ____A C:\Windows\Tasks\At8.job
2012-07-07 10:01 - 2012-07-07 10:04 - 00000340 ____A C:\Windows\Tasks\At7.job
2012-07-07 10:01 - 2012-07-07 10:04 - 00000340 ____A C:\Windows\Tasks\At6.job
2012-07-07 10:01 - 2012-07-07 10:04 - 00000340 ____A C:\Windows\Tasks\At5.job
2012-07-07 10:01 - 2012-07-07 10:02 - 00000340 ____A C:\Windows\Tasks\At9.job
2012-07-07 10:01 - 2012-07-07 10:01 - 00238080 ____A () C:\Windows\svcs.exe
2012-07-07 09:56 - 2012-07-07 10:04 - 00000340 ____A C:\Windows\Tasks\At4.job
2012-07-07 09:56 - 2012-07-07 10:04 - 00000340 ____A C:\Windows\Tasks\At3.job
2012-07-07 09:56 - 2012-07-07 10:04 - 00000340 ____A C:\Windows\Tasks\At2.job
2012-07-07 09:56 - 2012-07-07 10:04 - 00000340 ____A C:\Windows\Tasks\At1.job
2012-07-07 09:56 - 2012-07-07 09:56 - 00086016 ____A C:\Users\All Users\E5AIcE81.exe
2012-07-07 09:40 - 2012-07-07 09:40 - 00270216 ____A C:\Windows\Minidump\070712-74740-01.dmp
2012-07-07 09:34 - 2012-07-07 09:34 - 00270216 ____A C:\Windows\Minidump\070712-41153-01.dmp
2012-07-07 09:32 - 2012-07-07 09:32 - 00000000 ____D C:\Windows\erdnt
2012-07-07 09:29 - 2012-07-07 09:29 - 00274456 ____A C:\Windows\Minidump\070712-41855-01.dmp
2012-07-07 09:24 - 2012-07-07 09:25 - 00274456 ____A C:\Windows\Minidump\070712-93023-01.dmp
2012-07-07 09:20 - 2012-07-07 09:20 - 00000787 ____A C:\Users\Yarmers'\Desktop\SHutdown.txt
2012-07-07 09:15 - 2012-07-07 09:15 - 00274456 ____A C:\Windows\Minidump\070712-101010-01.dmp
2012-07-07 09:14 - 2012-07-07 10:04 - 384428571 ____A C:\Windows\MEMORY.DMP
2012-07-07 09:12 - 2012-07-07 09:37 - 00000000 ___SD C:\32788R22FWJFW
2012-07-07 09:10 - 2012-07-07 09:10 - 00001479 ____A C:\Users\Yarmers'\Desktop\checkup.txt
2012-07-07 08:13 - 2012-07-07 07:59 - 00881475 ____A C:\Users\Yarmers'\Desktop\SecurityCheck.exe
2012-07-07 08:12 - 2012-07-07 08:04 - 04574136 ____R (Swearware) C:\Users\Yarmers'\Desktop\ComboFix.exe
2012-07-07 02:16 - 2012-07-07 02:16 - 00022390 ____A C:\Users\Yarmers'\Desktop\Attach.txt
2012-07-07 02:16 - 2012-07-07 02:16 - 00018769 ____A C:\Users\Yarmers'\Desktop\DDS.txt
2012-07-07 02:06 - 2012-07-07 02:06 - 00607260 ____R (Swearware) C:\Users\Yarmers'\Desktop\dds.scr
2012-07-07 02:05 - 2012-07-07 02:05 - 00000510 ____A C:\Users\Yarmers'\Desktop\defogger_disable.log
2012-07-07 02:05 - 2012-07-07 02:05 - 00000020 ____A C:\Users\Yarmers'\defogger_reenable
2012-07-07 02:04 - 2012-07-07 02:04 - 00050477 ____A C:\Users\Yarmers'\Desktop\Defogger.exe
2012-07-07 01:15 - 2012-07-07 01:15 - 00000000 ____D C:\Users\All Users\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
2012-07-06 13:33 - 2012-07-06 13:49 - 00000000 ____D C:\Users\Yarmers'\AppData\Roaming\AVG
2012-07-06 13:29 - 2012-07-06 13:30 - 08351056 ____A (AVG ) C:\Users\Yarmers'\Desktop\avg_pct_stf_all_10_27_c1.exe
2012-07-06 13:07 - 2012-07-06 13:07 - 00000000 ____D C:\Users\Yarmers'\AppData\Roaming\AVG2012
2012-07-06 13:05 - 2012-07-06 13:05 - 00000970 ____A C:\Users\Public\Desktop\AVG 2012.lnk
2012-07-06 13:05 - 2012-07-06 13:05 - 00000000 ____D C:\Windows\SysWOW64\Drivers\AVG
2012-07-06 13:01 - 2012-07-07 17:06 - 00000000 ____D C:\Windows\System32\Drivers\AVG
2012-07-06 13:01 - 2012-07-06 13:21 - 00000000 ____D C:\Users\All Users\AVG2012
2012-07-06 13:01 - 2012-07-06 13:01 - 00000000 ___HD C:\$AVG
2012-07-06 12:57 - 2012-07-06 13:31 - 00000000 ____D C:\Program Files (x86)\AVG
2012-07-06 12:45 - 2012-07-07 17:06 - 00000000 ____D C:\Users\All Users\MFAData
2012-07-06 12:41 - 2012-07-06 12:41 - 00274456 ____A C:\Windows\Minidump\070612-77844-01.dmp
2012-07-06 12:38 - 2012-07-06 12:38 - 03829664 ____A (AVG Technologies) C:\Users\Yarmers'\Desktop\avg_isc_stb_all_2012_2171.exe
2012-07-06 11:55 - 2012-07-06 11:56 - 02841104 ____A (Symantec Corporation) C:\Users\Yarmers'\Desktop\NPE.exe
2012-07-06 10:41 - 2012-07-06 10:41 - 00000000 __SHD C:\Windows\SysWOW64\%APPDATA%
2012-07-06 10:34 - 2012-07-06 10:34 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-07-06 09:15 - 2012-05-14 17:32 - 03144192 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-06 09:15 - 2012-05-01 21:32 - 00208896 ____A (Microsoft Corporation) C:\Windows\System32\profsvc.dll
2012-07-06 09:15 - 2012-04-27 19:50 - 00204800 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-06 09:15 - 2012-04-25 21:34 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll
2012-07-06 09:15 - 2012-04-25 21:34 - 00076288 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll
2012-07-06 09:15 - 2012-04-25 21:28 - 00009216 ____A (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe
2012-07-06 09:15 - 2012-04-23 21:59 - 01460224 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2012-07-06 09:15 - 2012-04-23 21:59 - 00182272 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2012-07-06 09:15 - 2012-04-23 21:59 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2012-07-06 09:15 - 2012-04-23 20:47 - 01156608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2012-07-06 09:15 - 2012-04-23 20:47 - 00139264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2012-07-06 09:15 - 2012-04-23 20:47 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2012-07-06 09:15 - 2012-04-16 21:38 - 00851968 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-07-06 09:15 - 2012-04-16 20:45 - 00716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-07-06 09:15 - 2012-04-07 04:18 - 03213824 ____A (Microsoft Corporation) C:\Windows\System32\msi.dll
2012-07-06 09:15 - 2012-04-07 03:34 - 02342400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2012-07-06 09:03 - 2012-06-02 14:19 - 02428952 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2012-07-06 09:03 - 2012-06-02 14:19 - 00057880 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2012-07-06 09:03 - 2012-06-02 14:19 - 00044056 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2012-07-06 09:03 - 2012-06-02 14:15 - 02622464 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2012-07-06 09:02 - 2012-06-02 14:19 - 00701976 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2012-07-06 09:02 - 2012-06-02 14:19 - 00038424 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll
2012-07-06 09:02 - 2012-06-02 14:15 - 00099840 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2012-07-06 09:01 - 2012-06-02 12:19 - 00186752 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2012-07-06 09:01 - 2012-06-02 12:15 - 00036864 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe

============ 3 Months Modified Files ========================

2012-07-07 18:06 - 2012-01-15 18:52 - 01546881 ____A C:\Windows\WindowsUpdate.log
2012-07-07 17:13 - 2010-07-19 17:53 - 00000920 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2718678614-2665442706-3092421083-1000UA.job
2012-07-07 17:12 - 2010-07-25 16:52 - 00000902 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-07-07 14:13 - 2010-07-19 17:53 - 00000868 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2718678614-2665442706-3092421083-1000Core.job
2012-07-07 10:15 - 2009-12-24 17:33 - 00011120 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-07-07 10:15 - 2009-12-24 17:33 - 00011120 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-07-07 10:12 - 2009-07-13 21:13 - 00730320 ____A C:\Windows\System32\PerfStringBackup.INI
2012-07-07 10:04 - 2012-07-07 10:04 - 00274400 ____A C:\Windows\Minidump\070712-81026-01.dmp
2012-07-07 10:04 - 2012-07-07 10:01 - 00000340 ____A C:\Windows\Tasks\At8.job
2012-07-07 10:04 - 2012-07-07 10:01 - 00000340 ____A C:\Windows\Tasks\At7.job
2012-07-07 10:04 - 2012-07-07 10:01 - 00000340 ____A C:\Windows\Tasks\At6.job
2012-07-07 10:04 - 2012-07-07 10:01 - 00000340 ____A C:\Windows\Tasks\At5.job
2012-07-07 10:04 - 2012-07-07 09:56 - 00000340 ____A C:\Windows\Tasks\At4.job
2012-07-07 10:04 - 2012-07-07 09:56 - 00000340 ____A C:\Windows\Tasks\At3.job
2012-07-07 10:04 - 2012-07-07 09:56 - 00000340 ____A C:\Windows\Tasks\At2.job
2012-07-07 10:04 - 2012-07-07 09:56 - 00000340 ____A C:\Windows\Tasks\At1.job
2012-07-07 10:04 - 2012-07-07 09:14 - 384428571 ____A C:\Windows\MEMORY.DMP
2012-07-07 10:04 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-07-07 10:04 - 2009-07-13 20:51 - 01782770 ____A C:\Windows\setupact.log
2012-07-07 10:02 - 2012-07-07 10:02 - 00000272 ____A C:\Windows\Tasks\At10.job
2012-07-07 10:02 - 2012-07-07 10:01 - 00000340 ____A C:\Windows\Tasks\At9.job
2012-07-07 10:01 - 2012-07-07 10:01 - 00238080 ____A () C:\Windows\svcs.exe
2012-07-07 09:56 - 2012-07-07 09:56 - 00086016 ____A C:\Users\All Users\E5AIcE81.exe
2012-07-07 09:40 - 2012-07-07 09:40 - 00270216 ____A C:\Windows\Minidump\070712-74740-01.dmp
2012-07-07 09:34 - 2012-07-07 09:34 - 00270216 ____A C:\Windows\Minidump\070712-41153-01.dmp
2012-07-07 09:29 - 2012-07-07 09:29 - 00274456 ____A C:\Windows\Minidump\070712-41855-01.dmp
2012-07-07 09:26 - 2010-07-25 16:52 - 00000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-07-07 09:25 - 2012-07-07 09:24 - 00274456 ____A C:\Windows\Minidump\070712-93023-01.dmp
2012-07-07 09:20 - 2012-07-07 09:20 - 00000787 ____A C:\Users\Yarmers'\Desktop\SHutdown.txt
2012-07-07 09:15 - 2012-07-07 09:15 - 00274456 ____A C:\Windows\Minidump\070712-101010-01.dmp
2012-07-07 09:10 - 2012-07-07 09:10 - 00001479 ____A C:\Users\Yarmers'\Desktop\checkup.txt
2012-07-07 08:04 - 2012-07-07 08:12 - 04574136 ____R (Swearware) C:\Users\Yarmers'\Desktop\ComboFix.exe
2012-07-07 07:59 - 2012-07-07 08:13 - 00881475 ____A C:\Users\Yarmers'\Desktop\SecurityCheck.exe
2012-07-07 02:16 - 2012-07-07 02:16 - 00022390 ____A C:\Users\Yarmers'\Desktop\Attach.txt
2012-07-07 02:16 - 2012-07-07 02:16 - 00018769 ____A C:\Users\Yarmers'\Desktop\DDS.txt
2012-07-07 02:06 - 2012-07-07 02:06 - 00607260 ____R (Swearware) C:\Users\Yarmers'\Desktop\dds.scr
2012-07-07 02:05 - 2012-07-07 02:05 - 00000510 ____A C:\Users\Yarmers'\Desktop\defogger_disable.log
2012-07-07 02:05 - 2012-07-07 02:05 - 00000020 ____A C:\Users\Yarmers'\defogger_reenable
2012-07-07 02:04 - 2012-07-07 02:04 - 00050477 ____A C:\Users\Yarmers'\Desktop\Defogger.exe
2012-07-06 13:30 - 2012-07-06 13:29 - 08351056 ____A (AVG ) C:\Users\Yarmers'\Desktop\avg_pct_stf_all_10_27_c1.exe
2012-07-06 13:05 - 2012-07-06 13:05 - 00000970 ____A C:\Users\Public\Desktop\AVG 2012.lnk
2012-07-06 12:41 - 2012-07-06 12:41 - 00274456 ____A C:\Windows\Minidump\070612-77844-01.dmp
2012-07-06 12:38 - 2012-07-06 12:38 - 03829664 ____A (AVG Technologies) C:\Users\Yarmers'\Desktop\avg_isc_stb_all_2012_2171.exe
2012-07-06 11:56 - 2012-07-06 11:55 - 02841104 ____A (Symantec Corporation) C:\Users\Yarmers'\Desktop\NPE.exe
2012-07-06 11:37 - 2009-07-13 20:45 - 03331424 ____A C:\Windows\System32\FNTCACHE.DAT
2012-07-06 10:34 - 2012-07-06 10:34 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-07-06 10:34 - 2011-07-23 05:58 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-07-06 09:37 - 2012-04-14 00:07 - 00000129 ____A C:\Windows\System32\MRT.INI
2012-07-06 09:31 - 2012-01-18 14:01 - 58957832 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-07-06 08:52 - 2010-02-23 20:30 - 00000258 _RASH C:\Users\All Users\ntuser.pol
2012-06-02 14:19 - 2012-07-06 09:03 - 02428952 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2012-06-02 14:19 - 2012-07-06 09:03 - 00057880 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2012-06-02 14:19 - 2012-07-06 09:03 - 00044056 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2012-06-02 14:19 - 2012-07-06 09:02 - 00701976 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2012-06-02 14:19 - 2012-07-06 09:02 - 00038424 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll
2012-06-02 14:15 - 2012-07-06 09:03 - 02622464 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2012-06-02 14:15 - 2012-07-06 09:02 - 00099840 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2012-06-02 12:19 - 2012-07-06 09:01 - 00186752 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2012-06-02 12:15 - 2012-07-06 09:01 - 00036864 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2012-05-15 15:15 - 2012-05-15 15:15 - 00002848 ____A C:\{45BDEA67-335F-422A-BA6D-F3CEC9C3FB32}
2012-05-14 17:32 - 2012-07-06 09:15 - 03144192 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-05-13 21:03 - 2012-05-13 21:03 - 00002256 ____A C:\{9FBFB9CF-7524-4E75-A37E-0A77A3ACE2D3}
2012-05-13 20:34 - 2012-05-13 20:34 - 00002112 ____A C:\{B761A1F5-CACB-4A1F-A4C5-46BFFB27FBF3}
2012-05-13 18:00 - 2009-12-24 19:04 - 00107526 ____A C:\Windows\PFRO.log
2012-05-13 18:00 - 2009-07-13 21:08 - 00032636 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-05-07 07:05 - 2012-03-11 13:10 - 00002026 ____A C:\Users\Public\Desktop\Adobe Acrobat 9 Pro.lnk
2012-05-01 21:32 - 2012-07-06 09:15 - 00208896 ____A (Microsoft Corporation) C:\Windows\System32\profsvc.dll
2012-04-27 19:50 - 2012-07-06 09:15 - 00204800 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-04-25 21:34 - 2012-07-06 09:15 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll
2012-04-25 21:34 - 2012-07-06 09:15 - 00076288 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll
2012-04-25 21:28 - 2012-07-06 09:15 - 00009216 ____A (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe
2012-04-24 21:17 - 2012-04-24 21:17 - 00274568 ____A C:\Windows\Minidump\042512-74771-01.dmp
2012-04-24 21:00 - 2011-10-12 15:00 - 00002304 ____A C:\Users\Public\Desktop\Norton 360.lnk
2012-04-23 21:59 - 2012-07-06 09:15 - 01460224 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2012-04-23 21:59 - 2012-07-06 09:15 - 00182272 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2012-04-23 21:59 - 2012-07-06 09:15 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2012-04-23 20:47 - 2012-07-06 09:15 - 01156608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2012-04-23 20:47 - 2012-07-06 09:15 - 00139264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2012-04-23 20:47 - 2012-07-06 09:15 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2012-04-22 16:32 - 2012-04-22 16:32 - 00000000 __AHT C:\Windows\wusa.lock
2012-04-22 16:27 - 2012-04-22 16:27 - 02033827 ____A C:\Windows6.1-KB2506014-x64.msu
2012-04-22 16:25 - 2012-04-22 16:24 - 01528184 ____A (Microsoft Corporation) C:\Users\Yarmers'\Desktop\GenuineCheck(2).exe
2012-04-19 01:50 - 2012-04-19 01:50 - 00028480 ____A (AVG Technologies CZ, s.r.o. ) C:\Windows\System32\Drivers\avgidsha.sys
2012-04-16 21:38 - 2012-07-06 09:15 - 00851968 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-04-16 20:45 - 2012-07-06 09:15 - 00716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-04-14 12:16 - 2012-04-14 12:16 - 00274512 ____A C:\Windows\Minidump\041412-46488-01.dmp
2012-04-13 15:13 - 2012-04-13 15:13 - 00274568 ____A C:\Windows\Minidump\041312-106735-01.dmp


ZeroAccess:
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\@
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\L
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\U
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\L\00000004.@
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\L\1afb2d56
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\L\201d3dde
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\U\00000004.@
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\U\00000008.@
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\U\000000cb.@
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\U\80000000.@
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\U\80000032.@
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}\U\80000064.@

ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini

ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini

Possible MBR infection:
C:\Windows\svchost.exe

========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe 014A9CB92514E27C0107614DF764BC06 ZeroAccess <==== ATTENTION!.
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

========================= Memory info ======================

Percentage of memory in use: 15%
Total physical RAM: 3838.41 MB
Available physical RAM: 3243.4 MB
Total Pagefile: 3836.55 MB
Available Pagefile: 3243.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: (SE7EN) (Fixed) (Total:184.82 GB) (Free:26.6 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
2 Drive d: (New Volume) (Fixed) (Total:26.07 GB) (Free:25.98 GB) NTFS
3 Drive e: (PQSERVICE) (Fixed) (Total:14 GB) (Free:5.08 GB) NTFS
5 Drive g: (HP 16GB) (Removable) (Total:15.1 GB) (Free:14.97 GB) FAT32
6 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 232 GB 8 GB
Disk 1 Online 15 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Recovery 14 GB 1024 KB
Partition 2 Primary 184 GB 14 GB
Partition 0 Extended 26 GB 198 GB
Partition 3 Logical 26 GB 198 GB

==================================================================================

Disk: 0
Partition 1
Type : 27
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 E PQSERVICE NTFS Partition 14 GB Healthy Hidden

==================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C SE7EN NTFS Partition 184 GB Healthy

==================================================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 D New Volume NTFS Partition 26 GB Healthy
C:\1 New Media File\

==================================================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 15 GB 16 KB

==================================================================================

Disk: 1
Partition 1
Type : 0C
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 G HP 16GB FAT32 Removable 15 GB Healthy

==================================================================================
==========================================================
TDL4: custom:26000022 <===== ATTENTION!


==========================================================

Last Boot: 2012-07-06 19:59

======================= End Of Log ==========================

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:56 AM

Posted 07 July 2012 - 09:56 PM

Greetings

Ok lets see if we can find a replacement for the infected file

In Vista or Windows 7: Boot to System Recovery Options and run FRST.

Type the following in the edit box after "Search:".

services.exe

It then should look like:

Search: services.exe

Click Search button and post the log (Search.txt) it makes to your reply.


Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 markyellguy

markyellguy
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 07 July 2012 - 10:20 PM

Farbar Recovery Scan Tool Version: 07-07-2012 04
Ran by SYSTEM at 2012-07-07 22:10:56
Running from G:\

================== Search: "services.exe" ===================

C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
[2009-07-13 15:19] - [2009-07-13 17:39] - 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB

C:\Windows\System32\services.exe
[2009-07-13 15:19] - [2009-07-13 17:39] - 0328704 ____A (Microsoft Corporation) 014A9CB92514E27C0107614DF764BC06

====== End Of Search ======

#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:56 AM

Posted 07 July 2012 - 10:29 PM

Hello

Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad. Save it on the flash drive as fixlist.txt

Replace: C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe C:\Windows\System32\services.exe
TDL4: custom:26000022 <===== ATTENTION!
CMD: bootrec /FixMbr
C:\Windows\svchost.exe
C:\Windows\assembly\GAC_64\Desktop.ini
C:\Windows\assembly\GAC_32\Desktop.ini
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41}
CMD: Del /q C:\Windows\Tasks\At*.job 


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

On Vista or Windows 7: Now please enter System Recovery Options.

Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flash drive (Fixlog.txt) please post it to your reply.

Gringo[/b]
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 markyellguy

markyellguy
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 07 July 2012 - 10:42 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) Version: 07-07-2012 04
Ran by SYSTEM at 2012-07-07 22:40:38 Run:1
Running from G:\

==============================================

C:\Windows\System32\services.exe moved successfully.
C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe copied successfully to C:\Windows\System32\services.exe

The operation completed successfully.
The operation completed successfully.

========= bootrec /FixMbr =========

 ■T h e o p e r a t i o n c o m p l e t e d s u c c e s s f u l l y .

========= End of CMD: =========

C:\Windows\svchost.exe moved successfully.
C:\Windows\assembly\GAC_64\Desktop.ini moved successfully.
C:\Windows\assembly\GAC_32\Desktop.ini moved successfully.
C:\Windows\Installer\{c2c8b0e4-6e1a-e33a-fb28-69ce63f19a41} moved successfully.

========= Del /q C:\Windows\Tasks\At*.job =========


========= End of CMD: =========


==== End of Fixlog ====

#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:56 AM

Posted 07 July 2012 - 10:48 PM

Hello

I would like you to download an updated version of combofix.

update combofix

Delete the version of combofix you have now on your desktop and download a new one from here

Link 1
Link 2
Link 3
**Note: It is important that it is saved directly to your desktop**

1. Close any open browsers.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note:Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer
[/list]
"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 markyellguy

markyellguy
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 08 July 2012 - 12:46 AM

Log is too large to post..., had too attach.

Running a scan now with AVG and found:
C:\FRST\Quarantine\services.exe Trojan Horse Dropper.Generic_c.MMI

#12 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:56 AM

Posted 08 July 2012 - 12:58 AM

Greetings

That is the file we replaced

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#13 markyellguy

markyellguy
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 08 July 2012 - 03:18 AM

Logs...

01:20:56.0596 1040 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
01:20:58.0655 1040 ============================================================
01:20:58.0655 1040 Current date / time: 2012/07/08 01:20:58.0655
01:20:58.0655 1040 SystemInfo:
01:20:58.0655 1040
01:20:58.0655 1040 OS Version: 6.1.7600 ServicePack: 0.0
01:20:58.0655 1040 Product type: Workstation
01:20:58.0655 1040 ComputerName: YARMERLAPTOP
01:20:58.0655 1040 UserName: Yarmers'
01:20:58.0655 1040 Windows directory: C:\Windows
01:20:58.0655 1040 System windows directory: C:\Windows
01:20:58.0655 1040 Running under WOW64
01:20:58.0655 1040 Processor architecture: Intel x64
01:20:58.0655 1040 Number of processors: 2
01:20:58.0655 1040 Page size: 0x1000
01:20:58.0655 1040 Boot type: Normal boot
01:20:58.0655 1040 ============================================================
01:21:03.0460 1040 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:21:03.0476 1040 Drive \Device\Harddisk1\DR2 - Size: 0x3C7800000 (15.12 Gb), SectorSize: 0x200, Cylinders: 0x7B5, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:21:03.0491 1040 ============================================================
01:21:03.0491 1040 \Device\Harddisk0\DR0:
01:21:03.0491 1040 MBR partitions:
01:21:03.0491 1040 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x171A27F0
01:21:03.0491 1040 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18DA3800, BlocksNum 0x3421800
01:21:03.0491 1040 \Device\Harddisk1\DR2:
01:21:03.0507 1040 MBR partitions:
01:21:03.0507 1040 \Device\Harddisk1\DR2\Partition0: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x1E3BFE0
01:21:03.0507 1040 ============================================================
01:21:03.0600 1040 C: <-> \Device\Harddisk0\DR0\Partition0
01:21:03.0600 1040 ============================================================
01:21:03.0600 1040 Initialize success
01:21:03.0600 1040 ============================================================
01:21:20.0480 0364 ============================================================
01:21:20.0480 0364 Scan started
01:21:20.0480 0364 Mode: Manual;
01:21:20.0480 0364 ============================================================
01:21:23.0990 0364 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
01:21:23.0990 0364 1394ohci - ok
01:21:24.0146 0364 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:21:24.0146 0364 ACDaemon - ok
01:21:24.0224 0364 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
01:21:24.0224 0364 ACPI - ok
01:21:24.0286 0364 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
01:21:24.0302 0364 AcpiPmi - ok
01:21:24.0364 0364 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
01:21:24.0380 0364 adfs - ok
01:21:24.0551 0364 Adobe Version Cue CS4 (57a3b9a69f14414ace12afd6ba701773) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
01:21:24.0583 0364 Adobe Version Cue CS4 - ok
01:21:24.0692 0364 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:21:24.0707 0364 adp94xx - ok
01:21:24.0879 0364 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:21:24.0879 0364 adpahci - ok
01:21:24.0910 0364 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:21:24.0926 0364 adpu320 - ok
01:21:24.0973 0364 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:21:24.0973 0364 AeLookupSvc - ok
01:21:25.0082 0364 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
01:21:25.0129 0364 AFD - ok
01:21:25.0191 0364 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
01:21:25.0191 0364 agp440 - ok
01:21:25.0238 0364 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:21:25.0253 0364 ALG - ok
01:21:25.0316 0364 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
01:21:25.0316 0364 aliide - ok
01:21:25.0394 0364 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
01:21:25.0394 0364 AMD External Events Utility - ok
01:21:25.0409 0364 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
01:21:25.0409 0364 amdide - ok
01:21:25.0456 0364 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:21:25.0456 0364 AmdK8 - ok
01:21:25.0581 0364 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:21:25.0581 0364 AmdPPM - ok
01:21:25.0643 0364 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
01:21:25.0643 0364 amdsata - ok
01:21:25.0706 0364 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:21:25.0706 0364 amdsbs - ok
01:21:25.0799 0364 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
01:21:25.0799 0364 amdxata - ok
01:21:25.0862 0364 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
01:21:25.0877 0364 AppID - ok
01:21:25.0909 0364 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:21:25.0924 0364 AppIDSvc - ok
01:21:25.0940 0364 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
01:21:25.0955 0364 Appinfo - ok
01:21:26.0111 0364 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:21:26.0143 0364 Apple Mobile Device - ok
01:21:26.0205 0364 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:21:26.0205 0364 arc - ok
01:21:26.0252 0364 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:21:26.0267 0364 arcsas - ok
01:21:26.0299 0364 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:21:26.0314 0364 AsyncMac - ok
01:21:26.0314 0364 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
01:21:26.0314 0364 atapi - ok
01:21:26.0517 0364 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
01:21:26.0564 0364 athr - ok
01:21:27.0281 0364 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
01:21:27.0422 0364 atikmdag - ok
01:21:27.0749 0364 AtiPcie (db0d3de15edc96e7529fc0d3f7760894) C:\Windows\system32\DRIVERS\AtiPcie.sys
01:21:27.0749 0364 AtiPcie - ok
01:21:27.0952 0364 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:21:27.0983 0364 AudioEndpointBuilder - ok
01:21:27.0999 0364 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:21:27.0999 0364 AudioSrv - ok
01:21:28.0124 0364 Avgfwfd (96b4456f1dca4eda506ed31c7d2d6b05) C:\Windows\system32\DRIVERS\avgfwd6a.sys
01:21:28.0139 0364 Avgfwfd - ok
01:21:28.0498 0364 avgfws (bd5d11cedbcde4fa97d2387e7069b1ff) C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
01:21:28.0545 0364 avgfws - ok
01:21:29.0294 0364 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
01:21:29.0403 0364 AVGIDSAgent - ok
01:21:29.0762 0364 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
01:21:29.0777 0364 AVGIDSDriver - ok
01:21:29.0824 0364 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
01:21:29.0824 0364 AVGIDSFilter - ok
01:21:29.0902 0364 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
01:21:29.0902 0364 AVGIDSHA - ok
01:21:29.0996 0364 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
01:21:29.0996 0364 Avgldx64 - ok
01:21:30.0074 0364 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
01:21:30.0089 0364 Avgmfx64 - ok
01:21:30.0152 0364 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
01:21:30.0183 0364 Avgrkx64 - ok
01:21:30.0261 0364 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
01:21:30.0292 0364 Avgtdia - ok
01:21:30.0433 0364 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
01:21:30.0433 0364 avgwd - ok
01:21:30.0511 0364 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
01:21:30.0526 0364 AxInstSV - ok
01:21:30.0604 0364 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:21:30.0620 0364 b06bdrv - ok
01:21:30.0760 0364 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:21:30.0760 0364 b57nd60a - ok
01:21:30.0838 0364 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:21:30.0854 0364 BDESVC - ok
01:21:30.0869 0364 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:21:30.0869 0364 Beep - ok
01:21:31.0041 0364 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
01:21:31.0041 0364 BFE - ok
01:21:31.0493 0364 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120507.001\BHDrvx64.sys
01:21:31.0509 0364 BHDrvx64 - ok
01:21:31.0774 0364 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
01:21:31.0790 0364 BITS - ok
01:21:31.0899 0364 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:21:31.0899 0364 blbdrive - ok
01:21:32.0133 0364 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
01:21:32.0149 0364 Bonjour Service - ok
01:21:32.0211 0364 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
01:21:32.0227 0364 bowser - ok
01:21:32.0289 0364 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:21:32.0289 0364 BrFiltLo - ok
01:21:32.0320 0364 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:21:32.0320 0364 BrFiltUp - ok
01:21:32.0351 0364 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
01:21:32.0367 0364 BridgeMP - ok
01:21:32.0445 0364 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
01:21:32.0445 0364 Browser - ok
01:21:32.0507 0364 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:21:32.0523 0364 Brserid - ok
01:21:32.0570 0364 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:21:32.0570 0364 BrSerWdm - ok
01:21:32.0617 0364 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:21:32.0648 0364 BrUsbMdm - ok
01:21:32.0679 0364 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:21:32.0679 0364 BrUsbSer - ok
01:21:32.0695 0364 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:21:32.0710 0364 BTHMODEM - ok
01:21:32.0882 0364 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:21:32.0913 0364 bthserv - ok
01:21:32.0929 0364 CACLEARWIRE - ok
01:21:33.0178 0364 catchme - ok
01:21:33.0319 0364 CAXHWAZL (d1787e11c6a0078ddeaf8cf3ee2ab293) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
01:21:33.0334 0364 CAXHWAZL - ok
01:21:33.0443 0364 ccSet_N360 (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys
01:21:33.0475 0364 ccSet_N360 - ok
01:21:33.0584 0364 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:21:33.0599 0364 cdfs - ok
01:21:33.0693 0364 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
01:21:33.0693 0364 cdrom - ok
01:21:33.0787 0364 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:21:33.0818 0364 CertPropSvc - ok
01:21:33.0958 0364 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:21:33.0958 0364 circlass - ok
01:21:33.0958 0364 CLEARWIRERcAppSvc - ok
01:21:34.0270 0364 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:21:34.0286 0364 CLFS - ok
01:21:34.0426 0364 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:21:34.0442 0364 clr_optimization_v2.0.50727_32 - ok
01:21:34.0520 0364 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:21:34.0520 0364 clr_optimization_v2.0.50727_64 - ok
01:21:34.0598 0364 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:21:34.0629 0364 clr_optimization_v4.0.30319_32 - ok
01:21:34.0723 0364 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:21:34.0738 0364 clr_optimization_v4.0.30319_64 - ok
01:21:34.0785 0364 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:21:34.0801 0364 CmBatt - ok
01:21:34.0816 0364 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
01:21:34.0816 0364 cmdide - ok
01:21:34.0894 0364 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
01:21:34.0910 0364 CNG - ok
01:21:35.0019 0364 CnxtHdAudService (0d23c3312838eea1ed55d5f135bca613) C:\Windows\system32\drivers\CHDRT64.sys
01:21:35.0035 0364 CnxtHdAudService - ok
01:21:35.0097 0364 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:21:35.0097 0364 Compbatt - ok
01:21:35.0159 0364 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
01:21:35.0159 0364 CompositeBus - ok
01:21:35.0191 0364 COMSysApp - ok
01:21:35.0237 0364 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:21:35.0237 0364 crcdisk - ok
01:21:35.0315 0364 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
01:21:35.0315 0364 CryptSvc - ok
01:21:35.0362 0364 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys
01:21:35.0378 0364 dc3d - ok
01:21:35.0456 0364 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:21:35.0471 0364 DcomLaunch - ok
01:21:35.0581 0364 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:21:35.0581 0364 defragsvc - ok
01:21:35.0659 0364 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
01:21:35.0674 0364 DfsC - ok
01:21:35.0752 0364 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
01:21:35.0752 0364 Dhcp - ok
01:21:35.0815 0364 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:21:35.0815 0364 discache - ok
01:21:35.0861 0364 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:21:35.0877 0364 Disk - ok
01:21:35.0924 0364 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
01:21:35.0924 0364 Dnscache - ok
01:21:36.0017 0364 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
01:21:36.0033 0364 dot3svc - ok
01:21:36.0049 0364 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
01:21:36.0064 0364 DPS - ok
01:21:36.0111 0364 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:21:36.0111 0364 drmkaud - ok
01:21:36.0236 0364 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
01:21:36.0251 0364 DXGKrnl - ok
01:21:36.0314 0364 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:21:36.0314 0364 EapHost - ok
01:21:36.0563 0364 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:21:36.0626 0364 ebdrv - ok
01:21:36.0766 0364 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
01:21:36.0797 0364 eeCtrl - ok
01:21:36.0969 0364 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
01:21:36.0969 0364 EFS - ok
01:21:37.0125 0364 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
01:21:37.0141 0364 ehRecvr - ok
01:21:37.0187 0364 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:21:37.0265 0364 ehSched - ok
01:21:37.0421 0364 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:21:37.0437 0364 elxstor - ok
01:21:37.0546 0364 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
01:21:37.0562 0364 EraserUtilRebootDrv - ok
01:21:37.0609 0364 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
01:21:37.0609 0364 ErrDev - ok
01:21:37.0702 0364 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:21:37.0702 0364 EventSystem - ok
01:21:37.0749 0364 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:21:37.0749 0364 exfat - ok
01:21:37.0780 0364 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:21:37.0780 0364 fastfat - ok
01:21:37.0905 0364 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
01:21:37.0921 0364 Fax - ok
01:21:37.0936 0364 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:21:37.0936 0364 fdc - ok
01:21:37.0983 0364 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:21:37.0999 0364 fdPHost - ok
01:21:37.0999 0364 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:21:37.0999 0364 FDResPub - ok
01:21:38.0077 0364 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:21:38.0092 0364 FileInfo - ok
01:21:38.0123 0364 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:21:38.0139 0364 Filetrace - ok
01:21:38.0373 0364 FLEXnet Licensing Service (d60ef46dc0e757fe5eb579db95b88954) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:21:38.0389 0364 FLEXnet Licensing Service - ok
01:21:38.0591 0364 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
01:21:38.0669 0364 FLEXnet Licensing Service 64 - ok
01:21:38.0935 0364 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:21:38.0935 0364 flpydisk - ok
01:21:38.0981 0364 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
01:21:38.0981 0364 FltMgr - ok
01:21:39.0200 0364 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
01:21:39.0262 0364 FontCache - ok
01:21:39.0527 0364 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:21:39.0543 0364 FontCache3.0.0.0 - ok
01:21:39.0668 0364 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:21:39.0668 0364 FsDepends - ok
01:21:39.0730 0364 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
01:21:39.0730 0364 Fs_Rec - ok
01:21:39.0793 0364 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:21:39.0808 0364 fvevol - ok
01:21:39.0824 0364 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:21:39.0824 0364 gagp30kx - ok
01:21:40.0089 0364 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe
01:21:40.0136 0364 GameConsoleService - ok
01:21:40.0183 0364 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:21:40.0198 0364 GEARAspiWDM - ok
01:21:40.0292 0364 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
01:21:40.0307 0364 gpsvc - ok
01:21:40.0479 0364 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:21:40.0479 0364 gupdate - ok
01:21:40.0495 0364 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:21:40.0495 0364 gupdatem - ok
01:21:40.0541 0364 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:21:40.0541 0364 hcw85cir - ok
01:21:40.0619 0364 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
01:21:40.0619 0364 HdAudAddService - ok
01:21:40.0666 0364 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
01:21:40.0682 0364 HDAudBus - ok
01:21:40.0697 0364 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:21:40.0713 0364 HidBatt - ok
01:21:40.0729 0364 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:21:40.0729 0364 HidBth - ok
01:21:40.0760 0364 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:21:40.0760 0364 HidIr - ok
01:21:40.0807 0364 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
01:21:40.0807 0364 hidserv - ok
01:21:40.0900 0364 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
01:21:40.0916 0364 HidUsb - ok
01:21:40.0978 0364 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
01:21:40.0994 0364 hkmsvc - ok
01:21:41.0041 0364 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
01:21:41.0041 0364 HomeGroupListener - ok
01:21:41.0134 0364 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
01:21:41.0150 0364 HomeGroupProvider - ok
01:21:41.0197 0364 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
01:21:41.0197 0364 HpSAMD - ok
01:21:41.0415 0364 HsfXAudioService (447256d1c026654c5cd3cc17e7b20631) C:\Windows\SysWOW64\XAudio64.dll
01:21:41.0446 0364 HsfXAudioService - ok
01:21:41.0571 0364 HSF_DPV (26c5d00321937e49b6bc91029947d094) C:\Windows\system32\DRIVERS\CAX_DPV.sys
01:21:41.0602 0364 HSF_DPV - ok
01:21:41.0945 0364 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
01:21:41.0977 0364 HTTP - ok
01:21:42.0023 0364 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
01:21:42.0023 0364 hwpolicy - ok
01:21:42.0055 0364 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
01:21:42.0055 0364 i8042prt - ok
01:21:42.0133 0364 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
01:21:42.0133 0364 iaStor - ok
01:21:42.0211 0364 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\DRIVERS\iaStorV.sys
01:21:42.0226 0364 iaStorV - ok
01:21:42.0445 0364 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:21:42.0476 0364 idsvc - ok
01:21:42.0866 0364 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20120516.001\IDSvia64.sys
01:21:42.0881 0364 IDSVia64 - ok
01:21:43.0084 0364 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:21:43.0084 0364 iirsp - ok
01:21:43.0256 0364 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
01:21:43.0271 0364 IKEEXT - ok
01:21:43.0334 0364 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
01:21:43.0334 0364 intelide - ok
01:21:43.0381 0364 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:21:43.0381 0364 intelppm - ok
01:21:43.0427 0364 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:21:43.0443 0364 IPBusEnum - ok
01:21:43.0505 0364 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:21:43.0521 0364 IpFilterDriver - ok
01:21:43.0615 0364 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
01:21:43.0630 0364 iphlpsvc - ok
01:21:43.0677 0364 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
01:21:43.0677 0364 IPMIDRV - ok
01:21:43.0724 0364 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:21:43.0724 0364 IPNAT - ok
01:21:43.0942 0364 iPod Service (056ab99a00e2023a24ab4f067880cc3e) C:\Program Files\iPod\bin\iPodService.exe
01:21:43.0958 0364 iPod Service - ok
01:21:44.0020 0364 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:21:44.0020 0364 IRENUM - ok
01:21:44.0036 0364 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
01:21:44.0036 0364 isapnp - ok
01:21:44.0067 0364 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
01:21:44.0083 0364 iScsiPrt - ok
01:21:44.0129 0364 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
01:21:44.0129 0364 kbdclass - ok
01:21:44.0176 0364 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
01:21:44.0176 0364 kbdhid - ok
01:21:44.0223 0364 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:44.0223 0364 KeyIso - ok
01:21:44.0831 0364 Kodak AiO Network Discovery Service (27277a11db52fefae5b01dc8fb570b28) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
01:21:44.0863 0364 Kodak AiO Network Discovery Service - ok
01:21:44.0925 0364 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
01:21:44.0925 0364 KSecDD - ok
01:21:44.0987 0364 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
01:21:44.0987 0364 KSecPkg - ok
01:21:45.0097 0364 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:21:45.0097 0364 ksthunk - ok
01:21:45.0221 0364 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:21:45.0253 0364 KtmRm - ok
01:21:45.0362 0364 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
01:21:45.0362 0364 LanmanServer - ok
01:21:45.0424 0364 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
01:21:45.0424 0364 LanmanWorkstation - ok
01:21:45.0565 0364 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
01:21:45.0565 0364 LBTServ - ok
01:21:46.0220 0364 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
01:21:46.0797 0364 LeapFrog Connect Device Service - ok
01:21:47.0047 0364 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
01:21:47.0062 0364 LEqdUsb - ok
01:21:47.0125 0364 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
01:21:47.0140 0364 LHidEqd - ok
01:21:47.0234 0364 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
01:21:47.0234 0364 LHidFilt - ok
01:21:47.0296 0364 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:21:47.0312 0364 lltdio - ok
01:21:47.0405 0364 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:21:47.0421 0364 lltdsvc - ok
01:21:47.0499 0364 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:21:47.0499 0364 lmhosts - ok
01:21:47.0561 0364 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
01:21:47.0561 0364 LMouFilt - ok
01:21:47.0639 0364 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:21:47.0655 0364 LSI_FC - ok
01:21:47.0671 0364 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:21:47.0671 0364 LSI_SAS - ok
01:21:47.0686 0364 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:21:47.0702 0364 LSI_SAS2 - ok
01:21:47.0717 0364 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:21:47.0717 0364 LSI_SCSI - ok
01:21:47.0749 0364 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:21:47.0749 0364 luafv - ok
01:21:47.0795 0364 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
01:21:47.0842 0364 Mcx2Svc - ok
01:21:47.0889 0364 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
01:21:47.0889 0364 mdmxsdk - ok
01:21:47.0936 0364 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:21:47.0936 0364 megasas - ok
01:21:48.0014 0364 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:21:48.0014 0364 MegaSR - ok
01:21:48.0232 0364 mi-raysat_3dsmax2011_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
01:21:48.0279 0364 mi-raysat_3dsmax2011_32 - ok
01:21:48.0466 0364 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:21:48.0466 0364 Microsoft Office Groove Audit Service - ok
01:21:48.0513 0364 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:21:48.0529 0364 MMCSS - ok
01:21:48.0575 0364 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:21:48.0575 0364 Modem - ok
01:21:48.0638 0364 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:21:48.0638 0364 monitor - ok
01:21:48.0685 0364 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
01:21:48.0700 0364 mouclass - ok
01:21:48.0716 0364 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:21:48.0731 0364 mouhid - ok
01:21:48.0763 0364 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
01:21:48.0763 0364 mountmgr - ok
01:21:48.0794 0364 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
01:21:48.0825 0364 mpio - ok
01:21:48.0887 0364 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:21:48.0887 0364 mpsdrv - ok
01:21:49.0075 0364 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
01:21:49.0090 0364 MpsSvc - ok
01:21:49.0106 0364 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
01:21:49.0121 0364 MRxDAV - ok
01:21:49.0153 0364 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:21:49.0168 0364 mrxsmb - ok
01:21:49.0199 0364 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:21:49.0199 0364 mrxsmb10 - ok
01:21:49.0231 0364 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:21:49.0231 0364 mrxsmb20 - ok
01:21:49.0309 0364 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
01:21:49.0340 0364 msahci - ok
01:21:49.0387 0364 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
01:21:49.0402 0364 msdsm - ok
01:21:49.0465 0364 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:21:49.0480 0364 MSDTC - ok
01:21:49.0511 0364 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:21:49.0511 0364 Msfs - ok
01:21:49.0574 0364 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:21:49.0574 0364 mshidkmdf - ok
01:21:49.0589 0364 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
01:21:49.0589 0364 msisadrv - ok
01:21:49.0652 0364 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:21:49.0667 0364 MSiSCSI - ok
01:21:49.0667 0364 msiserver - ok
01:21:49.0730 0364 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:21:49.0730 0364 MSKSSRV - ok
01:21:49.0761 0364 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:21:49.0761 0364 MSPCLOCK - ok
01:21:49.0777 0364 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:21:49.0777 0364 MSPQM - ok
01:21:50.0057 0364 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
01:21:50.0057 0364 MsRPC - ok
01:21:50.0089 0364 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
01:21:50.0089 0364 mssmbios - ok
01:21:50.0135 0364 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:21:50.0135 0364 MSTEE - ok
01:21:50.0151 0364 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:21:50.0151 0364 MTConfig - ok
01:21:50.0229 0364 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:21:50.0229 0364 Mup - ok
01:21:50.0432 0364 N360 (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe
01:21:50.0447 0364 N360 - ok
01:21:50.0525 0364 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
01:21:50.0525 0364 napagent - ok
01:21:50.0619 0364 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:21:50.0619 0364 NativeWifiP - ok
01:21:50.0900 0364 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\ENG64.SYS
01:21:50.0931 0364 NAVENG - ok
01:21:51.0337 0364 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\EX64.SYS
01:21:51.0399 0364 NAVEX15 - ok
01:21:51.0789 0364 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
01:21:51.0805 0364 NDIS - ok
01:21:51.0851 0364 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:21:51.0851 0364 NdisCap - ok
01:21:51.0914 0364 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:21:51.0914 0364 NdisTapi - ok
01:21:51.0945 0364 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
01:21:51.0945 0364 Ndisuio - ok
01:21:51.0992 0364 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
01:21:51.0992 0364 NdisWan - ok
01:21:52.0007 0364 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
01:21:52.0007 0364 NDProxy - ok
01:21:52.0054 0364 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:21:52.0070 0364 NetBIOS - ok
01:21:52.0101 0364 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
01:21:52.0101 0364 NetBT - ok
01:21:52.0148 0364 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:52.0148 0364 Netlogon - ok
01:21:52.0226 0364 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:21:52.0241 0364 Netman - ok
01:21:52.0273 0364 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:21:52.0288 0364 netprofm - ok
01:21:52.0522 0364 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:21:52.0522 0364 NetTcpPortSharing - ok
01:21:52.0569 0364 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:21:52.0569 0364 nfrd960 - ok
01:21:52.0694 0364 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
01:21:52.0694 0364 NlaSvc - ok
01:21:52.0709 0364 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:21:52.0709 0364 Npfs - ok
01:21:52.0787 0364 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:21:52.0787 0364 nsi - ok
01:21:52.0803 0364 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:21:52.0803 0364 nsiproxy - ok
01:21:53.0037 0364 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
01:21:53.0084 0364 Ntfs - ok
01:21:53.0287 0364 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
01:21:53.0302 0364 NuidFltr - ok
01:21:53.0333 0364 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:21:53.0333 0364 Null - ok
01:21:53.0411 0364 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\DRIVERS\nvraid.sys
01:21:53.0411 0364 nvraid - ok
01:21:53.0489 0364 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\DRIVERS\nvstor.sys
01:21:53.0489 0364 nvstor - ok
01:21:53.0552 0364 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
01:21:53.0552 0364 nv_agp - ok
01:21:53.0614 0364 O2FLASH (d955d5de998db2476bf0892be3a96c26) C:\Windows\system32\DRIVERS\o2flash.exe
01:21:53.0630 0364 O2FLASH - ok
01:21:53.0661 0364 O2MDRDR (26da4b40670ad436f7daec053a2a9eca) C:\Windows\system32\DRIVERS\o2mdx64.sys
01:21:53.0661 0364 O2MDRDR - ok
01:21:53.0723 0364 O2SDRDR (2e69a2adc12daa7ac7b4ffd8601e88b0) C:\Windows\system32\DRIVERS\o2sdx64.sys
01:21:53.0739 0364 O2SDRDR - ok
01:21:53.0926 0364 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:21:53.0942 0364 odserv - ok
01:21:53.0989 0364 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
01:21:54.0004 0364 ohci1394 - ok
01:21:54.0035 0364 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:21:54.0051 0364 ose - ok
01:21:54.0113 0364 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:21:54.0113 0364 p2pimsvc - ok
01:21:54.0269 0364 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:21:54.0301 0364 p2psvc - ok
01:21:54.0379 0364 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:21:54.0394 0364 Parport - ok
01:21:54.0441 0364 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
01:21:54.0472 0364 partmgr - ok
01:21:54.0581 0364 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:21:54.0581 0364 PcaSvc - ok
01:21:54.0644 0364 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
01:21:54.0644 0364 pci - ok
01:21:54.0722 0364 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
01:21:54.0722 0364 pciide - ok
01:21:54.0753 0364 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:21:54.0753 0364 pcmcia - ok
01:21:54.0769 0364 PCTINDIS5X64 - ok
01:21:54.0784 0364 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:21:54.0784 0364 pcw - ok
01:21:54.0878 0364 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:21:54.0909 0364 PEAUTH - ok
01:21:55.0018 0364 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:21:55.0034 0364 PerfHost - ok
01:21:55.0377 0364 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
01:21:55.0424 0364 pla - ok
01:21:55.0471 0364 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
01:21:55.0486 0364 PlugPlay - ok
01:21:55.0502 0364 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:21:55.0517 0364 PNRPAutoReg - ok
01:21:55.0611 0364 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:21:55.0658 0364 PNRPsvc - ok
01:21:55.0767 0364 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
01:21:55.0783 0364 Point64 - ok
01:21:55.0861 0364 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
01:21:55.0876 0364 PolicyAgent - ok
01:21:55.0985 0364 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:21:55.0985 0364 Power - ok
01:21:56.0095 0364 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
01:21:56.0095 0364 PptpMiniport - ok
01:21:56.0110 0364 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:21:56.0110 0364 Processor - ok
01:21:56.0188 0364 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
01:21:56.0204 0364 ProfSvc - ok
01:21:56.0251 0364 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:56.0251 0364 ProtectedStorage - ok
01:21:56.0360 0364 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
01:21:56.0375 0364 Psched - ok
01:21:56.0422 0364 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
01:21:56.0438 0364 PxHlpa64 - ok
01:21:56.0609 0364 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:21:56.0656 0364 ql2300 - ok
01:21:56.0999 0364 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:21:56.0999 0364 ql40xx - ok
01:21:57.0171 0364 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:21:57.0218 0364 QWAVE - ok
01:21:57.0280 0364 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:21:57.0280 0364 QWAVEdrv - ok
01:21:57.0311 0364 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:21:57.0311 0364 RasAcd - ok
01:21:57.0405 0364 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:21:57.0405 0364 RasAgileVpn - ok
01:21:57.0483 0364 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:21:57.0499 0364 RasAuto - ok
01:21:57.0545 0364 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:21:57.0561 0364 Rasl2tp - ok
01:21:57.0592 0364 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
01:21:57.0608 0364 RasMan - ok
01:21:57.0701 0364 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:21:57.0701 0364 RasPppoe - ok
01:21:57.0748 0364 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:21:57.0764 0364 RasSstp - ok
01:21:57.0826 0364 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
01:21:57.0842 0364 rdbss - ok
01:21:57.0873 0364 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:21:57.0873 0364 rdpbus - ok
01:21:57.0904 0364 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:21:57.0904 0364 RDPCDD - ok
01:21:57.0982 0364 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:21:57.0982 0364 RDPENCDD - ok
01:21:58.0013 0364 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:21:58.0029 0364 RDPREFMP - ok
01:21:58.0107 0364 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
01:21:58.0138 0364 RDPWD - ok
01:21:58.0232 0364 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
01:21:58.0232 0364 rdyboost - ok
01:21:58.0294 0364 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:21:58.0310 0364 RemoteAccess - ok
01:21:58.0372 0364 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:21:58.0388 0364 RemoteRegistry - ok
01:21:58.0684 0364 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
01:21:58.0747 0364 RichVideo - ok
01:21:58.0903 0364 Roxio UPnP Renderer 11 (805393d80291c53085bce10868e54ad5) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
01:21:58.0903 0364 Roxio UPnP Renderer 11 - ok
01:21:58.0996 0364 Roxio Upnp Server 11 (96a3d9197f4d8a7e456018b809bf2ac1) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
01:21:58.0996 0364 Roxio Upnp Server 11 - ok
01:21:59.0168 0364 RoxLiveShare11 (8af842f4c84bdaa882216a01f8825402) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
01:21:59.0183 0364 RoxLiveShare11 - ok
01:21:59.0308 0364 RoxMediaDB11 (c6394df3055601b11964b075c811f03c) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
01:21:59.0371 0364 RoxMediaDB11 - ok
01:21:59.0480 0364 RoxWatch11 (3e8df3dd655cce064cf952066ddff248) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
01:21:59.0480 0364 RoxWatch11 - ok
01:21:59.0714 0364 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:21:59.0714 0364 RpcEptMapper - ok
01:21:59.0745 0364 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:21:59.0761 0364 RpcLocator - ok
01:21:59.0823 0364 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:21:59.0823 0364 RpcSs - ok
01:22:00.0026 0364 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:22:00.0026 0364 rspndr - ok
01:22:00.0104 0364 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:22:00.0104 0364 SamSs - ok
01:22:00.0135 0364 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
01:22:00.0135 0364 sbp2port - ok
01:22:00.0229 0364 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:22:00.0244 0364 SCardSvr - ok
01:22:00.0291 0364 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
01:22:00.0291 0364 scfilter - ok
01:22:00.0525 0364 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
01:22:00.0572 0364 Schedule - ok
01:22:00.0634 0364 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:22:00.0634 0364 SCPolicySvc - ok
01:22:00.0712 0364 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
01:22:00.0712 0364 SDRSVC - ok
01:22:00.0868 0364 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:22:00.0868 0364 secdrv - ok
01:22:00.0899 0364 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
01:22:00.0899 0364 seclogon - ok
01:22:00.0915 0364 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
01:22:00.0915 0364 SENS - ok
01:22:01.0102 0364 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:22:01.0118 0364 SensrSvc - ok
01:22:01.0180 0364 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:22:01.0227 0364 Serenum - ok
01:22:01.0414 0364 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:22:01.0414 0364 Serial - ok
01:22:01.0430 0364 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:22:01.0445 0364 sermouse - ok
01:22:01.0539 0364 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
01:22:01.0555 0364 SessionEnv - ok
01:22:01.0601 0364 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
01:22:01.0633 0364 sffdisk - ok
01:22:01.0679 0364 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
01:22:01.0695 0364 sffp_mmc - ok
01:22:01.0711 0364 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
01:22:01.0711 0364 sffp_sd - ok
01:22:01.0757 0364 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:22:01.0757 0364 sfloppy - ok
01:22:01.0851 0364 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:22:01.0851 0364 SharedAccess - ok
01:22:01.0929 0364 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
01:22:01.0929 0364 ShellHWDetection - ok
01:22:01.0945 0364 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:22:01.0945 0364 SiSRaid2 - ok
01:22:01.0960 0364 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:22:01.0960 0364 SiSRaid4 - ok
01:22:01.0991 0364 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:22:01.0991 0364 Smb - ok
01:22:02.0038 0364 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:22:02.0038 0364 SNMPTRAP - ok
01:22:02.0054 0364 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:22:02.0069 0364 spldr - ok
01:22:02.0147 0364 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
01:22:02.0163 0364 Spooler - ok
01:22:02.0444 0364 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
01:22:02.0584 0364 sppsvc - ok
01:22:02.0818 0364 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:22:02.0834 0364 sppuinotify - ok
01:22:02.0990 0364 sptd (602884696850c86434530790b110e8eb) C:\Windows\System32\Drivers\sptd.sys
01:22:02.0990 0364 sptd - ok
01:22:03.0146 0364 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\N360x64\0602000.009\SRTSP64.SYS
01:22:03.0161 0364 SRTSP - ok
01:22:03.0177 0364 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\N360x64\0602000.009\SRTSPX64.SYS
01:22:03.0177 0364 SRTSPX - ok
01:22:03.0333 0364 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
01:22:03.0380 0364 srv - ok
01:22:03.0473 0364 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
01:22:03.0505 0364 srv2 - ok
01:22:03.0567 0364 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
01:22:03.0567 0364 srvnet - ok
01:22:03.0629 0364 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:22:03.0645 0364 SSDPSRV - ok
01:22:03.0661 0364 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:22:03.0661 0364 SstpSvc - ok
01:22:03.0707 0364 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:22:03.0707 0364 stexstor - ok
01:22:03.0801 0364 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
01:22:03.0801 0364 stisvc - ok
01:22:03.0817 0364 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
01:22:03.0817 0364 swenum - ok
01:22:03.0910 0364 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:22:03.0910 0364 swprv - ok
01:22:04.0097 0364 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\N360x64\0602000.009\SYMDS64.SYS
01:22:04.0113 0364 SymDS - ok
01:22:04.0269 0364 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\N360x64\0602000.009\SYMEFA64.SYS
01:22:04.0285 0364 SymEFA - ok
01:22:04.0347 0364 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
01:22:04.0347 0364 SymEvent - ok
01:22:04.0409 0364 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\N360x64\0602000.009\Ironx64.SYS
01:22:04.0409 0364 SymIRON - ok
01:22:04.0628 0364 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\N360x64\0602000.009\SYMNETS.SYS
01:22:04.0628 0364 SymNetS - ok
01:22:04.0690 0364 SynTP (437a9d8b5ae2067d44eb60c953edc8a4) C:\Windows\system32\DRIVERS\SynTP.sys
01:22:04.0706 0364 SynTP - ok
01:22:04.0846 0364 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
01:22:04.0877 0364 SysMain - ok
01:22:05.0080 0364 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
01:22:05.0096 0364 TabletInputService - ok
01:22:05.0127 0364 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
01:22:05.0143 0364 TapiSrv - ok
01:22:05.0174 0364 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:22:05.0174 0364 TBS - ok
01:22:05.0408 0364 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
01:22:05.0455 0364 Tcpip - ok
01:22:05.0876 0364 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
01:22:05.0891 0364 TCPIP6 - ok
01:22:06.0079 0364 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
01:22:06.0079 0364 tcpipreg - ok
01:22:06.0110 0364 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:22:06.0110 0364 TDPIPE - ok
01:22:06.0125 0364 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
01:22:06.0141 0364 TDTCP - ok
01:22:06.0172 0364 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
01:22:06.0188 0364 tdx - ok
01:22:06.0219 0364 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
01:22:06.0219 0364 TermDD - ok
01:22:06.0297 0364 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
01:22:06.0313 0364 TermService - ok
01:22:06.0328 0364 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:22:06.0328 0364 Themes - ok
01:22:06.0359 0364 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:22:06.0359 0364 THREADORDER - ok
01:22:06.0375 0364 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:22:06.0375 0364 TrkWks - ok
01:22:06.0531 0364 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
01:22:06.0531 0364 TrustedInstaller - ok
01:22:06.0593 0364 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:22:06.0593 0364 tssecsrv - ok
01:22:06.0656 0364 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
01:22:06.0671 0364 tunnel - ok
01:22:06.0687 0364 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:22:06.0687 0364 uagp35 - ok
01:22:06.0718 0364 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
01:22:06.0734 0364 udfs - ok
01:22:06.0812 0364 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:22:06.0827 0364 UI0Detect - ok
01:22:06.0905 0364 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
01:22:06.0921 0364 uliagpkx - ok
01:22:06.0937 0364 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
01:22:06.0937 0364 umbus - ok
01:22:06.0968 0364 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:22:06.0968 0364 UmPass - ok
01:22:07.0077 0364 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:22:07.0108 0364 upnphost - ok
01:22:07.0155 0364 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
01:22:07.0155 0364 usbccgp - ok
01:22:07.0233 0364 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
01:22:07.0233 0364 usbcir - ok
01:22:07.0264 0364 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
01:22:07.0264 0364 usbehci - ok
01:22:07.0311 0364 usbfilter (8fec71666aba7114f9cab9e56065ec80) C:\Windows\system32\DRIVERS\usbfilter.sys
01:22:07.0311 0364 usbfilter - ok
01:22:07.0342 0364 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
01:22:07.0358 0364 usbhub - ok
01:22:07.0373 0364 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
01:22:07.0373 0364 usbohci - ok
01:22:07.0389 0364 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:22:07.0389 0364 usbprint - ok
01:22:07.0436 0364 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:22:07.0436 0364 USBSTOR - ok
01:22:07.0451 0364 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
01:22:07.0467 0364 usbuhci - ok
01:22:07.0529 0364 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
01:22:07.0529 0364 usbvideo - ok
01:22:07.0607 0364 UVCFTR (56ed086f1300ecb1e6f67ac43955e5e9) C:\Windows\system32\Drivers\UVCFTR_S.SYS
01:22:07.0623 0364 UVCFTR - ok
01:22:07.0670 0364 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:22:07.0670 0364 UxSms - ok
01:22:07.0717 0364 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:22:07.0717 0364 VaultSvc - ok
01:22:07.0763 0364 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
01:22:07.0763 0364 vdrvroot - ok
01:22:07.0857 0364 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
01:22:07.0888 0364 vds - ok
01:22:07.0904 0364 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:22:07.0919 0364 vga - ok
01:22:07.0935 0364 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:22:07.0935 0364 VgaSave - ok
01:22:07.0982 0364 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
01:22:07.0997 0364 vhdmp - ok
01:22:08.0029 0364 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
01:22:08.0044 0364 viaide - ok
01:22:08.0060 0364 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
01:22:08.0060 0364 volmgr - ok
01:22:08.0107 0364 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
01:22:08.0107 0364 volmgrx - ok
01:22:08.0138 0364 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
01:22:08.0153 0364 volsnap - ok
01:22:08.0169 0364 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:22:08.0185 0364 vsmraid - ok
01:22:08.0387 0364 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
01:22:08.0434 0364 VSS - ok
01:22:08.0668 0364 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
01:22:08.0668 0364 vwifibus - ok
01:22:08.0715 0364 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
01:22:08.0731 0364 vwififlt - ok
01:22:08.0762 0364 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
01:22:08.0762 0364 vwifimp - ok
01:22:08.0840 0364 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:22:08.0871 0364 W32Time - ok
01:22:08.0887 0364 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:22:08.0902 0364 WacomPen - ok
01:22:08.0965 0364 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:22:08.0965 0364 WANARP - ok
01:22:08.0996 0364 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:22:08.0996 0364 Wanarpv6 - ok
01:22:09.0152 0364 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:22:09.0183 0364 WatAdminSvc - ok
01:22:09.0355 0364 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
01:22:09.0401 0364 wbengine - ok
01:22:09.0620 0364 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:22:09.0635 0364 WbioSrvc - ok
01:22:09.0729 0364 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
01:22:09.0760 0364 wcncsvc - ok
01:22:09.0807 0364 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:22:09.0823 0364 WcsPlugInService - ok
01:22:09.0947 0364 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:22:09.0947 0364 Wd - ok
01:22:10.0057 0364 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:22:10.0072 0364 Wdf01000 - ok
01:22:10.0088 0364 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:22:10.0088 0364 WdiServiceHost - ok
01:22:10.0103 0364 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:22:10.0103 0364 WdiSystemHost - ok
01:22:10.0150 0364 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
01:22:10.0166 0364 WebClient - ok
01:22:10.0228 0364 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:22:10.0244 0364 Wecsvc - ok
01:22:10.0275 0364 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:22:10.0306 0364 wercplsupport - ok
01:22:10.0353 0364 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:22:10.0353 0364 WerSvc - ok
01:22:10.0462 0364 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:22:10.0462 0364 WfpLwf - ok
01:22:10.0478 0364 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:22:10.0478 0364 WIMMount - ok
01:22:10.0587 0364 winachsf (a6ea7a3fc4b00f48535b506db1e86efd) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
01:22:10.0603 0364 winachsf - ok
01:22:10.0665 0364 WinDefend - ok
01:22:10.0665 0364 WinHttpAutoProxySvc - ok
01:22:10.0790 0364 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:22:10.0805 0364 Winmgmt - ok
01:22:11.0024 0364 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
01:22:11.0086 0364 WinRM - ok
01:22:11.0492 0364 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
01:22:11.0492 0364 WinUsb - ok
01:22:11.0601 0364 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:22:11.0617 0364 Wlansvc - ok
01:22:12.0038 0364 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:22:12.0100 0364 wlidsvc - ok
01:22:12.0381 0364 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
01:22:12.0381 0364 WmiAcpi - ok
01:22:12.0506 0364 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:22:12.0537 0364 wmiApSrv - ok
01:22:12.0631 0364 WMPNetworkSvc - ok
01:22:12.0677 0364 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:22:12.0677 0364 WPCSvc - ok
01:22:12.0709 0364 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
01:22:12.0709 0364 WPDBusEnum - ok
01:22:12.0771 0364 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:22:12.0787 0364 ws2ifsl - ok
01:22:12.0833 0364 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
01:22:12.0849 0364 wscsvc - ok
01:22:12.0849 0364 WSearch - ok
01:22:13.0099 0364 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
01:22:13.0177 0364 wuauserv - ok
01:22:13.0411 0364 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
01:22:13.0426 0364 WudfPf - ok
01:22:13.0473 0364 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:22:13.0473 0364 WUDFRd - ok
01:22:13.0551 0364 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
01:22:13.0582 0364 wudfsvc - ok
01:22:13.0645 0364 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:22:13.0660 0364 WwanSvc - ok
01:22:13.0707 0364 XAudio (e8f3fa126a06f8e7088f63757112a186) C:\Windows\system32\DRIVERS\XAudio64.sys
01:22:13.0707 0364 XAudio - ok
01:22:13.0785 0364 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
01:22:13.0801 0364 yukonw7 - ok
01:22:13.0879 0364 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
01:22:14.0269 0364 \Device\Harddisk0\DR0 - ok
01:22:14.0269 0364 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
01:22:17.0529 0364 \Device\Harddisk1\DR2 - ok
01:22:17.0545 0364 Boot (0x1200) (2f0d0c06aa3ee4a01f23ea3bf625aade) \Device\Harddisk0\DR0\Partition0
01:22:17.0545 0364 \Device\Harddisk0\DR0\Partition0 - ok
01:22:17.0576 0364 Boot (0x1200) (7d151d3316be5e84610a7483fb382d9c) \Device\Harddisk0\DR0\Partition1
01:22:17.0576 0364 \Device\Harddisk0\DR0\Partition1 - ok
01:22:17.0591 0364 Boot (0x1200) (9b5dc841aaf555ce9bc395a3d3d9d38c) \Device\Harddisk1\DR2\Partition0
01:22:17.0591 0364 \Device\Harddisk1\DR2\Partition0 - ok
01:22:17.0591 0364 ============================================================
01:22:17.0591 0364 Scan finished
01:22:17.0591 0364 ============================================================
01:22:17.0623 2612 Detected object count: 0
01:22:17.0623 2612 Actual detected object count: 0
01:22:53.0628 5112 ============================================================
01:22:53.0628 5112 Scan started
01:22:53.0628 5112 Mode: Manual; SigCheck; TDLFS;
01:22:53.0628 5112 ============================================================
01:22:54.0579 5112 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
01:22:55.0000 5112 1394ohci - ok
01:22:55.0172 5112 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:22:55.0312 5112 ACDaemon - ok
01:22:55.0344 5112 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
01:22:55.0359 5112 ACPI - ok
01:22:55.0422 5112 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
01:22:55.0546 5112 AcpiPmi - ok
01:22:55.0609 5112 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
01:22:55.0624 5112 adfs - ok
01:22:55.0796 5112 Adobe Version Cue CS4 (57a3b9a69f14414ace12afd6ba701773) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
01:22:55.0827 5112 Adobe Version Cue CS4 - ok
01:22:55.0890 5112 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:22:55.0921 5112 adp94xx - ok
01:22:55.0999 5112 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:22:56.0014 5112 adpahci - ok
01:22:56.0061 5112 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:22:56.0092 5112 adpu320 - ok
01:22:56.0139 5112 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:22:56.0451 5112 AeLookupSvc - ok
01:22:56.0529 5112 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
01:22:56.0607 5112 AFD - ok
01:22:56.0638 5112 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
01:22:56.0670 5112 agp440 - ok
01:22:56.0779 5112 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:22:56.0841 5112 ALG - ok
01:22:56.0888 5112 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
01:22:56.0904 5112 aliide - ok
01:22:56.0982 5112 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
01:22:57.0075 5112 AMD External Events Utility - ok
01:22:57.0122 5112 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
01:22:57.0138 5112 amdide - ok
01:22:57.0169 5112 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:22:57.0200 5112 AmdK8 - ok
01:22:57.0247 5112 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:22:57.0278 5112 AmdPPM - ok
01:22:57.0325 5112 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
01:22:57.0340 5112 amdsata - ok
01:22:57.0418 5112 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:22:57.0434 5112 amdsbs - ok
01:22:57.0496 5112 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
01:22:57.0512 5112 amdxata - ok
01:22:57.0559 5112 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
01:22:57.0684 5112 AppID - ok
01:22:57.0762 5112 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:22:57.0808 5112 AppIDSvc - ok
01:22:57.0871 5112 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
01:22:57.0933 5112 Appinfo - ok
01:22:58.0074 5112 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:22:58.0089 5112 Apple Mobile Device - ok
01:22:58.0136 5112 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:22:58.0152 5112 arc - ok
01:22:58.0214 5112 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:22:58.0230 5112 arcsas - ok
01:22:58.0245 5112 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:22:58.0339 5112 AsyncMac - ok
01:22:58.0386 5112 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
01:22:58.0401 5112 atapi - ok
01:22:58.0526 5112 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
01:22:58.0635 5112 athr - ok
01:22:59.0400 5112 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
01:22:59.0524 5112 atikmdag - ok
01:22:59.0774 5112 AtiPcie (db0d3de15edc96e7529fc0d3f7760894) C:\Windows\system32\DRIVERS\AtiPcie.sys
01:22:59.0790 5112 AtiPcie - ok
01:22:59.0868 5112 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:22:59.0930 5112 AudioEndpointBuilder - ok
01:22:59.0946 5112 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:22:59.0992 5112 AudioSrv - ok
01:23:00.0039 5112 Avgfwfd (96b4456f1dca4eda506ed31c7d2d6b05) C:\Windows\system32\DRIVERS\avgfwd6a.sys
01:23:00.0055 5112 Avgfwfd - ok
01:23:00.0523 5112 avgfws (bd5d11cedbcde4fa97d2387e7069b1ff) C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
01:23:00.0585 5112 avgfws - ok
01:23:01.0225 5112 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
01:23:01.0350 5112 AVGIDSAgent - ok
01:23:01.0584 5112 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
01:23:01.0599 5112 AVGIDSDriver - ok
01:23:01.0630 5112 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
01:23:01.0646 5112 AVGIDSFilter - ok
01:23:01.0708 5112 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
01:23:01.0724 5112 AVGIDSHA - ok
01:23:02.0052 5112 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
01:23:02.0083 5112 Avgldx64 - ok
01:23:02.0130 5112 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
01:23:02.0145 5112 Avgmfx64 - ok
01:23:02.0192 5112 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
01:23:02.0208 5112 Avgrkx64 - ok
01:23:02.0286 5112 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
01:23:02.0301 5112 Avgtdia - ok
01:23:02.0442 5112 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
01:23:02.0457 5112 avgwd - ok
01:23:02.0520 5112 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
01:23:02.0629 5112 AxInstSV - ok
01:23:02.0691 5112 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:23:02.0769 5112 b06bdrv - ok
01:23:02.0800 5112 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:23:02.0847 5112 b57nd60a - ok
01:23:02.0925 5112 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:23:02.0988 5112 BDESVC - ok
01:23:03.0003 5112 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:23:03.0097 5112 Beep - ok
01:23:03.0175 5112 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
01:23:03.0268 5112 BFE - ok
01:23:03.0690 5112 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120507.001\BHDrvx64.sys
01:23:03.0721 5112 BHDrvx64 - ok
01:23:03.0986 5112 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
01:23:04.0080 5112 BITS - ok
01:23:04.0220 5112 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:23:04.0251 5112 blbdrive - ok
01:23:04.0454 5112 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
01:23:04.0470 5112 Bonjour Service - ok
01:23:04.0501 5112 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
01:23:04.0563 5112 bowser - ok
01:23:04.0610 5112 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:23:04.0641 5112 BrFiltLo - ok
01:23:04.0672 5112 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:23:04.0719 5112 BrFiltUp - ok
01:23:04.0766 5112 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
01:23:04.0828 5112 BridgeMP - ok
01:23:04.0875 5112 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
01:23:04.0953 5112 Browser - ok
01:23:04.0984 5112 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:23:05.0062 5112 Brserid - ok
01:23:05.0109 5112 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:23:05.0156 5112 BrSerWdm - ok
01:23:05.0187 5112 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:23:05.0234 5112 BrUsbMdm - ok
01:23:05.0296 5112 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:23:05.0328 5112 BrUsbSer - ok
01:23:05.0359 5112 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:23:05.0406 5112 BTHMODEM - ok
01:23:05.0484 5112 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:23:05.0562 5112 bthserv - ok
01:23:05.0593 5112 CACLEARWIRE - ok
01:23:05.0780 5112 catchme - ok
01:23:05.0842 5112 CAXHWAZL (d1787e11c6a0078ddeaf8cf3ee2ab293) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
01:23:05.0936 5112 CAXHWAZL - ok
01:23:06.0123 5112 ccSet_N360 (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys
01:23:06.0139 5112 ccSet_N360 - ok
01:23:06.0186 5112 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:23:06.0264 5112 cdfs - ok
01:23:06.0295 5112 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
01:23:06.0357 5112 cdrom - ok
01:23:06.0451 5112 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:23:06.0529 5112 CertPropSvc - ok
01:23:06.0544 5112 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:23:06.0591 5112 circlass - ok
01:23:06.0607 5112 CLEARWIRERcAppSvc - ok
01:23:06.0732 5112 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:23:06.0747 5112 CLFS - ok
01:23:06.0872 5112 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:23:06.0888 5112 clr_optimization_v2.0.50727_32 - ok
01:23:07.0044 5112 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:23:07.0059 5112 clr_optimization_v2.0.50727_64 - ok
01:23:07.0168 5112 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:23:07.0184 5112 clr_optimization_v4.0.30319_32 - ok
01:23:07.0246 5112 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:23:07.0262 5112 clr_optimization_v4.0.30319_64 - ok
01:23:07.0324 5112 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:23:07.0371 5112 CmBatt - ok
01:23:07.0418 5112 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
01:23:07.0434 5112 cmdide - ok
01:23:07.0558 5112 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
01:23:07.0636 5112 CNG - ok
01:23:07.0730 5112 CnxtHdAudService (0d23c3312838eea1ed55d5f135bca613) C:\Windows\system32\drivers\CHDRT64.sys
01:23:07.0948 5112 CnxtHdAudService - ok
01:23:07.0995 5112 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:23:08.0011 5112 Compbatt - ok
01:23:08.0042 5112 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
01:23:08.0089 5112 CompositeBus - ok
01:23:08.0089 5112 COMSysApp - ok
01:23:08.0120 5112 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:23:08.0151 5112 crcdisk - ok
01:23:08.0323 5112 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
01:23:08.0385 5112 CryptSvc - ok
01:23:08.0432 5112 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys
01:23:08.0526 5112 dc3d - ok
01:23:08.0666 5112 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:23:08.0744 5112 DcomLaunch - ok
01:23:08.0838 5112 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:23:08.0900 5112 defragsvc - ok
01:23:08.0962 5112 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
01:23:09.0025 5112 DfsC - ok
01:23:09.0056 5112 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
01:23:09.0181 5112 Dhcp - ok
01:23:09.0228 5112 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:23:09.0306 5112 discache - ok
01:23:09.0384 5112 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:23:09.0399 5112 Disk - ok
01:23:09.0477 5112 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
01:23:09.0540 5112 Dnscache - ok
01:23:09.0664 5112 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
01:23:09.0727 5112 dot3svc - ok
01:23:09.0820 5112 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
01:23:09.0898 5112 DPS - ok
01:23:09.0930 5112 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:23:09.0961 5112 drmkaud - ok
01:23:10.0070 5112 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
01:23:10.0117 5112 DXGKrnl - ok
01:23:10.0179 5112 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:23:10.0242 5112 EapHost - ok
01:23:10.0507 5112 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:23:10.0616 5112 ebdrv - ok
01:23:10.0756 5112 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
01:23:10.0772 5112 eeCtrl - ok
01:23:11.0022 5112 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
01:23:11.0084 5112 EFS - ok
01:23:11.0271 5112 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
01:23:11.0349 5112 ehRecvr - ok
01:23:11.0396 5112 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:23:11.0427 5112 ehSched - ok
01:23:11.0599 5112 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:23:11.0630 5112 elxstor - ok
01:23:11.0724 5112 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
01:23:11.0739 5112 EraserUtilRebootDrv - ok
01:23:11.0755 5112 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
01:23:11.0833 5112 ErrDev - ok
01:23:11.0958 5112 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:23:12.0036 5112 EventSystem - ok
01:23:12.0082 5112 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:23:12.0145 5112 exfat - ok
01:23:12.0207 5112 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:23:12.0285 5112 fastfat - ok
01:23:12.0379 5112 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
01:23:12.0457 5112 Fax - ok
01:23:12.0504 5112 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:23:12.0535 5112 fdc - ok
01:23:12.0597 5112 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:23:12.0675 5112 fdPHost - ok
01:23:12.0691 5112 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:23:12.0769 5112 FDResPub - ok
01:23:12.0831 5112 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:23:12.0847 5112 FileInfo - ok
01:23:12.0878 5112 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:23:12.0940 5112 Filetrace - ok
01:23:13.0159 5112 FLEXnet Licensing Service (d60ef46dc0e757fe5eb579db95b88954) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:23:13.0190 5112 FLEXnet Licensing Service - ok
01:23:13.0330 5112 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
01:23:13.0362 5112 FLEXnet Licensing Service 64 - ok
01:23:13.0596 5112 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:23:13.0642 5112 flpydisk - ok
01:23:13.0783 5112 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
01:23:13.0798 5112 FltMgr - ok
01:23:13.0954 5112 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
01:23:14.0095 5112 FontCache - ok
01:23:14.0266 5112 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:23:14.0282 5112 FontCache3.0.0.0 - ok
01:23:14.0407 5112 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:23:14.0422 5112 FsDepends - ok
01:23:14.0485 5112 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
01:23:14.0500 5112 Fs_Rec - ok
01:23:14.0563 5112 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:23:14.0578 5112 fvevol - ok
01:23:14.0610 5112 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:23:14.0625 5112 gagp30kx - ok
01:23:14.0812 5112 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe
01:23:14.0828 5112 GameConsoleService - ok
01:23:14.0875 5112 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:23:14.0890 5112 GEARAspiWDM - ok
01:23:15.0015 5112 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
01:23:15.0078 5112 gpsvc - ok
01:23:15.0249 5112 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:23:15.0265 5112 gupdate - ok
01:23:15.0265 5112 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:23:15.0280 5112 gupdatem - ok
01:23:15.0327 5112 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:23:15.0421 5112 hcw85cir - ok
01:23:15.0483 5112 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
01:23:15.0530 5112 HdAudAddService - ok
01:23:15.0655 5112 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
01:23:15.0702 5112 HDAudBus - ok
01:23:15.0811 5112 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:23:15.0858 5112 HidBatt - ok
01:23:15.0920 5112 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:23:15.0967 5112 HidBth - ok
01:23:16.0060 5112 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:23:16.0107 5112 HidIr - ok
01:23:16.0201 5112 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
01:23:16.0279 5112 hidserv - ok
01:23:16.0310 5112 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
01:23:16.0341 5112 HidUsb - ok
01:23:16.0372 5112 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
01:23:16.0450 5112 hkmsvc - ok
01:23:16.0497 5112 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
01:23:16.0560 5112 HomeGroupListener - ok
01:23:16.0606 5112 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
01:23:16.0653 5112 HomeGroupProvider - ok
01:23:16.0716 5112 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
01:23:16.0731 5112 HpSAMD - ok
01:23:16.0872 5112 HsfXAudioService (447256d1c026654c5cd3cc17e7b20631) C:\Windows\SysWOW64\XAudio64.dll
01:23:16.0950 5112 HsfXAudioService - ok
01:23:17.0293 5112 HSF_DPV (26c5d00321937e49b6bc91029947d094) C:\Windows\system32\DRIVERS\CAX_DPV.sys
01:23:17.0355 5112 HSF_DPV - ok
01:23:17.0730 5112 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
01:23:17.0808 5112 HTTP - ok
01:23:17.0839 5112 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
01:23:17.0854 5112 hwpolicy - ok
01:23:17.0886 5112 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
01:23:17.0901 5112 i8042prt - ok
01:23:17.0979 5112 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
01:23:17.0995 5112 iaStor - ok
01:23:18.0057 5112 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\DRIVERS\iaStorV.sys
01:23:18.0088 5112 iaStorV - ok
01:23:18.0385 5112 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:23:18.0400 5112 idsvc - ok
01:23:18.0712 5112 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20120516.001\IDSvia64.sys
01:23:18.0744 5112 IDSVia64 - ok
01:23:18.0962 5112 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:23:18.0978 5112 iirsp - ok
01:23:19.0149 5112 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
01:23:19.0227 5112 IKEEXT - ok
01:23:19.0274 5112 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
01:23:19.0290 5112 intelide - ok
01:23:19.0321 5112 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:23:19.0368 5112 intelppm - ok
01:23:19.0414 5112 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:23:19.0477 5112 IPBusEnum - ok
01:23:19.0508 5112 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:23:19.0555 5112 IpFilterDriver - ok
01:23:19.0633 5112 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
01:23:19.0742 5112 iphlpsvc - ok
01:23:19.0789 5112 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
01:23:19.0836 5112 IPMIDRV - ok
01:23:19.0882 5112 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:23:19.0945 5112 IPNAT - ok
01:23:20.0210 5112 iPod Service (056ab99a00e2023a24ab4f067880cc3e) C:\Program Files\iPod\bin\iPodService.exe
01:23:20.0226 5112 iPod Service - ok
01:23:20.0272 5112 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:23:20.0304 5112 IRENUM - ok
01:23:20.0319 5112 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
01:23:20.0335 5112 isapnp - ok
01:23:20.0366 5112 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
01:23:20.0382 5112 iScsiPrt - ok
01:23:20.0397 5112 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
01:23:20.0413 5112 kbdclass - ok
01:23:20.0428 5112 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
01:23:20.0475 5112 kbdhid - ok
01:23:20.0522 5112 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:20.0538 5112 KeyIso - ok
01:23:20.0709 5112 Kodak AiO Network Discovery Service (27277a11db52fefae5b01dc8fb570b28) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
01:23:20.0725 5112 Kodak AiO Network Discovery Service - ok
01:23:20.0834 5112 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
01:23:20.0850 5112 KSecDD - ok
01:23:20.0896 5112 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
01:23:20.0928 5112 KSecPkg - ok
01:23:20.0974 5112 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:23:21.0052 5112 ksthunk - ok
01:23:21.0115 5112 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:23:21.0208 5112 KtmRm - ok
01:23:21.0271 5112 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
01:23:21.0333 5112 LanmanServer - ok
01:23:21.0396 5112 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
01:23:21.0474 5112 LanmanWorkstation - ok
01:23:21.0630 5112 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
01:23:21.0661 5112 LBTServ - ok
01:23:22.0378 5112 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
01:23:22.0519 5112 LeapFrog Connect Device Service - ok
01:23:22.0768 5112 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
01:23:22.0784 5112 LEqdUsb - ok
01:23:22.0846 5112 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
01:23:22.0862 5112 LHidEqd - ok
01:23:22.0940 5112 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
01:23:22.0956 5112 LHidFilt - ok
01:23:23.0002 5112 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:23:23.0080 5112 lltdio - ok
01:23:23.0174 5112 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:23:23.0236 5112 lltdsvc - ok
01:23:23.0268 5112 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:23:23.0314 5112 lmhosts - ok
01:23:23.0377 5112 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
01:23:23.0392 5112 LMouFilt - ok
01:23:23.0439 5112 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:23:23.0470 5112 LSI_FC - ok
01:23:23.0502 5112 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:23:23.0517 5112 LSI_SAS - ok
01:23:23.0533 5112 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:23:23.0548 5112 LSI_SAS2 - ok
01:23:23.0580 5112 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:23:23.0611 5112 LSI_SCSI - ok
01:23:23.0626 5112 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:23:23.0689 5112 luafv - ok
01:23:23.0845 5112 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
01:23:23.0876 5112 Mcx2Svc - ok
01:23:23.0938 5112 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
01:23:24.0016 5112 mdmxsdk - ok
01:23:24.0094 5112 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:23:24.0110 5112 megasas - ok
01:23:24.0141 5112 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:23:24.0172 5112 MegaSR - ok
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 ( UnsignedFile.Multi.Generic ) - warning
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 - detected UnsignedFile.Multi.Generic (1)
01:23:24.0469 5112 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:23:24.0484 5112 Microsoft Office Groove Audit Service - ok
01:23:24.0531 5112 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:23:24.0594 5112 MMCSS - ok
01:23:24.0640 5112 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:23:24.0703 5112 Modem - ok
01:23:24.0734 5112 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:23:24.0765 5112 monitor - ok
01:23:24.0796 5112 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
01:23:24.0812 5112 mouclass - ok
01:23:24.0843 5112 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:23:24.0874 5112 mouhid - ok
01:23:24.0906 5112 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
01:23:24.0937 5112 mountmgr - ok
01:23:24.0952 5112 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
01:23:24.0968 5112 mpio - ok
01:23:24.0999 5112 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:23:25.0062 5112 mpsdrv - ok
01:23:25.0202 5112 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
01:23:25.0280 5112 MpsSvc - ok
01:23:25.0311 5112 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
01:23:25.0358 5112 MRxDAV - ok
01:23:25.0467 5112 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:23:25.0530 5112 mrxsmb - ok
01:23:25.0592 5112 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:23:25.0639 5112 mrxsmb10 - ok
01:23:25.0701 5112 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:23:25.0732 5112 mrxsmb20 - ok
01:23:25.0810 5112 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
01:23:25.0826 5112 msahci - ok
01:23:25.0857 5112 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
01:23:25.0888 5112 msdsm - ok
01:23:25.0935 5112 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:23:25.0982 5112 MSDTC - ok
01:23:26.0013 5112 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:23:26.0060 5112 Msfs - ok
01:23:26.0107 5112 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:23:26.0169 5112 mshidkmdf - ok
01:23:26.0200 5112 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
01:23:26.0216 5112 msisadrv - ok
01:23:26.0278 5112 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:23:26.0341 5112 MSiSCSI - ok
01:23:26.0356 5112 msiserver - ok
01:23:26.0403 5112 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:23:26.0481 5112 MSKSSRV - ok
01:23:26.0497 5112 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:23:26.0559 5112 MSPCLOCK - ok
01:23:26.0575 5112 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:23:26.0622 5112 MSPQM - ok
01:23:26.0700 5112 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
01:23:26.0731 5112 MsRPC - ok
01:23:26.0746 5112 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
01:23:26.0762 5112 mssmbios - ok
01:23:26.0793 5112 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:23:26.0856 5112 MSTEE - ok
01:23:26.0902 5112 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:23:26.0934 5112 MTConfig - ok
01:23:26.0980 5112 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:23:26.0996 5112 Mup - ok
01:23:27.0261 5112 N360 (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe
01:23:27.0277 5112 N360 - ok
01:23:27.0339 5112 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
01:23:27.0417 5112 napagent - ok
01:23:27.0480 5112 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:23:27.0542 5112 NativeWifiP - ok
01:23:27.0823 5112 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\ENG64.SYS
01:23:27.0838 5112 NAVENG - ok
01:23:27.0979 5112 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\EX64.SYS
01:23:28.0057 5112 NAVEX15 - ok
01:23:28.0306 5112 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
01:23:28.0353 5112 NDIS - ok
01:23:28.0369 5112 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:23:28.0447 5112 NdisCap - ok
01:23:28.0462 5112 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:23:28.0509 5112 NdisTapi - ok
01:23:28.0525 5112 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
01:23:28.0572 5112 Ndisuio - ok
01:23:28.0618 5112 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
01:23:28.0665 5112 NdisWan - ok
01:23:28.0696 5112 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
01:23:28.0759 5112 NDProxy - ok
01:23:28.0806 5112 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:23:28.0852 5112 NetBIOS - ok
01:23:28.0899 5112 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
01:23:28.0977 5112 NetBT - ok
01:23:29.0008 5112 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:29.0040 5112 Netlogon - ok
01:23:29.0102 5112 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:23:29.0180 5112 Netman - ok
01:23:29.0242 5112 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:23:29.0320 5112 netprofm - ok
01:23:29.0554 5112 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:23:29.0570 5112 NetTcpPortSharing - ok
01:23:29.0632 5112 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:23:29.0648 5112 nfrd960 - ok
01:23:29.0710 5112 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
01:23:29.0773 5112 NlaSvc - ok
01:23:29.0820 5112 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:23:29.0898 5112 Npfs - ok
01:23:29.0944 5112 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:23:30.0022 5112 nsi - ok
01:23:30.0038 5112 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:23:30.0116 5112 nsiproxy - ok
01:23:30.0319 5112 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
01:23:30.0366 5112 Ntfs - ok
01:23:30.0693 5112 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
01:23:30.0709 5112 NuidFltr - ok
01:23:30.0771 5112 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:23:30.0849 5112 Null - ok
01:23:30.0912 5112 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\DRIVERS\nvraid.sys
01:23:30.0927 5112 nvraid - ok
01:23:30.0958 5112 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\DRIVERS\nvstor.sys
01:23:30.0974 5112 nvstor - ok
01:23:31.0068 5112 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
01:23:31.0083 5112 nv_agp - ok
01:23:31.0130 5112 O2FLASH (d955d5de998db2476bf0892be3a96c26) C:\Windows\system32\DRIVERS\o2flash.exe
01:23:31.0208 5112 O2FLASH - ok
01:23:31.0255 5112 O2MDRDR (26da4b40670ad436f7daec053a2a9eca) C:\Windows\system32\DRIVERS\o2mdx64.sys
01:23:31.0270 5112 O2MDRDR - ok
01:23:31.0317 5112 O2SDRDR (2e69a2adc12daa7ac7b4ffd8601e88b0) C:\Windows\system32\DRIVERS\o2sdx64.sys
01:23:31.0333 5112 O2SDRDR - ok
01:23:31.0504 5112 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:23:31.0536 5112 odserv - ok
01:23:31.0582 5112 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
01:23:31.0629 5112 ohci1394 - ok
01:23:31.0707 5112 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:23:31.0723 5112 ose - ok
01:23:31.0832 5112 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:23:31.0894 5112 p2pimsvc - ok
01:23:32.0019 5112 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:23:32.0066 5112 p2psvc - ok
01:23:32.0144 5112 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:23:32.0160 5112 Parport - ok
01:23:32.0300 5112 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
01:23:32.0316 5112 partmgr - ok
01:23:32.0565 5112 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:23:32.0612 5112 PcaSvc - ok
01:23:32.0721 5112 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
01:23:32.0752 5112 pci - ok
01:23:32.0768 5112 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
01:23:32.0784 5112 pciide - ok
01:23:32.0815 5112 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:23:32.0846 5112 pcmcia - ok
01:23:32.0846 5112 PCTINDIS5X64 - ok
01:23:32.0893 5112 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:23:32.0908 5112 pcw - ok
01:23:32.0955 5112 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:23:33.0033 5112 PEAUTH - ok
01:23:33.0158 5112 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:23:33.0205 5112 PerfHost - ok
01:23:33.0439 5112 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
01:23:33.0548 5112 pla - ok
01:23:33.0595 5112 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
01:23:33.0673 5112 PlugPlay - ok
01:23:33.0720 5112 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:23:33.0782 5112 PNRPAutoReg - ok
01:23:33.0844 5112 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:23:33.0860 5112 PNRPsvc - ok
01:23:33.0954 5112 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
01:23:33.0969 5112 Point64 - ok
01:23:34.0094 5112 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
01:23:34.0172 5112 PolicyAgent - ok
01:23:34.0219 5112 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:23:34.0297 5112 Power - ok
01:23:34.0359 5112 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
01:23:34.0422 5112 PptpMiniport - ok
01:23:34.0453 5112 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:23:34.0484 5112 Processor - ok
01:23:34.0531 5112 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
01:23:34.0593 5112 ProfSvc - ok
01:23:34.0640 5112 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:34.0671 5112 ProtectedStorage - ok
01:23:34.0702 5112 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
01:23:34.0765 5112 Psched - ok
01:23:34.0796 5112 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
01:23:34.0812 5112 PxHlpa64 - ok
01:23:34.0952 5112 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:23:35.0014 5112 ql2300 - ok
01:23:35.0326 5112 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:23:35.0342 5112 ql40xx - ok
01:23:35.0420 5112 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:23:35.0451 5112 QWAVE - ok
01:23:35.0467 5112 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:23:35.0514 5112 QWAVEdrv - ok
01:23:35.0545 5112 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:23:35.0607 5112 RasAcd - ok
01:23:35.0654 5112 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:23:35.0701 5112 RasAgileVpn - ok
01:23:35.0748 5112 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:23:35.0810 5112 RasAuto - ok
01:23:35.0935 5112 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:23:36.0013 5112 Rasl2tp - ok
01:23:36.0106 5112 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
01:23:36.0200 5112 RasMan - ok
01:23:36.0216 5112 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:23:36.0309 5112 RasPppoe - ok
01:23:36.0387 5112 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:23:36.0450 5112 RasSstp - ok
01:23:36.0512 5112 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
01:23:36.0590 5112 rdbss - ok
01:23:36.0637 5112 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:23:36.0684 5112 rdpbus - ok
01:23:36.0715 5112 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:23:36.0793 5112 RDPCDD - ok
01:23:36.0824 5112 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:23:36.0886 5112 RDPENCDD - ok
01:23:36.0933 5112 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:23:36.0980 5112 RDPREFMP - ok
01:23:37.0027 5112 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
01:23:37.0089 5112 RDPWD - ok
01:23:37.0120 5112 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
01:23:37.0136 5112 rdyboost - ok
01:23:37.0245 5112 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:23:37.0308 5112 RemoteAccess - ok
01:23:37.0448 5112 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:23:37.0526 5112 RemoteRegistry - ok
01:23:37.0776 5112 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
01:23:37.0822 5112 RichVideo ( UnsignedFile.Multi.Generic ) - warning
01:23:37.0822 5112 RichVideo - detected UnsignedFile.Multi.Generic (1)
01:23:37.0994 5112 Roxio UPnP Renderer 11 (805393d80291c53085bce10868e54ad5) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
01:23:38.0010 5112 Roxio UPnP Renderer 11 - ok
01:23:38.0088 5112 Roxio Upnp Server 11 (96a3d9197f4d8a7e456018b809bf2ac1) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
01:23:38.0103 5112 Roxio Upnp Server 11 - ok
01:23:38.0353 5112 RoxLiveShare11 (8af842f4c84bdaa882216a01f8825402) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
01:23:38.0368 5112 RoxLiveShare11 - ok
01:23:38.0478 5112 RoxMediaDB11 (c6394df3055601b11964b075c811f03c) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
01:23:38.0524 5112 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - warning
01:23:38.0524 5112 RoxMediaDB11 - detected UnsignedFile.Multi.Generic (1)
01:23:38.0602 5112 RoxWatch11 (3e8df3dd655cce064cf952066ddff248) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
01:23:38.0618 5112 RoxWatch11 - ok
01:23:38.0774 5112 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:23:38.0852 5112 RpcEptMapper - ok
01:23:38.0883 5112 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:23:38.0914 5112 RpcLocator - ok
01:23:38.0961 5112 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:23:39.0024 5112 RpcSs - ok
01:23:39.0117 5112 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:23:39.0195 5112 rspndr - ok
01:23:39.0289 5112 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:39.0320 5112 SamSs - ok
01:23:39.0382 5112 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
01:23:39.0398 5112 sbp2port - ok
01:23:39.0460 5112 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:23:39.0538 5112 SCardSvr - ok
01:23:39.0585 5112 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
01:23:39.0663 5112 scfilter - ok
01:23:39.0772 5112 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
01:23:39.0850 5112 Schedule - ok
01:23:39.0897 5112 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:23:39.0960 5112 SCPolicySvc - ok
01:23:40.0022 5112 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
01:23:40.0069 5112 SDRSVC - ok
01:23:40.0178 5112 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:23:40.0256 5112 secdrv - ok
01:23:40.0287 5112 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
01:23:40.0350 5112 seclogon - ok
01:23:40.0428 5112 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
01:23:40.0490 5112 SENS - ok
01:23:40.0537 5112 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:23:40.0584 5112 SensrSvc - ok
01:23:40.0599 5112 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:23:40.0646 5112 Serenum - ok
01:23:40.0693 5112 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:23:40.0708 5112 Serial - ok
01:23:40.0724 5112 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:23:40.0771 5112 sermouse - ok
01:23:40.0833 5112 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
01:23:40.0880 5112 SessionEnv - ok
01:23:40.0942 5112 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
01:23:41.0020 5112 sffdisk - ok
01:23:41.0036 5112 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
01:23:41.0083 5112 sffp_mmc - ok
01:23:41.0114 5112 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
01:23:41.0161 5112 sffp_sd - ok
01:23:41.0239 5112 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:23:41.0286 5112 sfloppy - ok
01:23:41.0348 5112 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:23:41.0426 5112 SharedAccess - ok
01:23:41.0520 5112 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
01:23:41.0566 5112 ShellHWDetection - ok
01:23:41.0613 5112 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:23:41.0629 5112 SiSRaid2 - ok
01:23:41.0660 5112 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:23:41.0676 5112 SiSRaid4 - ok
01:23:41.0707 5112 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:23:41.0754 5112 Smb - ok
01:23:41.0816 5112 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:23:41.0832 5112 SNMPTRAP - ok
01:23:41.0847 5112 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:23:41.0863 5112 spldr - ok
01:23:41.0941 5112 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
01:23:42.0003 5112 Spooler - ok
01:23:42.0268 5112 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
01:23:42.0393 5112 sppsvc - ok
01:23:42.0580 5112 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:23:42.0627 5112 sppuinotify - ok
01:23:42.0752 5112 sptd (602884696850c86434530790b110e8eb) C:\Windows\System32\Drivers\sptd.sys
01:23:42.0768 5112 sptd - ok
01:23:43.0017 5112 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\N360x64\0602000.009\SRTSP64.SYS
01:23:43.0048 5112 SRTSP - ok
01:23:43.0080 5112 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\N360x64\0602000.009\SRTSPX64.SYS
01:23:43.0095 5112 SRTSPX - ok
01:23:43.0189 5112 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
01:23:43.0251 5112 srv - ok
01:23:43.0298 5112 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
01:23:43.0329 5112 srv2 - ok
01:23:43.0360 5112 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
01:23:43.0423 5112 srvnet - ok
01:23:43.0548 5112 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:23:43.0626 5112 SSDPSRV - ok
01:23:43.0657 5112 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:23:43.0704 5112 SstpSvc - ok
01:23:43.0735 5112 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:23:43.0766 5112 stexstor - ok
01:23:43.0828 5112 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
01:23:43.0875 5112 stisvc - ok
01:23:43.0906 5112 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
01:23:43.0922 5112 swenum - ok
01:23:43.0984 5112 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:23:44.0062 5112 swprv - ok
01:23:44.0172 5112 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\N360x64\0602000.009\SYMDS64.SYS
01:23:44.0203 5112 SymDS - ok
01:23:44.0312 5112 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\N360x64\0602000.009\SYMEFA64.SYS
01:23:44.0343 5112 SymEFA - ok
01:23:44.0452 5112 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
01:23:44.0468 5112 SymEvent - ok
01:23:44.0562 5112 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\N360x64\0602000.009\Ironx64.SYS
01:23:44.0577 5112 SymIRON - ok
01:23:44.0640 5112 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\N360x64\0602000.009\SYMNETS.SYS
01:23:44.0671 5112 SymNetS - ok
01:23:44.0733 5112 SynTP (437a9d8b5ae2067d44eb60c953edc8a4) C:\Windows\system32\DRIVERS\SynTP.sys
01:23:44.0749 5112 SynTP - ok
01:23:44.0920 5112 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
01:23:45.0045 5112 SysMain - ok
01:23:45.0201 5112 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
01:23:45.0264 5112 TabletInputService - ok
01:23:45.0310 5112 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
01:23:45.0357 5112 TapiSrv - ok
01:23:45.0388 5112 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:23:45.0435 5112 TBS - ok
01:23:45.0669 5112 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
01:23:45.0732 5112 Tcpip - ok
01:23:46.0122 5112 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
01:23:46.0168 5112 TCPIP6 - ok
01:23:46.0465 5112 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
01:23:46.0512 5112 tcpipreg - ok
01:23:46.0527 5112 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:23:46.0605 5112 TDPIPE - ok
01:23:46.0621 5112 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
01:23:46.0683 5112 TDTCP - ok
01:23:46.0746 5112 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
01:23:46.0839 5112 tdx - ok
01:23:46.0855 5112 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
01:23:46.0870 5112 TermDD - ok
01:23:46.0995 5112 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
01:23:47.0089 5112 TermService - ok
01:23:47.0120 5112 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:23:47.0136 5112 Themes - ok
01:23:47.0229 5112 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:23:47.0276 5112 THREADORDER - ok
01:23:47.0307 5112 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:23:47.0385 5112 TrkWks - ok
01:23:47.0728 5112 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
01:23:47.0744 5112 TrustedInstaller - ok
01:23:47.0791 5112 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:23:47.0838 5112 tssecsrv - ok
01:23:47.0869 5112 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
01:23:47.0916 5112 tunnel - ok
01:23:47.0931 5112 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:23:47.0947 5112 uagp35 - ok
01:23:47.0978 5112 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
01:23:48.0056 5112 udfs - ok
01:23:48.0118 5112 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:23:48.0150 5112 UI0Detect - ok
01:23:48.0196 5112 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
01:23:48.0212 5112 uliagpkx - ok
01:23:48.0243 5112 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
01:23:48.0259 5112 umbus - ok
01:23:48.0274 5112 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:23:48.0321 5112 UmPass - ok
01:23:48.0384 5112 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:23:48.0462 5112 upnphost - ok
01:23:48.0508 5112 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
01:23:48.0571 5112 usbccgp - ok
01:23:48.0633 5112 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
01:23:48.0680 5112 usbcir - ok
01:23:48.0711 5112 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
01:23:48.0727 5112 usbehci - ok
01:23:48.0789 5112 usbfilter (8fec71666aba7114f9cab9e56065ec80) C:\Windows\system32\DRIVERS\usbfilter.sys
01:23:48.0805 5112 usbfilter - ok
01:23:48.0867 5112 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
01:23:48.0930 5112 usbhub - ok
01:23:48.0976 5112 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
01:23:49.0023 5112 usbohci - ok
01:23:49.0086 5112 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:23:49.0132 5112 usbprint - ok
01:23:49.0164 5112 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:23:49.0226 5112 USBSTOR - ok
01:23:49.0242 5112 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
01:23:49.0273 5112 usbuhci - ok
01:23:49.0320 5112 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
01:23:49.0398 5112 usbvideo - ok
01:23:49.0429 5112 UVCFTR (56ed086f1300ecb1e6f67ac43955e5e9) C:\Windows\system32\Drivers\UVCFTR_S.SYS
01:23:49.0444 5112 UVCFTR - ok
01:23:49.0491 5112 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:23:49.0569 5112 UxSms - ok
01:23:49.0600 5112 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:49.0616 5112 VaultSvc - ok
01:23:49.0647 5112 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
01:23:49.0663 5112 vdrvroot - ok
01:23:49.0710 5112 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
01:23:49.0772 5112 vds - ok
01:23:49.0788 5112 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:23:49.0803 5112 vga - ok
01:23:49.0834 5112 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:23:49.0897 5112 VgaSave - ok
01:23:49.0944 5112 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
01:23:49.0975 5112 vhdmp - ok
01:23:50.0037 5112 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
01:23:50.0053 5112 viaide - ok
01:23:50.0068 5112 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
01:23:50.0100 5112 volmgr - ok
01:23:50.0131 5112 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
01:23:50.0146 5112 volmgrx - ok
01:23:50.0193 5112 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
01:23:50.0209 5112 volsnap - ok
01:23:50.0240 5112 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:23:50.0256 5112 vsmraid - ok
01:23:50.0396 5112 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
01:23:50.0458 5112 VSS - ok
01:23:50.0755 5112 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
01:23:50.0802 5112 vwifibus - ok
01:23:50.0817 5112 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
01:23:50.0880 5112 vwififlt - ok
01:23:50.0911 5112 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
01:23:50.0942 5112 vwifimp - ok
01:23:51.0036 5112 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:23:51.0082 5112 W32Time - ok
01:23:51.0129 5112 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:23:51.0160 5112 WacomPen - ok
01:23:51.0176 5112 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:23:51.0254 5112 WANARP - ok
01:23:51.0270 5112 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:23:51.0316 5112 Wanarpv6 - ok
01:23:51.0441 5112 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:23:51.0472 5112 WatAdminSvc - ok
01:23:51.0660 5112 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
01:23:51.0769 5112 wbengine - ok
01:23:52.0018 5112 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:23:52.0050 5112 WbioSrvc - ok
01:23:52.0112 5112 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
01:23:52.0190 5112 wcncsvc - ok
01:23:52.0206 5112 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:23:52.0237 5112 WcsPlugInService - ok
01:23:52.0330 5112 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:23:52.0346 5112 Wd - ok
01:23:52.0393 5112 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:23:52.0455 5112 Wdf01000 - ok
01:23:52.0486 5112 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:23:52.0533 5112 WdiServiceHost - ok
01:23:52.0533 5112 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:23:52.0564 5112 WdiSystemHost - ok
01:23:52.0658 5112 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
01:23:52.0752 5112 WebClient - ok
01:23:52.0845 5112 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:23:52.0939 5112 Wecsvc - ok
01:23:52.0954 5112 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:23:53.0048 5112 wercplsupport - ok
01:23:53.0095 5112 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:23:53.0157 5112 WerSvc - ok
01:23:53.0251 5112 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:23:53.0298 5112 WfpLwf - ok
01:23:53.0344 5112 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:23:53.0360 5112 WIMMount - ok
01:23:53.0547 5112 winachsf (a6ea7a3fc4b00f48535b506db1e86efd) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
01:23:53.0594 5112 winachsf - ok
01:23:53.0641 5112 WinDefend - ok
01:23:53.0656 5112 WinHttpAutoProxySvc - ok
01:23:53.0828 5112 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:23:53.0906 5112 Winmgmt - ok
01:23:54.0234 5112 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
01:23:54.0374 5112 WinRM - ok
01:23:54.0592 5112 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
01:23:54.0639 5112 WinUsb - ok
01:23:54.0826 5112 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:23:54.0889 5112 Wlansvc - ok
01:23:55.0170 5112 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:23:55.0248 5112 wlidsvc - ok
01:23:55.0450 5112 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
01:23:55.0466 5112 WmiAcpi - ok
01:23:55.0638 5112 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:23:55.0684 5112 wmiApSrv - ok
01:23:55.0762 5112 WMPNetworkSvc - ok
01:23:55.0794 5112 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:23:55.0825 5112 WPCSvc - ok
01:23:55.0872 5112 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
01:23:55.0934 5112 WPDBusEnum - ok
01:23:56.0028 5112 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:23:56.0074 5112 ws2ifsl - ok
01:23:56.0121 5112 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
01:23:56.0168 5112 wscsvc - ok
01:23:56.0184 5112 WSearch - ok
01:23:56.0386 5112 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
01:23:56.0464 5112 wuauserv - ok
01:23:56.0683 5112 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
01:23:56.0745 5112 WudfPf - ok
01:23:56.0776 5112 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:23:56.0823 5112 WUDFRd - ok
01:23:56.0870 5112 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
01:23:56.0964 5112 wudfsvc - ok
01:23:57.0042 5112 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:23:57.0088 5112 WwanSvc - ok
01:23:57.0135 5112 XAudio (e8f3fa126a06f8e7088f63757112a186) C:\Windows\system32\DRIVERS\XAudio64.sys
01:23:57.0182 5112 XAudio - ok
01:23:57.0291 5112 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
01:23:57.0385 5112 yukonw7 - ok
01:23:57.0432 5112 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
01:23:57.0759 5112 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
01:23:57.0759 5112 \Device\Harddisk0\DR0 - detected TDSS File System (1)
01:23:57.0759 5112 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
01:24:01.0191 5112 \Device\Harddisk1\DR2 - ok
01:24:01.0222 5112 Boot (0x1200) (2f0d0c06aa3ee4a01f23ea3bf625aade) \Device\Harddisk0\DR0\Partition0
01:24:01.0222 5112 \Device\Harddisk0\DR0\Partition0 - ok
01:24:01.0254 5112 Boot (0x1200) (7d151d3316be5e84610a7483fb382d9c) \Device\Harddisk0\DR0\Partition1
01:24:01.0254 5112 \Device\Harddisk0\DR0\Partition1 - ok
01:24:01.0269 5112 Boot (0x1200) (9b5dc841aaf555ce9bc395a3d3d9d38c) \Device\Harddisk1\DR2\Partition0
01:24:01.0269 5112 \Device\Harddisk1\DR2\Partition0 - ok
01:24:01.0269 5112 ============================================================
01:24:01.0269 5112 Scan finished
01:24:01.0269 5112 ============================================================
01:24:01.0285 4388 Detected object count: 4
01:24:01.0285 4388 Actual detected object count: 4
01:25:08.0022 4388 C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe - copied to quarantine
01:25:08.0037 4388 HKLM\SYSTEM\ControlSet001\services\mi-raysat_3dsmax2011_32 - will be deleted on reboot
01:25:08.0209 4388 HKLM\SYSTEM\ControlSet002\services\mi-raysat_3dsmax2011_32 - will be deleted on reboot
01:25:08.0942 4388 C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe - will be deleted on reboot
01:25:08.0942 4388 mi-raysat_3dsmax2011_32 ( UnsignedFile.Multi.Generic ) - User select action: Delete
01:25:08.0958 4388 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
01:25:08.0958 4388 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:25:08.0958 4388 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - skipped by user
01:25:08.0958 4388 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:25:08.0958 4388 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
01:25:08.0958 4388 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
01:25:21.0375 4736 Deinitialize success



aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-08 01:34:30
-----------------------------
01:34:30.758 OS Version: Windows x64 6.1.7600
01:34:30.758 Number of processors: 2 586 0x301
01:34:30.758 ComputerName: YARMERLAPTOP UserName: Yarmers'
01:34:32.365 Initialize success
01:36:36.775 AVAST engine defs: 12070701
01:36:45.261 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
01:36:45.261 Disk 0 Vendor: Hitachi_HTS543225L9A300 FBEOC40C Size: 238475MB BusType: 3
01:36:45.277 Disk 0 MBR read successfully
01:36:45.293 Disk 0 MBR scan
01:36:45.293 Disk 0 Windows 7 default MBR code
01:36:45.293 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14336 MB offset 2048
01:36:45.324 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 189252 MB offset 29362176
01:36:45.324 Disk 0 Partition - 00 0F Extended LBA 26692 MB offset 416952320
01:36:45.371 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 26691 MB offset 416954368
01:36:45.417 Disk 0 scanning C:\Windows\system32\drivers
01:37:01.501 Service scanning
01:37:56.070 Modules scanning
01:37:56.070 Disk 0 trace - called modules:
01:37:56.101 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
01:37:56.117 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003027060]
01:37:56.117 3 CLASSPNP.SYS[fffff8800107543f] -> nt!IofCallDriver -> [0xfffffa8002f97520]
01:37:56.132 5 ACPI.sys[fffff88000fa7781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002f9d060]
01:37:57.489 AVAST engine scan C:\Windows
01:38:02.481 AVAST engine scan C:\Windows\system32
01:44:14.869 AVAST engine scan C:\Windows\system32\drivers
01:44:33.106 AVAST engine scan C:\Users\Yarmers'
02:31:30.031 AVAST engine scan C:\ProgramData
02:52:07.003 Scan finished successfully
03:12:42.017 Disk 0 MBR has been saved successfully to "C:\Users\Yarmers'\Desktop\MBR.dat"
03:12:42.017 The log file has been saved successfully to "C:\Users\Yarmers'\Desktop\aswMBR.txt"

#14 markyellguy

markyellguy
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 08 July 2012 - 03:19 AM

Logs...

01:20:56.0596 1040 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
01:20:58.0655 1040 ============================================================
01:20:58.0655 1040 Current date / time: 2012/07/08 01:20:58.0655
01:20:58.0655 1040 SystemInfo:
01:20:58.0655 1040
01:20:58.0655 1040 OS Version: 6.1.7600 ServicePack: 0.0
01:20:58.0655 1040 Product type: Workstation
01:20:58.0655 1040 ComputerName: YARMERLAPTOP
01:20:58.0655 1040 UserName: Yarmers'
01:20:58.0655 1040 Windows directory: C:\Windows
01:20:58.0655 1040 System windows directory: C:\Windows
01:20:58.0655 1040 Running under WOW64
01:20:58.0655 1040 Processor architecture: Intel x64
01:20:58.0655 1040 Number of processors: 2
01:20:58.0655 1040 Page size: 0x1000
01:20:58.0655 1040 Boot type: Normal boot
01:20:58.0655 1040 ============================================================
01:21:03.0460 1040 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:21:03.0476 1040 Drive \Device\Harddisk1\DR2 - Size: 0x3C7800000 (15.12 Gb), SectorSize: 0x200, Cylinders: 0x7B5, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:21:03.0491 1040 ============================================================
01:21:03.0491 1040 \Device\Harddisk0\DR0:
01:21:03.0491 1040 MBR partitions:
01:21:03.0491 1040 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x171A27F0
01:21:03.0491 1040 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18DA3800, BlocksNum 0x3421800
01:21:03.0491 1040 \Device\Harddisk1\DR2:
01:21:03.0507 1040 MBR partitions:
01:21:03.0507 1040 \Device\Harddisk1\DR2\Partition0: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x1E3BFE0
01:21:03.0507 1040 ============================================================
01:21:03.0600 1040 C: <-> \Device\Harddisk0\DR0\Partition0
01:21:03.0600 1040 ============================================================
01:21:03.0600 1040 Initialize success
01:21:03.0600 1040 ============================================================
01:21:20.0480 0364 ============================================================
01:21:20.0480 0364 Scan started
01:21:20.0480 0364 Mode: Manual;
01:21:20.0480 0364 ============================================================
01:21:23.0990 0364 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
01:21:23.0990 0364 1394ohci - ok
01:21:24.0146 0364 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:21:24.0146 0364 ACDaemon - ok
01:21:24.0224 0364 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
01:21:24.0224 0364 ACPI - ok
01:21:24.0286 0364 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
01:21:24.0302 0364 AcpiPmi - ok
01:21:24.0364 0364 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
01:21:24.0380 0364 adfs - ok
01:21:24.0551 0364 Adobe Version Cue CS4 (57a3b9a69f14414ace12afd6ba701773) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
01:21:24.0583 0364 Adobe Version Cue CS4 - ok
01:21:24.0692 0364 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:21:24.0707 0364 adp94xx - ok
01:21:24.0879 0364 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:21:24.0879 0364 adpahci - ok
01:21:24.0910 0364 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:21:24.0926 0364 adpu320 - ok
01:21:24.0973 0364 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:21:24.0973 0364 AeLookupSvc - ok
01:21:25.0082 0364 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
01:21:25.0129 0364 AFD - ok
01:21:25.0191 0364 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
01:21:25.0191 0364 agp440 - ok
01:21:25.0238 0364 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:21:25.0253 0364 ALG - ok
01:21:25.0316 0364 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
01:21:25.0316 0364 aliide - ok
01:21:25.0394 0364 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
01:21:25.0394 0364 AMD External Events Utility - ok
01:21:25.0409 0364 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
01:21:25.0409 0364 amdide - ok
01:21:25.0456 0364 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:21:25.0456 0364 AmdK8 - ok
01:21:25.0581 0364 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:21:25.0581 0364 AmdPPM - ok
01:21:25.0643 0364 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
01:21:25.0643 0364 amdsata - ok
01:21:25.0706 0364 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:21:25.0706 0364 amdsbs - ok
01:21:25.0799 0364 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
01:21:25.0799 0364 amdxata - ok
01:21:25.0862 0364 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
01:21:25.0877 0364 AppID - ok
01:21:25.0909 0364 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:21:25.0924 0364 AppIDSvc - ok
01:21:25.0940 0364 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
01:21:25.0955 0364 Appinfo - ok
01:21:26.0111 0364 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:21:26.0143 0364 Apple Mobile Device - ok
01:21:26.0205 0364 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:21:26.0205 0364 arc - ok
01:21:26.0252 0364 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:21:26.0267 0364 arcsas - ok
01:21:26.0299 0364 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:21:26.0314 0364 AsyncMac - ok
01:21:26.0314 0364 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
01:21:26.0314 0364 atapi - ok
01:21:26.0517 0364 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
01:21:26.0564 0364 athr - ok
01:21:27.0281 0364 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
01:21:27.0422 0364 atikmdag - ok
01:21:27.0749 0364 AtiPcie (db0d3de15edc96e7529fc0d3f7760894) C:\Windows\system32\DRIVERS\AtiPcie.sys
01:21:27.0749 0364 AtiPcie - ok
01:21:27.0952 0364 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:21:27.0983 0364 AudioEndpointBuilder - ok
01:21:27.0999 0364 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:21:27.0999 0364 AudioSrv - ok
01:21:28.0124 0364 Avgfwfd (96b4456f1dca4eda506ed31c7d2d6b05) C:\Windows\system32\DRIVERS\avgfwd6a.sys
01:21:28.0139 0364 Avgfwfd - ok
01:21:28.0498 0364 avgfws (bd5d11cedbcde4fa97d2387e7069b1ff) C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
01:21:28.0545 0364 avgfws - ok
01:21:29.0294 0364 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
01:21:29.0403 0364 AVGIDSAgent - ok
01:21:29.0762 0364 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
01:21:29.0777 0364 AVGIDSDriver - ok
01:21:29.0824 0364 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
01:21:29.0824 0364 AVGIDSFilter - ok
01:21:29.0902 0364 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
01:21:29.0902 0364 AVGIDSHA - ok
01:21:29.0996 0364 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
01:21:29.0996 0364 Avgldx64 - ok
01:21:30.0074 0364 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
01:21:30.0089 0364 Avgmfx64 - ok
01:21:30.0152 0364 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
01:21:30.0183 0364 Avgrkx64 - ok
01:21:30.0261 0364 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
01:21:30.0292 0364 Avgtdia - ok
01:21:30.0433 0364 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
01:21:30.0433 0364 avgwd - ok
01:21:30.0511 0364 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
01:21:30.0526 0364 AxInstSV - ok
01:21:30.0604 0364 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:21:30.0620 0364 b06bdrv - ok
01:21:30.0760 0364 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:21:30.0760 0364 b57nd60a - ok
01:21:30.0838 0364 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:21:30.0854 0364 BDESVC - ok
01:21:30.0869 0364 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:21:30.0869 0364 Beep - ok
01:21:31.0041 0364 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
01:21:31.0041 0364 BFE - ok
01:21:31.0493 0364 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120507.001\BHDrvx64.sys
01:21:31.0509 0364 BHDrvx64 - ok
01:21:31.0774 0364 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
01:21:31.0790 0364 BITS - ok
01:21:31.0899 0364 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:21:31.0899 0364 blbdrive - ok
01:21:32.0133 0364 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
01:21:32.0149 0364 Bonjour Service - ok
01:21:32.0211 0364 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
01:21:32.0227 0364 bowser - ok
01:21:32.0289 0364 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:21:32.0289 0364 BrFiltLo - ok
01:21:32.0320 0364 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:21:32.0320 0364 BrFiltUp - ok
01:21:32.0351 0364 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
01:21:32.0367 0364 BridgeMP - ok
01:21:32.0445 0364 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
01:21:32.0445 0364 Browser - ok
01:21:32.0507 0364 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:21:32.0523 0364 Brserid - ok
01:21:32.0570 0364 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:21:32.0570 0364 BrSerWdm - ok
01:21:32.0617 0364 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:21:32.0648 0364 BrUsbMdm - ok
01:21:32.0679 0364 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:21:32.0679 0364 BrUsbSer - ok
01:21:32.0695 0364 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:21:32.0710 0364 BTHMODEM - ok
01:21:32.0882 0364 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:21:32.0913 0364 bthserv - ok
01:21:32.0929 0364 CACLEARWIRE - ok
01:21:33.0178 0364 catchme - ok
01:21:33.0319 0364 CAXHWAZL (d1787e11c6a0078ddeaf8cf3ee2ab293) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
01:21:33.0334 0364 CAXHWAZL - ok
01:21:33.0443 0364 ccSet_N360 (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys
01:21:33.0475 0364 ccSet_N360 - ok
01:21:33.0584 0364 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:21:33.0599 0364 cdfs - ok
01:21:33.0693 0364 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
01:21:33.0693 0364 cdrom - ok
01:21:33.0787 0364 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:21:33.0818 0364 CertPropSvc - ok
01:21:33.0958 0364 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:21:33.0958 0364 circlass - ok
01:21:33.0958 0364 CLEARWIRERcAppSvc - ok
01:21:34.0270 0364 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:21:34.0286 0364 CLFS - ok
01:21:34.0426 0364 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:21:34.0442 0364 clr_optimization_v2.0.50727_32 - ok
01:21:34.0520 0364 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:21:34.0520 0364 clr_optimization_v2.0.50727_64 - ok
01:21:34.0598 0364 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:21:34.0629 0364 clr_optimization_v4.0.30319_32 - ok
01:21:34.0723 0364 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:21:34.0738 0364 clr_optimization_v4.0.30319_64 - ok
01:21:34.0785 0364 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:21:34.0801 0364 CmBatt - ok
01:21:34.0816 0364 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
01:21:34.0816 0364 cmdide - ok
01:21:34.0894 0364 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
01:21:34.0910 0364 CNG - ok
01:21:35.0019 0364 CnxtHdAudService (0d23c3312838eea1ed55d5f135bca613) C:\Windows\system32\drivers\CHDRT64.sys
01:21:35.0035 0364 CnxtHdAudService - ok
01:21:35.0097 0364 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:21:35.0097 0364 Compbatt - ok
01:21:35.0159 0364 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
01:21:35.0159 0364 CompositeBus - ok
01:21:35.0191 0364 COMSysApp - ok
01:21:35.0237 0364 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:21:35.0237 0364 crcdisk - ok
01:21:35.0315 0364 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
01:21:35.0315 0364 CryptSvc - ok
01:21:35.0362 0364 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys
01:21:35.0378 0364 dc3d - ok
01:21:35.0456 0364 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:21:35.0471 0364 DcomLaunch - ok
01:21:35.0581 0364 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:21:35.0581 0364 defragsvc - ok
01:21:35.0659 0364 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
01:21:35.0674 0364 DfsC - ok
01:21:35.0752 0364 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
01:21:35.0752 0364 Dhcp - ok
01:21:35.0815 0364 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:21:35.0815 0364 discache - ok
01:21:35.0861 0364 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:21:35.0877 0364 Disk - ok
01:21:35.0924 0364 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
01:21:35.0924 0364 Dnscache - ok
01:21:36.0017 0364 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
01:21:36.0033 0364 dot3svc - ok
01:21:36.0049 0364 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
01:21:36.0064 0364 DPS - ok
01:21:36.0111 0364 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:21:36.0111 0364 drmkaud - ok
01:21:36.0236 0364 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
01:21:36.0251 0364 DXGKrnl - ok
01:21:36.0314 0364 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:21:36.0314 0364 EapHost - ok
01:21:36.0563 0364 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:21:36.0626 0364 ebdrv - ok
01:21:36.0766 0364 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
01:21:36.0797 0364 eeCtrl - ok
01:21:36.0969 0364 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
01:21:36.0969 0364 EFS - ok
01:21:37.0125 0364 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
01:21:37.0141 0364 ehRecvr - ok
01:21:37.0187 0364 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:21:37.0265 0364 ehSched - ok
01:21:37.0421 0364 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:21:37.0437 0364 elxstor - ok
01:21:37.0546 0364 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
01:21:37.0562 0364 EraserUtilRebootDrv - ok
01:21:37.0609 0364 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
01:21:37.0609 0364 ErrDev - ok
01:21:37.0702 0364 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:21:37.0702 0364 EventSystem - ok
01:21:37.0749 0364 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:21:37.0749 0364 exfat - ok
01:21:37.0780 0364 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:21:37.0780 0364 fastfat - ok
01:21:37.0905 0364 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
01:21:37.0921 0364 Fax - ok
01:21:37.0936 0364 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:21:37.0936 0364 fdc - ok
01:21:37.0983 0364 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:21:37.0999 0364 fdPHost - ok
01:21:37.0999 0364 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:21:37.0999 0364 FDResPub - ok
01:21:38.0077 0364 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:21:38.0092 0364 FileInfo - ok
01:21:38.0123 0364 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:21:38.0139 0364 Filetrace - ok
01:21:38.0373 0364 FLEXnet Licensing Service (d60ef46dc0e757fe5eb579db95b88954) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:21:38.0389 0364 FLEXnet Licensing Service - ok
01:21:38.0591 0364 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
01:21:38.0669 0364 FLEXnet Licensing Service 64 - ok
01:21:38.0935 0364 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:21:38.0935 0364 flpydisk - ok
01:21:38.0981 0364 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
01:21:38.0981 0364 FltMgr - ok
01:21:39.0200 0364 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
01:21:39.0262 0364 FontCache - ok
01:21:39.0527 0364 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:21:39.0543 0364 FontCache3.0.0.0 - ok
01:21:39.0668 0364 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:21:39.0668 0364 FsDepends - ok
01:21:39.0730 0364 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
01:21:39.0730 0364 Fs_Rec - ok
01:21:39.0793 0364 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:21:39.0808 0364 fvevol - ok
01:21:39.0824 0364 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:21:39.0824 0364 gagp30kx - ok
01:21:40.0089 0364 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe
01:21:40.0136 0364 GameConsoleService - ok
01:21:40.0183 0364 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:21:40.0198 0364 GEARAspiWDM - ok
01:21:40.0292 0364 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
01:21:40.0307 0364 gpsvc - ok
01:21:40.0479 0364 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:21:40.0479 0364 gupdate - ok
01:21:40.0495 0364 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:21:40.0495 0364 gupdatem - ok
01:21:40.0541 0364 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:21:40.0541 0364 hcw85cir - ok
01:21:40.0619 0364 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
01:21:40.0619 0364 HdAudAddService - ok
01:21:40.0666 0364 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
01:21:40.0682 0364 HDAudBus - ok
01:21:40.0697 0364 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:21:40.0713 0364 HidBatt - ok
01:21:40.0729 0364 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:21:40.0729 0364 HidBth - ok
01:21:40.0760 0364 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:21:40.0760 0364 HidIr - ok
01:21:40.0807 0364 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
01:21:40.0807 0364 hidserv - ok
01:21:40.0900 0364 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
01:21:40.0916 0364 HidUsb - ok
01:21:40.0978 0364 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
01:21:40.0994 0364 hkmsvc - ok
01:21:41.0041 0364 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
01:21:41.0041 0364 HomeGroupListener - ok
01:21:41.0134 0364 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
01:21:41.0150 0364 HomeGroupProvider - ok
01:21:41.0197 0364 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
01:21:41.0197 0364 HpSAMD - ok
01:21:41.0415 0364 HsfXAudioService (447256d1c026654c5cd3cc17e7b20631) C:\Windows\SysWOW64\XAudio64.dll
01:21:41.0446 0364 HsfXAudioService - ok
01:21:41.0571 0364 HSF_DPV (26c5d00321937e49b6bc91029947d094) C:\Windows\system32\DRIVERS\CAX_DPV.sys
01:21:41.0602 0364 HSF_DPV - ok
01:21:41.0945 0364 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
01:21:41.0977 0364 HTTP - ok
01:21:42.0023 0364 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
01:21:42.0023 0364 hwpolicy - ok
01:21:42.0055 0364 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
01:21:42.0055 0364 i8042prt - ok
01:21:42.0133 0364 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
01:21:42.0133 0364 iaStor - ok
01:21:42.0211 0364 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\DRIVERS\iaStorV.sys
01:21:42.0226 0364 iaStorV - ok
01:21:42.0445 0364 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:21:42.0476 0364 idsvc - ok
01:21:42.0866 0364 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20120516.001\IDSvia64.sys
01:21:42.0881 0364 IDSVia64 - ok
01:21:43.0084 0364 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:21:43.0084 0364 iirsp - ok
01:21:43.0256 0364 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
01:21:43.0271 0364 IKEEXT - ok
01:21:43.0334 0364 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
01:21:43.0334 0364 intelide - ok
01:21:43.0381 0364 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:21:43.0381 0364 intelppm - ok
01:21:43.0427 0364 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:21:43.0443 0364 IPBusEnum - ok
01:21:43.0505 0364 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:21:43.0521 0364 IpFilterDriver - ok
01:21:43.0615 0364 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
01:21:43.0630 0364 iphlpsvc - ok
01:21:43.0677 0364 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
01:21:43.0677 0364 IPMIDRV - ok
01:21:43.0724 0364 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:21:43.0724 0364 IPNAT - ok
01:21:43.0942 0364 iPod Service (056ab99a00e2023a24ab4f067880cc3e) C:\Program Files\iPod\bin\iPodService.exe
01:21:43.0958 0364 iPod Service - ok
01:21:44.0020 0364 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:21:44.0020 0364 IRENUM - ok
01:21:44.0036 0364 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
01:21:44.0036 0364 isapnp - ok
01:21:44.0067 0364 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
01:21:44.0083 0364 iScsiPrt - ok
01:21:44.0129 0364 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
01:21:44.0129 0364 kbdclass - ok
01:21:44.0176 0364 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
01:21:44.0176 0364 kbdhid - ok
01:21:44.0223 0364 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:44.0223 0364 KeyIso - ok
01:21:44.0831 0364 Kodak AiO Network Discovery Service (27277a11db52fefae5b01dc8fb570b28) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
01:21:44.0863 0364 Kodak AiO Network Discovery Service - ok
01:21:44.0925 0364 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
01:21:44.0925 0364 KSecDD - ok
01:21:44.0987 0364 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
01:21:44.0987 0364 KSecPkg - ok
01:21:45.0097 0364 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:21:45.0097 0364 ksthunk - ok
01:21:45.0221 0364 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:21:45.0253 0364 KtmRm - ok
01:21:45.0362 0364 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
01:21:45.0362 0364 LanmanServer - ok
01:21:45.0424 0364 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
01:21:45.0424 0364 LanmanWorkstation - ok
01:21:45.0565 0364 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
01:21:45.0565 0364 LBTServ - ok
01:21:46.0220 0364 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
01:21:46.0797 0364 LeapFrog Connect Device Service - ok
01:21:47.0047 0364 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
01:21:47.0062 0364 LEqdUsb - ok
01:21:47.0125 0364 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
01:21:47.0140 0364 LHidEqd - ok
01:21:47.0234 0364 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
01:21:47.0234 0364 LHidFilt - ok
01:21:47.0296 0364 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:21:47.0312 0364 lltdio - ok
01:21:47.0405 0364 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:21:47.0421 0364 lltdsvc - ok
01:21:47.0499 0364 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:21:47.0499 0364 lmhosts - ok
01:21:47.0561 0364 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
01:21:47.0561 0364 LMouFilt - ok
01:21:47.0639 0364 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:21:47.0655 0364 LSI_FC - ok
01:21:47.0671 0364 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:21:47.0671 0364 LSI_SAS - ok
01:21:47.0686 0364 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:21:47.0702 0364 LSI_SAS2 - ok
01:21:47.0717 0364 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:21:47.0717 0364 LSI_SCSI - ok
01:21:47.0749 0364 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:21:47.0749 0364 luafv - ok
01:21:47.0795 0364 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
01:21:47.0842 0364 Mcx2Svc - ok
01:21:47.0889 0364 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
01:21:47.0889 0364 mdmxsdk - ok
01:21:47.0936 0364 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:21:47.0936 0364 megasas - ok
01:21:48.0014 0364 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:21:48.0014 0364 MegaSR - ok
01:21:48.0232 0364 mi-raysat_3dsmax2011_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
01:21:48.0279 0364 mi-raysat_3dsmax2011_32 - ok
01:21:48.0466 0364 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:21:48.0466 0364 Microsoft Office Groove Audit Service - ok
01:21:48.0513 0364 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:21:48.0529 0364 MMCSS - ok
01:21:48.0575 0364 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:21:48.0575 0364 Modem - ok
01:21:48.0638 0364 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:21:48.0638 0364 monitor - ok
01:21:48.0685 0364 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
01:21:48.0700 0364 mouclass - ok
01:21:48.0716 0364 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:21:48.0731 0364 mouhid - ok
01:21:48.0763 0364 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
01:21:48.0763 0364 mountmgr - ok
01:21:48.0794 0364 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
01:21:48.0825 0364 mpio - ok
01:21:48.0887 0364 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:21:48.0887 0364 mpsdrv - ok
01:21:49.0075 0364 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
01:21:49.0090 0364 MpsSvc - ok
01:21:49.0106 0364 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
01:21:49.0121 0364 MRxDAV - ok
01:21:49.0153 0364 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:21:49.0168 0364 mrxsmb - ok
01:21:49.0199 0364 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:21:49.0199 0364 mrxsmb10 - ok
01:21:49.0231 0364 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:21:49.0231 0364 mrxsmb20 - ok
01:21:49.0309 0364 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
01:21:49.0340 0364 msahci - ok
01:21:49.0387 0364 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
01:21:49.0402 0364 msdsm - ok
01:21:49.0465 0364 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:21:49.0480 0364 MSDTC - ok
01:21:49.0511 0364 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:21:49.0511 0364 Msfs - ok
01:21:49.0574 0364 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:21:49.0574 0364 mshidkmdf - ok
01:21:49.0589 0364 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
01:21:49.0589 0364 msisadrv - ok
01:21:49.0652 0364 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:21:49.0667 0364 MSiSCSI - ok
01:21:49.0667 0364 msiserver - ok
01:21:49.0730 0364 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:21:49.0730 0364 MSKSSRV - ok
01:21:49.0761 0364 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:21:49.0761 0364 MSPCLOCK - ok
01:21:49.0777 0364 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:21:49.0777 0364 MSPQM - ok
01:21:50.0057 0364 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
01:21:50.0057 0364 MsRPC - ok
01:21:50.0089 0364 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
01:21:50.0089 0364 mssmbios - ok
01:21:50.0135 0364 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:21:50.0135 0364 MSTEE - ok
01:21:50.0151 0364 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:21:50.0151 0364 MTConfig - ok
01:21:50.0229 0364 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:21:50.0229 0364 Mup - ok
01:21:50.0432 0364 N360 (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe
01:21:50.0447 0364 N360 - ok
01:21:50.0525 0364 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
01:21:50.0525 0364 napagent - ok
01:21:50.0619 0364 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:21:50.0619 0364 NativeWifiP - ok
01:21:50.0900 0364 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\ENG64.SYS
01:21:50.0931 0364 NAVENG - ok
01:21:51.0337 0364 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\EX64.SYS
01:21:51.0399 0364 NAVEX15 - ok
01:21:51.0789 0364 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
01:21:51.0805 0364 NDIS - ok
01:21:51.0851 0364 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:21:51.0851 0364 NdisCap - ok
01:21:51.0914 0364 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:21:51.0914 0364 NdisTapi - ok
01:21:51.0945 0364 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
01:21:51.0945 0364 Ndisuio - ok
01:21:51.0992 0364 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
01:21:51.0992 0364 NdisWan - ok
01:21:52.0007 0364 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
01:21:52.0007 0364 NDProxy - ok
01:21:52.0054 0364 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:21:52.0070 0364 NetBIOS - ok
01:21:52.0101 0364 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
01:21:52.0101 0364 NetBT - ok
01:21:52.0148 0364 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:52.0148 0364 Netlogon - ok
01:21:52.0226 0364 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:21:52.0241 0364 Netman - ok
01:21:52.0273 0364 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:21:52.0288 0364 netprofm - ok
01:21:52.0522 0364 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:21:52.0522 0364 NetTcpPortSharing - ok
01:21:52.0569 0364 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:21:52.0569 0364 nfrd960 - ok
01:21:52.0694 0364 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
01:21:52.0694 0364 NlaSvc - ok
01:21:52.0709 0364 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:21:52.0709 0364 Npfs - ok
01:21:52.0787 0364 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:21:52.0787 0364 nsi - ok
01:21:52.0803 0364 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:21:52.0803 0364 nsiproxy - ok
01:21:53.0037 0364 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
01:21:53.0084 0364 Ntfs - ok
01:21:53.0287 0364 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
01:21:53.0302 0364 NuidFltr - ok
01:21:53.0333 0364 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:21:53.0333 0364 Null - ok
01:21:53.0411 0364 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\DRIVERS\nvraid.sys
01:21:53.0411 0364 nvraid - ok
01:21:53.0489 0364 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\DRIVERS\nvstor.sys
01:21:53.0489 0364 nvstor - ok
01:21:53.0552 0364 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
01:21:53.0552 0364 nv_agp - ok
01:21:53.0614 0364 O2FLASH (d955d5de998db2476bf0892be3a96c26) C:\Windows\system32\DRIVERS\o2flash.exe
01:21:53.0630 0364 O2FLASH - ok
01:21:53.0661 0364 O2MDRDR (26da4b40670ad436f7daec053a2a9eca) C:\Windows\system32\DRIVERS\o2mdx64.sys
01:21:53.0661 0364 O2MDRDR - ok
01:21:53.0723 0364 O2SDRDR (2e69a2adc12daa7ac7b4ffd8601e88b0) C:\Windows\system32\DRIVERS\o2sdx64.sys
01:21:53.0739 0364 O2SDRDR - ok
01:21:53.0926 0364 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:21:53.0942 0364 odserv - ok
01:21:53.0989 0364 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
01:21:54.0004 0364 ohci1394 - ok
01:21:54.0035 0364 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:21:54.0051 0364 ose - ok
01:21:54.0113 0364 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:21:54.0113 0364 p2pimsvc - ok
01:21:54.0269 0364 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:21:54.0301 0364 p2psvc - ok
01:21:54.0379 0364 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:21:54.0394 0364 Parport - ok
01:21:54.0441 0364 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
01:21:54.0472 0364 partmgr - ok
01:21:54.0581 0364 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:21:54.0581 0364 PcaSvc - ok
01:21:54.0644 0364 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
01:21:54.0644 0364 pci - ok
01:21:54.0722 0364 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
01:21:54.0722 0364 pciide - ok
01:21:54.0753 0364 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:21:54.0753 0364 pcmcia - ok
01:21:54.0769 0364 PCTINDIS5X64 - ok
01:21:54.0784 0364 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:21:54.0784 0364 pcw - ok
01:21:54.0878 0364 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:21:54.0909 0364 PEAUTH - ok
01:21:55.0018 0364 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:21:55.0034 0364 PerfHost - ok
01:21:55.0377 0364 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
01:21:55.0424 0364 pla - ok
01:21:55.0471 0364 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
01:21:55.0486 0364 PlugPlay - ok
01:21:55.0502 0364 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:21:55.0517 0364 PNRPAutoReg - ok
01:21:55.0611 0364 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:21:55.0658 0364 PNRPsvc - ok
01:21:55.0767 0364 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
01:21:55.0783 0364 Point64 - ok
01:21:55.0861 0364 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
01:21:55.0876 0364 PolicyAgent - ok
01:21:55.0985 0364 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:21:55.0985 0364 Power - ok
01:21:56.0095 0364 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
01:21:56.0095 0364 PptpMiniport - ok
01:21:56.0110 0364 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:21:56.0110 0364 Processor - ok
01:21:56.0188 0364 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
01:21:56.0204 0364 ProfSvc - ok
01:21:56.0251 0364 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:56.0251 0364 ProtectedStorage - ok
01:21:56.0360 0364 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
01:21:56.0375 0364 Psched - ok
01:21:56.0422 0364 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
01:21:56.0438 0364 PxHlpa64 - ok
01:21:56.0609 0364 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:21:56.0656 0364 ql2300 - ok
01:21:56.0999 0364 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:21:56.0999 0364 ql40xx - ok
01:21:57.0171 0364 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:21:57.0218 0364 QWAVE - ok
01:21:57.0280 0364 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:21:57.0280 0364 QWAVEdrv - ok
01:21:57.0311 0364 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:21:57.0311 0364 RasAcd - ok
01:21:57.0405 0364 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:21:57.0405 0364 RasAgileVpn - ok
01:21:57.0483 0364 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:21:57.0499 0364 RasAuto - ok
01:21:57.0545 0364 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:21:57.0561 0364 Rasl2tp - ok
01:21:57.0592 0364 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
01:21:57.0608 0364 RasMan - ok
01:21:57.0701 0364 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:21:57.0701 0364 RasPppoe - ok
01:21:57.0748 0364 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:21:57.0764 0364 RasSstp - ok
01:21:57.0826 0364 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
01:21:57.0842 0364 rdbss - ok
01:21:57.0873 0364 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:21:57.0873 0364 rdpbus - ok
01:21:57.0904 0364 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:21:57.0904 0364 RDPCDD - ok
01:21:57.0982 0364 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:21:57.0982 0364 RDPENCDD - ok
01:21:58.0013 0364 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:21:58.0029 0364 RDPREFMP - ok
01:21:58.0107 0364 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
01:21:58.0138 0364 RDPWD - ok
01:21:58.0232 0364 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
01:21:58.0232 0364 rdyboost - ok
01:21:58.0294 0364 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:21:58.0310 0364 RemoteAccess - ok
01:21:58.0372 0364 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:21:58.0388 0364 RemoteRegistry - ok
01:21:58.0684 0364 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
01:21:58.0747 0364 RichVideo - ok
01:21:58.0903 0364 Roxio UPnP Renderer 11 (805393d80291c53085bce10868e54ad5) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
01:21:58.0903 0364 Roxio UPnP Renderer 11 - ok
01:21:58.0996 0364 Roxio Upnp Server 11 (96a3d9197f4d8a7e456018b809bf2ac1) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
01:21:58.0996 0364 Roxio Upnp Server 11 - ok
01:21:59.0168 0364 RoxLiveShare11 (8af842f4c84bdaa882216a01f8825402) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
01:21:59.0183 0364 RoxLiveShare11 - ok
01:21:59.0308 0364 RoxMediaDB11 (c6394df3055601b11964b075c811f03c) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
01:21:59.0371 0364 RoxMediaDB11 - ok
01:21:59.0480 0364 RoxWatch11 (3e8df3dd655cce064cf952066ddff248) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
01:21:59.0480 0364 RoxWatch11 - ok
01:21:59.0714 0364 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:21:59.0714 0364 RpcEptMapper - ok
01:21:59.0745 0364 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:21:59.0761 0364 RpcLocator - ok
01:21:59.0823 0364 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:21:59.0823 0364 RpcSs - ok
01:22:00.0026 0364 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:22:00.0026 0364 rspndr - ok
01:22:00.0104 0364 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:22:00.0104 0364 SamSs - ok
01:22:00.0135 0364 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
01:22:00.0135 0364 sbp2port - ok
01:22:00.0229 0364 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:22:00.0244 0364 SCardSvr - ok
01:22:00.0291 0364 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
01:22:00.0291 0364 scfilter - ok
01:22:00.0525 0364 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
01:22:00.0572 0364 Schedule - ok
01:22:00.0634 0364 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:22:00.0634 0364 SCPolicySvc - ok
01:22:00.0712 0364 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
01:22:00.0712 0364 SDRSVC - ok
01:22:00.0868 0364 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:22:00.0868 0364 secdrv - ok
01:22:00.0899 0364 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
01:22:00.0899 0364 seclogon - ok
01:22:00.0915 0364 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
01:22:00.0915 0364 SENS - ok
01:22:01.0102 0364 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:22:01.0118 0364 SensrSvc - ok
01:22:01.0180 0364 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:22:01.0227 0364 Serenum - ok
01:22:01.0414 0364 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:22:01.0414 0364 Serial - ok
01:22:01.0430 0364 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:22:01.0445 0364 sermouse - ok
01:22:01.0539 0364 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
01:22:01.0555 0364 SessionEnv - ok
01:22:01.0601 0364 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
01:22:01.0633 0364 sffdisk - ok
01:22:01.0679 0364 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
01:22:01.0695 0364 sffp_mmc - ok
01:22:01.0711 0364 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
01:22:01.0711 0364 sffp_sd - ok
01:22:01.0757 0364 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:22:01.0757 0364 sfloppy - ok
01:22:01.0851 0364 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:22:01.0851 0364 SharedAccess - ok
01:22:01.0929 0364 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
01:22:01.0929 0364 ShellHWDetection - ok
01:22:01.0945 0364 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:22:01.0945 0364 SiSRaid2 - ok
01:22:01.0960 0364 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:22:01.0960 0364 SiSRaid4 - ok
01:22:01.0991 0364 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:22:01.0991 0364 Smb - ok
01:22:02.0038 0364 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:22:02.0038 0364 SNMPTRAP - ok
01:22:02.0054 0364 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:22:02.0069 0364 spldr - ok
01:22:02.0147 0364 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
01:22:02.0163 0364 Spooler - ok
01:22:02.0444 0364 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
01:22:02.0584 0364 sppsvc - ok
01:22:02.0818 0364 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:22:02.0834 0364 sppuinotify - ok
01:22:02.0990 0364 sptd (602884696850c86434530790b110e8eb) C:\Windows\System32\Drivers\sptd.sys
01:22:02.0990 0364 sptd - ok
01:22:03.0146 0364 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\N360x64\0602000.009\SRTSP64.SYS
01:22:03.0161 0364 SRTSP - ok
01:22:03.0177 0364 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\N360x64\0602000.009\SRTSPX64.SYS
01:22:03.0177 0364 SRTSPX - ok
01:22:03.0333 0364 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
01:22:03.0380 0364 srv - ok
01:22:03.0473 0364 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
01:22:03.0505 0364 srv2 - ok
01:22:03.0567 0364 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
01:22:03.0567 0364 srvnet - ok
01:22:03.0629 0364 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:22:03.0645 0364 SSDPSRV - ok
01:22:03.0661 0364 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:22:03.0661 0364 SstpSvc - ok
01:22:03.0707 0364 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:22:03.0707 0364 stexstor - ok
01:22:03.0801 0364 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
01:22:03.0801 0364 stisvc - ok
01:22:03.0817 0364 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
01:22:03.0817 0364 swenum - ok
01:22:03.0910 0364 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:22:03.0910 0364 swprv - ok
01:22:04.0097 0364 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\N360x64\0602000.009\SYMDS64.SYS
01:22:04.0113 0364 SymDS - ok
01:22:04.0269 0364 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\N360x64\0602000.009\SYMEFA64.SYS
01:22:04.0285 0364 SymEFA - ok
01:22:04.0347 0364 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
01:22:04.0347 0364 SymEvent - ok
01:22:04.0409 0364 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\N360x64\0602000.009\Ironx64.SYS
01:22:04.0409 0364 SymIRON - ok
01:22:04.0628 0364 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\N360x64\0602000.009\SYMNETS.SYS
01:22:04.0628 0364 SymNetS - ok
01:22:04.0690 0364 SynTP (437a9d8b5ae2067d44eb60c953edc8a4) C:\Windows\system32\DRIVERS\SynTP.sys
01:22:04.0706 0364 SynTP - ok
01:22:04.0846 0364 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
01:22:04.0877 0364 SysMain - ok
01:22:05.0080 0364 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
01:22:05.0096 0364 TabletInputService - ok
01:22:05.0127 0364 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
01:22:05.0143 0364 TapiSrv - ok
01:22:05.0174 0364 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:22:05.0174 0364 TBS - ok
01:22:05.0408 0364 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
01:22:05.0455 0364 Tcpip - ok
01:22:05.0876 0364 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
01:22:05.0891 0364 TCPIP6 - ok
01:22:06.0079 0364 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
01:22:06.0079 0364 tcpipreg - ok
01:22:06.0110 0364 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:22:06.0110 0364 TDPIPE - ok
01:22:06.0125 0364 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
01:22:06.0141 0364 TDTCP - ok
01:22:06.0172 0364 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
01:22:06.0188 0364 tdx - ok
01:22:06.0219 0364 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
01:22:06.0219 0364 TermDD - ok
01:22:06.0297 0364 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
01:22:06.0313 0364 TermService - ok
01:22:06.0328 0364 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:22:06.0328 0364 Themes - ok
01:22:06.0359 0364 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:22:06.0359 0364 THREADORDER - ok
01:22:06.0375 0364 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:22:06.0375 0364 TrkWks - ok
01:22:06.0531 0364 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
01:22:06.0531 0364 TrustedInstaller - ok
01:22:06.0593 0364 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:22:06.0593 0364 tssecsrv - ok
01:22:06.0656 0364 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
01:22:06.0671 0364 tunnel - ok
01:22:06.0687 0364 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:22:06.0687 0364 uagp35 - ok
01:22:06.0718 0364 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
01:22:06.0734 0364 udfs - ok
01:22:06.0812 0364 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:22:06.0827 0364 UI0Detect - ok
01:22:06.0905 0364 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
01:22:06.0921 0364 uliagpkx - ok
01:22:06.0937 0364 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
01:22:06.0937 0364 umbus - ok
01:22:06.0968 0364 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:22:06.0968 0364 UmPass - ok
01:22:07.0077 0364 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:22:07.0108 0364 upnphost - ok
01:22:07.0155 0364 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
01:22:07.0155 0364 usbccgp - ok
01:22:07.0233 0364 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
01:22:07.0233 0364 usbcir - ok
01:22:07.0264 0364 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
01:22:07.0264 0364 usbehci - ok
01:22:07.0311 0364 usbfilter (8fec71666aba7114f9cab9e56065ec80) C:\Windows\system32\DRIVERS\usbfilter.sys
01:22:07.0311 0364 usbfilter - ok
01:22:07.0342 0364 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
01:22:07.0358 0364 usbhub - ok
01:22:07.0373 0364 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
01:22:07.0373 0364 usbohci - ok
01:22:07.0389 0364 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:22:07.0389 0364 usbprint - ok
01:22:07.0436 0364 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:22:07.0436 0364 USBSTOR - ok
01:22:07.0451 0364 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
01:22:07.0467 0364 usbuhci - ok
01:22:07.0529 0364 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
01:22:07.0529 0364 usbvideo - ok
01:22:07.0607 0364 UVCFTR (56ed086f1300ecb1e6f67ac43955e5e9) C:\Windows\system32\Drivers\UVCFTR_S.SYS
01:22:07.0623 0364 UVCFTR - ok
01:22:07.0670 0364 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:22:07.0670 0364 UxSms - ok
01:22:07.0717 0364 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:22:07.0717 0364 VaultSvc - ok
01:22:07.0763 0364 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
01:22:07.0763 0364 vdrvroot - ok
01:22:07.0857 0364 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
01:22:07.0888 0364 vds - ok
01:22:07.0904 0364 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:22:07.0919 0364 vga - ok
01:22:07.0935 0364 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:22:07.0935 0364 VgaSave - ok
01:22:07.0982 0364 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
01:22:07.0997 0364 vhdmp - ok
01:22:08.0029 0364 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
01:22:08.0044 0364 viaide - ok
01:22:08.0060 0364 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
01:22:08.0060 0364 volmgr - ok
01:22:08.0107 0364 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
01:22:08.0107 0364 volmgrx - ok
01:22:08.0138 0364 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
01:22:08.0153 0364 volsnap - ok
01:22:08.0169 0364 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:22:08.0185 0364 vsmraid - ok
01:22:08.0387 0364 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
01:22:08.0434 0364 VSS - ok
01:22:08.0668 0364 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
01:22:08.0668 0364 vwifibus - ok
01:22:08.0715 0364 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
01:22:08.0731 0364 vwififlt - ok
01:22:08.0762 0364 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
01:22:08.0762 0364 vwifimp - ok
01:22:08.0840 0364 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:22:08.0871 0364 W32Time - ok
01:22:08.0887 0364 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:22:08.0902 0364 WacomPen - ok
01:22:08.0965 0364 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:22:08.0965 0364 WANARP - ok
01:22:08.0996 0364 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:22:08.0996 0364 Wanarpv6 - ok
01:22:09.0152 0364 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:22:09.0183 0364 WatAdminSvc - ok
01:22:09.0355 0364 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
01:22:09.0401 0364 wbengine - ok
01:22:09.0620 0364 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:22:09.0635 0364 WbioSrvc - ok
01:22:09.0729 0364 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
01:22:09.0760 0364 wcncsvc - ok
01:22:09.0807 0364 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:22:09.0823 0364 WcsPlugInService - ok
01:22:09.0947 0364 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:22:09.0947 0364 Wd - ok
01:22:10.0057 0364 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:22:10.0072 0364 Wdf01000 - ok
01:22:10.0088 0364 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:22:10.0088 0364 WdiServiceHost - ok
01:22:10.0103 0364 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:22:10.0103 0364 WdiSystemHost - ok
01:22:10.0150 0364 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
01:22:10.0166 0364 WebClient - ok
01:22:10.0228 0364 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:22:10.0244 0364 Wecsvc - ok
01:22:10.0275 0364 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:22:10.0306 0364 wercplsupport - ok
01:22:10.0353 0364 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:22:10.0353 0364 WerSvc - ok
01:22:10.0462 0364 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:22:10.0462 0364 WfpLwf - ok
01:22:10.0478 0364 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:22:10.0478 0364 WIMMount - ok
01:22:10.0587 0364 winachsf (a6ea7a3fc4b00f48535b506db1e86efd) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
01:22:10.0603 0364 winachsf - ok
01:22:10.0665 0364 WinDefend - ok
01:22:10.0665 0364 WinHttpAutoProxySvc - ok
01:22:10.0790 0364 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:22:10.0805 0364 Winmgmt - ok
01:22:11.0024 0364 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
01:22:11.0086 0364 WinRM - ok
01:22:11.0492 0364 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
01:22:11.0492 0364 WinUsb - ok
01:22:11.0601 0364 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:22:11.0617 0364 Wlansvc - ok
01:22:12.0038 0364 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:22:12.0100 0364 wlidsvc - ok
01:22:12.0381 0364 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
01:22:12.0381 0364 WmiAcpi - ok
01:22:12.0506 0364 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:22:12.0537 0364 wmiApSrv - ok
01:22:12.0631 0364 WMPNetworkSvc - ok
01:22:12.0677 0364 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:22:12.0677 0364 WPCSvc - ok
01:22:12.0709 0364 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
01:22:12.0709 0364 WPDBusEnum - ok
01:22:12.0771 0364 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:22:12.0787 0364 ws2ifsl - ok
01:22:12.0833 0364 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
01:22:12.0849 0364 wscsvc - ok
01:22:12.0849 0364 WSearch - ok
01:22:13.0099 0364 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
01:22:13.0177 0364 wuauserv - ok
01:22:13.0411 0364 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
01:22:13.0426 0364 WudfPf - ok
01:22:13.0473 0364 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:22:13.0473 0364 WUDFRd - ok
01:22:13.0551 0364 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
01:22:13.0582 0364 wudfsvc - ok
01:22:13.0645 0364 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:22:13.0660 0364 WwanSvc - ok
01:22:13.0707 0364 XAudio (e8f3fa126a06f8e7088f63757112a186) C:\Windows\system32\DRIVERS\XAudio64.sys
01:22:13.0707 0364 XAudio - ok
01:22:13.0785 0364 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
01:22:13.0801 0364 yukonw7 - ok
01:22:13.0879 0364 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
01:22:14.0269 0364 \Device\Harddisk0\DR0 - ok
01:22:14.0269 0364 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
01:22:17.0529 0364 \Device\Harddisk1\DR2 - ok
01:22:17.0545 0364 Boot (0x1200) (2f0d0c06aa3ee4a01f23ea3bf625aade) \Device\Harddisk0\DR0\Partition0
01:22:17.0545 0364 \Device\Harddisk0\DR0\Partition0 - ok
01:22:17.0576 0364 Boot (0x1200) (7d151d3316be5e84610a7483fb382d9c) \Device\Harddisk0\DR0\Partition1
01:22:17.0576 0364 \Device\Harddisk0\DR0\Partition1 - ok
01:22:17.0591 0364 Boot (0x1200) (9b5dc841aaf555ce9bc395a3d3d9d38c) \Device\Harddisk1\DR2\Partition0
01:22:17.0591 0364 \Device\Harddisk1\DR2\Partition0 - ok
01:22:17.0591 0364 ============================================================
01:22:17.0591 0364 Scan finished
01:22:17.0591 0364 ============================================================
01:22:17.0623 2612 Detected object count: 0
01:22:17.0623 2612 Actual detected object count: 0
01:22:53.0628 5112 ============================================================
01:22:53.0628 5112 Scan started
01:22:53.0628 5112 Mode: Manual; SigCheck; TDLFS;
01:22:53.0628 5112 ============================================================
01:22:54.0579 5112 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
01:22:55.0000 5112 1394ohci - ok
01:22:55.0172 5112 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:22:55.0312 5112 ACDaemon - ok
01:22:55.0344 5112 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
01:22:55.0359 5112 ACPI - ok
01:22:55.0422 5112 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
01:22:55.0546 5112 AcpiPmi - ok
01:22:55.0609 5112 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
01:22:55.0624 5112 adfs - ok
01:22:55.0796 5112 Adobe Version Cue CS4 (57a3b9a69f14414ace12afd6ba701773) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
01:22:55.0827 5112 Adobe Version Cue CS4 - ok
01:22:55.0890 5112 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:22:55.0921 5112 adp94xx - ok
01:22:55.0999 5112 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:22:56.0014 5112 adpahci - ok
01:22:56.0061 5112 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:22:56.0092 5112 adpu320 - ok
01:22:56.0139 5112 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:22:56.0451 5112 AeLookupSvc - ok
01:22:56.0529 5112 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
01:22:56.0607 5112 AFD - ok
01:22:56.0638 5112 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
01:22:56.0670 5112 agp440 - ok
01:22:56.0779 5112 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:22:56.0841 5112 ALG - ok
01:22:56.0888 5112 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
01:22:56.0904 5112 aliide - ok
01:22:56.0982 5112 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
01:22:57.0075 5112 AMD External Events Utility - ok
01:22:57.0122 5112 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
01:22:57.0138 5112 amdide - ok
01:22:57.0169 5112 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:22:57.0200 5112 AmdK8 - ok
01:22:57.0247 5112 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:22:57.0278 5112 AmdPPM - ok
01:22:57.0325 5112 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
01:22:57.0340 5112 amdsata - ok
01:22:57.0418 5112 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:22:57.0434 5112 amdsbs - ok
01:22:57.0496 5112 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
01:22:57.0512 5112 amdxata - ok
01:22:57.0559 5112 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
01:22:57.0684 5112 AppID - ok
01:22:57.0762 5112 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:22:57.0808 5112 AppIDSvc - ok
01:22:57.0871 5112 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
01:22:57.0933 5112 Appinfo - ok
01:22:58.0074 5112 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:22:58.0089 5112 Apple Mobile Device - ok
01:22:58.0136 5112 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:22:58.0152 5112 arc - ok
01:22:58.0214 5112 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:22:58.0230 5112 arcsas - ok
01:22:58.0245 5112 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:22:58.0339 5112 AsyncMac - ok
01:22:58.0386 5112 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
01:22:58.0401 5112 atapi - ok
01:22:58.0526 5112 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
01:22:58.0635 5112 athr - ok
01:22:59.0400 5112 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
01:22:59.0524 5112 atikmdag - ok
01:22:59.0774 5112 AtiPcie (db0d3de15edc96e7529fc0d3f7760894) C:\Windows\system32\DRIVERS\AtiPcie.sys
01:22:59.0790 5112 AtiPcie - ok
01:22:59.0868 5112 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:22:59.0930 5112 AudioEndpointBuilder - ok
01:22:59.0946 5112 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:22:59.0992 5112 AudioSrv - ok
01:23:00.0039 5112 Avgfwfd (96b4456f1dca4eda506ed31c7d2d6b05) C:\Windows\system32\DRIVERS\avgfwd6a.sys
01:23:00.0055 5112 Avgfwfd - ok
01:23:00.0523 5112 avgfws (bd5d11cedbcde4fa97d2387e7069b1ff) C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
01:23:00.0585 5112 avgfws - ok
01:23:01.0225 5112 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
01:23:01.0350 5112 AVGIDSAgent - ok
01:23:01.0584 5112 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
01:23:01.0599 5112 AVGIDSDriver - ok
01:23:01.0630 5112 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
01:23:01.0646 5112 AVGIDSFilter - ok
01:23:01.0708 5112 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
01:23:01.0724 5112 AVGIDSHA - ok
01:23:02.0052 5112 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
01:23:02.0083 5112 Avgldx64 - ok
01:23:02.0130 5112 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
01:23:02.0145 5112 Avgmfx64 - ok
01:23:02.0192 5112 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
01:23:02.0208 5112 Avgrkx64 - ok
01:23:02.0286 5112 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
01:23:02.0301 5112 Avgtdia - ok
01:23:02.0442 5112 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
01:23:02.0457 5112 avgwd - ok
01:23:02.0520 5112 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
01:23:02.0629 5112 AxInstSV - ok
01:23:02.0691 5112 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:23:02.0769 5112 b06bdrv - ok
01:23:02.0800 5112 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:23:02.0847 5112 b57nd60a - ok
01:23:02.0925 5112 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:23:02.0988 5112 BDESVC - ok
01:23:03.0003 5112 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:23:03.0097 5112 Beep - ok
01:23:03.0175 5112 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
01:23:03.0268 5112 BFE - ok
01:23:03.0690 5112 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120507.001\BHDrvx64.sys
01:23:03.0721 5112 BHDrvx64 - ok
01:23:03.0986 5112 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
01:23:04.0080 5112 BITS - ok
01:23:04.0220 5112 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:23:04.0251 5112 blbdrive - ok
01:23:04.0454 5112 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
01:23:04.0470 5112 Bonjour Service - ok
01:23:04.0501 5112 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
01:23:04.0563 5112 bowser - ok
01:23:04.0610 5112 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:23:04.0641 5112 BrFiltLo - ok
01:23:04.0672 5112 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:23:04.0719 5112 BrFiltUp - ok
01:23:04.0766 5112 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
01:23:04.0828 5112 BridgeMP - ok
01:23:04.0875 5112 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
01:23:04.0953 5112 Browser - ok
01:23:04.0984 5112 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:23:05.0062 5112 Brserid - ok
01:23:05.0109 5112 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:23:05.0156 5112 BrSerWdm - ok
01:23:05.0187 5112 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:23:05.0234 5112 BrUsbMdm - ok
01:23:05.0296 5112 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:23:05.0328 5112 BrUsbSer - ok
01:23:05.0359 5112 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:23:05.0406 5112 BTHMODEM - ok
01:23:05.0484 5112 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:23:05.0562 5112 bthserv - ok
01:23:05.0593 5112 CACLEARWIRE - ok
01:23:05.0780 5112 catchme - ok
01:23:05.0842 5112 CAXHWAZL (d1787e11c6a0078ddeaf8cf3ee2ab293) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
01:23:05.0936 5112 CAXHWAZL - ok
01:23:06.0123 5112 ccSet_N360 (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys
01:23:06.0139 5112 ccSet_N360 - ok
01:23:06.0186 5112 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:23:06.0264 5112 cdfs - ok
01:23:06.0295 5112 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
01:23:06.0357 5112 cdrom - ok
01:23:06.0451 5112 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:23:06.0529 5112 CertPropSvc - ok
01:23:06.0544 5112 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:23:06.0591 5112 circlass - ok
01:23:06.0607 5112 CLEARWIRERcAppSvc - ok
01:23:06.0732 5112 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:23:06.0747 5112 CLFS - ok
01:23:06.0872 5112 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:23:06.0888 5112 clr_optimization_v2.0.50727_32 - ok
01:23:07.0044 5112 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:23:07.0059 5112 clr_optimization_v2.0.50727_64 - ok
01:23:07.0168 5112 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:23:07.0184 5112 clr_optimization_v4.0.30319_32 - ok
01:23:07.0246 5112 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:23:07.0262 5112 clr_optimization_v4.0.30319_64 - ok
01:23:07.0324 5112 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:23:07.0371 5112 CmBatt - ok
01:23:07.0418 5112 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
01:23:07.0434 5112 cmdide - ok
01:23:07.0558 5112 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
01:23:07.0636 5112 CNG - ok
01:23:07.0730 5112 CnxtHdAudService (0d23c3312838eea1ed55d5f135bca613) C:\Windows\system32\drivers\CHDRT64.sys
01:23:07.0948 5112 CnxtHdAudService - ok
01:23:07.0995 5112 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:23:08.0011 5112 Compbatt - ok
01:23:08.0042 5112 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
01:23:08.0089 5112 CompositeBus - ok
01:23:08.0089 5112 COMSysApp - ok
01:23:08.0120 5112 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:23:08.0151 5112 crcdisk - ok
01:23:08.0323 5112 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
01:23:08.0385 5112 CryptSvc - ok
01:23:08.0432 5112 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys
01:23:08.0526 5112 dc3d - ok
01:23:08.0666 5112 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:23:08.0744 5112 DcomLaunch - ok
01:23:08.0838 5112 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:23:08.0900 5112 defragsvc - ok
01:23:08.0962 5112 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
01:23:09.0025 5112 DfsC - ok
01:23:09.0056 5112 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
01:23:09.0181 5112 Dhcp - ok
01:23:09.0228 5112 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:23:09.0306 5112 discache - ok
01:23:09.0384 5112 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:23:09.0399 5112 Disk - ok
01:23:09.0477 5112 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
01:23:09.0540 5112 Dnscache - ok
01:23:09.0664 5112 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
01:23:09.0727 5112 dot3svc - ok
01:23:09.0820 5112 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
01:23:09.0898 5112 DPS - ok
01:23:09.0930 5112 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:23:09.0961 5112 drmkaud - ok
01:23:10.0070 5112 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
01:23:10.0117 5112 DXGKrnl - ok
01:23:10.0179 5112 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:23:10.0242 5112 EapHost - ok
01:23:10.0507 5112 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:23:10.0616 5112 ebdrv - ok
01:23:10.0756 5112 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
01:23:10.0772 5112 eeCtrl - ok
01:23:11.0022 5112 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
01:23:11.0084 5112 EFS - ok
01:23:11.0271 5112 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
01:23:11.0349 5112 ehRecvr - ok
01:23:11.0396 5112 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:23:11.0427 5112 ehSched - ok
01:23:11.0599 5112 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:23:11.0630 5112 elxstor - ok
01:23:11.0724 5112 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
01:23:11.0739 5112 EraserUtilRebootDrv - ok
01:23:11.0755 5112 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
01:23:11.0833 5112 ErrDev - ok
01:23:11.0958 5112 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:23:12.0036 5112 EventSystem - ok
01:23:12.0082 5112 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:23:12.0145 5112 exfat - ok
01:23:12.0207 5112 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:23:12.0285 5112 fastfat - ok
01:23:12.0379 5112 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
01:23:12.0457 5112 Fax - ok
01:23:12.0504 5112 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:23:12.0535 5112 fdc - ok
01:23:12.0597 5112 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:23:12.0675 5112 fdPHost - ok
01:23:12.0691 5112 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:23:12.0769 5112 FDResPub - ok
01:23:12.0831 5112 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:23:12.0847 5112 FileInfo - ok
01:23:12.0878 5112 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:23:12.0940 5112 Filetrace - ok
01:23:13.0159 5112 FLEXnet Licensing Service (d60ef46dc0e757fe5eb579db95b88954) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:23:13.0190 5112 FLEXnet Licensing Service - ok
01:23:13.0330 5112 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
01:23:13.0362 5112 FLEXnet Licensing Service 64 - ok
01:23:13.0596 5112 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:23:13.0642 5112 flpydisk - ok
01:23:13.0783 5112 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
01:23:13.0798 5112 FltMgr - ok
01:23:13.0954 5112 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
01:23:14.0095 5112 FontCache - ok
01:23:14.0266 5112 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:23:14.0282 5112 FontCache3.0.0.0 - ok
01:23:14.0407 5112 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:23:14.0422 5112 FsDepends - ok
01:23:14.0485 5112 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
01:23:14.0500 5112 Fs_Rec - ok
01:23:14.0563 5112 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:23:14.0578 5112 fvevol - ok
01:23:14.0610 5112 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:23:14.0625 5112 gagp30kx - ok
01:23:14.0812 5112 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe
01:23:14.0828 5112 GameConsoleService - ok
01:23:14.0875 5112 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:23:14.0890 5112 GEARAspiWDM - ok
01:23:15.0015 5112 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
01:23:15.0078 5112 gpsvc - ok
01:23:15.0249 5112 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:23:15.0265 5112 gupdate - ok
01:23:15.0265 5112 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:23:15.0280 5112 gupdatem - ok
01:23:15.0327 5112 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:23:15.0421 5112 hcw85cir - ok
01:23:15.0483 5112 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
01:23:15.0530 5112 HdAudAddService - ok
01:23:15.0655 5112 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
01:23:15.0702 5112 HDAudBus - ok
01:23:15.0811 5112 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:23:15.0858 5112 HidBatt - ok
01:23:15.0920 5112 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:23:15.0967 5112 HidBth - ok
01:23:16.0060 5112 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:23:16.0107 5112 HidIr - ok
01:23:16.0201 5112 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
01:23:16.0279 5112 hidserv - ok
01:23:16.0310 5112 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
01:23:16.0341 5112 HidUsb - ok
01:23:16.0372 5112 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
01:23:16.0450 5112 hkmsvc - ok
01:23:16.0497 5112 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
01:23:16.0560 5112 HomeGroupListener - ok
01:23:16.0606 5112 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
01:23:16.0653 5112 HomeGroupProvider - ok
01:23:16.0716 5112 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
01:23:16.0731 5112 HpSAMD - ok
01:23:16.0872 5112 HsfXAudioService (447256d1c026654c5cd3cc17e7b20631) C:\Windows\SysWOW64\XAudio64.dll
01:23:16.0950 5112 HsfXAudioService - ok
01:23:17.0293 5112 HSF_DPV (26c5d00321937e49b6bc91029947d094) C:\Windows\system32\DRIVERS\CAX_DPV.sys
01:23:17.0355 5112 HSF_DPV - ok
01:23:17.0730 5112 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
01:23:17.0808 5112 HTTP - ok
01:23:17.0839 5112 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
01:23:17.0854 5112 hwpolicy - ok
01:23:17.0886 5112 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
01:23:17.0901 5112 i8042prt - ok
01:23:17.0979 5112 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
01:23:17.0995 5112 iaStor - ok
01:23:18.0057 5112 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\DRIVERS\iaStorV.sys
01:23:18.0088 5112 iaStorV - ok
01:23:18.0385 5112 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:23:18.0400 5112 idsvc - ok
01:23:18.0712 5112 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20120516.001\IDSvia64.sys
01:23:18.0744 5112 IDSVia64 - ok
01:23:18.0962 5112 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:23:18.0978 5112 iirsp - ok
01:23:19.0149 5112 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
01:23:19.0227 5112 IKEEXT - ok
01:23:19.0274 5112 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
01:23:19.0290 5112 intelide - ok
01:23:19.0321 5112 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:23:19.0368 5112 intelppm - ok
01:23:19.0414 5112 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:23:19.0477 5112 IPBusEnum - ok
01:23:19.0508 5112 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:23:19.0555 5112 IpFilterDriver - ok
01:23:19.0633 5112 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
01:23:19.0742 5112 iphlpsvc - ok
01:23:19.0789 5112 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
01:23:19.0836 5112 IPMIDRV - ok
01:23:19.0882 5112 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:23:19.0945 5112 IPNAT - ok
01:23:20.0210 5112 iPod Service (056ab99a00e2023a24ab4f067880cc3e) C:\Program Files\iPod\bin\iPodService.exe
01:23:20.0226 5112 iPod Service - ok
01:23:20.0272 5112 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:23:20.0304 5112 IRENUM - ok
01:23:20.0319 5112 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
01:23:20.0335 5112 isapnp - ok
01:23:20.0366 5112 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
01:23:20.0382 5112 iScsiPrt - ok
01:23:20.0397 5112 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
01:23:20.0413 5112 kbdclass - ok
01:23:20.0428 5112 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
01:23:20.0475 5112 kbdhid - ok
01:23:20.0522 5112 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:20.0538 5112 KeyIso - ok
01:23:20.0709 5112 Kodak AiO Network Discovery Service (27277a11db52fefae5b01dc8fb570b28) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
01:23:20.0725 5112 Kodak AiO Network Discovery Service - ok
01:23:20.0834 5112 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
01:23:20.0850 5112 KSecDD - ok
01:23:20.0896 5112 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
01:23:20.0928 5112 KSecPkg - ok
01:23:20.0974 5112 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:23:21.0052 5112 ksthunk - ok
01:23:21.0115 5112 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:23:21.0208 5112 KtmRm - ok
01:23:21.0271 5112 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
01:23:21.0333 5112 LanmanServer - ok
01:23:21.0396 5112 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
01:23:21.0474 5112 LanmanWorkstation - ok
01:23:21.0630 5112 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
01:23:21.0661 5112 LBTServ - ok
01:23:22.0378 5112 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
01:23:22.0519 5112 LeapFrog Connect Device Service - ok
01:23:22.0768 5112 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
01:23:22.0784 5112 LEqdUsb - ok
01:23:22.0846 5112 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
01:23:22.0862 5112 LHidEqd - ok
01:23:22.0940 5112 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
01:23:22.0956 5112 LHidFilt - ok
01:23:23.0002 5112 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:23:23.0080 5112 lltdio - ok
01:23:23.0174 5112 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:23:23.0236 5112 lltdsvc - ok
01:23:23.0268 5112 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:23:23.0314 5112 lmhosts - ok
01:23:23.0377 5112 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
01:23:23.0392 5112 LMouFilt - ok
01:23:23.0439 5112 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:23:23.0470 5112 LSI_FC - ok
01:23:23.0502 5112 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:23:23.0517 5112 LSI_SAS - ok
01:23:23.0533 5112 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:23:23.0548 5112 LSI_SAS2 - ok
01:23:23.0580 5112 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:23:23.0611 5112 LSI_SCSI - ok
01:23:23.0626 5112 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:23:23.0689 5112 luafv - ok
01:23:23.0845 5112 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
01:23:23.0876 5112 Mcx2Svc - ok
01:23:23.0938 5112 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
01:23:24.0016 5112 mdmxsdk - ok
01:23:24.0094 5112 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:23:24.0110 5112 megasas - ok
01:23:24.0141 5112 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:23:24.0172 5112 MegaSR - ok
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 ( UnsignedFile.Multi.Generic ) - warning
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 - detected UnsignedFile.Multi.Generic (1)
01:23:24.0469 5112 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:23:24.0484 5112 Microsoft Office Groove Audit Service - ok
01:23:24.0531 5112 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:23:24.0594 5112 MMCSS - ok
01:23:24.0640 5112 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:23:24.0703 5112 Modem - ok
01:23:24.0734 5112 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:23:24.0765 5112 monitor - ok
01:23:24.0796 5112 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
01:23:24.0812 5112 mouclass - ok
01:23:24.0843 5112 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:23:24.0874 5112 mouhid - ok
01:23:24.0906 5112 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
01:23:24.0937 5112 mountmgr - ok
01:23:24.0952 5112 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
01:23:24.0968 5112 mpio - ok
01:23:24.0999 5112 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:23:25.0062 5112 mpsdrv - ok
01:23:25.0202 5112 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
01:23:25.0280 5112 MpsSvc - ok
01:23:25.0311 5112 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
01:23:25.0358 5112 MRxDAV - ok
01:23:25.0467 5112 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:23:25.0530 5112 mrxsmb - ok
01:23:25.0592 5112 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:23:25.0639 5112 mrxsmb10 - ok
01:23:25.0701 5112 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:23:25.0732 5112 mrxsmb20 - ok
01:23:25.0810 5112 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
01:23:25.0826 5112 msahci - ok
01:23:25.0857 5112 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
01:23:25.0888 5112 msdsm - ok
01:23:25.0935 5112 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:23:25.0982 5112 MSDTC - ok
01:23:26.0013 5112 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:23:26.0060 5112 Msfs - ok
01:23:26.0107 5112 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:23:26.0169 5112 mshidkmdf - ok
01:23:26.0200 5112 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
01:23:26.0216 5112 msisadrv - ok
01:23:26.0278 5112 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:23:26.0341 5112 MSiSCSI - ok
01:23:26.0356 5112 msiserver - ok
01:23:26.0403 5112 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:23:26.0481 5112 MSKSSRV - ok
01:23:26.0497 5112 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:23:26.0559 5112 MSPCLOCK - ok
01:23:26.0575 5112 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:23:26.0622 5112 MSPQM - ok
01:23:26.0700 5112 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
01:23:26.0731 5112 MsRPC - ok
01:23:26.0746 5112 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
01:23:26.0762 5112 mssmbios - ok
01:23:26.0793 5112 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:23:26.0856 5112 MSTEE - ok
01:23:26.0902 5112 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:23:26.0934 5112 MTConfig - ok
01:23:26.0980 5112 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:23:26.0996 5112 Mup - ok
01:23:27.0261 5112 N360 (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe
01:23:27.0277 5112 N360 - ok
01:23:27.0339 5112 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
01:23:27.0417 5112 napagent - ok
01:23:27.0480 5112 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:23:27.0542 5112 NativeWifiP - ok
01:23:27.0823 5112 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\ENG64.SYS
01:23:27.0838 5112 NAVENG - ok
01:23:27.0979 5112 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\EX64.SYS
01:23:28.0057 5112 NAVEX15 - ok
01:23:28.0306 5112 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
01:23:28.0353 5112 NDIS - ok
01:23:28.0369 5112 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:23:28.0447 5112 NdisCap - ok
01:23:28.0462 5112 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:23:28.0509 5112 NdisTapi - ok
01:23:28.0525 5112 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
01:23:28.0572 5112 Ndisuio - ok
01:23:28.0618 5112 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
01:23:28.0665 5112 NdisWan - ok
01:23:28.0696 5112 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
01:23:28.0759 5112 NDProxy - ok
01:23:28.0806 5112 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:23:28.0852 5112 NetBIOS - ok
01:23:28.0899 5112 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
01:23:28.0977 5112 NetBT - ok
01:23:29.0008 5112 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:29.0040 5112 Netlogon - ok
01:23:29.0102 5112 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:23:29.0180 5112 Netman - ok
01:23:29.0242 5112 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:23:29.0320 5112 netprofm - ok
01:23:29.0554 5112 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:23:29.0570 5112 NetTcpPortSharing - ok
01:23:29.0632 5112 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:23:29.0648 5112 nfrd960 - ok
01:23:29.0710 5112 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
01:23:29.0773 5112 NlaSvc - ok
01:23:29.0820 5112 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:23:29.0898 5112 Npfs - ok
01:23:29.0944 5112 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:23:30.0022 5112 nsi - ok
01:23:30.0038 5112 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:23:30.0116 5112 nsiproxy - ok
01:23:30.0319 5112 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
01:23:30.0366 5112 Ntfs - ok
01:23:30.0693 5112 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
01:23:30.0709 5112 NuidFltr - ok
01:23:30.0771 5112 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:23:30.0849 5112 Null - ok
01:23:30.0912 5112 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\DRIVERS\nvraid.sys
01:23:30.0927 5112 nvraid - ok
01:23:30.0958 5112 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\DRIVERS\nvstor.sys
01:23:30.0974 5112 nvstor - ok
01:23:31.0068 5112 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
01:23:31.0083 5112 nv_agp - ok
01:23:31.0130 5112 O2FLASH (d955d5de998db2476bf0892be3a96c26) C:\Windows\system32\DRIVERS\o2flash.exe
01:23:31.0208 5112 O2FLASH - ok
01:23:31.0255 5112 O2MDRDR (26da4b40670ad436f7daec053a2a9eca) C:\Windows\system32\DRIVERS\o2mdx64.sys
01:23:31.0270 5112 O2MDRDR - ok
01:23:31.0317 5112 O2SDRDR (2e69a2adc12daa7ac7b4ffd8601e88b0) C:\Windows\system32\DRIVERS\o2sdx64.sys
01:23:31.0333 5112 O2SDRDR - ok
01:23:31.0504 5112 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:23:31.0536 5112 odserv - ok
01:23:31.0582 5112 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
01:23:31.0629 5112 ohci1394 - ok
01:23:31.0707 5112 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:23:31.0723 5112 ose - ok
01:23:31.0832 5112 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:23:31.0894 5112 p2pimsvc - ok
01:23:32.0019 5112 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:23:32.0066 5112 p2psvc - ok
01:23:32.0144 5112 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:23:32.0160 5112 Parport - ok
01:23:32.0300 5112 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
01:23:32.0316 5112 partmgr - ok
01:23:32.0565 5112 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:23:32.0612 5112 PcaSvc - ok
01:23:32.0721 5112 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
01:23:32.0752 5112 pci - ok
01:23:32.0768 5112 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
01:23:32.0784 5112 pciide - ok
01:23:32.0815 5112 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:23:32.0846 5112 pcmcia - ok
01:23:32.0846 5112 PCTINDIS5X64 - ok
01:23:32.0893 5112 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:23:32.0908 5112 pcw - ok
01:23:32.0955 5112 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:23:33.0033 5112 PEAUTH - ok
01:23:33.0158 5112 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:23:33.0205 5112 PerfHost - ok
01:23:33.0439 5112 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
01:23:33.0548 5112 pla - ok
01:23:33.0595 5112 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
01:23:33.0673 5112 PlugPlay - ok
01:23:33.0720 5112 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:23:33.0782 5112 PNRPAutoReg - ok
01:23:33.0844 5112 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:23:33.0860 5112 PNRPsvc - ok
01:23:33.0954 5112 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
01:23:33.0969 5112 Point64 - ok
01:23:34.0094 5112 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
01:23:34.0172 5112 PolicyAgent - ok
01:23:34.0219 5112 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:23:34.0297 5112 Power - ok
01:23:34.0359 5112 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
01:23:34.0422 5112 PptpMiniport - ok
01:23:34.0453 5112 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:23:34.0484 5112 Processor - ok
01:23:34.0531 5112 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
01:23:34.0593 5112 ProfSvc - ok
01:23:34.0640 5112 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:34.0671 5112 ProtectedStorage - ok
01:23:34.0702 5112 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
01:23:34.0765 5112 Psched - ok
01:23:34.0796 5112 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
01:23:34.0812 5112 PxHlpa64 - ok
01:23:34.0952 5112 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:23:35.0014 5112 ql2300 - ok
01:23:35.0326 5112 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:23:35.0342 5112 ql40xx - ok
01:23:35.0420 5112 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:23:35.0451 5112 QWAVE - ok
01:23:35.0467 5112 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:23:35.0514 5112 QWAVEdrv - ok
01:23:35.0545 5112 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:23:35.0607 5112 RasAcd - ok
01:23:35.0654 5112 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:23:35.0701 5112 RasAgileVpn - ok
01:23:35.0748 5112 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:23:35.0810 5112 RasAuto - ok
01:23:35.0935 5112 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:23:36.0013 5112 Rasl2tp - ok
01:23:36.0106 5112 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
01:23:36.0200 5112 RasMan - ok
01:23:36.0216 5112 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:23:36.0309 5112 RasPppoe - ok
01:23:36.0387 5112 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:23:36.0450 5112 RasSstp - ok
01:23:36.0512 5112 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
01:23:36.0590 5112 rdbss - ok
01:23:36.0637 5112 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:23:36.0684 5112 rdpbus - ok
01:23:36.0715 5112 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:23:36.0793 5112 RDPCDD - ok
01:23:36.0824 5112 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:23:36.0886 5112 RDPENCDD - ok
01:23:36.0933 5112 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:23:36.0980 5112 RDPREFMP - ok
01:23:37.0027 5112 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
01:23:37.0089 5112 RDPWD - ok
01:23:37.0120 5112 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
01:23:37.0136 5112 rdyboost - ok
01:23:37.0245 5112 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:23:37.0308 5112 RemoteAccess - ok
01:23:37.0448 5112 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:23:37.0526 5112 RemoteRegistry - ok
01:23:37.0776 5112 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
01:23:37.0822 5112 RichVideo ( UnsignedFile.Multi.Generic ) - warning
01:23:37.0822 5112 RichVideo - detected UnsignedFile.Multi.Generic (1)
01:23:37.0994 5112 Roxio UPnP Renderer 11 (805393d80291c53085bce10868e54ad5) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
01:23:38.0010 5112 Roxio UPnP Renderer 11 - ok
01:23:38.0088 5112 Roxio Upnp Server 11 (96a3d9197f4d8a7e456018b809bf2ac1) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
01:23:38.0103 5112 Roxio Upnp Server 11 - ok
01:23:38.0353 5112 RoxLiveShare11 (8af842f4c84bdaa882216a01f8825402) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
01:23:38.0368 5112 RoxLiveShare11 - ok
01:23:38.0478 5112 RoxMediaDB11 (c6394df3055601b11964b075c811f03c) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
01:23:38.0524 5112 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - warning
01:23:38.0524 5112 RoxMediaDB11 - detected UnsignedFile.Multi.Generic (1)
01:23:38.0602 5112 RoxWatch11 (3e8df3dd655cce064cf952066ddff248) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
01:23:38.0618 5112 RoxWatch11 - ok
01:23:38.0774 5112 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:23:38.0852 5112 RpcEptMapper - ok
01:23:38.0883 5112 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:23:38.0914 5112 RpcLocator - ok
01:23:38.0961 5112 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:23:39.0024 5112 RpcSs - ok
01:23:39.0117 5112 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:23:39.0195 5112 rspndr - ok
01:23:39.0289 5112 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:39.0320 5112 SamSs - ok
01:23:39.0382 5112 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
01:23:39.0398 5112 sbp2port - ok
01:23:39.0460 5112 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:23:39.0538 5112 SCardSvr - ok
01:23:39.0585 5112 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
01:23:39.0663 5112 scfilter - ok
01:23:39.0772 5112 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
01:23:39.0850 5112 Schedule - ok
01:23:39.0897 5112 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:23:39.0960 5112 SCPolicySvc - ok
01:23:40.0022 5112 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
01:23:40.0069 5112 SDRSVC - ok
01:23:40.0178 5112 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:23:40.0256 5112 secdrv - ok
01:23:40.0287 5112 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
01:23:40.0350 5112 seclogon - ok
01:23:40.0428 5112 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
01:23:40.0490 5112 SENS - ok
01:23:40.0537 5112 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:23:40.0584 5112 SensrSvc - ok
01:23:40.0599 5112 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:23:40.0646 5112 Serenum - ok
01:23:40.0693 5112 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:23:40.0708 5112 Serial - ok
01:23:40.0724 5112 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:23:40.0771 5112 sermouse - ok
01:23:40.0833 5112 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
01:23:40.0880 5112 SessionEnv - ok
01:23:40.0942 5112 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
01:23:41.0020 5112 sffdisk - ok
01:23:41.0036 5112 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
01:23:41.0083 5112 sffp_mmc - ok
01:23:41.0114 5112 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
01:23:41.0161 5112 sffp_sd - ok
01:23:41.0239 5112 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:23:41.0286 5112 sfloppy - ok
01:23:41.0348 5112 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:23:41.0426 5112 SharedAccess - ok
01:23:41.0520 5112 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
01:23:41.0566 5112 ShellHWDetection - ok
01:23:41.0613 5112 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:23:41.0629 5112 SiSRaid2 - ok
01:23:41.0660 5112 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:23:41.0676 5112 SiSRaid4 - ok
01:23:41.0707 5112 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:23:41.0754 5112 Smb - ok
01:23:41.0816 5112 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:23:41.0832 5112 SNMPTRAP - ok
01:23:41.0847 5112 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:23:41.0863 5112 spldr - ok
01:23:41.0941 5112 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
01:23:42.0003 5112 Spooler - ok
01:23:42.0268 5112 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
01:23:42.0393 5112 sppsvc - ok
01:23:42.0580 5112 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:23:42.0627 5112 sppuinotify - ok
01:23:42.0752 5112 sptd (602884696850c86434530790b110e8eb) C:\Windows\System32\Drivers\sptd.sys
01:23:42.0768 5112 sptd - ok
01:23:43.0017 5112 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\N360x64\0602000.009\SRTSP64.SYS
01:23:43.0048 5112 SRTSP - ok
01:23:43.0080 5112 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\N360x64\0602000.009\SRTSPX64.SYS
01:23:43.0095 5112 SRTSPX - ok
01:23:43.0189 5112 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
01:23:43.0251 5112 srv - ok
01:23:43.0298 5112 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
01:23:43.0329 5112 srv2 - ok
01:23:43.0360 5112 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
01:23:43.0423 5112 srvnet - ok
01:23:43.0548 5112 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:23:43.0626 5112 SSDPSRV - ok
01:23:43.0657 5112 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:23:43.0704 5112 SstpSvc - ok
01:23:43.0735 5112 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:23:43.0766 5112 stexstor - ok
01:23:43.0828 5112 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
01:23:43.0875 5112 stisvc - ok
01:23:43.0906 5112 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
01:23:43.0922 5112 swenum - ok
01:23:43.0984 5112 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:23:44.0062 5112 swprv - ok
01:23:44.0172 5112 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\N360x64\0602000.009\SYMDS64.SYS
01:23:44.0203 5112 SymDS - ok
01:23:44.0312 5112 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\N360x64\0602000.009\SYMEFA64.SYS
01:23:44.0343 5112 SymEFA - ok
01:23:44.0452 5112 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
01:23:44.0468 5112 SymEvent - ok
01:23:44.0562 5112 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\N360x64\0602000.009\Ironx64.SYS
01:23:44.0577 5112 SymIRON - ok
01:23:44.0640 5112 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\N360x64\0602000.009\SYMNETS.SYS
01:23:44.0671 5112 SymNetS - ok
01:23:44.0733 5112 SynTP (437a9d8b5ae2067d44eb60c953edc8a4) C:\Windows\system32\DRIVERS\SynTP.sys
01:23:44.0749 5112 SynTP - ok
01:23:44.0920 5112 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
01:23:45.0045 5112 SysMain - ok
01:23:45.0201 5112 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
01:23:45.0264 5112 TabletInputService - ok
01:23:45.0310 5112 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
01:23:45.0357 5112 TapiSrv - ok
01:23:45.0388 5112 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:23:45.0435 5112 TBS - ok
01:23:45.0669 5112 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
01:23:45.0732 5112 Tcpip - ok
01:23:46.0122 5112 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
01:23:46.0168 5112 TCPIP6 - ok
01:23:46.0465 5112 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
01:23:46.0512 5112 tcpipreg - ok
01:23:46.0527 5112 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:23:46.0605 5112 TDPIPE - ok
01:23:46.0621 5112 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
01:23:46.0683 5112 TDTCP - ok
01:23:46.0746 5112 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
01:23:46.0839 5112 tdx - ok
01:23:46.0855 5112 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
01:23:46.0870 5112 TermDD - ok
01:23:46.0995 5112 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
01:23:47.0089 5112 TermService - ok
01:23:47.0120 5112 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:23:47.0136 5112 Themes - ok
01:23:47.0229 5112 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:23:47.0276 5112 THREADORDER - ok
01:23:47.0307 5112 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:23:47.0385 5112 TrkWks - ok
01:23:47.0728 5112 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
01:23:47.0744 5112 TrustedInstaller - ok
01:23:47.0791 5112 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:23:47.0838 5112 tssecsrv - ok
01:23:47.0869 5112 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
01:23:47.0916 5112 tunnel - ok
01:23:47.0931 5112 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:23:47.0947 5112 uagp35 - ok
01:23:47.0978 5112 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
01:23:48.0056 5112 udfs - ok
01:23:48.0118 5112 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:23:48.0150 5112 UI0Detect - ok
01:23:48.0196 5112 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
01:23:48.0212 5112 uliagpkx - ok
01:23:48.0243 5112 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
01:23:48.0259 5112 umbus - ok
01:23:48.0274 5112 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:23:48.0321 5112 UmPass - ok
01:23:48.0384 5112 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:23:48.0462 5112 upnphost - ok
01:23:48.0508 5112 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
01:23:48.0571 5112 usbccgp - ok
01:23:48.0633 5112 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
01:23:48.0680 5112 usbcir - ok
01:23:48.0711 5112 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
01:23:48.0727 5112 usbehci - ok
01:23:48.0789 5112 usbfilter (8fec71666aba7114f9cab9e56065ec80) C:\Windows\system32\DRIVERS\usbfilter.sys
01:23:48.0805 5112 usbfilter - ok
01:23:48.0867 5112 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
01:23:48.0930 5112 usbhub - ok
01:23:48.0976 5112 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
01:23:49.0023 5112 usbohci - ok
01:23:49.0086 5112 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:23:49.0132 5112 usbprint - ok
01:23:49.0164 5112 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:23:49.0226 5112 USBSTOR - ok
01:23:49.0242 5112 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
01:23:49.0273 5112 usbuhci - ok
01:23:49.0320 5112 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
01:23:49.0398 5112 usbvideo - ok
01:23:49.0429 5112 UVCFTR (56ed086f1300ecb1e6f67ac43955e5e9) C:\Windows\system32\Drivers\UVCFTR_S.SYS
01:23:49.0444 5112 UVCFTR - ok
01:23:49.0491 5112 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:23:49.0569 5112 UxSms - ok
01:23:49.0600 5112 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:49.0616 5112 VaultSvc - ok
01:23:49.0647 5112 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
01:23:49.0663 5112 vdrvroot - ok
01:23:49.0710 5112 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
01:23:49.0772 5112 vds - ok
01:23:49.0788 5112 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:23:49.0803 5112 vga - ok
01:23:49.0834 5112 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:23:49.0897 5112 VgaSave - ok
01:23:49.0944 5112 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
01:23:49.0975 5112 vhdmp - ok
01:23:50.0037 5112 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
01:23:50.0053 5112 viaide - ok
01:23:50.0068 5112 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
01:23:50.0100 5112 volmgr - ok
01:23:50.0131 5112 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
01:23:50.0146 5112 volmgrx - ok
01:23:50.0193 5112 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
01:23:50.0209 5112 volsnap - ok
01:23:50.0240 5112 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:23:50.0256 5112 vsmraid - ok
01:23:50.0396 5112 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
01:23:50.0458 5112 VSS - ok
01:23:50.0755 5112 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
01:23:50.0802 5112 vwifibus - ok
01:23:50.0817 5112 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
01:23:50.0880 5112 vwififlt - ok
01:23:50.0911 5112 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
01:23:50.0942 5112 vwifimp - ok
01:23:51.0036 5112 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:23:51.0082 5112 W32Time - ok
01:23:51.0129 5112 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:23:51.0160 5112 WacomPen - ok
01:23:51.0176 5112 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:23:51.0254 5112 WANARP - ok
01:23:51.0270 5112 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:23:51.0316 5112 Wanarpv6 - ok
01:23:51.0441 5112 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:23:51.0472 5112 WatAdminSvc - ok
01:23:51.0660 5112 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
01:23:51.0769 5112 wbengine - ok
01:23:52.0018 5112 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:23:52.0050 5112 WbioSrvc - ok
01:23:52.0112 5112 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
01:23:52.0190 5112 wcncsvc - ok
01:23:52.0206 5112 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:23:52.0237 5112 WcsPlugInService - ok
01:23:52.0330 5112 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:23:52.0346 5112 Wd - ok
01:23:52.0393 5112 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:23:52.0455 5112 Wdf01000 - ok
01:23:52.0486 5112 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:23:52.0533 5112 WdiServiceHost - ok
01:23:52.0533 5112 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:23:52.0564 5112 WdiSystemHost - ok
01:23:52.0658 5112 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
01:23:52.0752 5112 WebClient - ok
01:23:52.0845 5112 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:23:52.0939 5112 Wecsvc - ok
01:23:52.0954 5112 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:23:53.0048 5112 wercplsupport - ok
01:23:53.0095 5112 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:23:53.0157 5112 WerSvc - ok
01:23:53.0251 5112 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:23:53.0298 5112 WfpLwf - ok
01:23:53.0344 5112 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:23:53.0360 5112 WIMMount - ok
01:23:53.0547 5112 winachsf (a6ea7a3fc4b00f48535b506db1e86efd) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
01:23:53.0594 5112 winachsf - ok
01:23:53.0641 5112 WinDefend - ok
01:23:53.0656 5112 WinHttpAutoProxySvc - ok
01:23:53.0828 5112 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:23:53.0906 5112 Winmgmt - ok
01:23:54.0234 5112 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
01:23:54.0374 5112 WinRM - ok
01:23:54.0592 5112 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
01:23:54.0639 5112 WinUsb - ok
01:23:54.0826 5112 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:23:54.0889 5112 Wlansvc - ok
01:23:55.0170 5112 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:23:55.0248 5112 wlidsvc - ok
01:23:55.0450 5112 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
01:23:55.0466 5112 WmiAcpi - ok
01:23:55.0638 5112 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:23:55.0684 5112 wmiApSrv - ok
01:23:55.0762 5112 WMPNetworkSvc - ok
01:23:55.0794 5112 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:23:55.0825 5112 WPCSvc - ok
01:23:55.0872 5112 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
01:23:55.0934 5112 WPDBusEnum - ok
01:23:56.0028 5112 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:23:56.0074 5112 ws2ifsl - ok
01:23:56.0121 5112 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
01:23:56.0168 5112 wscsvc - ok
01:23:56.0184 5112 WSearch - ok
01:23:56.0386 5112 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
01:23:56.0464 5112 wuauserv - ok
01:23:56.0683 5112 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
01:23:56.0745 5112 WudfPf - ok
01:23:56.0776 5112 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:23:56.0823 5112 WUDFRd - ok
01:23:56.0870 5112 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
01:23:56.0964 5112 wudfsvc - ok
01:23:57.0042 5112 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:23:57.0088 5112 WwanSvc - ok
01:23:57.0135 5112 XAudio (e8f3fa126a06f8e7088f63757112a186) C:\Windows\system32\DRIVERS\XAudio64.sys
01:23:57.0182 5112 XAudio - ok
01:23:57.0291 5112 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
01:23:57.0385 5112 yukonw7 - ok
01:23:57.0432 5112 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
01:23:57.0759 5112 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
01:23:57.0759 5112 \Device\Harddisk0\DR0 - detected TDSS File System (1)
01:23:57.0759 5112 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
01:24:01.0191 5112 \Device\Harddisk1\DR2 - ok
01:24:01.0222 5112 Boot (0x1200) (2f0d0c06aa3ee4a01f23ea3bf625aade) \Device\Harddisk0\DR0\Partition0
01:24:01.0222 5112 \Device\Harddisk0\DR0\Partition0 - ok
01:24:01.0254 5112 Boot (0x1200) (7d151d3316be5e84610a7483fb382d9c) \Device\Harddisk0\DR0\Partition1
01:24:01.0254 5112 \Device\Harddisk0\DR0\Partition1 - ok
01:24:01.0269 5112 Boot (0x1200) (9b5dc841aaf555ce9bc395a3d3d9d38c) \Device\Harddisk1\DR2\Partition0
01:24:01.0269 5112 \Device\Harddisk1\DR2\Partition0 - ok
01:24:01.0269 5112 ============================================================
01:24:01.0269 5112 Scan finished
01:24:01.0269 5112 ============================================================
01:24:01.0285 4388 Detected object count: 4
01:24:01.0285 4388 Actual detected object count: 4
01:25:08.0022 4388 C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe - copied to quarantine
01:25:08.0037 4388 HKLM\SYSTEM\ControlSet001\services\mi-raysat_3dsmax2011_32 - will be deleted on reboot
01:25:08.0209 4388 HKLM\SYSTEM\ControlSet002\services\mi-raysat_3dsmax2011_32 - will be deleted on reboot
01:25:08.0942 4388 C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe - will be deleted on reboot
01:25:08.0942 4388 mi-raysat_3dsmax2011_32 ( UnsignedFile.Multi.Generic ) - User select action: Delete
01:25:08.0958 4388 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
01:25:08.0958 4388 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:25:08.0958 4388 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - skipped by user
01:25:08.0958 4388 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:25:08.0958 4388 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
01:25:08.0958 4388 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
01:25:21.0375 4736 Deinitialize success



aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-08 01:34:30
-----------------------------
01:34:30.758 OS Version: Windows x64 6.1.7600
01:34:30.758 Number of processors: 2 586 0x301
01:34:30.758 ComputerName: YARMERLAPTOP UserName: Yarmers'
01:34:32.365 Initialize success
01:36:36.775 AVAST engine defs: 12070701
01:36:45.261 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
01:36:45.261 Disk 0 Vendor: Hitachi_HTS543225L9A300 FBEOC40C Size: 238475MB BusType: 3
01:36:45.277 Disk 0 MBR read successfully
01:36:45.293 Disk 0 MBR scan
01:36:45.293 Disk 0 Windows 7 default MBR code
01:36:45.293 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14336 MB offset 2048
01:36:45.324 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 189252 MB offset 29362176
01:36:45.324 Disk 0 Partition - 00 0F Extended LBA 26692 MB offset 416952320
01:36:45.371 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 26691 MB offset 416954368
01:36:45.417 Disk 0 scanning C:\Windows\system32\drivers
01:37:01.501 Service scanning
01:37:56.070 Modules scanning
01:37:56.070 Disk 0 trace - called modules:
01:37:56.101 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
01:37:56.117 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003027060]
01:37:56.117 3 CLASSPNP.SYS[fffff8800107543f] -> nt!IofCallDriver -> [0xfffffa8002f97520]
01:37:56.132 5 ACPI.sys[fffff88000fa7781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002f9d060]
01:37:57.489 AVAST engine scan C:\Windows
01:38:02.481 AVAST engine scan C:\Windows\system32
01:44:14.869 AVAST engine scan C:\Windows\system32\drivers
01:44:33.106 AVAST engine scan C:\Users\Yarmers'
02:31:30.031 AVAST engine scan C:\ProgramData
02:52:07.003 Scan finished successfully
03:12:42.017 Disk 0 MBR has been saved successfully to "C:\Users\Yarmers'\Desktop\MBR.dat"
03:12:42.017 The log file has been saved successfully to "C:\Users\Yarmers'\Desktop\aswMBR.txt"

#15 markyellguy

markyellguy
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 08 July 2012 - 08:19 AM

TDSS Killer log:
01:20:56.0596 1040 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
01:20:58.0655 1040 ============================================================
01:20:58.0655 1040 Current date / time: 2012/07/08 01:20:58.0655
01:20:58.0655 1040 SystemInfo:
01:20:58.0655 1040
01:20:58.0655 1040 OS Version: 6.1.7600 ServicePack: 0.0
01:20:58.0655 1040 Product type: Workstation
01:20:58.0655 1040 ComputerName: YARMERLAPTOP
01:20:58.0655 1040 UserName: Yarmers'
01:20:58.0655 1040 Windows directory: C:\Windows
01:20:58.0655 1040 System windows directory: C:\Windows
01:20:58.0655 1040 Running under WOW64
01:20:58.0655 1040 Processor architecture: Intel x64
01:20:58.0655 1040 Number of processors: 2
01:20:58.0655 1040 Page size: 0x1000
01:20:58.0655 1040 Boot type: Normal boot
01:20:58.0655 1040 ============================================================
01:21:03.0460 1040 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:21:03.0476 1040 Drive \Device\Harddisk1\DR2 - Size: 0x3C7800000 (15.12 Gb), SectorSize: 0x200, Cylinders: 0x7B5, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:21:03.0491 1040 ============================================================
01:21:03.0491 1040 \Device\Harddisk0\DR0:
01:21:03.0491 1040 MBR partitions:
01:21:03.0491 1040 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x171A27F0
01:21:03.0491 1040 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18DA3800, BlocksNum 0x3421800
01:21:03.0491 1040 \Device\Harddisk1\DR2:
01:21:03.0507 1040 MBR partitions:
01:21:03.0507 1040 \Device\Harddisk1\DR2\Partition0: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x1E3BFE0
01:21:03.0507 1040 ============================================================
01:21:03.0600 1040 C: <-> \Device\Harddisk0\DR0\Partition0
01:21:03.0600 1040 ============================================================
01:21:03.0600 1040 Initialize success
01:21:03.0600 1040 ============================================================
01:21:20.0480 0364 ============================================================
01:21:20.0480 0364 Scan started
01:21:20.0480 0364 Mode: Manual;
01:21:20.0480 0364 ============================================================
01:21:23.0990 0364 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
01:21:23.0990 0364 1394ohci - ok
01:21:24.0146 0364 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:21:24.0146 0364 ACDaemon - ok
01:21:24.0224 0364 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
01:21:24.0224 0364 ACPI - ok
01:21:24.0286 0364 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
01:21:24.0302 0364 AcpiPmi - ok
01:21:24.0364 0364 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
01:21:24.0380 0364 adfs - ok
01:21:24.0551 0364 Adobe Version Cue CS4 (57a3b9a69f14414ace12afd6ba701773) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
01:21:24.0583 0364 Adobe Version Cue CS4 - ok
01:21:24.0692 0364 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:21:24.0707 0364 adp94xx - ok
01:21:24.0879 0364 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:21:24.0879 0364 adpahci - ok
01:21:24.0910 0364 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:21:24.0926 0364 adpu320 - ok
01:21:24.0973 0364 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:21:24.0973 0364 AeLookupSvc - ok
01:21:25.0082 0364 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
01:21:25.0129 0364 AFD - ok
01:21:25.0191 0364 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
01:21:25.0191 0364 agp440 - ok
01:21:25.0238 0364 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:21:25.0253 0364 ALG - ok
01:21:25.0316 0364 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
01:21:25.0316 0364 aliide - ok
01:21:25.0394 0364 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
01:21:25.0394 0364 AMD External Events Utility - ok
01:21:25.0409 0364 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
01:21:25.0409 0364 amdide - ok
01:21:25.0456 0364 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:21:25.0456 0364 AmdK8 - ok
01:21:25.0581 0364 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:21:25.0581 0364 AmdPPM - ok
01:21:25.0643 0364 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
01:21:25.0643 0364 amdsata - ok
01:21:25.0706 0364 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:21:25.0706 0364 amdsbs - ok
01:21:25.0799 0364 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
01:21:25.0799 0364 amdxata - ok
01:21:25.0862 0364 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
01:21:25.0877 0364 AppID - ok
01:21:25.0909 0364 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:21:25.0924 0364 AppIDSvc - ok
01:21:25.0940 0364 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
01:21:25.0955 0364 Appinfo - ok
01:21:26.0111 0364 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:21:26.0143 0364 Apple Mobile Device - ok
01:21:26.0205 0364 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:21:26.0205 0364 arc - ok
01:21:26.0252 0364 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:21:26.0267 0364 arcsas - ok
01:21:26.0299 0364 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:21:26.0314 0364 AsyncMac - ok
01:21:26.0314 0364 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
01:21:26.0314 0364 atapi - ok
01:21:26.0517 0364 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
01:21:26.0564 0364 athr - ok
01:21:27.0281 0364 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
01:21:27.0422 0364 atikmdag - ok
01:21:27.0749 0364 AtiPcie (db0d3de15edc96e7529fc0d3f7760894) C:\Windows\system32\DRIVERS\AtiPcie.sys
01:21:27.0749 0364 AtiPcie - ok
01:21:27.0952 0364 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:21:27.0983 0364 AudioEndpointBuilder - ok
01:21:27.0999 0364 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:21:27.0999 0364 AudioSrv - ok
01:21:28.0124 0364 Avgfwfd (96b4456f1dca4eda506ed31c7d2d6b05) C:\Windows\system32\DRIVERS\avgfwd6a.sys
01:21:28.0139 0364 Avgfwfd - ok
01:21:28.0498 0364 avgfws (bd5d11cedbcde4fa97d2387e7069b1ff) C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
01:21:28.0545 0364 avgfws - ok
01:21:29.0294 0364 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
01:21:29.0403 0364 AVGIDSAgent - ok
01:21:29.0762 0364 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
01:21:29.0777 0364 AVGIDSDriver - ok
01:21:29.0824 0364 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
01:21:29.0824 0364 AVGIDSFilter - ok
01:21:29.0902 0364 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
01:21:29.0902 0364 AVGIDSHA - ok
01:21:29.0996 0364 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
01:21:29.0996 0364 Avgldx64 - ok
01:21:30.0074 0364 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
01:21:30.0089 0364 Avgmfx64 - ok
01:21:30.0152 0364 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
01:21:30.0183 0364 Avgrkx64 - ok
01:21:30.0261 0364 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
01:21:30.0292 0364 Avgtdia - ok
01:21:30.0433 0364 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
01:21:30.0433 0364 avgwd - ok
01:21:30.0511 0364 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
01:21:30.0526 0364 AxInstSV - ok
01:21:30.0604 0364 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:21:30.0620 0364 b06bdrv - ok
01:21:30.0760 0364 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:21:30.0760 0364 b57nd60a - ok
01:21:30.0838 0364 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:21:30.0854 0364 BDESVC - ok
01:21:30.0869 0364 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:21:30.0869 0364 Beep - ok
01:21:31.0041 0364 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
01:21:31.0041 0364 BFE - ok
01:21:31.0493 0364 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120507.001\BHDrvx64.sys
01:21:31.0509 0364 BHDrvx64 - ok
01:21:31.0774 0364 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
01:21:31.0790 0364 BITS - ok
01:21:31.0899 0364 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:21:31.0899 0364 blbdrive - ok
01:21:32.0133 0364 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
01:21:32.0149 0364 Bonjour Service - ok
01:21:32.0211 0364 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
01:21:32.0227 0364 bowser - ok
01:21:32.0289 0364 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:21:32.0289 0364 BrFiltLo - ok
01:21:32.0320 0364 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:21:32.0320 0364 BrFiltUp - ok
01:21:32.0351 0364 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
01:21:32.0367 0364 BridgeMP - ok
01:21:32.0445 0364 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
01:21:32.0445 0364 Browser - ok
01:21:32.0507 0364 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:21:32.0523 0364 Brserid - ok
01:21:32.0570 0364 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:21:32.0570 0364 BrSerWdm - ok
01:21:32.0617 0364 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:21:32.0648 0364 BrUsbMdm - ok
01:21:32.0679 0364 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:21:32.0679 0364 BrUsbSer - ok
01:21:32.0695 0364 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:21:32.0710 0364 BTHMODEM - ok
01:21:32.0882 0364 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:21:32.0913 0364 bthserv - ok
01:21:32.0929 0364 CACLEARWIRE - ok
01:21:33.0178 0364 catchme - ok
01:21:33.0319 0364 CAXHWAZL (d1787e11c6a0078ddeaf8cf3ee2ab293) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
01:21:33.0334 0364 CAXHWAZL - ok
01:21:33.0443 0364 ccSet_N360 (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys
01:21:33.0475 0364 ccSet_N360 - ok
01:21:33.0584 0364 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:21:33.0599 0364 cdfs - ok
01:21:33.0693 0364 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
01:21:33.0693 0364 cdrom - ok
01:21:33.0787 0364 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:21:33.0818 0364 CertPropSvc - ok
01:21:33.0958 0364 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:21:33.0958 0364 circlass - ok
01:21:33.0958 0364 CLEARWIRERcAppSvc - ok
01:21:34.0270 0364 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:21:34.0286 0364 CLFS - ok
01:21:34.0426 0364 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:21:34.0442 0364 clr_optimization_v2.0.50727_32 - ok
01:21:34.0520 0364 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:21:34.0520 0364 clr_optimization_v2.0.50727_64 - ok
01:21:34.0598 0364 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:21:34.0629 0364 clr_optimization_v4.0.30319_32 - ok
01:21:34.0723 0364 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:21:34.0738 0364 clr_optimization_v4.0.30319_64 - ok
01:21:34.0785 0364 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:21:34.0801 0364 CmBatt - ok
01:21:34.0816 0364 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
01:21:34.0816 0364 cmdide - ok
01:21:34.0894 0364 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
01:21:34.0910 0364 CNG - ok
01:21:35.0019 0364 CnxtHdAudService (0d23c3312838eea1ed55d5f135bca613) C:\Windows\system32\drivers\CHDRT64.sys
01:21:35.0035 0364 CnxtHdAudService - ok
01:21:35.0097 0364 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:21:35.0097 0364 Compbatt - ok
01:21:35.0159 0364 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
01:21:35.0159 0364 CompositeBus - ok
01:21:35.0191 0364 COMSysApp - ok
01:21:35.0237 0364 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:21:35.0237 0364 crcdisk - ok
01:21:35.0315 0364 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
01:21:35.0315 0364 CryptSvc - ok
01:21:35.0362 0364 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys
01:21:35.0378 0364 dc3d - ok
01:21:35.0456 0364 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:21:35.0471 0364 DcomLaunch - ok
01:21:35.0581 0364 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:21:35.0581 0364 defragsvc - ok
01:21:35.0659 0364 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
01:21:35.0674 0364 DfsC - ok
01:21:35.0752 0364 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
01:21:35.0752 0364 Dhcp - ok
01:21:35.0815 0364 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:21:35.0815 0364 discache - ok
01:21:35.0861 0364 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:21:35.0877 0364 Disk - ok
01:21:35.0924 0364 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
01:21:35.0924 0364 Dnscache - ok
01:21:36.0017 0364 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
01:21:36.0033 0364 dot3svc - ok
01:21:36.0049 0364 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
01:21:36.0064 0364 DPS - ok
01:21:36.0111 0364 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:21:36.0111 0364 drmkaud - ok
01:21:36.0236 0364 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
01:21:36.0251 0364 DXGKrnl - ok
01:21:36.0314 0364 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:21:36.0314 0364 EapHost - ok
01:21:36.0563 0364 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:21:36.0626 0364 ebdrv - ok
01:21:36.0766 0364 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
01:21:36.0797 0364 eeCtrl - ok
01:21:36.0969 0364 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
01:21:36.0969 0364 EFS - ok
01:21:37.0125 0364 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
01:21:37.0141 0364 ehRecvr - ok
01:21:37.0187 0364 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:21:37.0265 0364 ehSched - ok
01:21:37.0421 0364 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:21:37.0437 0364 elxstor - ok
01:21:37.0546 0364 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
01:21:37.0562 0364 EraserUtilRebootDrv - ok
01:21:37.0609 0364 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
01:21:37.0609 0364 ErrDev - ok
01:21:37.0702 0364 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:21:37.0702 0364 EventSystem - ok
01:21:37.0749 0364 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:21:37.0749 0364 exfat - ok
01:21:37.0780 0364 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:21:37.0780 0364 fastfat - ok
01:21:37.0905 0364 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
01:21:37.0921 0364 Fax - ok
01:21:37.0936 0364 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:21:37.0936 0364 fdc - ok
01:21:37.0983 0364 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:21:37.0999 0364 fdPHost - ok
01:21:37.0999 0364 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:21:37.0999 0364 FDResPub - ok
01:21:38.0077 0364 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:21:38.0092 0364 FileInfo - ok
01:21:38.0123 0364 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:21:38.0139 0364 Filetrace - ok
01:21:38.0373 0364 FLEXnet Licensing Service (d60ef46dc0e757fe5eb579db95b88954) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:21:38.0389 0364 FLEXnet Licensing Service - ok
01:21:38.0591 0364 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
01:21:38.0669 0364 FLEXnet Licensing Service 64 - ok
01:21:38.0935 0364 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:21:38.0935 0364 flpydisk - ok
01:21:38.0981 0364 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
01:21:38.0981 0364 FltMgr - ok
01:21:39.0200 0364 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
01:21:39.0262 0364 FontCache - ok
01:21:39.0527 0364 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:21:39.0543 0364 FontCache3.0.0.0 - ok
01:21:39.0668 0364 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:21:39.0668 0364 FsDepends - ok
01:21:39.0730 0364 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
01:21:39.0730 0364 Fs_Rec - ok
01:21:39.0793 0364 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:21:39.0808 0364 fvevol - ok
01:21:39.0824 0364 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:21:39.0824 0364 gagp30kx - ok
01:21:40.0089 0364 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe
01:21:40.0136 0364 GameConsoleService - ok
01:21:40.0183 0364 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:21:40.0198 0364 GEARAspiWDM - ok
01:21:40.0292 0364 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
01:21:40.0307 0364 gpsvc - ok
01:21:40.0479 0364 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:21:40.0479 0364 gupdate - ok
01:21:40.0495 0364 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:21:40.0495 0364 gupdatem - ok
01:21:40.0541 0364 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:21:40.0541 0364 hcw85cir - ok
01:21:40.0619 0364 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
01:21:40.0619 0364 HdAudAddService - ok
01:21:40.0666 0364 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
01:21:40.0682 0364 HDAudBus - ok
01:21:40.0697 0364 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:21:40.0713 0364 HidBatt - ok
01:21:40.0729 0364 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:21:40.0729 0364 HidBth - ok
01:21:40.0760 0364 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:21:40.0760 0364 HidIr - ok
01:21:40.0807 0364 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
01:21:40.0807 0364 hidserv - ok
01:21:40.0900 0364 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
01:21:40.0916 0364 HidUsb - ok
01:21:40.0978 0364 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
01:21:40.0994 0364 hkmsvc - ok
01:21:41.0041 0364 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
01:21:41.0041 0364 HomeGroupListener - ok
01:21:41.0134 0364 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
01:21:41.0150 0364 HomeGroupProvider - ok
01:21:41.0197 0364 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
01:21:41.0197 0364 HpSAMD - ok
01:21:41.0415 0364 HsfXAudioService (447256d1c026654c5cd3cc17e7b20631) C:\Windows\SysWOW64\XAudio64.dll
01:21:41.0446 0364 HsfXAudioService - ok
01:21:41.0571 0364 HSF_DPV (26c5d00321937e49b6bc91029947d094) C:\Windows\system32\DRIVERS\CAX_DPV.sys
01:21:41.0602 0364 HSF_DPV - ok
01:21:41.0945 0364 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
01:21:41.0977 0364 HTTP - ok
01:21:42.0023 0364 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
01:21:42.0023 0364 hwpolicy - ok
01:21:42.0055 0364 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
01:21:42.0055 0364 i8042prt - ok
01:21:42.0133 0364 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
01:21:42.0133 0364 iaStor - ok
01:21:42.0211 0364 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\DRIVERS\iaStorV.sys
01:21:42.0226 0364 iaStorV - ok
01:21:42.0445 0364 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:21:42.0476 0364 idsvc - ok
01:21:42.0866 0364 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20120516.001\IDSvia64.sys
01:21:42.0881 0364 IDSVia64 - ok
01:21:43.0084 0364 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:21:43.0084 0364 iirsp - ok
01:21:43.0256 0364 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
01:21:43.0271 0364 IKEEXT - ok
01:21:43.0334 0364 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
01:21:43.0334 0364 intelide - ok
01:21:43.0381 0364 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:21:43.0381 0364 intelppm - ok
01:21:43.0427 0364 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:21:43.0443 0364 IPBusEnum - ok
01:21:43.0505 0364 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:21:43.0521 0364 IpFilterDriver - ok
01:21:43.0615 0364 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
01:21:43.0630 0364 iphlpsvc - ok
01:21:43.0677 0364 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
01:21:43.0677 0364 IPMIDRV - ok
01:21:43.0724 0364 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:21:43.0724 0364 IPNAT - ok
01:21:43.0942 0364 iPod Service (056ab99a00e2023a24ab4f067880cc3e) C:\Program Files\iPod\bin\iPodService.exe
01:21:43.0958 0364 iPod Service - ok
01:21:44.0020 0364 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:21:44.0020 0364 IRENUM - ok
01:21:44.0036 0364 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
01:21:44.0036 0364 isapnp - ok
01:21:44.0067 0364 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
01:21:44.0083 0364 iScsiPrt - ok
01:21:44.0129 0364 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
01:21:44.0129 0364 kbdclass - ok
01:21:44.0176 0364 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
01:21:44.0176 0364 kbdhid - ok
01:21:44.0223 0364 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:44.0223 0364 KeyIso - ok
01:21:44.0831 0364 Kodak AiO Network Discovery Service (27277a11db52fefae5b01dc8fb570b28) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
01:21:44.0863 0364 Kodak AiO Network Discovery Service - ok
01:21:44.0925 0364 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
01:21:44.0925 0364 KSecDD - ok
01:21:44.0987 0364 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
01:21:44.0987 0364 KSecPkg - ok
01:21:45.0097 0364 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:21:45.0097 0364 ksthunk - ok
01:21:45.0221 0364 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:21:45.0253 0364 KtmRm - ok
01:21:45.0362 0364 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
01:21:45.0362 0364 LanmanServer - ok
01:21:45.0424 0364 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
01:21:45.0424 0364 LanmanWorkstation - ok
01:21:45.0565 0364 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
01:21:45.0565 0364 LBTServ - ok
01:21:46.0220 0364 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
01:21:46.0797 0364 LeapFrog Connect Device Service - ok
01:21:47.0047 0364 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
01:21:47.0062 0364 LEqdUsb - ok
01:21:47.0125 0364 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
01:21:47.0140 0364 LHidEqd - ok
01:21:47.0234 0364 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
01:21:47.0234 0364 LHidFilt - ok
01:21:47.0296 0364 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:21:47.0312 0364 lltdio - ok
01:21:47.0405 0364 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:21:47.0421 0364 lltdsvc - ok
01:21:47.0499 0364 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:21:47.0499 0364 lmhosts - ok
01:21:47.0561 0364 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
01:21:47.0561 0364 LMouFilt - ok
01:21:47.0639 0364 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:21:47.0655 0364 LSI_FC - ok
01:21:47.0671 0364 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:21:47.0671 0364 LSI_SAS - ok
01:21:47.0686 0364 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:21:47.0702 0364 LSI_SAS2 - ok
01:21:47.0717 0364 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:21:47.0717 0364 LSI_SCSI - ok
01:21:47.0749 0364 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:21:47.0749 0364 luafv - ok
01:21:47.0795 0364 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
01:21:47.0842 0364 Mcx2Svc - ok
01:21:47.0889 0364 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
01:21:47.0889 0364 mdmxsdk - ok
01:21:47.0936 0364 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:21:47.0936 0364 megasas - ok
01:21:48.0014 0364 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:21:48.0014 0364 MegaSR - ok
01:21:48.0232 0364 mi-raysat_3dsmax2011_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
01:21:48.0279 0364 mi-raysat_3dsmax2011_32 - ok
01:21:48.0466 0364 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:21:48.0466 0364 Microsoft Office Groove Audit Service - ok
01:21:48.0513 0364 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:21:48.0529 0364 MMCSS - ok
01:21:48.0575 0364 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:21:48.0575 0364 Modem - ok
01:21:48.0638 0364 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:21:48.0638 0364 monitor - ok
01:21:48.0685 0364 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
01:21:48.0700 0364 mouclass - ok
01:21:48.0716 0364 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:21:48.0731 0364 mouhid - ok
01:21:48.0763 0364 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
01:21:48.0763 0364 mountmgr - ok
01:21:48.0794 0364 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
01:21:48.0825 0364 mpio - ok
01:21:48.0887 0364 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:21:48.0887 0364 mpsdrv - ok
01:21:49.0075 0364 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
01:21:49.0090 0364 MpsSvc - ok
01:21:49.0106 0364 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
01:21:49.0121 0364 MRxDAV - ok
01:21:49.0153 0364 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:21:49.0168 0364 mrxsmb - ok
01:21:49.0199 0364 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:21:49.0199 0364 mrxsmb10 - ok
01:21:49.0231 0364 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:21:49.0231 0364 mrxsmb20 - ok
01:21:49.0309 0364 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
01:21:49.0340 0364 msahci - ok
01:21:49.0387 0364 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
01:21:49.0402 0364 msdsm - ok
01:21:49.0465 0364 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:21:49.0480 0364 MSDTC - ok
01:21:49.0511 0364 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:21:49.0511 0364 Msfs - ok
01:21:49.0574 0364 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:21:49.0574 0364 mshidkmdf - ok
01:21:49.0589 0364 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
01:21:49.0589 0364 msisadrv - ok
01:21:49.0652 0364 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:21:49.0667 0364 MSiSCSI - ok
01:21:49.0667 0364 msiserver - ok
01:21:49.0730 0364 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:21:49.0730 0364 MSKSSRV - ok
01:21:49.0761 0364 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:21:49.0761 0364 MSPCLOCK - ok
01:21:49.0777 0364 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:21:49.0777 0364 MSPQM - ok
01:21:50.0057 0364 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
01:21:50.0057 0364 MsRPC - ok
01:21:50.0089 0364 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
01:21:50.0089 0364 mssmbios - ok
01:21:50.0135 0364 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:21:50.0135 0364 MSTEE - ok
01:21:50.0151 0364 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:21:50.0151 0364 MTConfig - ok
01:21:50.0229 0364 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:21:50.0229 0364 Mup - ok
01:21:50.0432 0364 N360 (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe
01:21:50.0447 0364 N360 - ok
01:21:50.0525 0364 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
01:21:50.0525 0364 napagent - ok
01:21:50.0619 0364 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:21:50.0619 0364 NativeWifiP - ok
01:21:50.0900 0364 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\ENG64.SYS
01:21:50.0931 0364 NAVENG - ok
01:21:51.0337 0364 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\EX64.SYS
01:21:51.0399 0364 NAVEX15 - ok
01:21:51.0789 0364 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
01:21:51.0805 0364 NDIS - ok
01:21:51.0851 0364 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:21:51.0851 0364 NdisCap - ok
01:21:51.0914 0364 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:21:51.0914 0364 NdisTapi - ok
01:21:51.0945 0364 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
01:21:51.0945 0364 Ndisuio - ok
01:21:51.0992 0364 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
01:21:51.0992 0364 NdisWan - ok
01:21:52.0007 0364 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
01:21:52.0007 0364 NDProxy - ok
01:21:52.0054 0364 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:21:52.0070 0364 NetBIOS - ok
01:21:52.0101 0364 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
01:21:52.0101 0364 NetBT - ok
01:21:52.0148 0364 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:52.0148 0364 Netlogon - ok
01:21:52.0226 0364 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:21:52.0241 0364 Netman - ok
01:21:52.0273 0364 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:21:52.0288 0364 netprofm - ok
01:21:52.0522 0364 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:21:52.0522 0364 NetTcpPortSharing - ok
01:21:52.0569 0364 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:21:52.0569 0364 nfrd960 - ok
01:21:52.0694 0364 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
01:21:52.0694 0364 NlaSvc - ok
01:21:52.0709 0364 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:21:52.0709 0364 Npfs - ok
01:21:52.0787 0364 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:21:52.0787 0364 nsi - ok
01:21:52.0803 0364 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:21:52.0803 0364 nsiproxy - ok
01:21:53.0037 0364 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
01:21:53.0084 0364 Ntfs - ok
01:21:53.0287 0364 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
01:21:53.0302 0364 NuidFltr - ok
01:21:53.0333 0364 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:21:53.0333 0364 Null - ok
01:21:53.0411 0364 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\DRIVERS\nvraid.sys
01:21:53.0411 0364 nvraid - ok
01:21:53.0489 0364 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\DRIVERS\nvstor.sys
01:21:53.0489 0364 nvstor - ok
01:21:53.0552 0364 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
01:21:53.0552 0364 nv_agp - ok
01:21:53.0614 0364 O2FLASH (d955d5de998db2476bf0892be3a96c26) C:\Windows\system32\DRIVERS\o2flash.exe
01:21:53.0630 0364 O2FLASH - ok
01:21:53.0661 0364 O2MDRDR (26da4b40670ad436f7daec053a2a9eca) C:\Windows\system32\DRIVERS\o2mdx64.sys
01:21:53.0661 0364 O2MDRDR - ok
01:21:53.0723 0364 O2SDRDR (2e69a2adc12daa7ac7b4ffd8601e88b0) C:\Windows\system32\DRIVERS\o2sdx64.sys
01:21:53.0739 0364 O2SDRDR - ok
01:21:53.0926 0364 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:21:53.0942 0364 odserv - ok
01:21:53.0989 0364 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
01:21:54.0004 0364 ohci1394 - ok
01:21:54.0035 0364 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:21:54.0051 0364 ose - ok
01:21:54.0113 0364 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:21:54.0113 0364 p2pimsvc - ok
01:21:54.0269 0364 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:21:54.0301 0364 p2psvc - ok
01:21:54.0379 0364 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:21:54.0394 0364 Parport - ok
01:21:54.0441 0364 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
01:21:54.0472 0364 partmgr - ok
01:21:54.0581 0364 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:21:54.0581 0364 PcaSvc - ok
01:21:54.0644 0364 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
01:21:54.0644 0364 pci - ok
01:21:54.0722 0364 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
01:21:54.0722 0364 pciide - ok
01:21:54.0753 0364 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:21:54.0753 0364 pcmcia - ok
01:21:54.0769 0364 PCTINDIS5X64 - ok
01:21:54.0784 0364 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:21:54.0784 0364 pcw - ok
01:21:54.0878 0364 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:21:54.0909 0364 PEAUTH - ok
01:21:55.0018 0364 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:21:55.0034 0364 PerfHost - ok
01:21:55.0377 0364 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
01:21:55.0424 0364 pla - ok
01:21:55.0471 0364 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
01:21:55.0486 0364 PlugPlay - ok
01:21:55.0502 0364 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:21:55.0517 0364 PNRPAutoReg - ok
01:21:55.0611 0364 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:21:55.0658 0364 PNRPsvc - ok
01:21:55.0767 0364 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
01:21:55.0783 0364 Point64 - ok
01:21:55.0861 0364 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
01:21:55.0876 0364 PolicyAgent - ok
01:21:55.0985 0364 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:21:55.0985 0364 Power - ok
01:21:56.0095 0364 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
01:21:56.0095 0364 PptpMiniport - ok
01:21:56.0110 0364 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:21:56.0110 0364 Processor - ok
01:21:56.0188 0364 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
01:21:56.0204 0364 ProfSvc - ok
01:21:56.0251 0364 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:21:56.0251 0364 ProtectedStorage - ok
01:21:56.0360 0364 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
01:21:56.0375 0364 Psched - ok
01:21:56.0422 0364 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
01:21:56.0438 0364 PxHlpa64 - ok
01:21:56.0609 0364 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:21:56.0656 0364 ql2300 - ok
01:21:56.0999 0364 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:21:56.0999 0364 ql40xx - ok
01:21:57.0171 0364 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:21:57.0218 0364 QWAVE - ok
01:21:57.0280 0364 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:21:57.0280 0364 QWAVEdrv - ok
01:21:57.0311 0364 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:21:57.0311 0364 RasAcd - ok
01:21:57.0405 0364 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:21:57.0405 0364 RasAgileVpn - ok
01:21:57.0483 0364 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:21:57.0499 0364 RasAuto - ok
01:21:57.0545 0364 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:21:57.0561 0364 Rasl2tp - ok
01:21:57.0592 0364 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
01:21:57.0608 0364 RasMan - ok
01:21:57.0701 0364 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:21:57.0701 0364 RasPppoe - ok
01:21:57.0748 0364 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:21:57.0764 0364 RasSstp - ok
01:21:57.0826 0364 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
01:21:57.0842 0364 rdbss - ok
01:21:57.0873 0364 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:21:57.0873 0364 rdpbus - ok
01:21:57.0904 0364 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:21:57.0904 0364 RDPCDD - ok
01:21:57.0982 0364 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:21:57.0982 0364 RDPENCDD - ok
01:21:58.0013 0364 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:21:58.0029 0364 RDPREFMP - ok
01:21:58.0107 0364 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
01:21:58.0138 0364 RDPWD - ok
01:21:58.0232 0364 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
01:21:58.0232 0364 rdyboost - ok
01:21:58.0294 0364 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:21:58.0310 0364 RemoteAccess - ok
01:21:58.0372 0364 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:21:58.0388 0364 RemoteRegistry - ok
01:21:58.0684 0364 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
01:21:58.0747 0364 RichVideo - ok
01:21:58.0903 0364 Roxio UPnP Renderer 11 (805393d80291c53085bce10868e54ad5) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
01:21:58.0903 0364 Roxio UPnP Renderer 11 - ok
01:21:58.0996 0364 Roxio Upnp Server 11 (96a3d9197f4d8a7e456018b809bf2ac1) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
01:21:58.0996 0364 Roxio Upnp Server 11 - ok
01:21:59.0168 0364 RoxLiveShare11 (8af842f4c84bdaa882216a01f8825402) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
01:21:59.0183 0364 RoxLiveShare11 - ok
01:21:59.0308 0364 RoxMediaDB11 (c6394df3055601b11964b075c811f03c) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
01:21:59.0371 0364 RoxMediaDB11 - ok
01:21:59.0480 0364 RoxWatch11 (3e8df3dd655cce064cf952066ddff248) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
01:21:59.0480 0364 RoxWatch11 - ok
01:21:59.0714 0364 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:21:59.0714 0364 RpcEptMapper - ok
01:21:59.0745 0364 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:21:59.0761 0364 RpcLocator - ok
01:21:59.0823 0364 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:21:59.0823 0364 RpcSs - ok
01:22:00.0026 0364 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:22:00.0026 0364 rspndr - ok
01:22:00.0104 0364 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:22:00.0104 0364 SamSs - ok
01:22:00.0135 0364 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
01:22:00.0135 0364 sbp2port - ok
01:22:00.0229 0364 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:22:00.0244 0364 SCardSvr - ok
01:22:00.0291 0364 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
01:22:00.0291 0364 scfilter - ok
01:22:00.0525 0364 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
01:22:00.0572 0364 Schedule - ok
01:22:00.0634 0364 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:22:00.0634 0364 SCPolicySvc - ok
01:22:00.0712 0364 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
01:22:00.0712 0364 SDRSVC - ok
01:22:00.0868 0364 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:22:00.0868 0364 secdrv - ok
01:22:00.0899 0364 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
01:22:00.0899 0364 seclogon - ok
01:22:00.0915 0364 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
01:22:00.0915 0364 SENS - ok
01:22:01.0102 0364 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:22:01.0118 0364 SensrSvc - ok
01:22:01.0180 0364 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:22:01.0227 0364 Serenum - ok
01:22:01.0414 0364 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:22:01.0414 0364 Serial - ok
01:22:01.0430 0364 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:22:01.0445 0364 sermouse - ok
01:22:01.0539 0364 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
01:22:01.0555 0364 SessionEnv - ok
01:22:01.0601 0364 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
01:22:01.0633 0364 sffdisk - ok
01:22:01.0679 0364 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
01:22:01.0695 0364 sffp_mmc - ok
01:22:01.0711 0364 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
01:22:01.0711 0364 sffp_sd - ok
01:22:01.0757 0364 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:22:01.0757 0364 sfloppy - ok
01:22:01.0851 0364 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:22:01.0851 0364 SharedAccess - ok
01:22:01.0929 0364 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
01:22:01.0929 0364 ShellHWDetection - ok
01:22:01.0945 0364 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:22:01.0945 0364 SiSRaid2 - ok
01:22:01.0960 0364 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:22:01.0960 0364 SiSRaid4 - ok
01:22:01.0991 0364 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:22:01.0991 0364 Smb - ok
01:22:02.0038 0364 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:22:02.0038 0364 SNMPTRAP - ok
01:22:02.0054 0364 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:22:02.0069 0364 spldr - ok
01:22:02.0147 0364 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
01:22:02.0163 0364 Spooler - ok
01:22:02.0444 0364 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
01:22:02.0584 0364 sppsvc - ok
01:22:02.0818 0364 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:22:02.0834 0364 sppuinotify - ok
01:22:02.0990 0364 sptd (602884696850c86434530790b110e8eb) C:\Windows\System32\Drivers\sptd.sys
01:22:02.0990 0364 sptd - ok
01:22:03.0146 0364 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\N360x64\0602000.009\SRTSP64.SYS
01:22:03.0161 0364 SRTSP - ok
01:22:03.0177 0364 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\N360x64\0602000.009\SRTSPX64.SYS
01:22:03.0177 0364 SRTSPX - ok
01:22:03.0333 0364 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
01:22:03.0380 0364 srv - ok
01:22:03.0473 0364 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
01:22:03.0505 0364 srv2 - ok
01:22:03.0567 0364 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
01:22:03.0567 0364 srvnet - ok
01:22:03.0629 0364 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:22:03.0645 0364 SSDPSRV - ok
01:22:03.0661 0364 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:22:03.0661 0364 SstpSvc - ok
01:22:03.0707 0364 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:22:03.0707 0364 stexstor - ok
01:22:03.0801 0364 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
01:22:03.0801 0364 stisvc - ok
01:22:03.0817 0364 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
01:22:03.0817 0364 swenum - ok
01:22:03.0910 0364 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:22:03.0910 0364 swprv - ok
01:22:04.0097 0364 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\N360x64\0602000.009\SYMDS64.SYS
01:22:04.0113 0364 SymDS - ok
01:22:04.0269 0364 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\N360x64\0602000.009\SYMEFA64.SYS
01:22:04.0285 0364 SymEFA - ok
01:22:04.0347 0364 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
01:22:04.0347 0364 SymEvent - ok
01:22:04.0409 0364 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\N360x64\0602000.009\Ironx64.SYS
01:22:04.0409 0364 SymIRON - ok
01:22:04.0628 0364 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\N360x64\0602000.009\SYMNETS.SYS
01:22:04.0628 0364 SymNetS - ok
01:22:04.0690 0364 SynTP (437a9d8b5ae2067d44eb60c953edc8a4) C:\Windows\system32\DRIVERS\SynTP.sys
01:22:04.0706 0364 SynTP - ok
01:22:04.0846 0364 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
01:22:04.0877 0364 SysMain - ok
01:22:05.0080 0364 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
01:22:05.0096 0364 TabletInputService - ok
01:22:05.0127 0364 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
01:22:05.0143 0364 TapiSrv - ok
01:22:05.0174 0364 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:22:05.0174 0364 TBS - ok
01:22:05.0408 0364 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
01:22:05.0455 0364 Tcpip - ok
01:22:05.0876 0364 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
01:22:05.0891 0364 TCPIP6 - ok
01:22:06.0079 0364 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
01:22:06.0079 0364 tcpipreg - ok
01:22:06.0110 0364 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:22:06.0110 0364 TDPIPE - ok
01:22:06.0125 0364 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
01:22:06.0141 0364 TDTCP - ok
01:22:06.0172 0364 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
01:22:06.0188 0364 tdx - ok
01:22:06.0219 0364 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
01:22:06.0219 0364 TermDD - ok
01:22:06.0297 0364 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
01:22:06.0313 0364 TermService - ok
01:22:06.0328 0364 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:22:06.0328 0364 Themes - ok
01:22:06.0359 0364 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:22:06.0359 0364 THREADORDER - ok
01:22:06.0375 0364 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:22:06.0375 0364 TrkWks - ok
01:22:06.0531 0364 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
01:22:06.0531 0364 TrustedInstaller - ok
01:22:06.0593 0364 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:22:06.0593 0364 tssecsrv - ok
01:22:06.0656 0364 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
01:22:06.0671 0364 tunnel - ok
01:22:06.0687 0364 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:22:06.0687 0364 uagp35 - ok
01:22:06.0718 0364 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
01:22:06.0734 0364 udfs - ok
01:22:06.0812 0364 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:22:06.0827 0364 UI0Detect - ok
01:22:06.0905 0364 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
01:22:06.0921 0364 uliagpkx - ok
01:22:06.0937 0364 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
01:22:06.0937 0364 umbus - ok
01:22:06.0968 0364 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:22:06.0968 0364 UmPass - ok
01:22:07.0077 0364 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:22:07.0108 0364 upnphost - ok
01:22:07.0155 0364 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
01:22:07.0155 0364 usbccgp - ok
01:22:07.0233 0364 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
01:22:07.0233 0364 usbcir - ok
01:22:07.0264 0364 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
01:22:07.0264 0364 usbehci - ok
01:22:07.0311 0364 usbfilter (8fec71666aba7114f9cab9e56065ec80) C:\Windows\system32\DRIVERS\usbfilter.sys
01:22:07.0311 0364 usbfilter - ok
01:22:07.0342 0364 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
01:22:07.0358 0364 usbhub - ok
01:22:07.0373 0364 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
01:22:07.0373 0364 usbohci - ok
01:22:07.0389 0364 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:22:07.0389 0364 usbprint - ok
01:22:07.0436 0364 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:22:07.0436 0364 USBSTOR - ok
01:22:07.0451 0364 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
01:22:07.0467 0364 usbuhci - ok
01:22:07.0529 0364 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
01:22:07.0529 0364 usbvideo - ok
01:22:07.0607 0364 UVCFTR (56ed086f1300ecb1e6f67ac43955e5e9) C:\Windows\system32\Drivers\UVCFTR_S.SYS
01:22:07.0623 0364 UVCFTR - ok
01:22:07.0670 0364 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:22:07.0670 0364 UxSms - ok
01:22:07.0717 0364 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:22:07.0717 0364 VaultSvc - ok
01:22:07.0763 0364 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
01:22:07.0763 0364 vdrvroot - ok
01:22:07.0857 0364 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
01:22:07.0888 0364 vds - ok
01:22:07.0904 0364 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:22:07.0919 0364 vga - ok
01:22:07.0935 0364 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:22:07.0935 0364 VgaSave - ok
01:22:07.0982 0364 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
01:22:07.0997 0364 vhdmp - ok
01:22:08.0029 0364 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
01:22:08.0044 0364 viaide - ok
01:22:08.0060 0364 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
01:22:08.0060 0364 volmgr - ok
01:22:08.0107 0364 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
01:22:08.0107 0364 volmgrx - ok
01:22:08.0138 0364 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
01:22:08.0153 0364 volsnap - ok
01:22:08.0169 0364 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:22:08.0185 0364 vsmraid - ok
01:22:08.0387 0364 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
01:22:08.0434 0364 VSS - ok
01:22:08.0668 0364 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
01:22:08.0668 0364 vwifibus - ok
01:22:08.0715 0364 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
01:22:08.0731 0364 vwififlt - ok
01:22:08.0762 0364 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
01:22:08.0762 0364 vwifimp - ok
01:22:08.0840 0364 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:22:08.0871 0364 W32Time - ok
01:22:08.0887 0364 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:22:08.0902 0364 WacomPen - ok
01:22:08.0965 0364 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:22:08.0965 0364 WANARP - ok
01:22:08.0996 0364 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:22:08.0996 0364 Wanarpv6 - ok
01:22:09.0152 0364 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:22:09.0183 0364 WatAdminSvc - ok
01:22:09.0355 0364 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
01:22:09.0401 0364 wbengine - ok
01:22:09.0620 0364 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:22:09.0635 0364 WbioSrvc - ok
01:22:09.0729 0364 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
01:22:09.0760 0364 wcncsvc - ok
01:22:09.0807 0364 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:22:09.0823 0364 WcsPlugInService - ok
01:22:09.0947 0364 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:22:09.0947 0364 Wd - ok
01:22:10.0057 0364 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:22:10.0072 0364 Wdf01000 - ok
01:22:10.0088 0364 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:22:10.0088 0364 WdiServiceHost - ok
01:22:10.0103 0364 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:22:10.0103 0364 WdiSystemHost - ok
01:22:10.0150 0364 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
01:22:10.0166 0364 WebClient - ok
01:22:10.0228 0364 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:22:10.0244 0364 Wecsvc - ok
01:22:10.0275 0364 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:22:10.0306 0364 wercplsupport - ok
01:22:10.0353 0364 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:22:10.0353 0364 WerSvc - ok
01:22:10.0462 0364 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:22:10.0462 0364 WfpLwf - ok
01:22:10.0478 0364 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:22:10.0478 0364 WIMMount - ok
01:22:10.0587 0364 winachsf (a6ea7a3fc4b00f48535b506db1e86efd) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
01:22:10.0603 0364 winachsf - ok
01:22:10.0665 0364 WinDefend - ok
01:22:10.0665 0364 WinHttpAutoProxySvc - ok
01:22:10.0790 0364 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:22:10.0805 0364 Winmgmt - ok
01:22:11.0024 0364 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
01:22:11.0086 0364 WinRM - ok
01:22:11.0492 0364 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
01:22:11.0492 0364 WinUsb - ok
01:22:11.0601 0364 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:22:11.0617 0364 Wlansvc - ok
01:22:12.0038 0364 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:22:12.0100 0364 wlidsvc - ok
01:22:12.0381 0364 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
01:22:12.0381 0364 WmiAcpi - ok
01:22:12.0506 0364 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:22:12.0537 0364 wmiApSrv - ok
01:22:12.0631 0364 WMPNetworkSvc - ok
01:22:12.0677 0364 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:22:12.0677 0364 WPCSvc - ok
01:22:12.0709 0364 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
01:22:12.0709 0364 WPDBusEnum - ok
01:22:12.0771 0364 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:22:12.0787 0364 ws2ifsl - ok
01:22:12.0833 0364 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
01:22:12.0849 0364 wscsvc - ok
01:22:12.0849 0364 WSearch - ok
01:22:13.0099 0364 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
01:22:13.0177 0364 wuauserv - ok
01:22:13.0411 0364 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
01:22:13.0426 0364 WudfPf - ok
01:22:13.0473 0364 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:22:13.0473 0364 WUDFRd - ok
01:22:13.0551 0364 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
01:22:13.0582 0364 wudfsvc - ok
01:22:13.0645 0364 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:22:13.0660 0364 WwanSvc - ok
01:22:13.0707 0364 XAudio (e8f3fa126a06f8e7088f63757112a186) C:\Windows\system32\DRIVERS\XAudio64.sys
01:22:13.0707 0364 XAudio - ok
01:22:13.0785 0364 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
01:22:13.0801 0364 yukonw7 - ok
01:22:13.0879 0364 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
01:22:14.0269 0364 \Device\Harddisk0\DR0 - ok
01:22:14.0269 0364 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
01:22:17.0529 0364 \Device\Harddisk1\DR2 - ok
01:22:17.0545 0364 Boot (0x1200) (2f0d0c06aa3ee4a01f23ea3bf625aade) \Device\Harddisk0\DR0\Partition0
01:22:17.0545 0364 \Device\Harddisk0\DR0\Partition0 - ok
01:22:17.0576 0364 Boot (0x1200) (7d151d3316be5e84610a7483fb382d9c) \Device\Harddisk0\DR0\Partition1
01:22:17.0576 0364 \Device\Harddisk0\DR0\Partition1 - ok
01:22:17.0591 0364 Boot (0x1200) (9b5dc841aaf555ce9bc395a3d3d9d38c) \Device\Harddisk1\DR2\Partition0
01:22:17.0591 0364 \Device\Harddisk1\DR2\Partition0 - ok
01:22:17.0591 0364 ============================================================
01:22:17.0591 0364 Scan finished
01:22:17.0591 0364 ============================================================
01:22:17.0623 2612 Detected object count: 0
01:22:17.0623 2612 Actual detected object count: 0
01:22:53.0628 5112 ============================================================
01:22:53.0628 5112 Scan started
01:22:53.0628 5112 Mode: Manual; SigCheck; TDLFS;
01:22:53.0628 5112 ============================================================
01:22:54.0579 5112 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
01:22:55.0000 5112 1394ohci - ok
01:22:55.0172 5112 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:22:55.0312 5112 ACDaemon - ok
01:22:55.0344 5112 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
01:22:55.0359 5112 ACPI - ok
01:22:55.0422 5112 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
01:22:55.0546 5112 AcpiPmi - ok
01:22:55.0609 5112 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
01:22:55.0624 5112 adfs - ok
01:22:55.0796 5112 Adobe Version Cue CS4 (57a3b9a69f14414ace12afd6ba701773) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
01:22:55.0827 5112 Adobe Version Cue CS4 - ok
01:22:55.0890 5112 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:22:55.0921 5112 adp94xx - ok
01:22:55.0999 5112 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:22:56.0014 5112 adpahci - ok
01:22:56.0061 5112 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:22:56.0092 5112 adpu320 - ok
01:22:56.0139 5112 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:22:56.0451 5112 AeLookupSvc - ok
01:22:56.0529 5112 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
01:22:56.0607 5112 AFD - ok
01:22:56.0638 5112 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
01:22:56.0670 5112 agp440 - ok
01:22:56.0779 5112 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:22:56.0841 5112 ALG - ok
01:22:56.0888 5112 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
01:22:56.0904 5112 aliide - ok
01:22:56.0982 5112 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
01:22:57.0075 5112 AMD External Events Utility - ok
01:22:57.0122 5112 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
01:22:57.0138 5112 amdide - ok
01:22:57.0169 5112 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:22:57.0200 5112 AmdK8 - ok
01:22:57.0247 5112 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:22:57.0278 5112 AmdPPM - ok
01:22:57.0325 5112 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
01:22:57.0340 5112 amdsata - ok
01:22:57.0418 5112 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:22:57.0434 5112 amdsbs - ok
01:22:57.0496 5112 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
01:22:57.0512 5112 amdxata - ok
01:22:57.0559 5112 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
01:22:57.0684 5112 AppID - ok
01:22:57.0762 5112 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:22:57.0808 5112 AppIDSvc - ok
01:22:57.0871 5112 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
01:22:57.0933 5112 Appinfo - ok
01:22:58.0074 5112 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:22:58.0089 5112 Apple Mobile Device - ok
01:22:58.0136 5112 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:22:58.0152 5112 arc - ok
01:22:58.0214 5112 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:22:58.0230 5112 arcsas - ok
01:22:58.0245 5112 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:22:58.0339 5112 AsyncMac - ok
01:22:58.0386 5112 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
01:22:58.0401 5112 atapi - ok
01:22:58.0526 5112 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
01:22:58.0635 5112 athr - ok
01:22:59.0400 5112 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
01:22:59.0524 5112 atikmdag - ok
01:22:59.0774 5112 AtiPcie (db0d3de15edc96e7529fc0d3f7760894) C:\Windows\system32\DRIVERS\AtiPcie.sys
01:22:59.0790 5112 AtiPcie - ok
01:22:59.0868 5112 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:22:59.0930 5112 AudioEndpointBuilder - ok
01:22:59.0946 5112 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
01:22:59.0992 5112 AudioSrv - ok
01:23:00.0039 5112 Avgfwfd (96b4456f1dca4eda506ed31c7d2d6b05) C:\Windows\system32\DRIVERS\avgfwd6a.sys
01:23:00.0055 5112 Avgfwfd - ok
01:23:00.0523 5112 avgfws (bd5d11cedbcde4fa97d2387e7069b1ff) C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
01:23:00.0585 5112 avgfws - ok
01:23:01.0225 5112 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
01:23:01.0350 5112 AVGIDSAgent - ok
01:23:01.0584 5112 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
01:23:01.0599 5112 AVGIDSDriver - ok
01:23:01.0630 5112 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
01:23:01.0646 5112 AVGIDSFilter - ok
01:23:01.0708 5112 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
01:23:01.0724 5112 AVGIDSHA - ok
01:23:02.0052 5112 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
01:23:02.0083 5112 Avgldx64 - ok
01:23:02.0130 5112 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
01:23:02.0145 5112 Avgmfx64 - ok
01:23:02.0192 5112 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
01:23:02.0208 5112 Avgrkx64 - ok
01:23:02.0286 5112 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
01:23:02.0301 5112 Avgtdia - ok
01:23:02.0442 5112 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
01:23:02.0457 5112 avgwd - ok
01:23:02.0520 5112 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
01:23:02.0629 5112 AxInstSV - ok
01:23:02.0691 5112 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:23:02.0769 5112 b06bdrv - ok
01:23:02.0800 5112 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:23:02.0847 5112 b57nd60a - ok
01:23:02.0925 5112 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:23:02.0988 5112 BDESVC - ok
01:23:03.0003 5112 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:23:03.0097 5112 Beep - ok
01:23:03.0175 5112 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
01:23:03.0268 5112 BFE - ok
01:23:03.0690 5112 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120507.001\BHDrvx64.sys
01:23:03.0721 5112 BHDrvx64 - ok
01:23:03.0986 5112 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
01:23:04.0080 5112 BITS - ok
01:23:04.0220 5112 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:23:04.0251 5112 blbdrive - ok
01:23:04.0454 5112 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
01:23:04.0470 5112 Bonjour Service - ok
01:23:04.0501 5112 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
01:23:04.0563 5112 bowser - ok
01:23:04.0610 5112 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:23:04.0641 5112 BrFiltLo - ok
01:23:04.0672 5112 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:23:04.0719 5112 BrFiltUp - ok
01:23:04.0766 5112 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
01:23:04.0828 5112 BridgeMP - ok
01:23:04.0875 5112 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
01:23:04.0953 5112 Browser - ok
01:23:04.0984 5112 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:23:05.0062 5112 Brserid - ok
01:23:05.0109 5112 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:23:05.0156 5112 BrSerWdm - ok
01:23:05.0187 5112 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:23:05.0234 5112 BrUsbMdm - ok
01:23:05.0296 5112 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:23:05.0328 5112 BrUsbSer - ok
01:23:05.0359 5112 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:23:05.0406 5112 BTHMODEM - ok
01:23:05.0484 5112 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:23:05.0562 5112 bthserv - ok
01:23:05.0593 5112 CACLEARWIRE - ok
01:23:05.0780 5112 catchme - ok
01:23:05.0842 5112 CAXHWAZL (d1787e11c6a0078ddeaf8cf3ee2ab293) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
01:23:05.0936 5112 CAXHWAZL - ok
01:23:06.0123 5112 ccSet_N360 (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys
01:23:06.0139 5112 ccSet_N360 - ok
01:23:06.0186 5112 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:23:06.0264 5112 cdfs - ok
01:23:06.0295 5112 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
01:23:06.0357 5112 cdrom - ok
01:23:06.0451 5112 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:23:06.0529 5112 CertPropSvc - ok
01:23:06.0544 5112 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:23:06.0591 5112 circlass - ok
01:23:06.0607 5112 CLEARWIRERcAppSvc - ok
01:23:06.0732 5112 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:23:06.0747 5112 CLFS - ok
01:23:06.0872 5112 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:23:06.0888 5112 clr_optimization_v2.0.50727_32 - ok
01:23:07.0044 5112 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:23:07.0059 5112 clr_optimization_v2.0.50727_64 - ok
01:23:07.0168 5112 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:23:07.0184 5112 clr_optimization_v4.0.30319_32 - ok
01:23:07.0246 5112 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:23:07.0262 5112 clr_optimization_v4.0.30319_64 - ok
01:23:07.0324 5112 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:23:07.0371 5112 CmBatt - ok
01:23:07.0418 5112 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
01:23:07.0434 5112 cmdide - ok
01:23:07.0558 5112 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
01:23:07.0636 5112 CNG - ok
01:23:07.0730 5112 CnxtHdAudService (0d23c3312838eea1ed55d5f135bca613) C:\Windows\system32\drivers\CHDRT64.sys
01:23:07.0948 5112 CnxtHdAudService - ok
01:23:07.0995 5112 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:23:08.0011 5112 Compbatt - ok
01:23:08.0042 5112 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
01:23:08.0089 5112 CompositeBus - ok
01:23:08.0089 5112 COMSysApp - ok
01:23:08.0120 5112 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:23:08.0151 5112 crcdisk - ok
01:23:08.0323 5112 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
01:23:08.0385 5112 CryptSvc - ok
01:23:08.0432 5112 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys
01:23:08.0526 5112 dc3d - ok
01:23:08.0666 5112 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:23:08.0744 5112 DcomLaunch - ok
01:23:08.0838 5112 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:23:08.0900 5112 defragsvc - ok
01:23:08.0962 5112 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
01:23:09.0025 5112 DfsC - ok
01:23:09.0056 5112 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
01:23:09.0181 5112 Dhcp - ok
01:23:09.0228 5112 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:23:09.0306 5112 discache - ok
01:23:09.0384 5112 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:23:09.0399 5112 Disk - ok
01:23:09.0477 5112 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
01:23:09.0540 5112 Dnscache - ok
01:23:09.0664 5112 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
01:23:09.0727 5112 dot3svc - ok
01:23:09.0820 5112 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
01:23:09.0898 5112 DPS - ok
01:23:09.0930 5112 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:23:09.0961 5112 drmkaud - ok
01:23:10.0070 5112 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
01:23:10.0117 5112 DXGKrnl - ok
01:23:10.0179 5112 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:23:10.0242 5112 EapHost - ok
01:23:10.0507 5112 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:23:10.0616 5112 ebdrv - ok
01:23:10.0756 5112 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
01:23:10.0772 5112 eeCtrl - ok
01:23:11.0022 5112 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
01:23:11.0084 5112 EFS - ok
01:23:11.0271 5112 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
01:23:11.0349 5112 ehRecvr - ok
01:23:11.0396 5112 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:23:11.0427 5112 ehSched - ok
01:23:11.0599 5112 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:23:11.0630 5112 elxstor - ok
01:23:11.0724 5112 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
01:23:11.0739 5112 EraserUtilRebootDrv - ok
01:23:11.0755 5112 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
01:23:11.0833 5112 ErrDev - ok
01:23:11.0958 5112 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:23:12.0036 5112 EventSystem - ok
01:23:12.0082 5112 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:23:12.0145 5112 exfat - ok
01:23:12.0207 5112 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:23:12.0285 5112 fastfat - ok
01:23:12.0379 5112 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
01:23:12.0457 5112 Fax - ok
01:23:12.0504 5112 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:23:12.0535 5112 fdc - ok
01:23:12.0597 5112 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:23:12.0675 5112 fdPHost - ok
01:23:12.0691 5112 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:23:12.0769 5112 FDResPub - ok
01:23:12.0831 5112 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:23:12.0847 5112 FileInfo - ok
01:23:12.0878 5112 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:23:12.0940 5112 Filetrace - ok
01:23:13.0159 5112 FLEXnet Licensing Service (d60ef46dc0e757fe5eb579db95b88954) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:23:13.0190 5112 FLEXnet Licensing Service - ok
01:23:13.0330 5112 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
01:23:13.0362 5112 FLEXnet Licensing Service 64 - ok
01:23:13.0596 5112 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:23:13.0642 5112 flpydisk - ok
01:23:13.0783 5112 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
01:23:13.0798 5112 FltMgr - ok
01:23:13.0954 5112 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
01:23:14.0095 5112 FontCache - ok
01:23:14.0266 5112 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:23:14.0282 5112 FontCache3.0.0.0 - ok
01:23:14.0407 5112 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:23:14.0422 5112 FsDepends - ok
01:23:14.0485 5112 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
01:23:14.0500 5112 Fs_Rec - ok
01:23:14.0563 5112 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:23:14.0578 5112 fvevol - ok
01:23:14.0610 5112 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:23:14.0625 5112 gagp30kx - ok
01:23:14.0812 5112 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe
01:23:14.0828 5112 GameConsoleService - ok
01:23:14.0875 5112 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:23:14.0890 5112 GEARAspiWDM - ok
01:23:15.0015 5112 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
01:23:15.0078 5112 gpsvc - ok
01:23:15.0249 5112 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:23:15.0265 5112 gupdate - ok
01:23:15.0265 5112 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:23:15.0280 5112 gupdatem - ok
01:23:15.0327 5112 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:23:15.0421 5112 hcw85cir - ok
01:23:15.0483 5112 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
01:23:15.0530 5112 HdAudAddService - ok
01:23:15.0655 5112 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
01:23:15.0702 5112 HDAudBus - ok
01:23:15.0811 5112 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:23:15.0858 5112 HidBatt - ok
01:23:15.0920 5112 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:23:15.0967 5112 HidBth - ok
01:23:16.0060 5112 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:23:16.0107 5112 HidIr - ok
01:23:16.0201 5112 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
01:23:16.0279 5112 hidserv - ok
01:23:16.0310 5112 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
01:23:16.0341 5112 HidUsb - ok
01:23:16.0372 5112 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
01:23:16.0450 5112 hkmsvc - ok
01:23:16.0497 5112 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
01:23:16.0560 5112 HomeGroupListener - ok
01:23:16.0606 5112 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
01:23:16.0653 5112 HomeGroupProvider - ok
01:23:16.0716 5112 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
01:23:16.0731 5112 HpSAMD - ok
01:23:16.0872 5112 HsfXAudioService (447256d1c026654c5cd3cc17e7b20631) C:\Windows\SysWOW64\XAudio64.dll
01:23:16.0950 5112 HsfXAudioService - ok
01:23:17.0293 5112 HSF_DPV (26c5d00321937e49b6bc91029947d094) C:\Windows\system32\DRIVERS\CAX_DPV.sys
01:23:17.0355 5112 HSF_DPV - ok
01:23:17.0730 5112 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
01:23:17.0808 5112 HTTP - ok
01:23:17.0839 5112 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
01:23:17.0854 5112 hwpolicy - ok
01:23:17.0886 5112 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
01:23:17.0901 5112 i8042prt - ok
01:23:17.0979 5112 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
01:23:17.0995 5112 iaStor - ok
01:23:18.0057 5112 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\DRIVERS\iaStorV.sys
01:23:18.0088 5112 iaStorV - ok
01:23:18.0385 5112 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:23:18.0400 5112 idsvc - ok
01:23:18.0712 5112 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20120516.001\IDSvia64.sys
01:23:18.0744 5112 IDSVia64 - ok
01:23:18.0962 5112 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:23:18.0978 5112 iirsp - ok
01:23:19.0149 5112 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
01:23:19.0227 5112 IKEEXT - ok
01:23:19.0274 5112 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
01:23:19.0290 5112 intelide - ok
01:23:19.0321 5112 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:23:19.0368 5112 intelppm - ok
01:23:19.0414 5112 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:23:19.0477 5112 IPBusEnum - ok
01:23:19.0508 5112 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:23:19.0555 5112 IpFilterDriver - ok
01:23:19.0633 5112 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
01:23:19.0742 5112 iphlpsvc - ok
01:23:19.0789 5112 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
01:23:19.0836 5112 IPMIDRV - ok
01:23:19.0882 5112 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:23:19.0945 5112 IPNAT - ok
01:23:20.0210 5112 iPod Service (056ab99a00e2023a24ab4f067880cc3e) C:\Program Files\iPod\bin\iPodService.exe
01:23:20.0226 5112 iPod Service - ok
01:23:20.0272 5112 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:23:20.0304 5112 IRENUM - ok
01:23:20.0319 5112 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
01:23:20.0335 5112 isapnp - ok
01:23:20.0366 5112 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
01:23:20.0382 5112 iScsiPrt - ok
01:23:20.0397 5112 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
01:23:20.0413 5112 kbdclass - ok
01:23:20.0428 5112 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
01:23:20.0475 5112 kbdhid - ok
01:23:20.0522 5112 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:20.0538 5112 KeyIso - ok
01:23:20.0709 5112 Kodak AiO Network Discovery Service (27277a11db52fefae5b01dc8fb570b28) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
01:23:20.0725 5112 Kodak AiO Network Discovery Service - ok
01:23:20.0834 5112 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
01:23:20.0850 5112 KSecDD - ok
01:23:20.0896 5112 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
01:23:20.0928 5112 KSecPkg - ok
01:23:20.0974 5112 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:23:21.0052 5112 ksthunk - ok
01:23:21.0115 5112 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:23:21.0208 5112 KtmRm - ok
01:23:21.0271 5112 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
01:23:21.0333 5112 LanmanServer - ok
01:23:21.0396 5112 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
01:23:21.0474 5112 LanmanWorkstation - ok
01:23:21.0630 5112 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
01:23:21.0661 5112 LBTServ - ok
01:23:22.0378 5112 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
01:23:22.0519 5112 LeapFrog Connect Device Service - ok
01:23:22.0768 5112 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
01:23:22.0784 5112 LEqdUsb - ok
01:23:22.0846 5112 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
01:23:22.0862 5112 LHidEqd - ok
01:23:22.0940 5112 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
01:23:22.0956 5112 LHidFilt - ok
01:23:23.0002 5112 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:23:23.0080 5112 lltdio - ok
01:23:23.0174 5112 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:23:23.0236 5112 lltdsvc - ok
01:23:23.0268 5112 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:23:23.0314 5112 lmhosts - ok
01:23:23.0377 5112 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
01:23:23.0392 5112 LMouFilt - ok
01:23:23.0439 5112 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:23:23.0470 5112 LSI_FC - ok
01:23:23.0502 5112 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:23:23.0517 5112 LSI_SAS - ok
01:23:23.0533 5112 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:23:23.0548 5112 LSI_SAS2 - ok
01:23:23.0580 5112 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:23:23.0611 5112 LSI_SCSI - ok
01:23:23.0626 5112 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:23:23.0689 5112 luafv - ok
01:23:23.0845 5112 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
01:23:23.0876 5112 Mcx2Svc - ok
01:23:23.0938 5112 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
01:23:24.0016 5112 mdmxsdk - ok
01:23:24.0094 5112 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:23:24.0110 5112 megasas - ok
01:23:24.0141 5112 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:23:24.0172 5112 MegaSR - ok
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 ( UnsignedFile.Multi.Generic ) - warning
01:23:24.0360 5112 mi-raysat_3dsmax2011_32 - detected UnsignedFile.Multi.Generic (1)
01:23:24.0469 5112 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:23:24.0484 5112 Microsoft Office Groove Audit Service - ok
01:23:24.0531 5112 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:23:24.0594 5112 MMCSS - ok
01:23:24.0640 5112 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:23:24.0703 5112 Modem - ok
01:23:24.0734 5112 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:23:24.0765 5112 monitor - ok
01:23:24.0796 5112 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
01:23:24.0812 5112 mouclass - ok
01:23:24.0843 5112 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:23:24.0874 5112 mouhid - ok
01:23:24.0906 5112 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
01:23:24.0937 5112 mountmgr - ok
01:23:24.0952 5112 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
01:23:24.0968 5112 mpio - ok
01:23:24.0999 5112 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:23:25.0062 5112 mpsdrv - ok
01:23:25.0202 5112 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
01:23:25.0280 5112 MpsSvc - ok
01:23:25.0311 5112 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
01:23:25.0358 5112 MRxDAV - ok
01:23:25.0467 5112 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:23:25.0530 5112 mrxsmb - ok
01:23:25.0592 5112 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:23:25.0639 5112 mrxsmb10 - ok
01:23:25.0701 5112 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:23:25.0732 5112 mrxsmb20 - ok
01:23:25.0810 5112 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
01:23:25.0826 5112 msahci - ok
01:23:25.0857 5112 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
01:23:25.0888 5112 msdsm - ok
01:23:25.0935 5112 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:23:25.0982 5112 MSDTC - ok
01:23:26.0013 5112 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:23:26.0060 5112 Msfs - ok
01:23:26.0107 5112 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:23:26.0169 5112 mshidkmdf - ok
01:23:26.0200 5112 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
01:23:26.0216 5112 msisadrv - ok
01:23:26.0278 5112 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:23:26.0341 5112 MSiSCSI - ok
01:23:26.0356 5112 msiserver - ok
01:23:26.0403 5112 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:23:26.0481 5112 MSKSSRV - ok
01:23:26.0497 5112 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:23:26.0559 5112 MSPCLOCK - ok
01:23:26.0575 5112 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:23:26.0622 5112 MSPQM - ok
01:23:26.0700 5112 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
01:23:26.0731 5112 MsRPC - ok
01:23:26.0746 5112 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
01:23:26.0762 5112 mssmbios - ok
01:23:26.0793 5112 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:23:26.0856 5112 MSTEE - ok
01:23:26.0902 5112 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:23:26.0934 5112 MTConfig - ok
01:23:26.0980 5112 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:23:26.0996 5112 Mup - ok
01:23:27.0261 5112 N360 (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe
01:23:27.0277 5112 N360 - ok
01:23:27.0339 5112 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
01:23:27.0417 5112 napagent - ok
01:23:27.0480 5112 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:23:27.0542 5112 NativeWifiP - ok
01:23:27.0823 5112 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\ENG64.SYS
01:23:27.0838 5112 NAVENG - ok
01:23:27.0979 5112 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20120516.003\EX64.SYS
01:23:28.0057 5112 NAVEX15 - ok
01:23:28.0306 5112 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
01:23:28.0353 5112 NDIS - ok
01:23:28.0369 5112 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:23:28.0447 5112 NdisCap - ok
01:23:28.0462 5112 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:23:28.0509 5112 NdisTapi - ok
01:23:28.0525 5112 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
01:23:28.0572 5112 Ndisuio - ok
01:23:28.0618 5112 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
01:23:28.0665 5112 NdisWan - ok
01:23:28.0696 5112 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
01:23:28.0759 5112 NDProxy - ok
01:23:28.0806 5112 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:23:28.0852 5112 NetBIOS - ok
01:23:28.0899 5112 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
01:23:28.0977 5112 NetBT - ok
01:23:29.0008 5112 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:29.0040 5112 Netlogon - ok
01:23:29.0102 5112 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:23:29.0180 5112 Netman - ok
01:23:29.0242 5112 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:23:29.0320 5112 netprofm - ok
01:23:29.0554 5112 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:23:29.0570 5112 NetTcpPortSharing - ok
01:23:29.0632 5112 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:23:29.0648 5112 nfrd960 - ok
01:23:29.0710 5112 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
01:23:29.0773 5112 NlaSvc - ok
01:23:29.0820 5112 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:23:29.0898 5112 Npfs - ok
01:23:29.0944 5112 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:23:30.0022 5112 nsi - ok
01:23:30.0038 5112 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:23:30.0116 5112 nsiproxy - ok
01:23:30.0319 5112 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
01:23:30.0366 5112 Ntfs - ok
01:23:30.0693 5112 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
01:23:30.0709 5112 NuidFltr - ok
01:23:30.0771 5112 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:23:30.0849 5112 Null - ok
01:23:30.0912 5112 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\DRIVERS\nvraid.sys
01:23:30.0927 5112 nvraid - ok
01:23:30.0958 5112 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\DRIVERS\nvstor.sys
01:23:30.0974 5112 nvstor - ok
01:23:31.0068 5112 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
01:23:31.0083 5112 nv_agp - ok
01:23:31.0130 5112 O2FLASH (d955d5de998db2476bf0892be3a96c26) C:\Windows\system32\DRIVERS\o2flash.exe
01:23:31.0208 5112 O2FLASH - ok
01:23:31.0255 5112 O2MDRDR (26da4b40670ad436f7daec053a2a9eca) C:\Windows\system32\DRIVERS\o2mdx64.sys
01:23:31.0270 5112 O2MDRDR - ok
01:23:31.0317 5112 O2SDRDR (2e69a2adc12daa7ac7b4ffd8601e88b0) C:\Windows\system32\DRIVERS\o2sdx64.sys
01:23:31.0333 5112 O2SDRDR - ok
01:23:31.0504 5112 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:23:31.0536 5112 odserv - ok
01:23:31.0582 5112 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
01:23:31.0629 5112 ohci1394 - ok
01:23:31.0707 5112 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:23:31.0723 5112 ose - ok
01:23:31.0832 5112 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:23:31.0894 5112 p2pimsvc - ok
01:23:32.0019 5112 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:23:32.0066 5112 p2psvc - ok
01:23:32.0144 5112 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:23:32.0160 5112 Parport - ok
01:23:32.0300 5112 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
01:23:32.0316 5112 partmgr - ok
01:23:32.0565 5112 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:23:32.0612 5112 PcaSvc - ok
01:23:32.0721 5112 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
01:23:32.0752 5112 pci - ok
01:23:32.0768 5112 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
01:23:32.0784 5112 pciide - ok
01:23:32.0815 5112 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:23:32.0846 5112 pcmcia - ok
01:23:32.0846 5112 PCTINDIS5X64 - ok
01:23:32.0893 5112 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:23:32.0908 5112 pcw - ok
01:23:32.0955 5112 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:23:33.0033 5112 PEAUTH - ok
01:23:33.0158 5112 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:23:33.0205 5112 PerfHost - ok
01:23:33.0439 5112 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
01:23:33.0548 5112 pla - ok
01:23:33.0595 5112 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
01:23:33.0673 5112 PlugPlay - ok
01:23:33.0720 5112 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:23:33.0782 5112 PNRPAutoReg - ok
01:23:33.0844 5112 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:23:33.0860 5112 PNRPsvc - ok
01:23:33.0954 5112 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
01:23:33.0969 5112 Point64 - ok
01:23:34.0094 5112 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
01:23:34.0172 5112 PolicyAgent - ok
01:23:34.0219 5112 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:23:34.0297 5112 Power - ok
01:23:34.0359 5112 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
01:23:34.0422 5112 PptpMiniport - ok
01:23:34.0453 5112 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:23:34.0484 5112 Processor - ok
01:23:34.0531 5112 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
01:23:34.0593 5112 ProfSvc - ok
01:23:34.0640 5112 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:34.0671 5112 ProtectedStorage - ok
01:23:34.0702 5112 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
01:23:34.0765 5112 Psched - ok
01:23:34.0796 5112 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
01:23:34.0812 5112 PxHlpa64 - ok
01:23:34.0952 5112 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:23:35.0014 5112 ql2300 - ok
01:23:35.0326 5112 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:23:35.0342 5112 ql40xx - ok
01:23:35.0420 5112 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:23:35.0451 5112 QWAVE - ok
01:23:35.0467 5112 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:23:35.0514 5112 QWAVEdrv - ok
01:23:35.0545 5112 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:23:35.0607 5112 RasAcd - ok
01:23:35.0654 5112 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:23:35.0701 5112 RasAgileVpn - ok
01:23:35.0748 5112 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:23:35.0810 5112 RasAuto - ok
01:23:35.0935 5112 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:23:36.0013 5112 Rasl2tp - ok
01:23:36.0106 5112 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
01:23:36.0200 5112 RasMan - ok
01:23:36.0216 5112 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:23:36.0309 5112 RasPppoe - ok
01:23:36.0387 5112 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:23:36.0450 5112 RasSstp - ok
01:23:36.0512 5112 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
01:23:36.0590 5112 rdbss - ok
01:23:36.0637 5112 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:23:36.0684 5112 rdpbus - ok
01:23:36.0715 5112 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:23:36.0793 5112 RDPCDD - ok
01:23:36.0824 5112 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:23:36.0886 5112 RDPENCDD - ok
01:23:36.0933 5112 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:23:36.0980 5112 RDPREFMP - ok
01:23:37.0027 5112 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
01:23:37.0089 5112 RDPWD - ok
01:23:37.0120 5112 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
01:23:37.0136 5112 rdyboost - ok
01:23:37.0245 5112 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:23:37.0308 5112 RemoteAccess - ok
01:23:37.0448 5112 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:23:37.0526 5112 RemoteRegistry - ok
01:23:37.0776 5112 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
01:23:37.0822 5112 RichVideo ( UnsignedFile.Multi.Generic ) - warning
01:23:37.0822 5112 RichVideo - detected UnsignedFile.Multi.Generic (1)
01:23:37.0994 5112 Roxio UPnP Renderer 11 (805393d80291c53085bce10868e54ad5) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
01:23:38.0010 5112 Roxio UPnP Renderer 11 - ok
01:23:38.0088 5112 Roxio Upnp Server 11 (96a3d9197f4d8a7e456018b809bf2ac1) C:\Program Files (x86)\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
01:23:38.0103 5112 Roxio Upnp Server 11 - ok
01:23:38.0353 5112 RoxLiveShare11 (8af842f4c84bdaa882216a01f8825402) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
01:23:38.0368 5112 RoxLiveShare11 - ok
01:23:38.0478 5112 RoxMediaDB11 (c6394df3055601b11964b075c811f03c) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
01:23:38.0524 5112 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - warning
01:23:38.0524 5112 RoxMediaDB11 - detected UnsignedFile.Multi.Generic (1)
01:23:38.0602 5112 RoxWatch11 (3e8df3dd655cce064cf952066ddff248) C:\Program Files (x86)\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
01:23:38.0618 5112 RoxWatch11 - ok
01:23:38.0774 5112 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:23:38.0852 5112 RpcEptMapper - ok
01:23:38.0883 5112 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:23:38.0914 5112 RpcLocator - ok
01:23:38.0961 5112 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:23:39.0024 5112 RpcSs - ok
01:23:39.0117 5112 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:23:39.0195 5112 rspndr - ok
01:23:39.0289 5112 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:39.0320 5112 SamSs - ok
01:23:39.0382 5112 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
01:23:39.0398 5112 sbp2port - ok
01:23:39.0460 5112 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:23:39.0538 5112 SCardSvr - ok
01:23:39.0585 5112 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
01:23:39.0663 5112 scfilter - ok
01:23:39.0772 5112 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
01:23:39.0850 5112 Schedule - ok
01:23:39.0897 5112 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:23:39.0960 5112 SCPolicySvc - ok
01:23:40.0022 5112 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
01:23:40.0069 5112 SDRSVC - ok
01:23:40.0178 5112 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:23:40.0256 5112 secdrv - ok
01:23:40.0287 5112 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
01:23:40.0350 5112 seclogon - ok
01:23:40.0428 5112 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
01:23:40.0490 5112 SENS - ok
01:23:40.0537 5112 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:23:40.0584 5112 SensrSvc - ok
01:23:40.0599 5112 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:23:40.0646 5112 Serenum - ok
01:23:40.0693 5112 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:23:40.0708 5112 Serial - ok
01:23:40.0724 5112 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:23:40.0771 5112 sermouse - ok
01:23:40.0833 5112 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
01:23:40.0880 5112 SessionEnv - ok
01:23:40.0942 5112 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
01:23:41.0020 5112 sffdisk - ok
01:23:41.0036 5112 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
01:23:41.0083 5112 sffp_mmc - ok
01:23:41.0114 5112 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
01:23:41.0161 5112 sffp_sd - ok
01:23:41.0239 5112 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:23:41.0286 5112 sfloppy - ok
01:23:41.0348 5112 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:23:41.0426 5112 SharedAccess - ok
01:23:41.0520 5112 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
01:23:41.0566 5112 ShellHWDetection - ok
01:23:41.0613 5112 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:23:41.0629 5112 SiSRaid2 - ok
01:23:41.0660 5112 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:23:41.0676 5112 SiSRaid4 - ok
01:23:41.0707 5112 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:23:41.0754 5112 Smb - ok
01:23:41.0816 5112 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:23:41.0832 5112 SNMPTRAP - ok
01:23:41.0847 5112 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:23:41.0863 5112 spldr - ok
01:23:41.0941 5112 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
01:23:42.0003 5112 Spooler - ok
01:23:42.0268 5112 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
01:23:42.0393 5112 sppsvc - ok
01:23:42.0580 5112 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:23:42.0627 5112 sppuinotify - ok
01:23:42.0752 5112 sptd (602884696850c86434530790b110e8eb) C:\Windows\System32\Drivers\sptd.sys
01:23:42.0768 5112 sptd - ok
01:23:43.0017 5112 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\N360x64\0602000.009\SRTSP64.SYS
01:23:43.0048 5112 SRTSP - ok
01:23:43.0080 5112 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\N360x64\0602000.009\SRTSPX64.SYS
01:23:43.0095 5112 SRTSPX - ok
01:23:43.0189 5112 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
01:23:43.0251 5112 srv - ok
01:23:43.0298 5112 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
01:23:43.0329 5112 srv2 - ok
01:23:43.0360 5112 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
01:23:43.0423 5112 srvnet - ok
01:23:43.0548 5112 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:23:43.0626 5112 SSDPSRV - ok
01:23:43.0657 5112 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:23:43.0704 5112 SstpSvc - ok
01:23:43.0735 5112 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:23:43.0766 5112 stexstor - ok
01:23:43.0828 5112 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
01:23:43.0875 5112 stisvc - ok
01:23:43.0906 5112 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
01:23:43.0922 5112 swenum - ok
01:23:43.0984 5112 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:23:44.0062 5112 swprv - ok
01:23:44.0172 5112 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\N360x64\0602000.009\SYMDS64.SYS
01:23:44.0203 5112 SymDS - ok
01:23:44.0312 5112 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\N360x64\0602000.009\SYMEFA64.SYS
01:23:44.0343 5112 SymEFA - ok
01:23:44.0452 5112 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
01:23:44.0468 5112 SymEvent - ok
01:23:44.0562 5112 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\N360x64\0602000.009\Ironx64.SYS
01:23:44.0577 5112 SymIRON - ok
01:23:44.0640 5112 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\N360x64\0602000.009\SYMNETS.SYS
01:23:44.0671 5112 SymNetS - ok
01:23:44.0733 5112 SynTP (437a9d8b5ae2067d44eb60c953edc8a4) C:\Windows\system32\DRIVERS\SynTP.sys
01:23:44.0749 5112 SynTP - ok
01:23:44.0920 5112 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
01:23:45.0045 5112 SysMain - ok
01:23:45.0201 5112 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
01:23:45.0264 5112 TabletInputService - ok
01:23:45.0310 5112 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
01:23:45.0357 5112 TapiSrv - ok
01:23:45.0388 5112 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:23:45.0435 5112 TBS - ok
01:23:45.0669 5112 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
01:23:45.0732 5112 Tcpip - ok
01:23:46.0122 5112 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
01:23:46.0168 5112 TCPIP6 - ok
01:23:46.0465 5112 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
01:23:46.0512 5112 tcpipreg - ok
01:23:46.0527 5112 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:23:46.0605 5112 TDPIPE - ok
01:23:46.0621 5112 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
01:23:46.0683 5112 TDTCP - ok
01:23:46.0746 5112 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
01:23:46.0839 5112 tdx - ok
01:23:46.0855 5112 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
01:23:46.0870 5112 TermDD - ok
01:23:46.0995 5112 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
01:23:47.0089 5112 TermService - ok
01:23:47.0120 5112 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:23:47.0136 5112 Themes - ok
01:23:47.0229 5112 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:23:47.0276 5112 THREADORDER - ok
01:23:47.0307 5112 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:23:47.0385 5112 TrkWks - ok
01:23:47.0728 5112 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
01:23:47.0744 5112 TrustedInstaller - ok
01:23:47.0791 5112 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:23:47.0838 5112 tssecsrv - ok
01:23:47.0869 5112 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
01:23:47.0916 5112 tunnel - ok
01:23:47.0931 5112 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:23:47.0947 5112 uagp35 - ok
01:23:47.0978 5112 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
01:23:48.0056 5112 udfs - ok
01:23:48.0118 5112 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:23:48.0150 5112 UI0Detect - ok
01:23:48.0196 5112 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
01:23:48.0212 5112 uliagpkx - ok
01:23:48.0243 5112 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
01:23:48.0259 5112 umbus - ok
01:23:48.0274 5112 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:23:48.0321 5112 UmPass - ok
01:23:48.0384 5112 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:23:48.0462 5112 upnphost - ok
01:23:48.0508 5112 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
01:23:48.0571 5112 usbccgp - ok
01:23:48.0633 5112 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
01:23:48.0680 5112 usbcir - ok
01:23:48.0711 5112 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
01:23:48.0727 5112 usbehci - ok
01:23:48.0789 5112 usbfilter (8fec71666aba7114f9cab9e56065ec80) C:\Windows\system32\DRIVERS\usbfilter.sys
01:23:48.0805 5112 usbfilter - ok
01:23:48.0867 5112 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
01:23:48.0930 5112 usbhub - ok
01:23:48.0976 5112 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
01:23:49.0023 5112 usbohci - ok
01:23:49.0086 5112 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:23:49.0132 5112 usbprint - ok
01:23:49.0164 5112 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:23:49.0226 5112 USBSTOR - ok
01:23:49.0242 5112 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
01:23:49.0273 5112 usbuhci - ok
01:23:49.0320 5112 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
01:23:49.0398 5112 usbvideo - ok
01:23:49.0429 5112 UVCFTR (56ed086f1300ecb1e6f67ac43955e5e9) C:\Windows\system32\Drivers\UVCFTR_S.SYS
01:23:49.0444 5112 UVCFTR - ok
01:23:49.0491 5112 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:23:49.0569 5112 UxSms - ok
01:23:49.0600 5112 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:23:49.0616 5112 VaultSvc - ok
01:23:49.0647 5112 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
01:23:49.0663 5112 vdrvroot - ok
01:23:49.0710 5112 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
01:23:49.0772 5112 vds - ok
01:23:49.0788 5112 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:23:49.0803 5112 vga - ok
01:23:49.0834 5112 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:23:49.0897 5112 VgaSave - ok
01:23:49.0944 5112 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
01:23:49.0975 5112 vhdmp - ok
01:23:50.0037 5112 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
01:23:50.0053 5112 viaide - ok
01:23:50.0068 5112 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
01:23:50.0100 5112 volmgr - ok
01:23:50.0131 5112 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
01:23:50.0146 5112 volmgrx - ok
01:23:50.0193 5112 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
01:23:50.0209 5112 volsnap - ok
01:23:50.0240 5112 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:23:50.0256 5112 vsmraid - ok
01:23:50.0396 5112 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
01:23:50.0458 5112 VSS - ok
01:23:50.0755 5112 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
01:23:50.0802 5112 vwifibus - ok
01:23:50.0817 5112 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
01:23:50.0880 5112 vwififlt - ok
01:23:50.0911 5112 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
01:23:50.0942 5112 vwifimp - ok
01:23:51.0036 5112 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:23:51.0082 5112 W32Time - ok
01:23:51.0129 5112 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:23:51.0160 5112 WacomPen - ok
01:23:51.0176 5112 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:23:51.0254 5112 WANARP - ok
01:23:51.0270 5112 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:23:51.0316 5112 Wanarpv6 - ok
01:23:51.0441 5112 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:23:51.0472 5112 WatAdminSvc - ok
01:23:51.0660 5112 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
01:23:51.0769 5112 wbengine - ok
01:23:52.0018 5112 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:23:52.0050 5112 WbioSrvc - ok
01:23:52.0112 5112 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
01:23:52.0190 5112 wcncsvc - ok
01:23:52.0206 5112 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:23:52.0237 5112 WcsPlugInService - ok
01:23:52.0330 5112 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:23:52.0346 5112 Wd - ok
01:23:52.0393 5112 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:23:52.0455 5112 Wdf01000 - ok
01:23:52.0486 5112 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:23:52.0533 5112 WdiServiceHost - ok
01:23:52.0533 5112 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:23:52.0564 5112 WdiSystemHost - ok
01:23:52.0658 5112 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
01:23:52.0752 5112 WebClient - ok
01:23:52.0845 5112 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:23:52.0939 5112 Wecsvc - ok
01:23:52.0954 5112 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:23:53.0048 5112 wercplsupport - ok
01:23:53.0095 5112 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:23:53.0157 5112 WerSvc - ok
01:23:53.0251 5112 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:23:53.0298 5112 WfpLwf - ok
01:23:53.0344 5112 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:23:53.0360 5112 WIMMount - ok
01:23:53.0547 5112 winachsf (a6ea7a3fc4b00f48535b506db1e86efd) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
01:23:53.0594 5112 winachsf - ok
01:23:53.0641 5112 WinDefend - ok
01:23:53.0656 5112 WinHttpAutoProxySvc - ok
01:23:53.0828 5112 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:23:53.0906 5112 Winmgmt - ok
01:23:54.0234 5112 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
01:23:54.0374 5112 WinRM - ok
01:23:54.0592 5112 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
01:23:54.0639 5112 WinUsb - ok
01:23:54.0826 5112 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:23:54.0889 5112 Wlansvc - ok
01:23:55.0170 5112 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:23:55.0248 5112 wlidsvc - ok
01:23:55.0450 5112 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
01:23:55.0466 5112 WmiAcpi - ok
01:23:55.0638 5112 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:23:55.0684 5112 wmiApSrv - ok
01:23:55.0762 5112 WMPNetworkSvc - ok
01:23:55.0794 5112 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:23:55.0825 5112 WPCSvc - ok
01:23:55.0872 5112 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
01:23:55.0934 5112 WPDBusEnum - ok
01:23:56.0028 5112 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:23:56.0074 5112 ws2ifsl - ok
01:23:56.0121 5112 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
01:23:56.0168 5112 wscsvc - ok
01:23:56.0184 5112 WSearch - ok
01:23:56.0386 5112 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
01:23:56.0464 5112 wuauserv - ok
01:23:56.0683 5112 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
01:23:56.0745 5112 WudfPf - ok
01:23:56.0776 5112 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:23:56.0823 5112 WUDFRd - ok
01:23:56.0870 5112 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
01:23:56.0964 5112 wudfsvc - ok
01:23:57.0042 5112 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:23:57.0088 5112 WwanSvc - ok
01:23:57.0135 5112 XAudio (e8f3fa126a06f8e7088f63757112a186) C:\Windows\system32\DRIVERS\XAudio64.sys
01:23:57.0182 5112 XAudio - ok
01:23:57.0291 5112 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
01:23:57.0385 5112 yukonw7 - ok
01:23:57.0432 5112 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
01:23:57.0759 5112 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
01:23:57.0759 5112 \Device\Harddisk0\DR0 - detected TDSS File System (1)
01:23:57.0759 5112 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
01:24:01.0191 5112 \Device\Harddisk1\DR2 - ok
01:24:01.0222 5112 Boot (0x1200) (2f0d0c06aa3ee4a01f23ea3bf625aade) \Device\Harddisk0\DR0\Partition0
01:24:01.0222 5112 \Device\Harddisk0\DR0\Partition0 - ok
01:24:01.0254 5112 Boot (0x1200) (7d151d3316be5e84610a7483fb382d9c) \Device\Harddisk0\DR0\Partition1
01:24:01.0254 5112 \Device\Harddisk0\DR0\Partition1 - ok
01:24:01.0269 5112 Boot (0x1200) (9b5dc841aaf555ce9bc395a3d3d9d38c) \Device\Harddisk1\DR2\Partition0
01:24:01.0269 5112 \Device\Harddisk1\DR2\Partition0 - ok
01:24:01.0269 5112 ============================================================
01:24:01.0269 5112 Scan finished
01:24:01.0269 5112 ============================================================
01:24:01.0285 4388 Detected object count: 4
01:24:01.0285 4388 Actual detected object count: 4
01:25:08.0022 4388 C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe - copied to quarantine
01:25:08.0037 4388 HKLM\SYSTEM\ControlSet001\services\mi-raysat_3dsmax2011_32 - will be deleted on reboot
01:25:08.0209 4388 HKLM\SYSTEM\ControlSet002\services\mi-raysat_3dsmax2011_32 - will be deleted on reboot
01:25:08.0942 4388 C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe - will be deleted on reboot
01:25:08.0942 4388 mi-raysat_3dsmax2011_32 ( UnsignedFile.Multi.Generic ) - User select action: Delete
01:25:08.0958 4388 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
01:25:08.0958 4388 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:25:08.0958 4388 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - skipped by user
01:25:08.0958 4388 RoxMediaDB11 ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:25:08.0958 4388 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
01:25:08.0958 4388 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
01:25:21.0375 4736 Deinitialize success


aswMBR log:

aswMBR version 0.9.9.1665 Copyrightę 2011 AVAST Software
Run date: 2012-07-08 01:34:30
-----------------------------
01:34:30.758 OS Version: Windows x64 6.1.7600
01:34:30.758 Number of processors: 2 586 0x301
01:34:30.758 ComputerName: YARMERLAPTOP UserName: Yarmers'
01:34:32.365 Initialize success
01:36:36.775 AVAST engine defs: 12070701
01:36:45.261 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
01:36:45.261 Disk 0 Vendor: Hitachi_HTS543225L9A300 FBEOC40C Size: 238475MB BusType: 3
01:36:45.277 Disk 0 MBR read successfully
01:36:45.293 Disk 0 MBR scan
01:36:45.293 Disk 0 Windows 7 default MBR code
01:36:45.293 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14336 MB offset 2048
01:36:45.324 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 189252 MB offset 29362176
01:36:45.324 Disk 0 Partition - 00 0F Extended LBA 26692 MB offset 416952320
01:36:45.371 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 26691 MB offset 416954368
01:36:45.417 Disk 0 scanning C:\Windows\system32\drivers
01:37:01.501 Service scanning
01:37:56.070 Modules scanning
01:37:56.070 Disk 0 trace - called modules:
01:37:56.101 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
01:37:56.117 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003027060]
01:37:56.117 3 CLASSPNP.SYS[fffff8800107543f] -> nt!IofCallDriver -> [0xfffffa8002f97520]
01:37:56.132 5 ACPI.sys[fffff88000fa7781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002f9d060]
01:37:57.489 AVAST engine scan C:\Windows
01:38:02.481 AVAST engine scan C:\Windows\system32
01:44:14.869 AVAST engine scan C:\Windows\system32\drivers
01:44:33.106 AVAST engine scan C:\Users\Yarmers'
02:31:30.031 AVAST engine scan C:\ProgramData
02:52:07.003 Scan finished successfully
03:12:42.017 Disk 0 MBR has been saved successfully to "C:\Users\Yarmers'\Desktop\MBR.dat"
03:12:42.017 The log file has been saved successfully to "C:\Users\Yarmers'\Desktop\aswMBR.txt"




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users