Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google results redirecting...


  • Please log in to reply
6 replies to this topic

#1 eric123123123

eric123123123

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:11:47 AM

Posted 13 July 2012 - 10:37 AM

Hey just recently my google results started constantly redirectng! I don't remember many of the sites I was redirected to, but they were very random. Mostly to unherd web addresses that have search bars just like google, repeating the search I typed in. I do remember one of the sites was Infomash though. Can someone help me because I'm definitely infected. And I don't know if this is related bu after that spyware I also cannot see servers anymore (This game has tons of people playing..) on my favrite game.. Thanks in advance!!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:47 AM

Posted 13 July 2012 - 12:53 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 eric123123123

eric123123123
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:11:47 AM

Posted 18 July 2012 - 11:19 AM

TDS log file:

12:15:56.0343 10692 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
12:15:56.0564 10692 ============================================================
12:15:56.0564 10692 Current date / time: 2012/07/18 12:15:56.0564
12:15:56.0564 10692 SystemInfo:
12:15:56.0564 10692
12:15:56.0564 10692 OS Version: 6.1.7600 ServicePack: 0.0
12:15:56.0564 10692 Product type: Workstation
12:15:56.0564 10692 ComputerName: ERIC-PC
12:15:56.0565 10692 UserName: Eric
12:15:56.0565 10692 Windows directory: C:\Windows
12:15:56.0565 10692 System windows directory: C:\Windows
12:15:56.0565 10692 Running under WOW64
12:15:56.0565 10692 Processor architecture: Intel x64
12:15:56.0565 10692 Number of processors: 4
12:15:56.0565 10692 Page size: 0x1000
12:15:56.0565 10692 Boot type: Normal boot
12:15:56.0565 10692 ============================================================
12:15:58.0846 10692 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
12:15:58.0850 10692 ============================================================
12:15:58.0850 10692 \Device\Harddisk0\DR0:
12:15:58.0874 10692 MBR partitions:
12:15:58.0874 10692 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:15:58.0874 10692 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
12:15:58.0874 10692 ============================================================
12:15:58.0899 10692 C: <-> \Device\Harddisk0\DR0\Partition1
12:15:58.0919 10692 ============================================================
12:15:58.0919 10692 Initialize success
12:15:58.0919 10692 ============================================================
12:16:27.0707 6724 ============================================================
12:16:27.0707 6724 Scan started
12:16:27.0707 6724 Mode: Manual;
12:16:27.0707 6724 ============================================================
12:16:28.0242 6724 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
12:16:28.0248 6724 1394ohci - ok
12:16:28.0279 6724 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
12:16:28.0283 6724 ACPI - ok
12:16:28.0288 6724 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
12:16:28.0289 6724 AcpiPmi - ok
12:16:28.0313 6724 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
12:16:28.0319 6724 adp94xx - ok
12:16:28.0336 6724 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
12:16:28.0340 6724 adpahci - ok
12:16:28.0351 6724 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
12:16:28.0354 6724 adpu320 - ok
12:16:28.0380 6724 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
12:16:28.0381 6724 AeLookupSvc - ok
12:16:28.0440 6724 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
12:16:28.0446 6724 AFD - ok
12:16:28.0485 6724 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
12:16:28.0487 6724 agp440 - ok
12:16:28.0506 6724 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
12:16:28.0508 6724 ALG - ok
12:16:28.0524 6724 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
12:16:28.0525 6724 aliide - ok
12:16:28.0579 6724 AMD External Events Utility (a2f5bea5b45a8e7c4776f39c25e8699d) C:\Windows\system32\atiesrxx.exe
12:16:28.0582 6724 AMD External Events Utility - ok
12:16:28.0588 6724 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
12:16:28.0589 6724 amdide - ok
12:16:28.0613 6724 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
12:16:28.0614 6724 amdiox64 - ok
12:16:28.0619 6724 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
12:16:28.0621 6724 AmdK8 - ok
12:16:29.0138 6724 amdkmdag (5b03217859b014b090cb5060c1d96875) C:\Windows\system32\DRIVERS\atikmdag.sys
12:16:29.0273 6724 amdkmdag - ok
12:16:29.0277 6724 Scan interrupted by user!
12:16:29.0277 6724 Scan interrupted by user!
12:16:29.0277 6724 Scan interrupted by user!
12:16:29.0277 6724 ============================================================
12:16:29.0277 6724 Scan finished
12:16:29.0277 6724 ============================================================
12:16:29.0286 10836 Detected object count: 0
12:16:29.0286 10836 Actual detected object count: 0
12:16:40.0019 9948 ============================================================
12:16:40.0019 9948 Scan started
12:16:40.0019 9948 Mode: Manual; TDLFS;
12:16:40.0019 9948 ============================================================
12:16:40.0476 9948 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
12:16:40.0480 9948 1394ohci - ok
12:16:40.0517 9948 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
12:16:40.0522 9948 ACPI - ok
12:16:40.0529 9948 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
12:16:40.0530 9948 AcpiPmi - ok
12:16:40.0558 9948 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
12:16:40.0562 9948 adp94xx - ok
12:16:40.0579 9948 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
12:16:40.0581 9948 adpahci - ok
12:16:40.0592 9948 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
12:16:40.0594 9948 adpu320 - ok
12:16:40.0614 9948 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
12:16:40.0615 9948 AeLookupSvc - ok
12:16:40.0670 9948 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
12:16:40.0678 9948 AFD - ok
12:16:40.0703 9948 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
12:16:40.0704 9948 agp440 - ok
12:16:40.0712 9948 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
12:16:40.0713 9948 ALG - ok
12:16:40.0718 9948 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
12:16:40.0718 9948 aliide - ok
12:16:40.0763 9948 AMD External Events Utility (a2f5bea5b45a8e7c4776f39c25e8699d) C:\Windows\system32\atiesrxx.exe
12:16:40.0764 9948 AMD External Events Utility - ok
12:16:40.0771 9948 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
12:16:40.0771 9948 amdide - ok
12:16:40.0789 9948 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
12:16:40.0789 9948 amdiox64 - ok
12:16:40.0795 9948 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
12:16:40.0795 9948 AmdK8 - ok
12:16:41.0763 9948 amdkmdag (5b03217859b014b090cb5060c1d96875) C:\Windows\system32\DRIVERS\atikmdag.sys
12:16:41.0810 9948 amdkmdag - ok
12:16:41.0939 9948 amdkmdap (35d2184a99ad4cd5d17284d6c9f382c9) C:\Windows\system32\DRIVERS\atikmpag.sys
12:16:41.0946 9948 amdkmdap - ok
12:16:41.0997 9948 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
12:16:41.0998 9948 AmdPPM - ok
12:16:42.0047 9948 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
12:16:42.0049 9948 amdsata - ok
12:16:42.0073 9948 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
12:16:42.0076 9948 amdsbs - ok
12:16:42.0089 9948 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
12:16:42.0090 9948 amdxata - ok
12:16:42.0148 9948 AODDriver4.0 - ok
12:16:42.0182 9948 AODDriver4.01 - ok
12:16:42.0216 9948 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
12:16:42.0219 9948 AppID - ok
12:16:42.0240 9948 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
12:16:42.0242 9948 AppIDSvc - ok
12:16:42.0257 9948 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
12:16:42.0259 9948 Appinfo - ok
12:16:42.0305 9948 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
12:16:42.0307 9948 arc - ok
12:16:42.0315 9948 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
12:16:42.0317 9948 arcsas - ok
12:16:42.0351 9948 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
12:16:42.0352 9948 AsyncMac - ok
12:16:42.0388 9948 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
12:16:42.0389 9948 atapi - ok
12:16:42.0473 9948 AtiHDAudioService (dbb487d09f56c674430ac454fd8bcab9) C:\Windows\system32\drivers\AtihdW76.sys
12:16:42.0511 9948 AtiHDAudioService - ok
12:16:42.0590 9948 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
12:16:42.0604 9948 AudioEndpointBuilder - ok
12:16:42.0614 9948 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
12:16:42.0619 9948 AudioSrv - ok
12:16:42.0644 9948 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
12:16:42.0646 9948 AxInstSV - ok
12:16:42.0716 9948 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
12:16:42.0728 9948 b06bdrv - ok
12:16:42.0765 9948 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
12:16:42.0769 9948 b57nd60a - ok
12:16:42.0975 9948 Bandoo Coordinator (afa0e803a7c009eb454cd35f26b1e828) C:\PROGRA~2\Bandoo\Bandoo.exe
12:16:43.0003 9948 Bandoo Coordinator - ok
12:16:43.0103 9948 BBSvc (01a24b415926bb5f772dbe12459d97de) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
12:16:43.0108 9948 BBSvc - ok
12:16:43.0175 9948 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
12:16:43.0181 9948 BBUpdate - ok
12:16:43.0267 9948 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
12:16:43.0270 9948 BDESVC - ok
12:16:43.0333 9948 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
12:16:43.0335 9948 Beep - ok
12:16:43.0411 9948 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
12:16:43.0422 9948 BFE - ok
12:16:43.0499 9948 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
12:16:43.0548 9948 BITS - ok
12:16:43.0730 9948 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
12:16:43.0740 9948 blbdrive - ok
12:16:44.0228 9948 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
12:16:44.0249 9948 bowser - ok
12:16:44.0306 9948 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:16:44.0314 9948 BrFiltLo - ok
12:16:44.0321 9948 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:16:44.0323 9948 BrFiltUp - ok
12:16:44.0355 9948 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
12:16:44.0357 9948 Browser - ok
12:16:44.0372 9948 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
12:16:44.0376 9948 Brserid - ok
12:16:44.0401 9948 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
12:16:44.0402 9948 BrSerWdm - ok
12:16:44.0407 9948 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
12:16:44.0408 9948 BrUsbMdm - ok
12:16:44.0413 9948 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
12:16:44.0414 9948 BrUsbSer - ok
12:16:44.0420 9948 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
12:16:44.0422 9948 BTHMODEM - ok
12:16:44.0453 9948 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
12:16:44.0454 9948 bthserv - ok
12:16:44.0532 9948 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
12:16:44.0534 9948 cdfs - ok
12:16:44.0580 9948 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
12:16:44.0582 9948 cdrom - ok
12:16:44.0631 9948 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
12:16:44.0632 9948 CertPropSvc - ok
12:16:44.0658 9948 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
12:16:44.0659 9948 circlass - ok
12:16:44.0682 9948 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
12:16:44.0685 9948 CLFS - ok
12:16:44.0754 9948 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:16:44.0760 9948 clr_optimization_v2.0.50727_32 - ok
12:16:44.0787 9948 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:16:44.0807 9948 clr_optimization_v2.0.50727_64 - ok
12:16:44.0895 9948 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:16:44.0938 9948 clr_optimization_v4.0.30319_32 - ok
12:16:44.0964 9948 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:16:44.0970 9948 clr_optimization_v4.0.30319_64 - ok
12:16:45.0001 9948 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
12:16:45.0003 9948 CmBatt - ok
12:16:45.0007 9948 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
12:16:45.0008 9948 cmdide - ok
12:16:45.0053 9948 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
12:16:45.0059 9948 CNG - ok
12:16:45.0064 9948 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
12:16:45.0065 9948 Compbatt - ok
12:16:45.0114 9948 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
12:16:45.0116 9948 CompositeBus - ok
12:16:45.0140 9948 COMSysApp - ok
12:16:45.0190 9948 cpuz135 (262969a3fab32b9e17e63e2d17a57744) C:\Windows\system32\drivers\cpuz135_x64.sys
12:16:45.0193 9948 cpuz135 - ok
12:16:45.0215 9948 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
12:16:45.0217 9948 crcdisk - ok
12:16:45.0276 9948 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
12:16:45.0281 9948 CryptSvc - ok
12:16:45.0345 9948 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
12:16:45.0358 9948 DcomLaunch - ok
12:16:45.0390 9948 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
12:16:45.0395 9948 defragsvc - ok
12:16:45.0445 9948 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
12:16:45.0447 9948 DfsC - ok
12:16:45.0498 9948 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
12:16:45.0506 9948 Dhcp - ok
12:16:45.0535 9948 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
12:16:45.0537 9948 discache - ok
12:16:45.0576 9948 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
12:16:45.0579 9948 Disk - ok
12:16:45.0612 9948 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
12:16:45.0617 9948 Dnscache - ok
12:16:45.0673 9948 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
12:16:45.0680 9948 dot3svc - ok
12:16:45.0696 9948 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
12:16:45.0700 9948 DPS - ok
12:16:45.0748 9948 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
12:16:45.0749 9948 drmkaud - ok
12:16:45.0820 9948 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
12:16:45.0831 9948 DXGKrnl - ok
12:16:45.0888 9948 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
12:16:45.0889 9948 EapHost - ok
12:16:46.0061 9948 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
12:16:46.0094 9948 ebdrv - ok
12:16:46.0138 9948 ECSIoDriver_1_1_0_0 - ok
12:16:46.0608 9948 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
12:16:46.0626 9948 EFS - ok
12:16:46.0774 9948 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
12:16:47.0095 9948 ehRecvr - ok
12:16:47.0207 9948 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
12:16:47.0275 9948 ehSched - ok
12:16:47.0384 9948 ElbyCDIO (a05fc7eca0966ebb70e4d17b855a853b) C:\Windows\system32\Drivers\ElbyCDIO.sys
12:16:47.0387 9948 ElbyCDIO - ok
12:16:47.0478 9948 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
12:16:47.0490 9948 elxstor - ok
12:16:47.0499 9948 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
12:16:47.0500 9948 ErrDev - ok
12:16:47.0576 9948 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
12:16:47.0586 9948 EventSystem - ok
12:16:47.0621 9948 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
12:16:47.0626 9948 exfat - ok
12:16:47.0656 9948 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
12:16:47.0662 9948 fastfat - ok
12:16:47.0750 9948 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
12:16:47.0765 9948 Fax - ok
12:16:47.0773 9948 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
12:16:47.0774 9948 fdc - ok
12:16:47.0814 9948 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
12:16:47.0815 9948 fdPHost - ok
12:16:47.0836 9948 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
12:16:47.0838 9948 FDResPub - ok
12:16:47.0864 9948 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
12:16:47.0866 9948 FileInfo - ok
12:16:47.0874 9948 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
12:16:47.0875 9948 Filetrace - ok
12:16:47.0904 9948 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
12:16:47.0905 9948 flpydisk - ok
12:16:47.0941 9948 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
12:16:47.0944 9948 FltMgr - ok
12:16:48.0084 9948 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
12:16:48.0108 9948 FontCache - ok
12:16:48.0161 9948 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:16:48.0182 9948 FontCache3.0.0.0 - ok
12:16:48.0292 9948 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
12:16:48.0301 9948 FsDepends - ok
12:16:48.0355 9948 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
12:16:48.0358 9948 fssfltr - ok
12:16:48.0529 9948 fsssvc (206ad9a89bf05dfa1621f1fc7b82592d) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
12:16:48.0537 9948 fsssvc - ok
12:16:48.0570 9948 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
12:16:48.0571 9948 Fs_Rec - ok
12:16:48.0633 9948 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
12:16:48.0638 9948 fvevol - ok
12:16:48.0720 9948 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
12:16:48.0733 9948 gagp30kx - ok
12:16:49.0140 9948 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
12:16:49.0167 9948 gpsvc - ok
12:16:49.0340 9948 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:16:49.0341 9948 gupdate - ok
12:16:49.0379 9948 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:16:49.0380 9948 gupdatem - ok
12:16:49.0429 9948 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
12:16:49.0431 9948 gusvc - ok
12:16:49.0467 9948 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
12:16:49.0468 9948 hamachi - ok
12:16:49.0743 9948 Hamachi2Svc (d483dbaef409e8ab7477c28615fcd853) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
12:16:49.0763 9948 Hamachi2Svc - ok
12:16:49.0874 9948 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
12:16:49.0875 9948 hcw85cir - ok
12:16:49.0909 9948 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
12:16:49.0913 9948 HdAudAddService - ok
12:16:49.0947 9948 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
12:16:49.0948 9948 HDAudBus - ok
12:16:49.0962 9948 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
12:16:49.0970 9948 HidBatt - ok
12:16:49.0995 9948 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
12:16:49.0997 9948 HidBth - ok
12:16:50.0012 9948 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
12:16:50.0013 9948 HidIr - ok
12:16:50.0030 9948 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
12:16:50.0031 9948 hidserv - ok
12:16:50.0079 9948 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
12:16:50.0089 9948 HidUsb - ok
12:16:50.0108 9948 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
12:16:50.0110 9948 hkmsvc - ok
12:16:50.0154 9948 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
12:16:50.0157 9948 HomeGroupListener - ok
12:16:50.0197 9948 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
12:16:50.0200 9948 HomeGroupProvider - ok
12:16:50.0224 9948 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
12:16:50.0225 9948 HpSAMD - ok
12:16:50.0327 9948 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
12:16:50.0334 9948 HTTP - ok
12:16:50.0452 9948 HWiNFO32 (160bab05a99fcf8fd77153371644546f) C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS
12:16:50.0461 9948 HWiNFO32 - ok
12:16:50.0481 9948 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
12:16:50.0481 9948 hwpolicy - ok
12:16:50.0549 9948 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
12:16:50.0551 9948 i8042prt - ok
12:16:50.0639 9948 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
12:16:50.0643 9948 iaStorV - ok
12:16:50.0754 9948 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:16:50.0763 9948 idsvc - ok
12:16:50.0784 9948 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
12:16:50.0786 9948 iirsp - ok
12:16:50.0873 9948 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
12:16:50.0881 9948 IKEEXT - ok
12:16:51.0391 9948 IntcAzAudAddService (13089f31aa37cde1ce3784ee01a48484) C:\Windows\system32\drivers\RTKVHD64.sys
12:16:51.0447 9948 IntcAzAudAddService - ok
12:16:51.0833 9948 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
12:16:51.0834 9948 intelide - ok
12:16:51.0860 9948 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
12:16:51.0861 9948 intelppm - ok
12:16:51.0893 9948 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
12:16:51.0895 9948 IPBusEnum - ok
12:16:51.0905 9948 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:16:51.0906 9948 IpFilterDriver - ok
12:16:51.0955 9948 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
12:16:51.0960 9948 iphlpsvc - ok
12:16:51.0968 9948 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
12:16:51.0970 9948 IPMIDRV - ok
12:16:51.0981 9948 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
12:16:51.0983 9948 IPNAT - ok
12:16:52.0010 9948 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
12:16:52.0011 9948 IRENUM - ok
12:16:52.0046 9948 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
12:16:52.0055 9948 isapnp - ok
12:16:52.0087 9948 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
12:16:52.0099 9948 iScsiPrt - ok
12:16:52.0132 9948 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
12:16:52.0133 9948 kbdclass - ok
12:16:52.0172 9948 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
12:16:52.0173 9948 kbdhid - ok
12:16:52.0227 9948 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:16:52.0228 9948 KeyIso - ok
12:16:52.0287 9948 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
12:16:52.0316 9948 KSecDD - ok
12:16:52.0429 9948 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
12:16:52.0458 9948 KSecPkg - ok
12:16:52.0520 9948 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
12:16:52.0521 9948 ksthunk - ok
12:16:52.0554 9948 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
12:16:52.0559 9948 KtmRm - ok
12:16:52.0603 9948 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
12:16:52.0606 9948 LanmanServer - ok
12:16:52.0658 9948 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
12:16:52.0660 9948 LanmanWorkstation - ok
12:16:52.0746 9948 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
12:16:52.0748 9948 lltdio - ok
12:16:52.0782 9948 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
12:16:52.0799 9948 lltdsvc - ok
12:16:52.0816 9948 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
12:16:52.0817 9948 lmhosts - ok
12:16:52.0893 9948 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
12:16:52.0895 9948 LSI_FC - ok
12:16:52.0937 9948 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
12:16:52.0939 9948 LSI_SAS - ok
12:16:52.0947 9948 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:16:52.0948 9948 LSI_SAS2 - ok
12:16:53.0019 9948 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:16:53.0021 9948 LSI_SCSI - ok
12:16:53.0077 9948 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
12:16:53.0079 9948 luafv - ok
12:16:53.0192 9948 ManyCam (d33e2b74cf8b3a652bf0a9fbd068e87a) C:\Windows\system32\DRIVERS\ManyCam_x64.sys
12:16:53.0193 9948 ManyCam - ok
12:16:53.0306 9948 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
12:16:53.0308 9948 Mcx2Svc - ok
12:16:53.0377 9948 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
12:16:53.0378 9948 megasas - ok
12:16:53.0407 9948 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
12:16:53.0410 9948 MegaSR - ok
12:16:53.0703 9948 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
12:16:53.0714 9948 Microsoft Office Groove Audit Service - ok
12:16:53.0797 9948 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
12:16:53.0810 9948 MMCSS - ok
12:16:53.0870 9948 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
12:16:53.0872 9948 Modem - ok
12:16:53.0922 9948 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
12:16:53.0923 9948 monitor - ok
12:16:54.0019 9948 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
12:16:54.0035 9948 mouclass - ok
12:16:54.0075 9948 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
12:16:54.0076 9948 mouhid - ok
12:16:54.0096 9948 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
12:16:54.0097 9948 mountmgr - ok
12:16:54.0162 9948 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
12:16:54.0164 9948 MpFilter - ok
12:16:54.0184 9948 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
12:16:54.0186 9948 mpio - ok
12:16:54.0201 9948 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
12:16:54.0203 9948 mpsdrv - ok
12:16:54.0245 9948 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
12:16:54.0253 9948 MpsSvc - ok
12:16:54.0261 9948 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
12:16:54.0263 9948 MRxDAV - ok
12:16:54.0295 9948 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:16:54.0297 9948 mrxsmb - ok
12:16:54.0346 9948 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:16:54.0349 9948 mrxsmb10 - ok
12:16:54.0360 9948 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:16:54.0362 9948 mrxsmb20 - ok
12:16:54.0366 9948 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
12:16:54.0367 9948 msahci - ok
12:16:54.0377 9948 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
12:16:54.0379 9948 msdsm - ok
12:16:54.0397 9948 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
12:16:54.0400 9948 MSDTC - ok
12:16:54.0413 9948 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
12:16:54.0423 9948 Msfs - ok
12:16:54.0437 9948 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
12:16:54.0438 9948 mshidkmdf - ok
12:16:54.0451 9948 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
12:16:54.0452 9948 msisadrv - ok
12:16:54.0492 9948 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
12:16:54.0495 9948 MSiSCSI - ok
12:16:54.0498 9948 msiserver - ok
12:16:54.0515 9948 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
12:16:54.0516 9948 MSKSSRV - ok
12:16:54.0628 9948 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:16:54.0628 9948 MsMpSvc - ok
12:16:54.0631 9948 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
12:16:54.0632 9948 MSPCLOCK - ok
12:16:54.0648 9948 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
12:16:54.0649 9948 MSPQM - ok
12:16:54.0674 9948 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
12:16:54.0677 9948 MsRPC - ok
12:16:54.0693 9948 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
12:16:54.0707 9948 mssmbios - ok
12:16:54.0720 9948 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
12:16:54.0721 9948 MSTEE - ok
12:16:54.0724 9948 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
12:16:54.0725 9948 MTConfig - ok
12:16:54.0755 9948 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
12:16:54.0756 9948 Mup - ok
12:16:54.0795 9948 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
12:16:54.0801 9948 napagent - ok
12:16:54.0912 9948 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
12:16:54.0915 9948 NativeWifiP - ok
12:16:55.0015 9948 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
12:16:55.0023 9948 NDIS - ok
12:16:55.0053 9948 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
12:16:55.0054 9948 NdisCap - ok
12:16:55.0089 9948 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
12:16:55.0090 9948 NdisTapi - ok
12:16:55.0100 9948 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
12:16:55.0101 9948 Ndisuio - ok
12:16:55.0112 9948 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
12:16:55.0114 9948 NdisWan - ok
12:16:55.0127 9948 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
12:16:55.0129 9948 NDProxy - ok
12:16:55.0140 9948 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
12:16:55.0141 9948 NetBIOS - ok
12:16:55.0155 9948 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
12:16:55.0158 9948 NetBT - ok
12:16:55.0193 9948 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:16:55.0194 9948 Netlogon - ok
12:16:55.0251 9948 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
12:16:55.0256 9948 Netman - ok
12:16:55.0282 9948 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
12:16:55.0287 9948 netprofm - ok
12:16:55.0388 9948 netr28ux (26672f93749ac9fd28da1b0f94efa78d) C:\Windows\system32\DRIVERS\netr28ux.sys
12:16:55.0397 9948 netr28ux - ok
12:16:55.0468 9948 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:16:55.0470 9948 NetTcpPortSharing - ok
12:16:55.0550 9948 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
12:16:55.0559 9948 nfrd960 - ok
12:16:55.0613 9948 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:16:55.0615 9948 NisDrv - ok
12:16:55.0740 9948 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
12:16:55.0747 9948 NisSrv - ok
12:16:55.0847 9948 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
12:16:55.0856 9948 NlaSvc - ok
12:16:55.0872 9948 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
12:16:55.0873 9948 Npfs - ok
12:16:55.0885 9948 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
12:16:55.0887 9948 nsi - ok
12:16:55.0910 9948 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
12:16:55.0912 9948 nsiproxy - ok
12:16:56.0170 9948 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
12:16:56.0249 9948 Ntfs - ok
12:16:56.0519 9948 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
12:16:56.0521 9948 Null - ok
12:16:56.0585 9948 NVENETFD (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
12:16:56.0594 9948 NVENETFD - ok
12:16:56.0656 9948 NVHDA (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
12:16:56.0662 9948 NVHDA - ok
12:16:57.0407 9948 nvlddmkm (cbf698abe989d60ec0d0b6b81ad82930) C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:16:57.0564 9948 nvlddmkm - ok
12:16:57.0686 9948 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
12:16:57.0688 9948 nvraid - ok
12:16:57.0710 9948 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
12:16:57.0711 9948 nvstor - ok
12:16:57.0844 9948 NVSvc (cce27b95d1ae8128a7e0cee0fc9ae535) C:\Windows\system32\nvvsvc.exe
12:16:57.0859 9948 NVSvc - ok
12:16:58.0069 9948 nvUpdatusService (d4f624d918686491e1b1afaf1901f457) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
12:16:58.0102 9948 nvUpdatusService - ok
12:16:58.0190 9948 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
12:16:58.0191 9948 nv_agp - ok
12:16:58.0333 9948 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:16:58.0338 9948 odserv - ok
12:16:58.0344 9948 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
12:16:58.0345 9948 ohci1394 - ok
12:16:58.0397 9948 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:16:58.0399 9948 ose - ok
12:16:58.0441 9948 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
12:16:58.0445 9948 p2pimsvc - ok
12:16:58.0473 9948 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
12:16:58.0478 9948 p2psvc - ok
12:16:58.0586 9948 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
12:16:58.0603 9948 Parport - ok
12:16:58.0742 9948 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
12:16:58.0789 9948 partmgr - ok
12:16:58.0937 9948 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
12:16:58.0940 9948 PcaSvc - ok
12:16:58.0987 9948 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
12:16:58.0989 9948 pci - ok
12:16:59.0005 9948 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
12:16:59.0007 9948 pciide - ok
12:16:59.0038 9948 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
12:16:59.0040 9948 pcmcia - ok
12:16:59.0052 9948 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
12:16:59.0053 9948 pcw - ok
12:16:59.0096 9948 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
12:16:59.0109 9948 PEAUTH - ok
12:16:59.0170 9948 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
12:16:59.0172 9948 PerfHost - ok
12:16:59.0258 9948 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
12:16:59.0272 9948 pla - ok
12:16:59.0333 9948 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
12:16:59.0338 9948 PlugPlay - ok
12:16:59.0360 9948 PnkBstrA - ok
12:16:59.0376 9948 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
12:16:59.0378 9948 PNRPAutoReg - ok
12:16:59.0395 9948 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
12:16:59.0398 9948 PNRPsvc - ok
12:16:59.0431 9948 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
12:16:59.0437 9948 PolicyAgent - ok
12:16:59.0458 9948 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
12:16:59.0461 9948 Power - ok
12:16:59.0522 9948 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
12:16:59.0541 9948 PptpMiniport - ok
12:16:59.0561 9948 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
12:16:59.0562 9948 Processor - ok
12:16:59.0598 9948 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
12:16:59.0601 9948 ProfSvc - ok
12:16:59.0636 9948 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:16:59.0637 9948 ProtectedStorage - ok
12:16:59.0669 9948 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
12:16:59.0670 9948 Psched - ok
12:16:59.0736 9948 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
12:16:59.0751 9948 ql2300 - ok
12:16:59.0832 9948 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
12:16:59.0833 9948 ql40xx - ok
12:16:59.0874 9948 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
12:16:59.0877 9948 QWAVE - ok
12:16:59.0887 9948 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
12:16:59.0888 9948 QWAVEdrv - ok
12:16:59.0891 9948 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
12:16:59.0893 9948 RasAcd - ok
12:16:59.0934 9948 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
12:16:59.0935 9948 RasAgileVpn - ok
12:16:59.0952 9948 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
12:16:59.0954 9948 RasAuto - ok
12:16:59.0973 9948 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:16:59.0975 9948 Rasl2tp - ok
12:16:59.0995 9948 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
12:17:00.0002 9948 RasMan - ok
12:17:00.0020 9948 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
12:17:00.0021 9948 RasPppoe - ok
12:17:00.0029 9948 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
12:17:00.0030 9948 RasSstp - ok
12:17:00.0046 9948 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
12:17:00.0050 9948 rdbss - ok
12:17:00.0062 9948 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
12:17:00.0063 9948 rdpbus - ok
12:17:00.0074 9948 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:17:00.0075 9948 RDPCDD - ok
12:17:00.0111 9948 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
12:17:00.0112 9948 RDPENCDD - ok
12:17:00.0118 9948 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
12:17:00.0119 9948 RDPREFMP - ok
12:17:00.0156 9948 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
12:17:00.0159 9948 RDPWD - ok
12:17:00.0195 9948 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
12:17:00.0198 9948 rdyboost - ok
12:17:00.0221 9948 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
12:17:00.0223 9948 RemoteAccess - ok
12:17:00.0242 9948 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
12:17:00.0245 9948 RemoteRegistry - ok
12:17:00.0251 9948 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
12:17:00.0253 9948 RpcEptMapper - ok
12:17:00.0276 9948 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
12:17:00.0278 9948 RpcLocator - ok
12:17:00.0301 9948 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
12:17:00.0305 9948 RpcSs - ok
12:17:00.0319 9948 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
12:17:00.0324 9948 rspndr - ok
12:17:00.0367 9948 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
12:17:00.0370 9948 RTL8167 - ok
12:17:00.0402 9948 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:17:00.0403 9948 SamSs - ok
12:17:00.0410 9948 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
12:17:00.0412 9948 sbp2port - ok
12:17:00.0436 9948 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
12:17:00.0440 9948 SCardSvr - ok
12:17:00.0451 9948 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
12:17:00.0453 9948 scfilter - ok
12:17:00.0509 9948 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
12:17:00.0520 9948 Schedule - ok
12:17:00.0541 9948 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
12:17:00.0541 9948 SCPolicySvc - ok
12:17:00.0572 9948 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
12:17:00.0575 9948 SDRSVC - ok
12:17:00.0631 9948 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
12:17:00.0632 9948 secdrv - ok
12:17:00.0642 9948 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
12:17:00.0644 9948 seclogon - ok
12:17:00.0650 9948 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
12:17:00.0652 9948 SENS - ok
12:17:00.0663 9948 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
12:17:00.0665 9948 SensrSvc - ok
12:17:00.0694 9948 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
12:17:00.0695 9948 Serenum - ok
12:17:00.0711 9948 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
12:17:00.0712 9948 Serial - ok
12:17:00.0728 9948 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
12:17:00.0729 9948 sermouse - ok
12:17:00.0743 9948 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
12:17:00.0745 9948 SessionEnv - ok
12:17:00.0749 9948 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
12:17:00.0750 9948 sffdisk - ok
12:17:00.0754 9948 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
12:17:00.0755 9948 sffp_mmc - ok
12:17:00.0768 9948 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
12:17:00.0768 9948 sffp_sd - ok
12:17:00.0772 9948 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
12:17:00.0774 9948 sfloppy - ok
12:17:00.0810 9948 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
12:17:00.0814 9948 SharedAccess - ok
12:17:00.0866 9948 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
12:17:00.0871 9948 ShellHWDetection - ok
12:17:00.0897 9948 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:17:00.0898 9948 SiSRaid2 - ok
12:17:00.0919 9948 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
12:17:00.0921 9948 SiSRaid4 - ok
12:17:01.0030 9948 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
12:17:01.0038 9948 Smb - ok
12:17:01.0129 9948 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
12:17:01.0137 9948 SNMPTRAP - ok
12:17:01.0175 9948 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
12:17:01.0176 9948 spldr - ok
12:17:01.0285 9948 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
12:17:01.0299 9948 Spooler - ok
12:17:01.0440 9948 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
12:17:01.0470 9948 sppsvc - ok
12:17:01.0526 9948 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
12:17:01.0528 9948 sppuinotify - ok
12:17:01.0616 9948 sptd (a6cff1af7664627a296b6a0a96cf876e) C:\Windows\System32\Drivers\sptd.sys
12:17:01.0616 9948 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: a6cff1af7664627a296b6a0a96cf876e
12:17:01.0618 9948 sptd ( LockedFile.Multi.Generic ) - warning
12:17:01.0618 9948 sptd - detected LockedFile.Multi.Generic (1)
12:17:01.0661 9948 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
12:17:01.0666 9948 srv - ok
12:17:01.0694 9948 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
12:17:01.0698 9948 srv2 - ok
12:17:01.0710 9948 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
12:17:01.0712 9948 srvnet - ok
12:17:01.0756 9948 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
12:17:01.0759 9948 SSDPSRV - ok
12:17:01.0765 9948 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
12:17:01.0767 9948 SstpSvc - ok
12:17:02.0174 9948 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
12:17:02.0181 9948 StarWindServiceAE - ok
12:17:02.0237 9948 Steam Client Service - ok
12:17:02.0369 9948 Stereo Service (2a3a44dfa9bb1ba65057a99966edfe56) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
12:17:02.0373 9948 Stereo Service - ok
12:17:02.0396 9948 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
12:17:02.0397 9948 stexstor - ok
12:17:02.0466 9948 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
12:17:02.0473 9948 stisvc - ok
12:17:02.0484 9948 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
12:17:02.0485 9948 swenum - ok
12:17:02.0522 9948 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
12:17:02.0528 9948 swprv - ok
12:17:02.0632 9948 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
12:17:02.0648 9948 SysMain - ok
12:17:02.0712 9948 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
12:17:02.0714 9948 TabletInputService - ok
12:17:02.0730 9948 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
12:17:02.0734 9948 TapiSrv - ok
12:17:02.0747 9948 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
12:17:02.0749 9948 TBS - ok
12:17:02.0910 9948 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
12:17:02.0927 9948 Tcpip - ok
12:17:03.0141 9948 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
12:17:03.0149 9948 TCPIP6 - ok
12:17:03.0204 9948 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
12:17:03.0220 9948 tcpipreg - ok
12:17:03.0251 9948 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
12:17:03.0252 9948 TDPIPE - ok
12:17:03.0339 9948 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
12:17:03.0366 9948 TDTCP - ok
12:17:03.0413 9948 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
12:17:03.0441 9948 tdx - ok
12:17:03.0465 9948 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
12:17:03.0478 9948 TermDD - ok
12:17:03.0659 9948 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
12:17:03.0670 9948 TermService - ok
12:17:03.0683 9948 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
12:17:03.0685 9948 Themes - ok
12:17:03.0699 9948 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
12:17:03.0700 9948 THREADORDER - ok
12:17:03.0829 9948 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
12:17:03.0856 9948 TrkWks - ok
12:17:03.0927 9948 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
12:17:03.0929 9948 TrustedInstaller - ok
12:17:03.0939 9948 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:17:03.0940 9948 tssecsrv - ok
12:17:03.0986 9948 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
12:17:03.0988 9948 tunnel - ok
12:17:04.0000 9948 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
12:17:04.0001 9948 uagp35 - ok
12:17:04.0029 9948 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
12:17:04.0033 9948 udfs - ok
12:17:04.0058 9948 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
12:17:04.0061 9948 UI0Detect - ok
12:17:04.0068 9948 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
12:17:04.0070 9948 uliagpkx - ok
12:17:04.0089 9948 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
12:17:04.0091 9948 umbus - ok
12:17:04.0097 9948 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
12:17:04.0098 9948 UmPass - ok
12:17:04.0119 9948 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
12:17:04.0124 9948 upnphost - ok
12:17:04.0165 9948 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
12:17:04.0167 9948 usbaudio - ok
12:17:04.0199 9948 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
12:17:04.0201 9948 usbccgp - ok
12:17:04.0261 9948 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
12:17:04.0263 9948 usbcir - ok
12:17:04.0279 9948 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
12:17:04.0280 9948 usbehci - ok
12:17:04.0308 9948 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
12:17:04.0312 9948 usbhub - ok
12:17:04.0326 9948 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
12:17:04.0327 9948 usbohci - ok
12:17:04.0332 9948 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
12:17:04.0334 9948 usbprint - ok
12:17:04.0369 9948 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:17:04.0371 9948 USBSTOR - ok
12:17:04.0386 9948 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
12:17:04.0392 9948 usbuhci - ok
12:17:04.0406 9948 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
12:17:04.0408 9948 UxSms - ok
12:17:04.0444 9948 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:17:04.0445 9948 VaultSvc - ok
12:17:04.0480 9948 VClone (fd911873c0bb6945fa38c16e9a2b58f9) C:\Windows\system32\DRIVERS\VClone.sys
12:17:04.0481 9948 VClone - ok
12:17:04.0517 9948 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
12:17:04.0519 9948 vdrvroot - ok
12:17:04.0552 9948 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
12:17:04.0559 9948 vds - ok
12:17:04.0576 9948 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
12:17:04.0577 9948 vga - ok
12:17:04.0587 9948 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
12:17:04.0589 9948 VgaSave - ok
12:17:04.0602 9948 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
12:17:04.0604 9948 vhdmp - ok
12:17:04.0609 9948 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
12:17:04.0610 9948 viaide - ok
12:17:04.0620 9948 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
12:17:04.0622 9948 volmgr - ok
12:17:04.0639 9948 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
12:17:04.0643 9948 volmgrx - ok
12:17:04.0658 9948 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
12:17:04.0662 9948 volsnap - ok
12:17:04.0699 9948 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
12:17:04.0701 9948 vsmraid - ok
12:17:04.0785 9948 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
12:17:04.0801 9948 VSS - ok
12:17:04.0944 9948 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
12:17:04.0945 9948 vwifibus - ok
12:17:05.0044 9948 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
12:17:05.0046 9948 vwififlt - ok
12:17:05.0111 9948 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
12:17:05.0116 9948 W32Time - ok
12:17:05.0145 9948 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
12:17:05.0147 9948 WacomPen - ok
12:17:05.0243 9948 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
12:17:05.0244 9948 WANARP - ok
12:17:05.0248 9948 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
12:17:05.0249 9948 Wanarpv6 - ok
12:17:05.0344 9948 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
12:17:05.0356 9948 WatAdminSvc - ok
12:17:05.0436 9948 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
12:17:05.0452 9948 wbengine - ok
12:17:05.0518 9948 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
12:17:05.0521 9948 WbioSrvc - ok
12:17:05.0563 9948 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
12:17:05.0568 9948 wcncsvc - ok
12:17:05.0575 9948 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
12:17:05.0591 9948 WcsPlugInService - ok
12:17:05.0622 9948 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
12:17:05.0623 9948 Wd - ok
12:17:05.0765 9948 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
12:17:05.0782 9948 Wdf01000 - ok
12:17:05.0799 9948 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
12:17:05.0801 9948 WdiServiceHost - ok
12:17:05.0805 9948 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
12:17:05.0807 9948 WdiSystemHost - ok
12:17:05.0848 9948 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
12:17:05.0852 9948 WebClient - ok
12:17:05.0893 9948 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
12:17:05.0897 9948 Wecsvc - ok
12:17:05.0938 9948 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
12:17:05.0975 9948 wercplsupport - ok
12:17:06.0031 9948 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
12:17:06.0034 9948 WerSvc - ok
12:17:06.0183 9948 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
12:17:06.0184 9948 WfpLwf - ok
12:17:06.0211 9948 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
12:17:06.0214 9948 WIMMount - ok
12:17:06.0294 9948 WinDefend - ok
12:17:06.0300 9948 WinHttpAutoProxySvc - ok
12:17:06.0408 9948 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
12:17:06.0432 9948 Winmgmt - ok
12:17:06.0523 9948 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
12:17:06.0541 9948 WinRM - ok
12:17:06.0658 9948 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
12:17:06.0667 9948 Wlansvc - ok
12:17:06.0878 9948 wlidsvc (98f138897ef4246381d197cb81846d62) c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:17:06.0898 9948 wlidsvc - ok
12:17:07.0011 9948 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
12:17:07.0012 9948 WmiAcpi - ok
12:17:07.0102 9948 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
12:17:07.0226 9948 wmiApSrv - ok
12:17:07.0307 9948 WMPNetworkSvc - ok
12:17:07.0323 9948 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
12:17:07.0325 9948 WPCSvc - ok
12:17:07.0342 9948 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
12:17:07.0344 9948 WPDBusEnum - ok
12:17:07.0364 9948 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
12:17:07.0365 9948 ws2ifsl - ok
12:17:07.0386 9948 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
12:17:07.0389 9948 wscsvc - ok
12:17:07.0392 9948 WSearch - ok
12:17:07.0525 9948 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
12:17:07.0547 9948 wuauserv - ok
12:17:07.0625 9948 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
12:17:07.0627 9948 WudfPf - ok
12:17:07.0668 9948 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:17:07.0671 9948 WUDFRd - ok
12:17:07.0692 9948 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
12:17:07.0694 9948 wudfsvc - ok
12:17:07.0707 9948 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
12:17:07.0738 9948 WwanSvc - ok
12:17:07.0810 9948 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
12:17:08.0327 9948 \Device\Harddisk0\DR0 - ok
12:17:08.0330 9948 Boot (0x1200) (339747aeb0076ba5ae49411be5bc3249) \Device\Harddisk0\DR0\Partition0
12:17:08.0331 9948 \Device\Harddisk0\DR0\Partition0 - ok
12:17:08.0364 9948 Boot (0x1200) (f262f93e5a664cd04b2611e91644ac11) \Device\Harddisk0\DR0\Partition1
12:17:08.0366 9948 \Device\Harddisk0\DR0\Partition1 - ok
12:17:08.0366 9948 ============================================================
12:17:08.0366 9948 Scan finished
12:17:08.0366 9948 ============================================================
12:17:08.0378 7580 Detected object count: 1
12:17:08.0378 7580 Actual detected object count: 1
12:17:15.0459 7580 sptd ( LockedFile.Multi.Generic ) - skipped by user
12:17:15.0459 7580 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
12:17:43.0005 5944 ============================================================
12:17:43.0005 5944 Scan started
12:17:43.0005 5944 Mode: Manual; TDLFS;
12:17:43.0005 5944 ============================================================
12:17:45.0210 5944 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
12:17:45.0211 5944 1394ohci - ok
12:17:45.0250 5944 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
12:17:45.0252 5944 ACPI - ok
12:17:45.0266 5944 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
12:17:45.0267 5944 AcpiPmi - ok
12:17:45.0545 5944 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
12:17:45.0547 5944 adp94xx - ok
12:17:45.0754 5944 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
12:17:45.0756 5944 adpahci - ok
12:17:45.0816 5944 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
12:17:45.0818 5944 adpu320 - ok
12:17:45.0894 5944 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
12:17:45.0895 5944 AeLookupSvc - ok
12:17:46.0005 5944 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
12:17:46.0008 5944 AFD - ok
12:17:46.0042 5944 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
12:17:46.0043 5944 agp440 - ok
12:17:46.0184 5944 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
12:17:46.0184 5944 ALG - ok
12:17:46.0188 5944 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
12:17:46.0188 5944 aliide - ok
12:17:46.0243 5944 AMD External Events Utility (a2f5bea5b45a8e7c4776f39c25e8699d) C:\Windows\system32\atiesrxx.exe
12:17:46.0244 5944 AMD External Events Utility - ok
12:17:46.0289 5944 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
12:17:46.0290 5944 amdide - ok
12:17:46.0310 5944 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
12:17:46.0310 5944 amdiox64 - ok
12:17:46.0316 5944 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
12:17:46.0316 5944 AmdK8 - ok
12:17:47.0995 5944 amdkmdag (5b03217859b014b090cb5060c1d96875) C:\Windows\system32\DRIVERS\atikmdag.sys
12:17:48.0040 5944 amdkmdag - ok
12:17:48.0238 5944 amdkmdap (35d2184a99ad4cd5d17284d6c9f382c9) C:\Windows\system32\DRIVERS\atikmpag.sys
12:17:48.0243 5944 amdkmdap - ok
12:17:48.0296 5944 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
12:17:48.0297 5944 AmdPPM - ok
12:17:48.0369 5944 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
12:17:48.0370 5944 amdsata - ok
12:17:48.0386 5944 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
12:17:48.0387 5944 amdsbs - ok
12:17:48.0402 5944 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
12:17:48.0402 5944 amdxata - ok
12:17:48.0418 5944 AODDriver4.0 - ok
12:17:48.0424 5944 AODDriver4.01 - ok
12:17:48.0432 5944 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
12:17:48.0433 5944 AppID - ok
12:17:48.0452 5944 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
12:17:48.0453 5944 AppIDSvc - ok
12:17:48.0469 5944 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
12:17:48.0470 5944 Appinfo - ok
12:17:48.0476 5944 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
12:17:48.0477 5944 arc - ok
12:17:48.0488 5944 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
12:17:48.0489 5944 arcsas - ok
12:17:48.0497 5944 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
12:17:48.0498 5944 AsyncMac - ok
12:17:48.0503 5944 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
12:17:48.0503 5944 atapi - ok
12:17:48.0551 5944 AtiHDAudioService (dbb487d09f56c674430ac454fd8bcab9) C:\Windows\system32\drivers\AtihdW76.sys
12:17:48.0555 5944 AtiHDAudioService - ok
12:17:48.0603 5944 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
12:17:48.0608 5944 AudioEndpointBuilder - ok
12:17:48.0616 5944 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
12:17:48.0621 5944 AudioSrv - ok
12:17:48.0630 5944 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
12:17:48.0631 5944 AxInstSV - ok
12:17:48.0663 5944 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
12:17:48.0666 5944 b06bdrv - ok
12:17:48.0683 5944 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
12:17:48.0684 5944 b57nd60a - ok
12:17:48.0867 5944 Bandoo Coordinator (afa0e803a7c009eb454cd35f26b1e828) C:\PROGRA~2\Bandoo\Bandoo.exe
12:17:48.0883 5944 Bandoo Coordinator - ok
12:17:48.0995 5944 BBSvc (01a24b415926bb5f772dbe12459d97de) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
12:17:48.0999 5944 BBSvc - ok
12:17:49.0102 5944 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
12:17:49.0106 5944 BBUpdate - ok
12:17:49.0222 5944 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
12:17:49.0225 5944 BDESVC - ok
12:17:49.0254 5944 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
12:17:49.0254 5944 Beep - ok
12:17:49.0295 5944 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
12:17:49.0300 5944 BFE - ok
12:17:49.0353 5944 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
12:17:49.0361 5944 BITS - ok
12:17:49.0375 5944 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
12:17:49.0376 5944 blbdrive - ok
12:17:49.0397 5944 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
12:17:49.0398 5944 bowser - ok
12:17:49.0411 5944 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:17:49.0412 5944 BrFiltLo - ok
12:17:49.0415 5944 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:17:49.0416 5944 BrFiltUp - ok
12:17:49.0427 5944 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
12:17:49.0428 5944 Browser - ok
12:17:49.0443 5944 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
12:17:49.0445 5944 Brserid - ok
12:17:49.0451 5944 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
12:17:49.0451 5944 BrSerWdm - ok
12:17:49.0455 5944 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
12:17:49.0456 5944 BrUsbMdm - ok
12:17:49.0463 5944 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
12:17:49.0463 5944 BrUsbSer - ok
12:17:49.0471 5944 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
12:17:49.0472 5944 BTHMODEM - ok
12:17:49.0491 5944 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
12:17:49.0492 5944 bthserv - ok
12:17:49.0503 5944 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
12:17:49.0503 5944 cdfs - ok
12:17:49.0533 5944 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
12:17:49.0534 5944 cdrom - ok
12:17:49.0552 5944 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
12:17:49.0553 5944 CertPropSvc - ok
12:17:49.0557 5944 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
12:17:49.0558 5944 circlass - ok
12:17:49.0578 5944 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
12:17:49.0580 5944 CLFS - ok
12:17:49.0649 5944 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:17:49.0651 5944 clr_optimization_v2.0.50727_32 - ok
12:17:49.0684 5944 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:17:49.0686 5944 clr_optimization_v2.0.50727_64 - ok
12:17:49.0729 5944 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:17:49.0730 5944 clr_optimization_v4.0.30319_32 - ok
12:17:49.0762 5944 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:17:49.0763 5944 clr_optimization_v4.0.30319_64 - ok
12:17:49.0814 5944 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
12:17:49.0815 5944 CmBatt - ok
12:17:49.0824 5944 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
12:17:49.0824 5944 cmdide - ok
12:17:49.0892 5944 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
12:17:49.0894 5944 CNG - ok
12:17:49.0904 5944 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
12:17:49.0904 5944 Compbatt - ok
12:17:49.0918 5944 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
12:17:49.0918 5944 CompositeBus - ok
12:17:49.0921 5944 COMSysApp - ok
12:17:49.0945 5944 cpuz135 (262969a3fab32b9e17e63e2d17a57744) C:\Windows\system32\drivers\cpuz135_x64.sys
12:17:49.0945 5944 cpuz135 - ok
12:17:49.0949 5944 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
12:17:49.0949 5944 crcdisk - ok
12:17:49.0986 5944 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
12:17:49.0987 5944 CryptSvc - ok
12:17:50.0045 5944 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
12:17:50.0056 5944 DcomLaunch - ok
12:17:50.0100 5944 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
12:17:50.0105 5944 defragsvc - ok
12:17:50.0149 5944 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
12:17:50.0151 5944 DfsC - ok
12:17:50.0173 5944 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
12:17:50.0176 5944 Dhcp - ok
12:17:50.0188 5944 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
12:17:50.0189 5944 discache - ok
12:17:50.0213 5944 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
12:17:50.0214 5944 Disk - ok
12:17:50.0239 5944 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
12:17:50.0241 5944 Dnscache - ok
12:17:50.0283 5944 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
12:17:50.0285 5944 dot3svc - ok
12:17:50.0295 5944 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
12:17:50.0296 5944 DPS - ok
12:17:50.0310 5944 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
12:17:50.0311 5944 drmkaud - ok
12:17:50.0368 5944 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
12:17:50.0380 5944 DXGKrnl - ok
12:17:50.0400 5944 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
12:17:50.0402 5944 EapHost - ok
12:17:50.0547 5944 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
12:17:50.0572 5944 ebdrv - ok
12:17:50.0577 5944 ECSIoDriver_1_1_0_0 - ok
12:17:50.0682 5944 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
12:17:50.0685 5944 EFS - ok
12:17:50.0764 5944 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
12:17:50.0769 5944 ehRecvr - ok
12:17:50.0789 5944 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
12:17:50.0790 5944 ehSched - ok
12:17:50.0854 5944 ElbyCDIO (a05fc7eca0966ebb70e4d17b855a853b) C:\Windows\system32\Drivers\ElbyCDIO.sys
12:17:50.0855 5944 ElbyCDIO - ok
12:17:50.0947 5944 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
12:17:50.0955 5944 elxstor - ok
12:17:50.0964 5944 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
12:17:50.0965 5944 ErrDev - ok
12:17:51.0014 5944 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
12:17:51.0018 5944 EventSystem - ok
12:17:51.0034 5944 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
12:17:51.0035 5944 exfat - ok
12:17:51.0052 5944 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
12:17:51.0054 5944 fastfat - ok
12:17:51.0097 5944 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
12:17:51.0103 5944 Fax - ok
12:17:51.0108 5944 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
12:17:51.0109 5944 fdc - ok
12:17:51.0118 5944 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
12:17:51.0119 5944 fdPHost - ok
12:17:51.0131 5944 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
12:17:51.0132 5944 FDResPub - ok
12:17:51.0148 5944 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
12:17:51.0149 5944 FileInfo - ok
12:17:51.0161 5944 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
12:17:51.0161 5944 Filetrace - ok
12:17:51.0165 5944 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
12:17:51.0165 5944 flpydisk - ok
12:17:51.0180 5944 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
12:17:51.0182 5944 FltMgr - ok
12:17:51.0274 5944 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
12:17:51.0285 5944 FontCache - ok
12:17:51.0330 5944 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:17:51.0331 5944 FontCache3.0.0.0 - ok
12:17:51.0365 5944 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
12:17:51.0366 5944 FsDepends - ok
12:17:51.0390 5944 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
12:17:51.0390 5944 fssfltr - ok
12:17:51.0522 5944 fsssvc (206ad9a89bf05dfa1621f1fc7b82592d) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
12:17:51.0533 5944 fsssvc - ok
12:17:51.0566 5944 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
12:17:51.0567 5944 Fs_Rec - ok
12:17:51.0605 5944 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
12:17:51.0609 5944 fvevol - ok
12:17:51.0639 5944 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
12:17:51.0641 5944 gagp30kx - ok
12:17:51.0706 5944 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
12:17:51.0719 5944 gpsvc - ok
12:17:51.0874 5944 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:17:51.0875 5944 gupdate - ok
12:17:51.0876 5944 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:17:51.0877 5944 gupdatem - ok
12:17:51.0920 5944 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
12:17:51.0924 5944 gusvc - ok
12:17:51.0962 5944 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
12:17:51.0963 5944 hamachi - ok
12:17:52.0146 5944 Hamachi2Svc (d483dbaef409e8ab7477c28615fcd853) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
12:17:52.0163 5944 Hamachi2Svc - ok
12:17:52.0270 5944 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
12:17:52.0271 5944 hcw85cir - ok
12:17:52.0298 5944 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
12:17:52.0301 5944 HdAudAddService - ok
12:17:52.0314 5944 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
12:17:52.0315 5944 HDAudBus - ok
12:17:52.0320 5944 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
12:17:52.0321 5944 HidBatt - ok
12:17:52.0329 5944 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
12:17:52.0330 5944 HidBth - ok
12:17:52.0335 5944 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
12:17:52.0336 5944 HidIr - ok
12:17:52.0358 5944 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
12:17:52.0359 5944 hidserv - ok
12:17:52.0374 5944 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
12:17:52.0374 5944 HidUsb - ok
12:17:52.0393 5944 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
12:17:52.0395 5944 hkmsvc - ok
12:17:52.0416 5944 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
12:17:52.0419 5944 HomeGroupListener - ok
12:17:52.0443 5944 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
12:17:52.0446 5944 HomeGroupProvider - ok
12:17:52.0453 5944 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
12:17:52.0454 5944 HpSAMD - ok
12:17:52.0499 5944 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
12:17:52.0505 5944 HTTP - ok
12:17:52.0589 5944 HWiNFO32 (160bab05a99fcf8fd77153371644546f) C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS
12:17:52.0590 5944 HWiNFO32 - ok
12:17:52.0598 5944 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
12:17:52.0599 5944 hwpolicy - ok
12:17:52.0626 5944 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
12:17:52.0628 5944 i8042prt - ok
12:17:52.0681 5944 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
12:17:52.0685 5944 iaStorV - ok
12:17:52.0779 5944 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:17:52.0786 5944 idsvc - ok
12:17:52.0803 5944 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
12:17:52.0804 5944 iirsp - ok
12:17:52.0862 5944 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
12:17:52.0867 5944 IKEEXT - ok
12:17:53.0053 5944 IntcAzAudAddService (13089f31aa37cde1ce3784ee01a48484) C:\Windows\system32\drivers\RTKVHD64.sys
12:17:53.0071 5944 IntcAzAudAddService - ok
12:17:53.0171 5944 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
12:17:53.0172 5944 intelide - ok
12:17:53.0182 5944 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
12:17:53.0184 5944 intelppm - ok
12:17:53.0211 5944 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
12:17:53.0213 5944 IPBusEnum - ok
12:17:53.0219 5944 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:17:53.0220 5944 IpFilterDriver - ok
12:17:53.0249 5944 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
12:17:53.0254 5944 iphlpsvc - ok
12:17:53.0261 5944 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
12:17:53.0262 5944 IPMIDRV - ok
12:17:53.0270 5944 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
12:17:53.0271 5944 IPNAT - ok
12:17:53.0281 5944 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
12:17:53.0281 5944 IRENUM - ok
12:17:53.0286 5944 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
12:17:53.0286 5944 isapnp - ok
12:17:53.0308 5944 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
12:17:53.0310 5944 iScsiPrt - ok
12:17:53.0327 5944 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
12:17:53.0327 5944 kbdclass - ok
12:17:53.0333 5944 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
12:17:53.0333 5944 kbdhid - ok
12:17:53.0364 5944 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:17:53.0365 5944 KeyIso - ok
12:17:53.0389 5944 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
12:17:53.0390 5944 KSecDD - ok
12:17:53.0418 5944 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
12:17:53.0419 5944 KSecPkg - ok
12:17:53.0440 5944 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
12:17:53.0441 5944 ksthunk - ok
12:17:53.0479 5944 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
12:17:53.0488 5944 KtmRm - ok
12:17:53.0524 5944 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
12:17:53.0528 5944 LanmanServer - ok
12:17:53.0552 5944 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
12:17:53.0555 5944 LanmanWorkstation - ok
12:17:53.0573 5944 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
12:17:53.0574 5944 lltdio - ok
12:17:53.0604 5944 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
12:17:53.0607 5944 lltdsvc - ok
12:17:53.0620 5944 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
12:17:53.0621 5944 lmhosts - ok
12:17:53.0638 5944 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
12:17:53.0639 5944 LSI_FC - ok
12:17:53.0647 5944 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
12:17:53.0648 5944 LSI_SAS - ok
12:17:53.0655 5944 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:17:53.0656 5944 LSI_SAS2 - ok
12:17:53.0664 5944 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:17:53.0665 5944 LSI_SCSI - ok
12:17:53.0681 5944 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
12:17:53.0682 5944 luafv - ok
12:17:53.0712 5944 ManyCam (d33e2b74cf8b3a652bf0a9fbd068e87a) C:\Windows\system32\DRIVERS\ManyCam_x64.sys
12:17:53.0713 5944 ManyCam - ok
12:17:53.0740 5944 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
12:17:53.0742 5944 Mcx2Svc - ok
12:17:53.0754 5944 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
12:17:53.0755 5944 megasas - ok
12:17:53.0772 5944 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
12:17:53.0773 5944 MegaSR - ok
12:17:53.0927 5944 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
12:17:53.0929 5944 Microsoft Office Groove Audit Service - ok
12:17:53.0962 5944 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
12:17:53.0966 5944 MMCSS - ok
12:17:53.0988 5944 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
12:17:53.0990 5944 Modem - ok
12:17:54.0009 5944 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
12:17:54.0010 5944 monitor - ok
12:17:54.0023 5944 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
12:17:54.0024 5944 mouclass - ok
12:17:54.0038 5944 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
12:17:54.0038 5944 mouhid - ok
12:17:54.0049 5944 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
12:17:54.0050 5944 mountmgr - ok
12:17:54.0101 5944 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
12:17:54.0105 5944 MpFilter - ok
12:17:54.0121 5944 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
12:17:54.0124 5944 mpio - ok
12:17:54.0133 5944 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
12:17:54.0134 5944 mpsdrv - ok
12:17:54.0185 5944 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
12:17:54.0192 5944 MpsSvc - ok
12:17:54.0202 5944 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
12:17:54.0203 5944 MRxDAV - ok
12:17:54.0251 5944 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:17:54.0254 5944 mrxsmb - ok
12:17:54.0306 5944 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:17:54.0311 5944 mrxsmb10 - ok
12:17:54.0333 5944 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:17:54.0336 5944 mrxsmb20 - ok
12:17:54.0364 5944 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
12:17:54.0365 5944 msahci - ok
12:17:54.0381 5944 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
12:17:54.0384 5944 msdsm - ok
12:17:54.0411 5944 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
12:17:54.0413 5944 MSDTC - ok
12:17:54.0434 5944 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
12:17:54.0434 5944 Msfs - ok
12:17:54.0441 5944 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
12:17:54.0442 5944 mshidkmdf - ok
12:17:54.0455 5944 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
12:17:54.0456 5944 msisadrv - ok
12:17:54.0481 5944 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
12:17:54.0483 5944 MSiSCSI - ok
12:17:54.0487 5944 msiserver - ok
12:17:54.0493 5944 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
12:17:54.0494 5944 MSKSSRV - ok
12:17:54.0574 5944 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:17:54.0575 5944 MsMpSvc - ok
12:17:54.0594 5944 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
12:17:54.0595 5944 MSPCLOCK - ok
12:17:54.0611 5944 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
12:17:54.0611 5944 MSPQM - ok
12:17:54.0637 5944 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
12:17:54.0640 5944 MsRPC - ok
12:17:54.0656 5944 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
12:17:54.0656 5944 mssmbios - ok
12:17:54.0660 5944 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
12:17:54.0661 5944 MSTEE - ok
12:17:54.0667 5944 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
12:17:54.0667 5944 MTConfig - ok
12:17:54.0676 5944 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
12:17:54.0677 5944 Mup - ok
12:17:54.0716 5944 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
12:17:54.0719 5944 napagent - ok
12:17:54.0737 5944 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
12:17:54.0738 5944 NativeWifiP - ok
12:17:54.0776 5944 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
12:17:54.0781 5944 NDIS - ok
12:17:54.0790 5944 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
12:17:54.0791 5944 NdisCap - ok
12:17:54.0802 5944 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
12:17:54.0802 5944 NdisTapi - ok
12:17:54.0813 5944 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
12:17:54.0813 5944 Ndisuio - ok
12:17:54.0836 5944 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
12:17:54.0837 5944 NdisWan - ok
12:17:54.0856 5944 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
12:17:54.0857 5944 NDProxy - ok
12:17:54.0870 5944 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
12:17:54.0870 5944 NetBIOS - ok
12:17:54.0886 5944 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
12:17:54.0888 5944 NetBT - ok
12:17:54.0914 5944 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:17:54.0915 5944 Netlogon - ok
12:17:54.0960 5944 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
12:17:54.0968 5944 Netman - ok
12:17:55.0000 5944 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
12:17:55.0009 5944 netprofm - ok
12:17:55.0073 5944 netr28ux (26672f93749ac9fd28da1b0f94efa78d) C:\Windows\system32\DRIVERS\netr28ux.sys
12:17:55.0080 5944 netr28ux - ok
12:17:55.0134 5944 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:17:55.0136 5944 NetTcpPortSharing - ok
12:17:55.0173 5944 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
12:17:55.0174 5944 nfrd960 - ok
12:17:55.0254 5944 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:17:55.0257 5944 NisDrv - ok
12:17:55.0507 5944 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
12:17:55.0528 5944 NisSrv - ok
12:17:56.0021 5944 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
12:17:56.0029 5944 NlaSvc - ok
12:17:56.0050 5944 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
12:17:56.0051 5944 Npfs - ok
12:17:56.0121 5944 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
12:17:56.0123 5944 nsi - ok
12:17:56.0156 5944 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
12:17:56.0157 5944 nsiproxy - ok
12:17:56.0290 5944 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
12:17:56.0302 5944 Ntfs - ok
12:17:56.0381 5944 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
12:17:56.0383 5944 Null - ok
12:17:56.0425 5944 NVENETFD (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
12:17:56.0429 5944 NVENETFD - ok
12:17:56.0458 5944 NVHDA (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
12:17:56.0459 5944 NVHDA - ok
12:17:57.0074 5944 nvlddmkm (cbf698abe989d60ec0d0b6b81ad82930) C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:17:57.0132 5944 nvlddmkm - ok
12:17:57.0259 5944 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
12:17:57.0262 5944 nvraid - ok
12:17:57.0283 5944 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
12:17:57.0286 5944 nvstor - ok
12:17:57.0416 5944 NVSvc (cce27b95d1ae8128a7e0cee0fc9ae535) C:\Windows\system32\nvvsvc.exe
12:17:57.0433 5944 NVSvc - ok
12:17:57.0641 5944 nvUpdatusService (d4f624d918686491e1b1afaf1901f457) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
12:17:57.0657 5944 nvUpdatusService - ok
12:17:57.0753 5944 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
12:17:57.0754 5944 nv_agp - ok
12:17:57.0899 5944 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:17:57.0903 5944 odserv - ok
12:17:57.0929 5944 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
12:17:57.0929 5944 ohci1394 - ok
12:17:57.0978 5944 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:17:57.0981 5944 ose - ok
12:17:58.0035 5944 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
12:17:58.0043 5944 p2pimsvc - ok
12:17:58.0087 5944 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
12:17:58.0092 5944 p2psvc - ok
12:17:58.0106 5944 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
12:17:58.0108 5944 Parport - ok
12:17:58.0144 5944 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
12:17:58.0145 5944 partmgr - ok
12:17:58.0157 5944 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
12:17:58.0159 5944 PcaSvc - ok
12:17:58.0185 5944 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
12:17:58.0186 5944 pci - ok
12:17:58.0193 5944 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
12:17:58.0193 5944 pciide - ok
12:17:58.0204 5944 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
12:17:58.0206 5944 pcmcia - ok
12:17:58.0222 5944 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
12:17:58.0222 5944 pcw - ok
12:17:58.0250 5944 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
12:17:58.0254 5944 PEAUTH - ok
12:17:58.0299 5944 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
12:17:58.0300 5944 PerfHost - ok
12:17:58.0391 5944 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
12:17:58.0414 5944 pla - ok
12:17:58.0464 5944 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
12:17:58.0469 5944 PlugPlay - ok
12:17:58.0473 5944 PnkBstrA - ok
12:17:58.0488 5944 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
12:17:58.0490 5944 PNRPAutoReg - ok
12:17:58.0509 5944 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
12:17:58.0512 5944 PNRPsvc - ok
12:17:58.0554 5944 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
12:17:58.0558 5944 PolicyAgent - ok
12:17:58.0596 5944 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
12:17:58.0601 5944 Power - ok
12:17:58.0645 5944 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
12:17:58.0647 5944 PptpMiniport - ok
12:17:58.0666 5944 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
12:17:58.0667 5944 Processor - ok
12:17:58.0698 5944 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
12:17:58.0701 5944 ProfSvc - ok
12:17:58.0741 5944 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:17:58.0742 5944 ProtectedStorage - ok
12:17:58.0765 5944 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
12:17:58.0767 5944 Psched - ok
12:17:58.0850 5944 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
12:17:58.0858 5944 ql2300 - ok
12:17:58.0941 5944 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
12:17:58.0942 5944 ql40xx - ok
12:17:58.0974 5944 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
12:17:58.0981 5944 QWAVE - ok
12:17:58.0991 5944 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
12:17:58.0992 5944 QWAVEdrv - ok
12:17:59.0006 5944 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
12:17:59.0006 5944 RasAcd - ok
12:17:59.0030 5944 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
12:17:59.0031 5944 RasAgileVpn - ok
12:17:59.0039 5944 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
12:17:59.0042 5944 RasAuto - ok
12:17:59.0059 5944 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:17:59.0060 5944 Rasl2tp - ok
12:17:59.0083 5944 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
12:17:59.0087 5944 RasMan - ok
12:17:59.0095 5944 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
12:17:59.0096 5944 RasPppoe - ok
12:17:59.0102 5944 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
12:17:59.0103 5944 RasSstp - ok
12:17:59.0119 5944 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
12:17:59.0120 5944 rdbss - ok
12:17:59.0132 5944 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
12:17:59.0133 5944 rdpbus - ok
12:17:59.0145 5944 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:17:59.0145 5944 RDPCDD - ok
12:17:59.0157 5944 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
12:17:59.0158 5944 RDPENCDD - ok
12:17:59.0162 5944 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
12:17:59.0163 5944 RDPREFMP - ok
12:17:59.0193 5944 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
12:17:59.0195 5944 RDPWD - ok
12:17:59.0223 5944 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
12:17:59.0227 5944 rdyboost - ok
12:17:59.0252 5944 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
12:17:59.0256 5944 RemoteAccess - ok
12:17:59.0274 5944 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
12:17:59.0281 5944 RemoteRegistry - ok
12:17:59.0291 5944 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
12:17:59.0294 5944 RpcEptMapper - ok
12:17:59.0314 5944 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
12:17:59.0315 5944 RpcLocator - ok
12:17:59.0347 5944 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
12:17:59.0352 5944 RpcSs - ok
12:17:59.0364 5944 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
12:17:59.0365 5944 rspndr - ok
12:17:59.0381 5944 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
12:17:59.0382 5944 RTL8167 - ok
12:17:59.0415 5944 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:17:59.0416 5944 SamSs - ok
12:17:59.0424 5944 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
12:17:59.0425 5944 sbp2port - ok
12:17:59.0438 5944 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
12:17:59.0441 5944 SCardSvr - ok
12:17:59.0472 5944 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
12:17:59.0473 5944 scfilter - ok
12:17:59.0533 5944 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
12:17:59.0543 5944 Schedule - ok
12:17:59.0562 5944 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
12:17:59.0563 5944 SCPolicySvc - ok
12:17:59.0594 5944 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
12:17:59.0597 5944 SDRSVC - ok
12:17:59.0619 5944 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
12:17:59.0620 5944 secdrv - ok
12:17:59.0630 5944 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
12:17:59.0632 5944 seclogon - ok
12:17:59.0639 5944 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
12:17:59.0641 5944 SENS - ok
12:17:59.0651 5944 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
12:17:59.0652 5944 SensrSvc - ok
12:17:59.0665 5944 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
12:17:59.0666 5944 Serenum - ok
12:17:59.0690 5944 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
12:17:59.0691 5944 Serial - ok
12:17:59.0707 5944 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
12:17:59.0708 5944 sermouse - ok
12:17:59.0721 5944 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
12:17:59.0722 5944 SessionEnv - ok
12:17:59.0726 5944 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
12:17:59.0726 5944 sffdisk - ok
12:17:59.0730 5944 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
12:17:59.0731 5944 sffp_mmc - ok
12:17:59.0747 5944 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
12:17:59.0747 5944 sffp_sd - ok
12:17:59.0750 5944 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
12:17:59.0751 5944 sfloppy - ok
12:17:59.0780 5944 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
12:17:59.0783 5944 SharedAccess - ok
12:17:59.0810 5944 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
12:17:59.0813 5944 ShellHWDetection - ok
12:17:59.0818 5944 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:17:59.0819 5944 SiSRaid2 - ok
12:17:59.0826 5944 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
12:17:59.0827 5944 SiSRaid4 - ok
12:17:59.0835 5944 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
12:17:59.0836 5944 Smb - ok
12:17:59.0858 5944 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
12:17:59.0860 5944 SNMPTRAP - ok
12:17:59.0864 5944 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
12:17:59.0864 5944 spldr - ok
12:17:59.0910 5944 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
12:17:59.0913 5944 Spooler - ok
12:18:00.0078 5944 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
12:18:00.0102 5944 sppsvc - ok
12:18:00.0164 5944 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
12:18:00.0169 5944 sppuinotify - ok
12:18:00.0247 5944 sptd (a6cff1af7664627a296b6a0a96cf876e) C:\Windows\System32\Drivers\sptd.sys
12:18:00.0248 5944 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: a6cff1af7664627a296b6a0a96cf876e
12:18:00.0251 5944 sptd ( LockedFile.Multi.Generic ) - warning
12:18:00.0251 5944 sptd - detected LockedFile.Multi.Generic (1)
12:18:00.0316 5944 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
12:18:00.0323 5944 srv - ok
12:18:00.0358 5944 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
12:18:00.0361 5944 srv2 - ok
12:18:00.0382 5944 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
12:18:00.0383 5944 srvnet - ok
12:18:00.0402 5944 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
12:18:00.0405 5944 SSDPSRV - ok
12:18:00.0422 5944 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
12:18:00.0424 5944 SstpSvc - ok
12:18:00.0545 5944 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
12:18:00.0551 5944 StarWindServiceAE - ok
12:18:00.0566 5944 Steam Client Service - ok
12:18:00.0666 5944 Stereo Service (2a3a44dfa9bb1ba65057a99966edfe56) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
12:18:00.0669 5944 Stereo Service - ok
12:18:00.0692 5944 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
12:18:00.0692 5944 stexstor - ok
12:18:00.0744 5944 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
12:18:00.0757 5944 stisvc - ok
12:18:00.0772 5944 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
12:18:00.0772 5944 swenum - ok
12:18:00.0811 5944 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
12:18:00.0817 5944 swprv - ok
12:18:00.0907 5944 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
12:18:00.0917 5944 SysMain - ok
12:18:00.0973 5944 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
12:18:00.0975 5944 TabletInputService - ok
12:18:00.0990 5944 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
12:18:00.0992 5944 TapiSrv - ok
12:18:01.0001 5944 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
12:18:01.0003 5944 TBS - ok
12:18:01.0360 5944 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
12:18:01.0374 5944 Tcpip - ok
12:18:01.0497 5944 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
12:18:01.0514 5944 TCPIP6 - ok
12:18:01.0566 5944 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
12:18:01.0567 5944 tcpipreg - ok
12:18:01.0589 5944 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
12:18:01.0590 5944 TDPIPE - ok
12:18:01.0616 5944 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
12:18:01.0617 5944 TDTCP - ok
12:18:01.0638 5944 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
12:18:01.0639 5944 tdx - ok
12:18:01.0654 5944 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
12:18:01.0655 5944 TermDD - ok
12:18:01.0699 5944 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
12:18:01.0706 5944 TermService - ok
12:18:01.0721 5944 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
12:18:01.0723 5944 Themes - ok
12:18:01.0745 5944 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
12:18:01.0746 5944 THREADORDER - ok
12:18:01.0764 5944 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
12:18:01.0766 5944 TrkWks - ok
12:18:01.0806 5944 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
12:18:01.0808 5944 TrustedInstaller - ok
12:18:01.0820 5944 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:18:01.0820 5944 tssecsrv - ok
12:18:01.0836 5944 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
12:18:01.0837 5944 tunnel - ok
12:18:01.0847 5944 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
12:18:01.0848 5944 uagp35 - ok
12:18:01.0888 5944 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
12:18:01.0890 5944 udfs - ok
12:18:01.0911 5944 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
12:18:01.0913 5944 UI0Detect - ok
12:18:01.0927 5944 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
12:18:01.0928 5944 uliagpkx - ok
12:18:01.0951 5944 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
12:18:01.0951 5944 umbus - ok
12:18:01.0954 5944 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
12:18:01.0955 5944 UmPass - ok
12:18:01.0994 5944 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
12:18:01.0997 5944 upnphost - ok
12:18:02.0051 5944 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
12:18:02.0054 5944 usbaudio - ok
12:18:02.0090 5944 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
12:18:02.0093 5944 usbccgp - ok
12:18:02.0119 5944 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
12:18:02.0121 5944 usbcir - ok
12:18:02.0151 5944 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
12:18:02.0153 5944 usbehci - ok
12:18:02.0193 5944 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
12:18:02.0199 5944 usbhub - ok
12:18:02.0214 5944 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
12:18:02.0216 5944 usbohci - ok
12:18:02.0235 5944 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
12:18:02.0236 5944 usbprint - ok
12:18:02.0273 5944 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:18:02.0274 5944 USBSTOR - ok
12:18:02.0290 5944 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
12:18:02.0291 5944 usbuhci - ok
12:18:02.0310 5944 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
12:18:02.0312 5944 UxSms - ok
12:18:02.0357 5944 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:18:02.0360 5944 VaultSvc - ok
12:18:02.0393 5944 VClone (fd911873c0bb6945fa38c16e9a2b58f9) C:\Windows\system32\DRIVERS\VClone.sys
12:18:02.0395 5944 VClone - ok
12:18:02.0429 5944 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
12:18:02.0430 5944 vdrvroot - ok
12:18:02.0465 5944 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
12:18:02.0471 5944 vds - ok
12:18:02.0480 5944 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
12:18:02.0481 5944 vga - ok
12:18:02.0492 5944 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
12:18:02.0492 5944 VgaSave - ok
12:18:02.0505 5944 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
12:18:02.0507 5944 vhdmp - ok
12:18:02.0510 5944 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
12:18:02.0511 5944 viaide - ok
12:18:02.0524 5944 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
12:18:02.0525 5944 volmgr - ok
12:18:02.0543 5944 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
12:18:02.0545 5944 volmgrx - ok
12:18:02.0559 5944 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
12:18:02.0560 5944 volsnap - ok
12:18:02.0577 5944 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
12:18:02.0578 5944 vsmraid - ok
12:18:02.0666 5944 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
12:18:02.0684 5944 VSS - ok
12:18:02.0756 5944 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
12:18:02.0758 5944 vwifibus - ok
12:18:02.0773 5944 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
12:18:02.0775 5944 vwififlt - ok
12:18:02.0805 5944 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
12:18:02.0810 5944 W32Time - ok
12:18:02.0818 5944 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
12:18:02.0819 5944 WacomPen - ok
12:18:02.0847 5944 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
12:18:02.0848 5944 WANARP - ok
12:18:02.0852 5944 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
12:18:02.0853 5944 Wanarpv6 - ok
12:18:02.0927 5944 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
12:18:02.0936 5944 WatAdminSvc - ok
12:18:03.0009 5944 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
12:18:03.0017 5944 wbengine - ok
12:18:03.0083 5944 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
12:18:03.0090 5944 WbioSrvc - ok
12:18:03.0118 5944 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
12:18:03.0122 5944 wcncsvc - ok
12:18:03.0129 5944 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
12:18:03.0130 5944 WcsPlugInService - ok
12:18:03.0159 5944 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
12:18:03.0160 5944 Wd - ok
12:18:03.0194 5944 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
12:18:03.0197 5944 Wdf01000 - ok
12:18:03.0204 5944 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
12:18:03.0205 5944 WdiServiceHost - ok
12:18:03.0208 5944 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
12:18:03.0210 5944 WdiSystemHost - ok
12:18:03.0237 5944 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
12:18:03.0239 5944 WebClient - ok
12:18:03.0273 5944 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
12:18:03.0275 5944 Wecsvc - ok
12:18:03.0281 5944 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
12:18:03.0283 5944 wercplsupport - ok
12:18:03.0289 5944 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
12:18:03.0291 5944 WerSvc - ok
12:18:03.0311 5944 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
12:18:03.0312 5944 WfpLwf - ok
12:18:03.0323 5944 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
12:18:03.0324 5944 WIMMount - ok
12:18:03.0382 5944 WinDefend - ok
12:18:03.0397 5944 WinHttpAutoProxySvc - ok
12:18:03.0458 5944 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
12:18:03.0462 5944 Winmgmt - ok
12:18:03.0573 5944 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
12:18:03.0585 5944 WinRM - ok
12:18:03.0684 5944 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
12:18:03.0700 5944 Wlansvc - ok
12:18:03.0859 5944 wlidsvc (98f138897ef4246381d197cb81846d62) c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:18:03.0870 5944 wlidsvc - ok
12:18:03.0957 5944 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
12:18:03.0957 5944 WmiAcpi - ok
12:18:04.0005 5944 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
12:18:04.0006 5944 wmiApSrv - ok
12:18:04.0069 5944 WMPNetworkSvc - ok
12:18:04.0086 5944 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
12:18:04.0087 5944 WPCSvc - ok
12:18:04.0104 5944 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
12:18:04.0106 5944 WPDBusEnum - ok
12:18:04.0118 5944 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
12:18:04.0119 5944 ws2ifsl - ok
12:18:04.0140 5944 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
12:18:04.0142 5944 wscsvc - ok
12:18:04.0145 5944 WSearch - ok
12:18:04.0299 5944 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
12:18:04.0318 5944 wuauserv - ok
12:18:04.0406 5944 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
12:18:04.0409 5944 WudfPf - ok
12:18:04.0434 5944 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:18:04.0437 5944 WUDFRd - ok
12:18:04.0465 5944 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
12:18:04.0470 5944 wudfsvc - ok
12:18:04.0492 5944 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
12:18:04.0500 5944 WwanSvc - ok
12:18:04.0531 5944 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
12:18:04.0798 5944 \Device\Harddisk0\DR0 - ok
12:18:04.0805 5944 Boot (0x1200) (339747aeb0076ba5ae49411be5bc3249) \Device\Harddisk0\DR0\Partition0
12:18:04.0808 5944 \Device\Harddisk0\DR0\Partition0 - ok
12:18:04.0835 5944 Boot (0x1200) (f262f93e5a664cd04b2611e91644ac11) \Device\Harddisk0\DR0\Partition1
12:18:04.0839 5944 \Device\Harddisk0\DR0\Partition1 - ok
12:18:04.0840 5944 ============================================================
12:18:04.0840 5944 Scan finished
12:18:04.0840 5944 ============================================================
12:18:04.0861 9704 Detected object count: 1
12:18:04.0862 9704 Actual detected object count: 1

#4 eric123123123

eric123123123
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:11:47 AM

Posted 18 July 2012 - 12:56 PM

ASW results:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-18 12:16:46
-----------------------------
12:16:46.638 OS Version: Windows x64 6.1.7600
12:16:46.639 Number of processors: 4 586 0x503
12:16:46.642 ComputerName: ERIC-PC UserName: Eric
12:16:52.316 Initialize success
12:17:47.811 AVAST engine defs: 12071800
12:20:19.278 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000065
12:20:19.283 Disk 0 Vendor: Hitachi_ JP4O Size: 953869MB BusType: 3
12:20:19.343 Disk 0 MBR read successfully
12:20:19.349 Disk 0 MBR scan
12:20:19.431 Disk 0 Windows 7 default MBR code
12:20:19.433 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
12:20:19.486 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953767 MB offset 206848
12:20:19.714 Disk 0 scanning C:\Windows\system32\drivers
12:20:51.425 Service scanning
12:21:17.761 Service ECSIoDriver_1_1_0_0 D:\ECSIoDriverX64.sys **LOCKED** 21
12:22:17.246 Modules scanning
12:22:17.251 Disk 0 trace - called modules:
12:22:17.274 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80039a42c0]<<sptd.sys storport.sys hal.dll nvstor.sys
12:22:17.279 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004679060]
12:22:17.283 3 CLASSPNP.SYS[fffff880013a543f] -> nt!IofCallDriver -> [0xfffffa80043d2230]
12:22:17.288 5 ACPI.sys[fffff8800117f781] -> nt!IofCallDriver -> \Device\00000065[0xfffffa80043e5060]
12:22:17.292 \Driver\nvstor[0xfffffa80043cd3b0] -> IRP_MJ_CREATE -> 0xfffffa80039a42c0
12:22:28.954 AVAST engine scan C:\Windows
12:22:51.514 AVAST engine scan C:\Windows\system32
12:35:51.159 AVAST engine scan C:\Windows\system32\drivers
12:38:14.149 AVAST engine scan C:\Users\Eric
12:40:20.289 File: C:\Users\Eric\AppData\Local\Google\Geckofx\oagtmf.dll **INFECTED** Win32:Malware-gen
13:31:53.682 AVAST engine scan C:\ProgramData
13:34:01.962 Scan finished successfully
13:55:49.662 Disk 0 MBR has been saved successfully to "C:\Users\Eric\Documents\MBR.dat"
13:55:49.740 The log file has been saved successfully to "C:\Users\Eric\Documents\aswMBR.txt"

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:47 AM

Posted 18 July 2012 - 02:44 PM

ESET log?

#6 eric123123123

eric123123123
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:11:47 AM

Posted 18 July 2012 - 04:08 PM

ESET:

C:\Program Files (x86)\Bandoo\InstallerHelper.dll probably a variant of Win32/Adware.Bandoo.AA application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\ZugoInstaller.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Program Files (x86)\HyperCam Toolbar\UninstallToolbar.exe Win32/Somoto application cleaned by deleting - quarantined
C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe a variant of Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Users\Eric\AppData\Local\Google\Geckofx\oagtmf.dll a variant of Win32/Kryptik.AIGL trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Eric\AppData\Local\Temp\BandooV6.exe probably a variant of Win32/Adware.Bandoo.AA application cleaned by deleting - quarantined
C:\Users\Eric\AppData\Local\Temp\HyperCam.exe Win32/Somoto application cleaned by deleting - quarantined
C:\Users\Eric\AppData\Local\Temp\NODF391.tmp a variant of Win32/Kryptik.AIGL trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Eric\AppData\Local\Temp\nss25C4.tmp.exe probably a variant of Win32/Adware.Bandoo.AA application cleaned by deleting - quarantined
C:\Users\Eric\AppData\Local\Temp\nsu7318.tmp.exe probably a variant of Win32/Adware.Bandoo.AA application cleaned by deleting - quarantined
C:\Users\Eric\AppData\Local\Temp\BandooFiles\files.exe probably a variant of Win32/Adware.Bandoo.AA application deleted - quarantined
C:\Users\Eric\AppData\Local\Temp\BandooFiles\Bin\InstallerHelper.dll probably a variant of Win32/Adware.Bandoo.AA application cleaned by deleting - quarantined
C:\Users\Eric\Downloads\FreeYouTubeDownloaderSetup.exe multiple threats cleaned by deleting - quarantined

Thanks for help and sorry for late reply i was on vacation. And ESET took the longest to scan so I posted it afterwards because it was still scanning while the other 2 were done.

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:47 AM

Posted 18 July 2012 - 04:12 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Create a restore point before trying this

Download

adware cleaner

Launch it click on Delete

post the generated log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users