Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Sirefef infection


  • Please log in to reply
9 replies to this topic

#1 theatroN

theatroN

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:48 AM

Posted 17 July 2012 - 02:37 AM

Hey guys

I recently found out that I was infected with the Sirefef virus, and after some googling I actually found a thread on this forum where a user was guided to removal of this virus from his PC. I followed these instructions and scanned my pc with all of the listed programs, several times, and removed what seemed to be a lot of infected files. STILL, I get the same message after booting my pc, "Windows has encountered a critical problem and will restart automatically in one minute."

So this is the thread where I followed the instructions provided for removal, http://www.bleepingcomputer.com/forums/topic456396.html.

Any help would be greatly appreciated. :)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 17 July 2012 - 06:36 AM

Boot into safemode with networking and let me know if you have the same error message.

#3 theatroN

theatroN
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:48 AM

Posted 17 July 2012 - 06:54 AM

The message does not appear when in Safe mode with networking. I only scanned and focused on my C: drive, but I have 2 other harddrives that contain mostly music, pictures, and videos.

Will scan my two other harddrives with Malwarebytes and ETES, and see if that solves the problem. :)

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 17 July 2012 - 06:55 AM

Malwarebytes will not remove the infection.

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#5 theatroN

theatroN
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:48 AM

Posted 17 July 2012 - 10:43 AM

TDSSkiller log:

14:05:44.0958 1348 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
14:05:45.0052 1348 ============================================================
14:05:45.0052 1348 Current date / time: 2012/07/17 14:05:45.0052
14:05:45.0052 1348 SystemInfo:
14:05:45.0052 1348
14:05:45.0052 1348 OS Version: 6.1.7600 ServicePack: 0.0
14:05:45.0052 1348 Product type: Workstation
14:05:45.0052 1348 ComputerName: AWESOMO-0
14:05:45.0052 1348 UserName: Malte
14:05:45.0052 1348 Windows directory: C:\Windows
14:05:45.0052 1348 System windows directory: C:\Windows
14:05:45.0052 1348 Running under WOW64
14:05:45.0052 1348 Processor architecture: Intel x64
14:05:45.0052 1348 Number of processors: 8
14:05:45.0052 1348 Page size: 0x1000
14:05:45.0052 1348 Boot type: Safe boot with network
14:05:45.0052 1348 ============================================================
14:05:46.0378 1348 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:05:46.0394 1348 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:05:46.0409 1348 Drive \Device\Harddisk2\DR2 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:05:46.0409 1348 ============================================================
14:05:46.0409 1348 \Device\Harddisk0\DR0:
14:05:46.0409 1348 MBR partitions:
14:05:46.0409 1348 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
14:05:46.0409 1348 \Device\Harddisk1\DR1:
14:05:46.0409 1348 MBR partitions:
14:05:46.0409 1348 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
14:05:46.0409 1348 \Device\Harddisk2\DR2:
14:05:46.0409 1348 MBR partitions:
14:05:46.0409 1348 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
14:05:46.0409 1348 ============================================================
14:05:46.0425 1348 C: <-> \Device\Harddisk1\DR1\Partition0
14:05:46.0440 1348 F: <-> \Device\Harddisk2\DR2\Partition0
14:05:46.0487 1348 M: <-> \Device\Harddisk0\DR0\Partition0
14:05:46.0487 1348 ============================================================
14:05:46.0487 1348 Initialize success
14:05:46.0487 1348 ============================================================
14:06:05.0270 1288 ============================================================
14:06:05.0270 1288 Scan started
14:06:05.0270 1288 Mode: Manual; TDLFS;
14:06:05.0270 1288 ============================================================
14:06:05.0894 1288 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
14:06:05.0894 1288 1394ohci - ok
14:06:05.0925 1288 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
14:06:05.0925 1288 ACPI - ok
14:06:05.0941 1288 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
14:06:05.0941 1288 AcpiPmi - ok
14:06:06.0034 1288 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:06:06.0034 1288 AdobeARMservice - ok
14:06:06.0081 1288 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:06:06.0097 1288 adp94xx - ok
14:06:06.0128 1288 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:06:06.0128 1288 adpahci - ok
14:06:06.0159 1288 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:06:06.0159 1288 adpu320 - ok
14:06:06.0175 1288 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:06:06.0175 1288 AeLookupSvc - ok
14:06:06.0237 1288 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
14:06:06.0237 1288 AFD - ok
14:06:06.0268 1288 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
14:06:06.0268 1288 agp440 - ok
14:06:06.0284 1288 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:06:06.0284 1288 ALG - ok
14:06:06.0299 1288 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
14:06:06.0299 1288 aliide - ok
14:06:06.0409 1288 ALSysIO - ok
14:06:06.0455 1288 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
14:06:06.0455 1288 AMD External Events Utility - ok
14:06:06.0471 1288 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
14:06:06.0471 1288 amdide - ok
14:06:06.0487 1288 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:06:06.0487 1288 AmdK8 - ok
14:06:07.0064 1288 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
14:06:07.0204 1288 amdkmdag - ok
14:06:07.0329 1288 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
14:06:07.0329 1288 amdkmdap - ok
14:06:07.0345 1288 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:06:07.0345 1288 AmdPPM - ok
14:06:07.0391 1288 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
14:06:07.0391 1288 amdsata - ok
14:06:07.0423 1288 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:06:07.0423 1288 amdsbs - ok
14:06:07.0454 1288 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
14:06:07.0454 1288 amdxata - ok
14:06:07.0501 1288 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
14:06:07.0501 1288 AppID - ok
14:06:07.0516 1288 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:06:07.0516 1288 AppIDSvc - ok
14:06:07.0547 1288 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
14:06:07.0547 1288 Appinfo - ok
14:06:07.0672 1288 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:06:07.0672 1288 Apple Mobile Device - ok
14:06:07.0688 1288 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
14:06:07.0703 1288 AppMgmt - ok
14:06:07.0735 1288 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:06:07.0735 1288 arc - ok
14:06:07.0766 1288 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:06:07.0766 1288 arcsas - ok
14:06:07.0797 1288 aspnet_state - ok
14:06:07.0828 1288 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:06:07.0828 1288 AsyncMac - ok
14:06:07.0844 1288 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
14:06:07.0844 1288 atapi - ok
14:06:07.0891 1288 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
14:06:07.0891 1288 AtiHDAudioService - ok
14:06:07.0953 1288 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
14:06:07.0953 1288 AudioEndpointBuilder - ok
14:06:07.0969 1288 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
14:06:07.0969 1288 AudioSrv - ok
14:06:07.0984 1288 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
14:06:08.0000 1288 AxInstSV - ok
14:06:08.0047 1288 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:06:08.0047 1288 b06bdrv - ok
14:06:08.0078 1288 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:06:08.0093 1288 b57nd60a - ok
14:06:08.0109 1288 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:06:08.0109 1288 BDESVC - ok
14:06:08.0125 1288 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:06:08.0125 1288 Beep - ok
14:06:08.0171 1288 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
14:06:08.0296 1288 BITS - ok
14:06:08.0327 1288 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:06:08.0327 1288 blbdrive - ok
14:06:08.0421 1288 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
14:06:08.0437 1288 Bonjour Service - ok
14:06:08.0483 1288 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
14:06:08.0483 1288 bowser - ok
14:06:08.0499 1288 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:06:08.0499 1288 BrFiltLo - ok
14:06:08.0546 1288 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:06:08.0546 1288 BrFiltUp - ok
14:06:08.0624 1288 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
14:06:08.0624 1288 Browser - ok
14:06:08.0920 1288 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:06:08.0920 1288 Brserid - ok
14:06:08.0936 1288 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:06:08.0936 1288 BrSerWdm - ok
14:06:08.0951 1288 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:06:08.0951 1288 BrUsbMdm - ok
14:06:08.0967 1288 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:06:08.0967 1288 BrUsbSer - ok
14:06:09.0029 1288 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
14:06:09.0029 1288 BthEnum - ok
14:06:09.0045 1288 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:06:09.0045 1288 BTHMODEM - ok
14:06:09.0076 1288 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
14:06:09.0076 1288 BthPan - ok
14:06:09.0154 1288 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
14:06:09.0154 1288 BTHPORT - ok
14:06:09.0170 1288 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:06:09.0185 1288 bthserv - ok
14:06:09.0185 1288 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
14:06:09.0185 1288 BTHUSB - ok
14:06:09.0248 1288 Cardex - ok
14:06:09.0279 1288 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:06:09.0279 1288 cdfs - ok
14:06:09.0310 1288 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
14:06:09.0326 1288 cdrom - ok
14:06:09.0357 1288 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
14:06:09.0357 1288 CertPropSvc - ok
14:06:09.0357 1288 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:06:09.0357 1288 circlass - ok
14:06:09.0388 1288 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:06:09.0388 1288 CLFS - ok
14:06:09.0435 1288 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:06:09.0435 1288 clr_optimization_v2.0.50727_32 - ok
14:06:09.0482 1288 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:06:09.0482 1288 clr_optimization_v2.0.50727_64 - ok
14:06:09.0575 1288 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:06:09.0591 1288 clr_optimization_v4.0.30319_32 - ok
14:06:09.0622 1288 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:06:09.0622 1288 clr_optimization_v4.0.30319_64 - ok
14:06:09.0669 1288 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:06:09.0669 1288 CmBatt - ok
14:06:09.0669 1288 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
14:06:09.0669 1288 cmdide - ok
14:06:09.0716 1288 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
14:06:09.0716 1288 CNG - ok
14:06:09.0763 1288 COMMONFX (f38acff40e9edc2b3476edd724cea4a0) C:\Windows\system32\drivers\COMMONFX.SYS
14:06:09.0763 1288 COMMONFX - ok
14:06:09.0763 1288 COMMONFX.DLL - ok
14:06:09.0778 1288 COMMONFX.SYS (f38acff40e9edc2b3476edd724cea4a0) C:\Windows\System32\drivers\COMMONFX.SYS
14:06:09.0778 1288 COMMONFX.SYS - ok
14:06:09.0794 1288 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:06:09.0794 1288 Compbatt - ok
14:06:09.0809 1288 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:06:09.0809 1288 CompositeBus - ok
14:06:09.0825 1288 COMSysApp - ok
14:06:09.0903 1288 cpuz132 - ok
14:06:09.0950 1288 cpuz134 (17719a7f571d4cd08223f0b30f71b8b8) C:\Windows\system32\drivers\cpuz134_x64.sys
14:06:09.0950 1288 cpuz134 - ok
14:06:09.0965 1288 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:06:09.0965 1288 crcdisk - ok
14:06:10.0012 1288 Creative ALchemy AL6 Licensing Service (c8bd651e13895b93ed9ec5b4f1df42bc) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
14:06:10.0012 1288 Creative ALchemy AL6 Licensing Service - ok
14:06:10.0028 1288 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
14:06:10.0028 1288 Creative Audio Engine Licensing Service - ok
14:06:10.0075 1288 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
14:06:10.0090 1288 CryptSvc - ok
14:06:10.0106 1288 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
14:06:10.0121 1288 CSC - ok
14:06:10.0168 1288 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
14:06:10.0168 1288 CscService - ok
14:06:10.0199 1288 CT20XUT.DLL (07fefa45ee2b8c9de505eb4e744080aa) C:\Windows\System32\CT20XUT.DLL
14:06:10.0199 1288 CT20XUT.DLL - ok
14:06:10.0262 1288 ctac32k (095c566746217cd1482ede40a70d87d2) C:\Windows\system32\drivers\ctac32k.sys
14:06:10.0262 1288 ctac32k - ok
14:06:10.0309 1288 ctaud2k (157e2196fccd002a2edf3b06df7b0c9a) C:\Windows\system32\drivers\ctaud2k.sys
14:06:10.0309 1288 ctaud2k - ok
14:06:10.0355 1288 CTAUDFX (17979ee857e930cbfdf24a12e89d77a1) C:\Windows\system32\drivers\CTAUDFX.SYS
14:06:10.0355 1288 CTAUDFX - ok
14:06:10.0371 1288 CTAUDFX.DLL - ok
14:06:10.0371 1288 CTAUDFX.SYS (17979ee857e930cbfdf24a12e89d77a1) C:\Windows\System32\drivers\CTAUDFX.SYS
14:06:10.0371 1288 CTAUDFX.SYS - ok
14:06:10.0449 1288 CTAudSvcService (5ce3d0e1d1b3832ee052cfc442eee0fa) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
14:06:10.0449 1288 CTAudSvcService - ok
14:06:10.0496 1288 CTEAPSFX.DLL (859efd02c7a23cf95339180b7d6b6c18) C:\Windows\System32\CTEAPSFX.DLL
14:06:10.0496 1288 CTEAPSFX.DLL - ok
14:06:10.0527 1288 CTEDSPFX.DLL (2af75ba5416064a923815a481bca43ec) C:\Windows\System32\CTEDSPFX.DLL
14:06:10.0527 1288 CTEDSPFX.DLL - ok
14:06:10.0558 1288 CTEDSPIO.DLL (babbf5978b202de6fd77b26bb4502be5) C:\Windows\System32\CTEDSPIO.DLL
14:06:10.0558 1288 CTEDSPIO.DLL - ok
14:06:10.0589 1288 CTEDSPSY.DLL (ec398f53c3a9d3c105a4d9695ba0405d) C:\Windows\System32\CTEDSPSY.DLL
14:06:10.0589 1288 CTEDSPSY.DLL - ok
14:06:10.0621 1288 CTERFXFX (fe3eae37536c02d087e5c5d339663779) C:\Windows\system32\drivers\CTERFXFX.SYS
14:06:10.0621 1288 CTERFXFX - ok
14:06:10.0621 1288 CTERFXFX.DLL - ok
14:06:10.0636 1288 CTERFXFX.SYS (fe3eae37536c02d087e5c5d339663779) C:\Windows\System32\drivers\CTERFXFX.SYS
14:06:10.0636 1288 CTERFXFX.SYS - ok
14:06:10.0714 1288 CTEXFIFX.DLL (2a628f7c9b788fb8aa1f483a82fb0ecb) C:\Windows\System32\CTEXFIFX.DLL
14:06:10.0730 1288 CTEXFIFX.DLL - ok
14:06:10.0808 1288 CTHWIUT.DLL (03dc20211a5e024a025c6565fb658362) C:\Windows\System32\CTHWIUT.DLL
14:06:10.0808 1288 CTHWIUT.DLL - ok
14:06:10.0808 1288 ctprxy2k (4e4fdab4a7cf5af56e3fa1fe35e8ad3c) C:\Windows\system32\drivers\ctprxy2k.sys
14:06:10.0823 1288 ctprxy2k - ok
14:06:10.0855 1288 CTSBLFX (4a7de2e30b2b9253933a157401ec76d5) C:\Windows\system32\drivers\CTSBLFX.SYS
14:06:10.0870 1288 CTSBLFX - ok
14:06:10.0870 1288 CTSBLFX.DLL - ok
14:06:10.0870 1288 CTSBLFX.SYS (4a7de2e30b2b9253933a157401ec76d5) C:\Windows\System32\drivers\CTSBLFX.SYS
14:06:10.0870 1288 CTSBLFX.SYS - ok
14:06:10.0901 1288 ctsfm2k (065ade032a044d518ab1407d3586b7d5) C:\Windows\system32\drivers\ctsfm2k.sys
14:06:10.0901 1288 ctsfm2k - ok
14:06:10.0948 1288 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
14:06:10.0948 1288 DcomLaunch - ok
14:06:10.0995 1288 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:06:10.0995 1288 defragsvc - ok
14:06:11.0042 1288 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
14:06:11.0042 1288 DfsC - ok
14:06:11.0089 1288 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
14:06:11.0089 1288 Dhcp - ok
14:06:11.0104 1288 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:06:11.0104 1288 discache - ok
14:06:11.0120 1288 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:06:11.0120 1288 Disk - ok
14:06:11.0167 1288 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
14:06:11.0167 1288 Dnscache - ok
14:06:11.0198 1288 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
14:06:11.0198 1288 dot3svc - ok
14:06:11.0213 1288 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
14:06:11.0213 1288 DPS - ok
14:06:11.0229 1288 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:06:11.0229 1288 drmkaud - ok
14:06:11.0307 1288 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
14:06:11.0323 1288 DXGKrnl - ok
14:06:11.0323 1288 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:06:11.0338 1288 EapHost - ok
14:06:11.0479 1288 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:06:11.0510 1288 ebdrv - ok
14:06:11.0603 1288 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
14:06:11.0603 1288 EFS - ok
14:06:11.0681 1288 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
14:06:11.0681 1288 ehRecvr - ok
14:06:11.0713 1288 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
14:06:11.0713 1288 ehSched - ok
14:06:11.0775 1288 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:06:11.0775 1288 elxstor - ok
14:06:11.0806 1288 emupia (f380ff5d6d80cecc6dbbc15569757613) C:\Windows\system32\drivers\emupia2k.sys
14:06:11.0806 1288 emupia - ok
14:06:11.0822 1288 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
14:06:11.0822 1288 ErrDev - ok
14:06:11.0853 1288 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:06:11.0869 1288 EventSystem - ok
14:06:11.0884 1288 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:06:11.0884 1288 exfat - ok
14:06:11.0900 1288 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:06:11.0900 1288 fastfat - ok
14:06:11.0947 1288 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
14:06:11.0947 1288 Fax - ok
14:06:11.0978 1288 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:06:11.0978 1288 fdc - ok
14:06:11.0993 1288 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:06:11.0993 1288 fdPHost - ok
14:06:12.0009 1288 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:06:12.0009 1288 FDResPub - ok
14:06:12.0025 1288 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:06:12.0025 1288 FileInfo - ok
14:06:12.0025 1288 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:06:12.0025 1288 Filetrace - ok
14:06:12.0134 1288 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
14:06:12.0134 1288 FLEXnet Licensing Service - ok
14:06:12.0243 1288 FLEXnet Licensing Service 64 (5cee6cd43ae5844c49300ea0b1e557ee) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
14:06:12.0243 1288 FLEXnet Licensing Service 64 - ok
14:06:12.0337 1288 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:06:12.0337 1288 flpydisk - ok
14:06:12.0368 1288 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
14:06:12.0368 1288 FltMgr - ok
14:06:12.0446 1288 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
14:06:12.0461 1288 FontCache - ok
14:06:12.0633 1288 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:06:12.0633 1288 FontCache3.0.0.0 - ok
14:06:12.0711 1288 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:06:12.0711 1288 FsDepends - ok
14:06:12.0742 1288 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
14:06:12.0742 1288 Fs_Rec - ok
14:06:12.0789 1288 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:06:12.0789 1288 fvevol - ok
14:06:12.0820 1288 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:06:12.0820 1288 gagp30kx - ok
14:06:12.0851 1288 gdrv (6275303610285b57361f03a375062fba) C:\Windows\gdrv.sys
14:06:12.0851 1288 gdrv - ok
14:06:12.0898 1288 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:06:12.0898 1288 GEARAspiWDM - ok
14:06:12.0961 1288 GEST Service (20438b962021f0ea729020ed5a148d4c) C:\Program Files (x86)\GIGABYTE\EnergySaver\GSvr.exe
14:06:12.0961 1288 GEST Service - ok
14:06:13.0039 1288 Giraffic - ok
14:06:13.0085 1288 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
14:06:13.0085 1288 gpsvc - ok
14:06:13.0148 1288 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:06:13.0148 1288 gupdate - ok
14:06:13.0179 1288 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:06:13.0179 1288 gupdatem - ok
14:06:13.0210 1288 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:06:13.0226 1288 gusvc - ok
14:06:13.0226 1288 gvgjmzvz - ok
14:06:13.0304 1288 ha10kx2k (82b68f585110ae8500a6d23623ae1f74) C:\Windows\system32\drivers\ha10kx2k.sys
14:06:13.0319 1288 ha10kx2k - ok
14:06:13.0429 1288 hap16v2k (83f647f9ace9192556f758e528024f68) C:\Windows\system32\drivers\hap16v2k.sys
14:06:13.0429 1288 hap16v2k - ok
14:06:13.0444 1288 hap17v2k (e815d29361de89d24c8dbe3e5a7006c9) C:\Windows\system32\drivers\hap17v2k.sys
14:06:13.0460 1288 hap17v2k - ok
14:06:13.0553 1288 Hardlock (091582da724f54830012e3faaf2f1d1a) C:\Windows\system32\drivers\hardlock.sys
14:06:13.0553 1288 Hardlock - ok
14:06:13.0569 1288 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:06:13.0569 1288 hcw85cir - ok
14:06:13.0600 1288 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
14:06:13.0616 1288 HdAudAddService - ok
14:06:13.0631 1288 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:06:13.0631 1288 HDAudBus - ok
14:06:13.0647 1288 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:06:13.0647 1288 HidBatt - ok
14:06:13.0647 1288 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:06:13.0647 1288 HidBth - ok
14:06:13.0663 1288 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:06:13.0663 1288 HidIr - ok
14:06:13.0694 1288 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:06:13.0694 1288 hidserv - ok
14:06:13.0741 1288 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
14:06:13.0741 1288 HidUsb - ok
14:06:13.0741 1288 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
14:06:13.0741 1288 hkmsvc - ok
14:06:13.0772 1288 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
14:06:13.0772 1288 HomeGroupListener - ok
14:06:13.0787 1288 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
14:06:13.0787 1288 HomeGroupProvider - ok
14:06:13.0787 1288 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
14:06:13.0787 1288 HpSAMD - ok
14:06:13.0834 1288 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
14:06:13.0850 1288 HTTP - ok
14:06:13.0865 1288 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
14:06:13.0865 1288 hwpolicy - ok
14:06:13.0897 1288 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:06:13.0897 1288 i8042prt - ok
14:06:14.0209 1288 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
14:06:14.0209 1288 iaStorV - ok
14:06:14.0349 1288 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:06:14.0349 1288 IDriverT - ok
14:06:14.0427 1288 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:06:14.0443 1288 idsvc - ok
14:06:14.0505 1288 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:06:14.0505 1288 iirsp - ok
14:06:14.0599 1288 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
14:06:14.0614 1288 IKEEXT - ok
14:06:14.0770 1288 IntcAzAudAddService (a0c2c3d4c03c4fb896cfc53873784178) C:\Windows\system32\drivers\RTKVHD64.sys
14:06:14.0786 1288 IntcAzAudAddService - ok
14:06:14.0879 1288 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
14:06:14.0879 1288 intelide - ok
14:06:14.0895 1288 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:06:14.0895 1288 intelppm - ok
14:06:14.0926 1288 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:06:14.0926 1288 IPBusEnum - ok
14:06:14.0942 1288 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:06:14.0942 1288 IpFilterDriver - ok
14:06:14.0942 1288 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:06:14.0942 1288 IPMIDRV - ok
14:06:14.0973 1288 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:06:14.0973 1288 IPNAT - ok
14:06:15.0082 1288 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
14:06:15.0082 1288 iPod Service - ok
14:06:15.0098 1288 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:06:15.0098 1288 IRENUM - ok
14:06:15.0129 1288 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
14:06:15.0129 1288 isapnp - ok
14:06:15.0145 1288 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
14:06:15.0145 1288 iScsiPrt - ok
14:06:15.0191 1288 JRAID (db85fe8d6cbaa2047cb4da1b2c193d76) C:\Windows\system32\DRIVERS\jraid.sys
14:06:15.0191 1288 JRAID - ok
14:06:15.0207 1288 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:06:15.0207 1288 kbdclass - ok
14:06:15.0238 1288 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
14:06:15.0238 1288 kbdhid - ok
14:06:15.0269 1288 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:15.0269 1288 KeyIso - ok
14:06:15.0316 1288 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
14:06:15.0316 1288 KSecDD - ok
14:06:15.0347 1288 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
14:06:15.0347 1288 KSecPkg - ok
14:06:15.0363 1288 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:06:15.0363 1288 ksthunk - ok
14:06:15.0410 1288 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:06:15.0410 1288 KtmRm - ok
14:06:15.0472 1288 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
14:06:15.0503 1288 LanmanServer - ok
14:06:15.0519 1288 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
14:06:15.0535 1288 LanmanWorkstation - ok
14:06:15.0566 1288 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:06:15.0566 1288 lltdio - ok
14:06:15.0597 1288 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:06:15.0597 1288 lltdsvc - ok
14:06:15.0597 1288 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:06:15.0597 1288 lmhosts - ok
14:06:15.0644 1288 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:06:15.0644 1288 LSI_FC - ok
14:06:15.0675 1288 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:06:15.0675 1288 LSI_SAS - ok
14:06:15.0691 1288 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:06:15.0691 1288 LSI_SAS2 - ok
14:06:15.0691 1288 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:06:15.0691 1288 LSI_SCSI - ok
14:06:15.0706 1288 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:06:15.0722 1288 luafv - ok
14:06:15.0737 1288 LVPr2M64 - ok
14:06:15.0831 1288 mbmiodrvr (2e1652d8ab971403eaaddc921800b1fa) C:\Windows\syswow64\mbmiodrvr.sys
14:06:15.0831 1288 mbmiodrvr - ok
14:06:15.0862 1288 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
14:06:15.0862 1288 Mcx2Svc - ok
14:06:15.0893 1288 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:06:15.0893 1288 megasas - ok
14:06:15.0909 1288 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:06:15.0909 1288 MegaSR - ok
14:06:16.0018 1288 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
14:06:16.0018 1288 Microsoft Office Groove Audit Service - ok
14:06:16.0034 1288 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:06:16.0034 1288 MMCSS - ok
14:06:16.0065 1288 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:06:16.0065 1288 Modem - ok
14:06:16.0081 1288 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:06:16.0081 1288 monitor - ok
14:06:16.0096 1288 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:06:16.0096 1288 mouclass - ok
14:06:16.0112 1288 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:06:16.0112 1288 mouhid - ok
14:06:16.0127 1288 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
14:06:16.0143 1288 mountmgr - ok
14:06:16.0190 1288 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:06:16.0190 1288 MozillaMaintenance - ok
14:06:16.0268 1288 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
14:06:16.0268 1288 MpFilter - ok
14:06:16.0283 1288 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
14:06:16.0299 1288 mpio - ok
14:06:16.0315 1288 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:06:16.0315 1288 mpsdrv - ok
14:06:16.0346 1288 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
14:06:16.0346 1288 MRxDAV - ok
14:06:16.0393 1288 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:06:16.0393 1288 mrxsmb - ok
14:06:16.0439 1288 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:06:16.0439 1288 mrxsmb10 - ok
14:06:16.0455 1288 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:06:16.0455 1288 mrxsmb20 - ok
14:06:16.0471 1288 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
14:06:16.0471 1288 msahci - ok
14:06:16.0486 1288 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
14:06:16.0486 1288 msdsm - ok
14:06:16.0533 1288 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:06:16.0533 1288 MSDTC - ok
14:06:16.0564 1288 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:06:16.0564 1288 Msfs - ok
14:06:16.0595 1288 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:06:16.0595 1288 mshidkmdf - ok
14:06:16.0611 1288 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
14:06:16.0611 1288 msisadrv - ok
14:06:16.0689 1288 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:06:16.0689 1288 MSiSCSI - ok
14:06:16.0689 1288 msiserver - ok
14:06:16.0720 1288 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:06:16.0720 1288 MSKSSRV - ok
14:06:16.0829 1288 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) C:\Program Files\Microsoft Security Client\MsMpEng.exe
14:06:16.0829 1288 MsMpSvc - ok
14:06:16.0829 1288 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:06:16.0829 1288 MSPCLOCK - ok
14:06:16.0829 1288 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:06:16.0829 1288 MSPQM - ok
14:06:16.0861 1288 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
14:06:16.0861 1288 MsRPC - ok
14:06:16.0876 1288 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
14:06:16.0876 1288 mssmbios - ok
14:06:16.0923 1288 MSSQL$SONY_MEDIAMGR - ok
14:06:16.0954 1288 MSSQLServerADHelper (cb7524c21727404bd3140dca32deb7de) C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
14:06:16.0954 1288 MSSQLServerADHelper - ok
14:06:16.0970 1288 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:06:16.0970 1288 MSTEE - ok
14:06:17.0001 1288 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:06:17.0001 1288 MTConfig - ok
14:06:17.0017 1288 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:06:17.0017 1288 Mup - ok
14:06:17.0048 1288 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
14:06:17.0063 1288 napagent - ok
14:06:17.0095 1288 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:06:17.0095 1288 NativeWifiP - ok
14:06:17.0157 1288 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
14:06:17.0173 1288 NDIS - ok
14:06:17.0188 1288 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:06:17.0188 1288 NdisCap - ok
14:06:17.0204 1288 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:06:17.0204 1288 NdisTapi - ok
14:06:17.0219 1288 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
14:06:17.0219 1288 Ndisuio - ok
14:06:17.0235 1288 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:06:17.0235 1288 NdisWan - ok
14:06:17.0251 1288 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
14:06:17.0251 1288 NDProxy - ok
14:06:17.0297 1288 Netaapl (6f4607e2333fe21e9e3ff8133a88b35b) C:\Windows\system32\DRIVERS\netaapl64.sys
14:06:17.0297 1288 Netaapl - ok
14:06:17.0329 1288 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:06:17.0329 1288 NetBIOS - ok
14:06:17.0344 1288 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
14:06:17.0344 1288 NetBT - ok
14:06:17.0391 1288 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:17.0391 1288 Netlogon - ok
14:06:17.0438 1288 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:06:17.0438 1288 Netman - ok
14:06:17.0469 1288 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:06:17.0469 1288 netprofm - ok
14:06:17.0531 1288 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:06:17.0531 1288 NetTcpPortSharing - ok
14:06:17.0563 1288 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:06:17.0563 1288 nfrd960 - ok
14:06:17.0625 1288 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:06:17.0625 1288 NisDrv - ok
14:06:17.0750 1288 NisSrv (10a43829a9e606af3eef25a1c1665923) C:\Program Files\Microsoft Security Client\NisSrv.exe
14:06:17.0750 1288 NisSrv - ok
14:06:17.0859 1288 NitroReaderDriverReadSpool2 (c9161bc998b33ca78a728c842ac6bdf6) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
14:06:17.0859 1288 NitroReaderDriverReadSpool2 - ok
14:06:17.0906 1288 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
14:06:17.0906 1288 NlaSvc - ok
14:06:17.0921 1288 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:06:17.0921 1288 Npfs - ok
14:06:17.0937 1288 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:06:17.0937 1288 nsi - ok
14:06:17.0953 1288 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:06:17.0953 1288 nsiproxy - ok
14:06:18.0062 1288 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
14:06:18.0077 1288 Ntfs - ok
14:06:18.0155 1288 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:06:18.0155 1288 Null - ok
14:06:18.0233 1288 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
14:06:18.0233 1288 nvraid - ok
14:06:18.0280 1288 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
14:06:18.0280 1288 nvstor - ok
14:06:18.0405 1288 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:06:18.0405 1288 odserv - ok
14:06:18.0421 1288 ogceuxlg - ok
14:06:18.0452 1288 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
14:06:18.0452 1288 ohci1394 - ok
14:06:18.0514 1288 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:06:18.0514 1288 ose - ok
14:06:18.0577 1288 ossrv (85ea378116e2c4385993ba5124536ffc) C:\Windows\system32\drivers\ctoss2k.sys
14:06:18.0577 1288 ossrv - ok
14:06:18.0608 1288 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:06:18.0608 1288 p2pimsvc - ok
14:06:18.0639 1288 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:06:18.0639 1288 p2psvc - ok
14:06:18.0639 1288 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:06:18.0639 1288 Parport - ok
14:06:18.0701 1288 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
14:06:18.0701 1288 partmgr - ok
14:06:18.0717 1288 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:06:18.0717 1288 PcaSvc - ok
14:06:18.0748 1288 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
14:06:18.0748 1288 pci - ok
14:06:18.0748 1288 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
14:06:18.0764 1288 pciide - ok
14:06:18.0779 1288 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:06:18.0779 1288 pcmcia - ok
14:06:18.0795 1288 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:06:18.0795 1288 pcw - ok
14:06:18.0842 1288 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:06:18.0842 1288 PEAUTH - ok
14:06:18.0920 1288 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
14:06:18.0935 1288 PeerDistSvc - ok
14:06:18.0998 1288 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:06:18.0998 1288 PerfHost - ok
14:06:19.0123 1288 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
14:06:19.0138 1288 pla - ok
14:06:19.0185 1288 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
14:06:19.0185 1288 PlugPlay - ok
14:06:19.0201 1288 PnkBstrA - ok
14:06:19.0232 1288 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:06:19.0232 1288 PNRPAutoReg - ok
14:06:19.0263 1288 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:06:19.0263 1288 PNRPsvc - ok
14:06:19.0294 1288 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
14:06:19.0310 1288 PolicyAgent - ok
14:06:19.0325 1288 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:06:19.0325 1288 Power - ok
14:06:19.0372 1288 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
14:06:19.0372 1288 PptpMiniport - ok
14:06:19.0403 1288 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:06:19.0403 1288 Processor - ok
14:06:19.0450 1288 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
14:06:19.0450 1288 ProfSvc - ok
14:06:19.0481 1288 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:19.0481 1288 ProtectedStorage - ok
14:06:19.0513 1288 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
14:06:19.0513 1288 Psched - ok
14:06:19.0591 1288 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:06:19.0606 1288 ql2300 - ok
14:06:19.0715 1288 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:06:19.0715 1288 ql40xx - ok
14:06:19.0762 1288 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:06:19.0762 1288 QWAVE - ok
14:06:19.0793 1288 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:06:19.0793 1288 QWAVEdrv - ok
14:06:19.0903 1288 RadeonPro Support Service (6c8f17953c07f88364307fc7811c5184) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
14:06:19.0903 1288 RadeonPro Support Service - ok
14:06:19.0918 1288 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:06:19.0918 1288 RasAcd - ok
14:06:19.0965 1288 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:06:19.0965 1288 RasAgileVpn - ok
14:06:19.0981 1288 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:06:19.0981 1288 RasAuto - ok
14:06:20.0012 1288 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:06:20.0012 1288 Rasl2tp - ok
14:06:20.0043 1288 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
14:06:20.0043 1288 RasMan - ok
14:06:20.0059 1288 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:06:20.0059 1288 RasPppoe - ok
14:06:20.0074 1288 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:06:20.0074 1288 RasSstp - ok
14:06:20.0105 1288 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
14:06:20.0105 1288 rdbss - ok
14:06:20.0105 1288 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:06:20.0105 1288 rdpbus - ok
14:06:20.0121 1288 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:06:20.0121 1288 RDPCDD - ok
14:06:20.0152 1288 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
14:06:20.0152 1288 RDPDR - ok
14:06:20.0183 1288 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:06:20.0183 1288 RDPENCDD - ok
14:06:20.0183 1288 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:06:20.0183 1288 RDPREFMP - ok
14:06:20.0230 1288 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
14:06:20.0230 1288 RDPWD - ok
14:06:20.0261 1288 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
14:06:20.0261 1288 rdyboost - ok
14:06:20.0293 1288 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:06:20.0293 1288 RemoteAccess - ok
14:06:20.0324 1288 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:06:20.0324 1288 RemoteRegistry - ok
14:06:20.0402 1288 Revoflt (9c3ac71a9934b884fac567a8807e9c4d) C:\Windows\system32\DRIVERS\revoflt.sys
14:06:20.0402 1288 Revoflt - ok
14:06:20.0449 1288 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
14:06:20.0449 1288 RFCOMM - ok
14:06:20.0480 1288 RMCAST (77b3b747eb2413072b8e4306018d0c9b) C:\Windows\system32\DRIVERS\RMCAST.sys
14:06:20.0480 1288 RMCAST - ok
14:06:20.0511 1288 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:06:20.0511 1288 RpcEptMapper - ok
14:06:20.0542 1288 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:06:20.0542 1288 RpcLocator - ok
14:06:20.0573 1288 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
14:06:20.0589 1288 RpcSs - ok
14:06:20.0620 1288 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:06:20.0636 1288 rspndr - ok
14:06:20.0698 1288 RTL8167 (4fbda07ef0a3097ce14c5cabf723b278) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:06:20.0698 1288 RTL8167 - ok
14:06:20.0745 1288 RtNdPt60 (2b38c905492f36fe42b59da52d6b4eb7) C:\Windows\system32\DRIVERS\RtNdPt60.sys
14:06:20.0745 1288 RtNdPt60 - ok
14:06:20.0792 1288 RTTEAMPT (3183388da27655085960a22b4b29caa9) C:\Windows\system32\DRIVERS\RtTeam60.sys
14:06:20.0792 1288 RTTEAMPT - ok
14:06:20.0807 1288 RTVLANPT (8b6b42d782202363a562f82b0e13b1c0) C:\Windows\system32\DRIVERS\RtVlan60.sys
14:06:20.0807 1288 RTVLANPT - ok
14:06:20.0807 1288 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
14:06:20.0823 1288 s3cap - ok
14:06:20.0854 1288 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:20.0854 1288 SamSs - ok
14:06:20.0870 1288 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
14:06:20.0870 1288 sbp2port - ok
14:06:20.0901 1288 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:06:20.0917 1288 SCardSvr - ok
14:06:20.0979 1288 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys
14:06:20.0979 1288 SCDEmu - ok
14:06:20.0995 1288 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
14:06:20.0995 1288 scfilter - ok
14:06:21.0073 1288 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
14:06:21.0088 1288 Schedule - ok
14:06:21.0104 1288 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
14:06:21.0104 1288 SCPolicySvc - ok
14:06:21.0151 1288 ScreamBAudioSvc (8b56bdce6a303dde63d63440d1cf9ad1) C:\Windows\system32\drivers\ScreamingBAudio64.sys
14:06:21.0151 1288 ScreamBAudioSvc - ok
14:06:21.0182 1288 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
14:06:21.0182 1288 SDRSVC - ok
14:06:21.0197 1288 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:06:21.0197 1288 secdrv - ok
14:06:21.0213 1288 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
14:06:21.0213 1288 seclogon - ok
14:06:21.0229 1288 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:06:21.0229 1288 SENS - ok
14:06:21.0244 1288 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:06:21.0244 1288 SensrSvc - ok
14:06:21.0260 1288 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:06:21.0260 1288 Serenum - ok
14:06:21.0275 1288 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:06:21.0275 1288 Serial - ok
14:06:21.0291 1288 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:06:21.0291 1288 sermouse - ok
14:06:21.0338 1288 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
14:06:21.0353 1288 SessionEnv - ok
14:06:21.0369 1288 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
14:06:21.0369 1288 sffdisk - ok
14:06:21.0369 1288 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:06:21.0369 1288 sffp_mmc - ok
14:06:21.0369 1288 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
14:06:21.0369 1288 sffp_sd - ok
14:06:21.0369 1288 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:06:21.0385 1288 sfloppy - ok
14:06:21.0416 1288 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
14:06:21.0431 1288 ShellHWDetection - ok
14:06:21.0431 1288 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:06:21.0431 1288 SiSRaid2 - ok
14:06:21.0447 1288 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:06:21.0447 1288 SiSRaid4 - ok
14:06:21.0463 1288 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:06:21.0463 1288 Smb - ok
14:06:21.0509 1288 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:06:21.0509 1288 SNMPTRAP - ok
14:06:21.0509 1288 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:06:21.0509 1288 spldr - ok
14:06:21.0572 1288 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
14:06:21.0572 1288 Spooler - ok
14:06:21.0728 1288 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
14:06:21.0759 1288 sppsvc - ok
14:06:21.0821 1288 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:06:21.0821 1288 sppuinotify - ok
14:06:21.0946 1288 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
14:06:21.0946 1288 sptd - ok
14:06:22.0009 1288 SQLAgent$SONY_MEDIAMGR - ok
14:06:22.0055 1288 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
14:06:22.0055 1288 srv - ok
14:06:22.0087 1288 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
14:06:22.0087 1288 srv2 - ok
14:06:22.0133 1288 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
14:06:22.0133 1288 srvnet - ok
14:06:22.0165 1288 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:06:22.0165 1288 SSDPSRV - ok
14:06:22.0180 1288 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:06:22.0180 1288 SstpSvc - ok
14:06:22.0211 1288 Steam Client Service - ok
14:06:22.0243 1288 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:06:22.0243 1288 stexstor - ok
14:06:22.0305 1288 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
14:06:22.0305 1288 stisvc - ok
14:06:22.0321 1288 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
14:06:22.0321 1288 storflt - ok
14:06:22.0336 1288 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
14:06:22.0336 1288 storvsc - ok
14:06:22.0336 1288 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
14:06:22.0336 1288 swenum - ok
14:06:22.0461 1288 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:06:22.0461 1288 SwitchBoard - ok
14:06:22.0523 1288 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:06:22.0523 1288 swprv - ok
14:06:22.0617 1288 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
14:06:22.0633 1288 SysMain - ok
14:06:22.0711 1288 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
14:06:22.0711 1288 TabletInputService - ok
14:06:22.0913 1288 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
14:06:22.0929 1288 TapiSrv - ok
14:06:22.0945 1288 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:06:22.0945 1288 TBS - ok
14:06:23.0054 1288 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
14:06:23.0069 1288 Tcpip - ok
14:06:23.0210 1288 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
14:06:23.0225 1288 TCPIP6 - ok
14:06:23.0257 1288 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
14:06:23.0257 1288 tcpipreg - ok
14:06:23.0303 1288 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:06:23.0303 1288 TDPIPE - ok
14:06:23.0335 1288 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
14:06:23.0335 1288 TDTCP - ok
14:06:23.0350 1288 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
14:06:23.0350 1288 tdx - ok
14:06:23.0413 1288 TEAM (3183388da27655085960a22b4b29caa9) C:\Windows\system32\DRIVERS\RtTeam60.sys
14:06:23.0413 1288 TEAM - ok
14:06:23.0584 1288 TeamViewer5 (2a64c802f4c8aa00ac8472c771688e00) C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
14:06:23.0600 1288 TeamViewer5 - ok
14:06:23.0756 1288 TeamViewer6 (fe559178000347d2ca1b7847f0379749) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
14:06:23.0771 1288 TeamViewer6 - ok
14:06:23.0865 1288 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
14:06:23.0865 1288 TermDD - ok
14:06:23.0927 1288 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
14:06:23.0927 1288 TermService - ok
14:06:23.0974 1288 tescdktp (fa1dabdba6721f4fe345413b3a189ead) C:\Windows\system32\drivers\tescdktp.sys
14:06:23.0974 1288 tescdktp - ok
14:06:23.0990 1288 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:06:23.0990 1288 Themes - ok
14:06:24.0021 1288 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:06:24.0021 1288 THREADORDER - ok
14:06:24.0037 1288 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:06:24.0037 1288 TrkWks - ok
14:06:24.0068 1288 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
14:06:24.0068 1288 TrustedInstaller - ok
14:06:24.0083 1288 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:06:24.0083 1288 tssecsrv - ok
14:06:24.0099 1288 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
14:06:24.0099 1288 tunnel - ok
14:06:24.0115 1288 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:06:24.0115 1288 uagp35 - ok
14:06:24.0130 1288 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
14:06:24.0130 1288 udfs - ok
14:06:24.0146 1288 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:06:24.0146 1288 UI0Detect - ok
14:06:24.0177 1288 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
14:06:24.0177 1288 uliagpkx - ok
14:06:24.0193 1288 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
14:06:24.0193 1288 umbus - ok
14:06:24.0208 1288 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:06:24.0208 1288 UmPass - ok
14:06:24.0239 1288 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
14:06:24.0239 1288 UmRdpService - ok
14:06:24.0317 1288 UnlockerDriver5 (9dc07e73a4abb9acf692113b36a5009f) C:\Program Files\Unlocker\UnlockerDriver5.sys
14:06:24.0317 1288 UnlockerDriver5 - ok
14:06:24.0349 1288 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:06:24.0349 1288 upnphost - ok
14:06:24.0395 1288 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
14:06:24.0395 1288 USBAAPL64 - ok
14:06:24.0427 1288 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
14:06:24.0427 1288 usbaudio - ok
14:06:24.0473 1288 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
14:06:24.0473 1288 usbccgp - ok
14:06:24.0505 1288 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
14:06:24.0505 1288 usbcir - ok
14:06:24.0520 1288 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
14:06:24.0520 1288 usbehci - ok
14:06:24.0583 1288 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
14:06:24.0583 1288 usbhub - ok
14:06:24.0583 1288 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
14:06:24.0598 1288 usbohci - ok
14:06:24.0614 1288 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:06:24.0629 1288 usbprint - ok
14:06:24.0645 1288 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:06:24.0645 1288 usbscan - ok
14:06:24.0692 1288 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:06:24.0692 1288 USBSTOR - ok
14:06:24.0723 1288 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
14:06:24.0723 1288 usbuhci - ok
14:06:24.0754 1288 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:06:24.0754 1288 UxSms - ok
14:06:24.0785 1288 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:24.0785 1288 VaultSvc - ok
14:06:24.0801 1288 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
14:06:24.0817 1288 vdrvroot - ok
14:06:24.0848 1288 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
14:06:24.0848 1288 vds - ok
14:06:24.0895 1288 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:06:24.0895 1288 vga - ok
14:06:24.0910 1288 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:06:24.0910 1288 VgaSave - ok
14:06:24.0926 1288 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
14:06:24.0926 1288 vhdmp - ok
14:06:24.0941 1288 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
14:06:24.0941 1288 viaide - ok
14:06:24.0941 1288 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
14:06:24.0941 1288 vmbus - ok
14:06:24.0957 1288 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
14:06:24.0957 1288 VMBusHID - ok
14:06:24.0973 1288 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
14:06:24.0973 1288 volmgr - ok
14:06:25.0004 1288 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
14:06:25.0004 1288 volmgrx - ok
14:06:25.0051 1288 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
14:06:25.0051 1288 volsnap - ok
14:06:25.0082 1288 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:06:25.0082 1288 vsmraid - ok
14:06:25.0160 1288 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
14:06:25.0175 1288 VSS - ok
14:06:25.0269 1288 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
14:06:25.0269 1288 vwifibus - ok
14:06:25.0300 1288 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:06:25.0300 1288 W32Time - ok
14:06:25.0316 1288 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:06:25.0316 1288 WacomPen - ok
14:06:25.0347 1288 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:06:25.0347 1288 WANARP - ok
14:06:25.0347 1288 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:06:25.0347 1288 Wanarpv6 - ok
14:06:25.0456 1288 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
14:06:25.0456 1288 WatAdminSvc - ok
14:06:25.0550 1288 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
14:06:25.0565 1288 wbengine - ok
14:06:25.0659 1288 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:06:25.0659 1288 WbioSrvc - ok
14:06:25.0706 1288 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
14:06:25.0706 1288 wcncsvc - ok
14:06:25.0737 1288 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:06:25.0737 1288 WcsPlugInService - ok
14:06:25.0768 1288 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:06:25.0768 1288 Wd - ok
14:06:25.0799 1288 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:06:25.0815 1288 Wdf01000 - ok
14:06:25.0831 1288 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:06:25.0831 1288 WdiServiceHost - ok
14:06:25.0831 1288 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:06:25.0831 1288 WdiSystemHost - ok
14:06:25.0877 1288 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
14:06:25.0877 1288 WebClient - ok
14:06:25.0924 1288 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:06:25.0924 1288 Wecsvc - ok
14:06:25.0940 1288 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:06:25.0940 1288 wercplsupport - ok
14:06:25.0955 1288 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:06:25.0955 1288 WerSvc - ok
14:06:26.0002 1288 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:06:26.0002 1288 WfpLwf - ok
14:06:26.0002 1288 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:06:26.0002 1288 WIMMount - ok
14:06:26.0002 1288 WinHttpAutoProxySvc - ok
14:06:26.0065 1288 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:06:26.0065 1288 Winmgmt - ok
14:06:26.0158 1288 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
14:06:26.0174 1288 WinRM - ok
14:06:26.0314 1288 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
14:06:26.0314 1288 WinUsb - ok
14:06:26.0377 1288 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:06:26.0377 1288 Wlansvc - ok
14:06:26.0611 1288 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:06:26.0611 1288 wlidsvc - ok
14:06:26.0735 1288 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:06:26.0735 1288 WmiAcpi - ok
14:06:26.0782 1288 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:06:26.0782 1288 wmiApSrv - ok
14:06:26.0813 1288 WMPNetworkSvc - ok
14:06:26.0829 1288 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:06:26.0829 1288 WPCSvc - ok
14:06:26.0845 1288 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
14:06:26.0845 1288 WPDBusEnum - ok
14:06:26.0860 1288 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:06:26.0860 1288 ws2ifsl - ok
14:06:26.0860 1288 WSearch - ok
14:06:26.0985 1288 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
14:06:27.0032 1288 wuauserv - ok
14:06:27.0125 1288 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
14:06:27.0125 1288 WudfPf - ok
14:06:27.0157 1288 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:06:27.0157 1288 WUDFRd - ok
14:06:27.0188 1288 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
14:06:27.0188 1288 wudfsvc - ok
14:06:27.0203 1288 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:06:27.0203 1288 WwanSvc - ok
14:06:27.0235 1288 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:06:27.0749 1288 \Device\Harddisk0\DR0 - ok
14:06:27.0781 1288 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
14:06:28.0139 1288 \Device\Harddisk1\DR1 - ok
14:06:28.0139 1288 MBR (0x1B8) (b8e6c11ca5664dbeda85d7507526e0f4) \Device\Harddisk2\DR2
14:06:28.0202 1288 \Device\Harddisk2\DR2 - ok
14:06:28.0202 1288 Boot (0x1200) (d6849811f6c6eda0556652fd3857cc9b) \Device\Harddisk0\DR0\Partition0
14:06:28.0202 1288 \Device\Harddisk0\DR0\Partition0 - ok
14:06:28.0202 1288 Boot (0x1200) (86274864a30718b03524e37ae465c93a) \Device\Harddisk1\DR1\Partition0
14:06:28.0202 1288 \Device\Harddisk1\DR1\Partition0 - ok
14:06:28.0202 1288 Boot (0x1200) (f35983ef6efa42bb505ddb73d95234ce) \Device\Harddisk2\DR2\Partition0
14:06:28.0217 1288 \Device\Harddisk2\DR2\Partition0 - ok
14:06:28.0217 1288 ============================================================
14:06:28.0217 1288 Scan finished
14:06:28.0217 1288 ============================================================
14:06:28.0233 0360 Detected object count: 0
14:06:28.0233 0360 Actual detected object count: 0

aswMBR Log:

14:05:44.0958 1348 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
14:05:45.0052 1348 ============================================================
14:05:45.0052 1348 Current date / time: 2012/07/17 14:05:45.0052
14:05:45.0052 1348 SystemInfo:
14:05:45.0052 1348
14:05:45.0052 1348 OS Version: 6.1.7600 ServicePack: 0.0
14:05:45.0052 1348 Product type: Workstation
14:05:45.0052 1348 ComputerName: AWESOMO-0
14:05:45.0052 1348 UserName: Malte
14:05:45.0052 1348 Windows directory: C:\Windows
14:05:45.0052 1348 System windows directory: C:\Windows
14:05:45.0052 1348 Running under WOW64
14:05:45.0052 1348 Processor architecture: Intel x64
14:05:45.0052 1348 Number of processors: 8
14:05:45.0052 1348 Page size: 0x1000
14:05:45.0052 1348 Boot type: Safe boot with network
14:05:45.0052 1348 ============================================================
14:05:46.0378 1348 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:05:46.0394 1348 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:05:46.0409 1348 Drive \Device\Harddisk2\DR2 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:05:46.0409 1348 ============================================================
14:05:46.0409 1348 \Device\Harddisk0\DR0:
14:05:46.0409 1348 MBR partitions:
14:05:46.0409 1348 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
14:05:46.0409 1348 \Device\Harddisk1\DR1:
14:05:46.0409 1348 MBR partitions:
14:05:46.0409 1348 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
14:05:46.0409 1348 \Device\Harddisk2\DR2:
14:05:46.0409 1348 MBR partitions:
14:05:46.0409 1348 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
14:05:46.0409 1348 ============================================================
14:05:46.0425 1348 C: <-> \Device\Harddisk1\DR1\Partition0
14:05:46.0440 1348 F: <-> \Device\Harddisk2\DR2\Partition0
14:05:46.0487 1348 M: <-> \Device\Harddisk0\DR0\Partition0
14:05:46.0487 1348 ============================================================
14:05:46.0487 1348 Initialize success
14:05:46.0487 1348 ============================================================
14:06:05.0270 1288 ============================================================
14:06:05.0270 1288 Scan started
14:06:05.0270 1288 Mode: Manual; TDLFS;
14:06:05.0270 1288 ============================================================
14:06:05.0894 1288 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
14:06:05.0894 1288 1394ohci - ok
14:06:05.0925 1288 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
14:06:05.0925 1288 ACPI - ok
14:06:05.0941 1288 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
14:06:05.0941 1288 AcpiPmi - ok
14:06:06.0034 1288 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:06:06.0034 1288 AdobeARMservice - ok
14:06:06.0081 1288 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:06:06.0097 1288 adp94xx - ok
14:06:06.0128 1288 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:06:06.0128 1288 adpahci - ok
14:06:06.0159 1288 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:06:06.0159 1288 adpu320 - ok
14:06:06.0175 1288 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:06:06.0175 1288 AeLookupSvc - ok
14:06:06.0237 1288 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
14:06:06.0237 1288 AFD - ok
14:06:06.0268 1288 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
14:06:06.0268 1288 agp440 - ok
14:06:06.0284 1288 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:06:06.0284 1288 ALG - ok
14:06:06.0299 1288 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
14:06:06.0299 1288 aliide - ok
14:06:06.0409 1288 ALSysIO - ok
14:06:06.0455 1288 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
14:06:06.0455 1288 AMD External Events Utility - ok
14:06:06.0471 1288 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
14:06:06.0471 1288 amdide - ok
14:06:06.0487 1288 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:06:06.0487 1288 AmdK8 - ok
14:06:07.0064 1288 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
14:06:07.0204 1288 amdkmdag - ok
14:06:07.0329 1288 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
14:06:07.0329 1288 amdkmdap - ok
14:06:07.0345 1288 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:06:07.0345 1288 AmdPPM - ok
14:06:07.0391 1288 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
14:06:07.0391 1288 amdsata - ok
14:06:07.0423 1288 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:06:07.0423 1288 amdsbs - ok
14:06:07.0454 1288 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
14:06:07.0454 1288 amdxata - ok
14:06:07.0501 1288 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
14:06:07.0501 1288 AppID - ok
14:06:07.0516 1288 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:06:07.0516 1288 AppIDSvc - ok
14:06:07.0547 1288 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
14:06:07.0547 1288 Appinfo - ok
14:06:07.0672 1288 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:06:07.0672 1288 Apple Mobile Device - ok
14:06:07.0688 1288 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
14:06:07.0703 1288 AppMgmt - ok
14:06:07.0735 1288 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:06:07.0735 1288 arc - ok
14:06:07.0766 1288 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:06:07.0766 1288 arcsas - ok
14:06:07.0797 1288 aspnet_state - ok
14:06:07.0828 1288 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:06:07.0828 1288 AsyncMac - ok
14:06:07.0844 1288 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
14:06:07.0844 1288 atapi - ok
14:06:07.0891 1288 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
14:06:07.0891 1288 AtiHDAudioService - ok
14:06:07.0953 1288 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
14:06:07.0953 1288 AudioEndpointBuilder - ok
14:06:07.0969 1288 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
14:06:07.0969 1288 AudioSrv - ok
14:06:07.0984 1288 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
14:06:08.0000 1288 AxInstSV - ok
14:06:08.0047 1288 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:06:08.0047 1288 b06bdrv - ok
14:06:08.0078 1288 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:06:08.0093 1288 b57nd60a - ok
14:06:08.0109 1288 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:06:08.0109 1288 BDESVC - ok
14:06:08.0125 1288 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:06:08.0125 1288 Beep - ok
14:06:08.0171 1288 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
14:06:08.0296 1288 BITS - ok
14:06:08.0327 1288 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:06:08.0327 1288 blbdrive - ok
14:06:08.0421 1288 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
14:06:08.0437 1288 Bonjour Service - ok
14:06:08.0483 1288 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
14:06:08.0483 1288 bowser - ok
14:06:08.0499 1288 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:06:08.0499 1288 BrFiltLo - ok
14:06:08.0546 1288 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:06:08.0546 1288 BrFiltUp - ok
14:06:08.0624 1288 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
14:06:08.0624 1288 Browser - ok
14:06:08.0920 1288 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:06:08.0920 1288 Brserid - ok
14:06:08.0936 1288 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:06:08.0936 1288 BrSerWdm - ok
14:06:08.0951 1288 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:06:08.0951 1288 BrUsbMdm - ok
14:06:08.0967 1288 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:06:08.0967 1288 BrUsbSer - ok
14:06:09.0029 1288 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
14:06:09.0029 1288 BthEnum - ok
14:06:09.0045 1288 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:06:09.0045 1288 BTHMODEM - ok
14:06:09.0076 1288 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
14:06:09.0076 1288 BthPan - ok
14:06:09.0154 1288 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
14:06:09.0154 1288 BTHPORT - ok
14:06:09.0170 1288 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:06:09.0185 1288 bthserv - ok
14:06:09.0185 1288 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
14:06:09.0185 1288 BTHUSB - ok
14:06:09.0248 1288 Cardex - ok
14:06:09.0279 1288 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:06:09.0279 1288 cdfs - ok
14:06:09.0310 1288 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
14:06:09.0326 1288 cdrom - ok
14:06:09.0357 1288 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
14:06:09.0357 1288 CertPropSvc - ok
14:06:09.0357 1288 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:06:09.0357 1288 circlass - ok
14:06:09.0388 1288 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:06:09.0388 1288 CLFS - ok
14:06:09.0435 1288 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:06:09.0435 1288 clr_optimization_v2.0.50727_32 - ok
14:06:09.0482 1288 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:06:09.0482 1288 clr_optimization_v2.0.50727_64 - ok
14:06:09.0575 1288 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:06:09.0591 1288 clr_optimization_v4.0.30319_32 - ok
14:06:09.0622 1288 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:06:09.0622 1288 clr_optimization_v4.0.30319_64 - ok
14:06:09.0669 1288 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:06:09.0669 1288 CmBatt - ok
14:06:09.0669 1288 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
14:06:09.0669 1288 cmdide - ok
14:06:09.0716 1288 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
14:06:09.0716 1288 CNG - ok
14:06:09.0763 1288 COMMONFX (f38acff40e9edc2b3476edd724cea4a0) C:\Windows\system32\drivers\COMMONFX.SYS
14:06:09.0763 1288 COMMONFX - ok
14:06:09.0763 1288 COMMONFX.DLL - ok
14:06:09.0778 1288 COMMONFX.SYS (f38acff40e9edc2b3476edd724cea4a0) C:\Windows\System32\drivers\COMMONFX.SYS
14:06:09.0778 1288 COMMONFX.SYS - ok
14:06:09.0794 1288 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:06:09.0794 1288 Compbatt - ok
14:06:09.0809 1288 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:06:09.0809 1288 CompositeBus - ok
14:06:09.0825 1288 COMSysApp - ok
14:06:09.0903 1288 cpuz132 - ok
14:06:09.0950 1288 cpuz134 (17719a7f571d4cd08223f0b30f71b8b8) C:\Windows\system32\drivers\cpuz134_x64.sys
14:06:09.0950 1288 cpuz134 - ok
14:06:09.0965 1288 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:06:09.0965 1288 crcdisk - ok
14:06:10.0012 1288 Creative ALchemy AL6 Licensing Service (c8bd651e13895b93ed9ec5b4f1df42bc) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
14:06:10.0012 1288 Creative ALchemy AL6 Licensing Service - ok
14:06:10.0028 1288 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
14:06:10.0028 1288 Creative Audio Engine Licensing Service - ok
14:06:10.0075 1288 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
14:06:10.0090 1288 CryptSvc - ok
14:06:10.0106 1288 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
14:06:10.0121 1288 CSC - ok
14:06:10.0168 1288 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
14:06:10.0168 1288 CscService - ok
14:06:10.0199 1288 CT20XUT.DLL (07fefa45ee2b8c9de505eb4e744080aa) C:\Windows\System32\CT20XUT.DLL
14:06:10.0199 1288 CT20XUT.DLL - ok
14:06:10.0262 1288 ctac32k (095c566746217cd1482ede40a70d87d2) C:\Windows\system32\drivers\ctac32k.sys
14:06:10.0262 1288 ctac32k - ok
14:06:10.0309 1288 ctaud2k (157e2196fccd002a2edf3b06df7b0c9a) C:\Windows\system32\drivers\ctaud2k.sys
14:06:10.0309 1288 ctaud2k - ok
14:06:10.0355 1288 CTAUDFX (17979ee857e930cbfdf24a12e89d77a1) C:\Windows\system32\drivers\CTAUDFX.SYS
14:06:10.0355 1288 CTAUDFX - ok
14:06:10.0371 1288 CTAUDFX.DLL - ok
14:06:10.0371 1288 CTAUDFX.SYS (17979ee857e930cbfdf24a12e89d77a1) C:\Windows\System32\drivers\CTAUDFX.SYS
14:06:10.0371 1288 CTAUDFX.SYS - ok
14:06:10.0449 1288 CTAudSvcService (5ce3d0e1d1b3832ee052cfc442eee0fa) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
14:06:10.0449 1288 CTAudSvcService - ok
14:06:10.0496 1288 CTEAPSFX.DLL (859efd02c7a23cf95339180b7d6b6c18) C:\Windows\System32\CTEAPSFX.DLL
14:06:10.0496 1288 CTEAPSFX.DLL - ok
14:06:10.0527 1288 CTEDSPFX.DLL (2af75ba5416064a923815a481bca43ec) C:\Windows\System32\CTEDSPFX.DLL
14:06:10.0527 1288 CTEDSPFX.DLL - ok
14:06:10.0558 1288 CTEDSPIO.DLL (babbf5978b202de6fd77b26bb4502be5) C:\Windows\System32\CTEDSPIO.DLL
14:06:10.0558 1288 CTEDSPIO.DLL - ok
14:06:10.0589 1288 CTEDSPSY.DLL (ec398f53c3a9d3c105a4d9695ba0405d) C:\Windows\System32\CTEDSPSY.DLL
14:06:10.0589 1288 CTEDSPSY.DLL - ok
14:06:10.0621 1288 CTERFXFX (fe3eae37536c02d087e5c5d339663779) C:\Windows\system32\drivers\CTERFXFX.SYS
14:06:10.0621 1288 CTERFXFX - ok
14:06:10.0621 1288 CTERFXFX.DLL - ok
14:06:10.0636 1288 CTERFXFX.SYS (fe3eae37536c02d087e5c5d339663779) C:\Windows\System32\drivers\CTERFXFX.SYS
14:06:10.0636 1288 CTERFXFX.SYS - ok
14:06:10.0714 1288 CTEXFIFX.DLL (2a628f7c9b788fb8aa1f483a82fb0ecb) C:\Windows\System32\CTEXFIFX.DLL
14:06:10.0730 1288 CTEXFIFX.DLL - ok
14:06:10.0808 1288 CTHWIUT.DLL (03dc20211a5e024a025c6565fb658362) C:\Windows\System32\CTHWIUT.DLL
14:06:10.0808 1288 CTHWIUT.DLL - ok
14:06:10.0808 1288 ctprxy2k (4e4fdab4a7cf5af56e3fa1fe35e8ad3c) C:\Windows\system32\drivers\ctprxy2k.sys
14:06:10.0823 1288 ctprxy2k - ok
14:06:10.0855 1288 CTSBLFX (4a7de2e30b2b9253933a157401ec76d5) C:\Windows\system32\drivers\CTSBLFX.SYS
14:06:10.0870 1288 CTSBLFX - ok
14:06:10.0870 1288 CTSBLFX.DLL - ok
14:06:10.0870 1288 CTSBLFX.SYS (4a7de2e30b2b9253933a157401ec76d5) C:\Windows\System32\drivers\CTSBLFX.SYS
14:06:10.0870 1288 CTSBLFX.SYS - ok
14:06:10.0901 1288 ctsfm2k (065ade032a044d518ab1407d3586b7d5) C:\Windows\system32\drivers\ctsfm2k.sys
14:06:10.0901 1288 ctsfm2k - ok
14:06:10.0948 1288 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
14:06:10.0948 1288 DcomLaunch - ok
14:06:10.0995 1288 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:06:10.0995 1288 defragsvc - ok
14:06:11.0042 1288 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
14:06:11.0042 1288 DfsC - ok
14:06:11.0089 1288 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
14:06:11.0089 1288 Dhcp - ok
14:06:11.0104 1288 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:06:11.0104 1288 discache - ok
14:06:11.0120 1288 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:06:11.0120 1288 Disk - ok
14:06:11.0167 1288 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
14:06:11.0167 1288 Dnscache - ok
14:06:11.0198 1288 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
14:06:11.0198 1288 dot3svc - ok
14:06:11.0213 1288 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
14:06:11.0213 1288 DPS - ok
14:06:11.0229 1288 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:06:11.0229 1288 drmkaud - ok
14:06:11.0307 1288 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
14:06:11.0323 1288 DXGKrnl - ok
14:06:11.0323 1288 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:06:11.0338 1288 EapHost - ok
14:06:11.0479 1288 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:06:11.0510 1288 ebdrv - ok
14:06:11.0603 1288 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
14:06:11.0603 1288 EFS - ok
14:06:11.0681 1288 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
14:06:11.0681 1288 ehRecvr - ok
14:06:11.0713 1288 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
14:06:11.0713 1288 ehSched - ok
14:06:11.0775 1288 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:06:11.0775 1288 elxstor - ok
14:06:11.0806 1288 emupia (f380ff5d6d80cecc6dbbc15569757613) C:\Windows\system32\drivers\emupia2k.sys
14:06:11.0806 1288 emupia - ok
14:06:11.0822 1288 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
14:06:11.0822 1288 ErrDev - ok
14:06:11.0853 1288 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:06:11.0869 1288 EventSystem - ok
14:06:11.0884 1288 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:06:11.0884 1288 exfat - ok
14:06:11.0900 1288 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:06:11.0900 1288 fastfat - ok
14:06:11.0947 1288 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
14:06:11.0947 1288 Fax - ok
14:06:11.0978 1288 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:06:11.0978 1288 fdc - ok
14:06:11.0993 1288 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:06:11.0993 1288 fdPHost - ok
14:06:12.0009 1288 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:06:12.0009 1288 FDResPub - ok
14:06:12.0025 1288 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:06:12.0025 1288 FileInfo - ok
14:06:12.0025 1288 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:06:12.0025 1288 Filetrace - ok
14:06:12.0134 1288 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
14:06:12.0134 1288 FLEXnet Licensing Service - ok
14:06:12.0243 1288 FLEXnet Licensing Service 64 (5cee6cd43ae5844c49300ea0b1e557ee) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
14:06:12.0243 1288 FLEXnet Licensing Service 64 - ok
14:06:12.0337 1288 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:06:12.0337 1288 flpydisk - ok
14:06:12.0368 1288 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
14:06:12.0368 1288 FltMgr - ok
14:06:12.0446 1288 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
14:06:12.0461 1288 FontCache - ok
14:06:12.0633 1288 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:06:12.0633 1288 FontCache3.0.0.0 - ok
14:06:12.0711 1288 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:06:12.0711 1288 FsDepends - ok
14:06:12.0742 1288 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
14:06:12.0742 1288 Fs_Rec - ok
14:06:12.0789 1288 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:06:12.0789 1288 fvevol - ok
14:06:12.0820 1288 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:06:12.0820 1288 gagp30kx - ok
14:06:12.0851 1288 gdrv (6275303610285b57361f03a375062fba) C:\Windows\gdrv.sys
14:06:12.0851 1288 gdrv - ok
14:06:12.0898 1288 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:06:12.0898 1288 GEARAspiWDM - ok
14:06:12.0961 1288 GEST Service (20438b962021f0ea729020ed5a148d4c) C:\Program Files (x86)\GIGABYTE\EnergySaver\GSvr.exe
14:06:12.0961 1288 GEST Service - ok
14:06:13.0039 1288 Giraffic - ok
14:06:13.0085 1288 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
14:06:13.0085 1288 gpsvc - ok
14:06:13.0148 1288 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:06:13.0148 1288 gupdate - ok
14:06:13.0179 1288 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:06:13.0179 1288 gupdatem - ok
14:06:13.0210 1288 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:06:13.0226 1288 gusvc - ok
14:06:13.0226 1288 gvgjmzvz - ok
14:06:13.0304 1288 ha10kx2k (82b68f585110ae8500a6d23623ae1f74) C:\Windows\system32\drivers\ha10kx2k.sys
14:06:13.0319 1288 ha10kx2k - ok
14:06:13.0429 1288 hap16v2k (83f647f9ace9192556f758e528024f68) C:\Windows\system32\drivers\hap16v2k.sys
14:06:13.0429 1288 hap16v2k - ok
14:06:13.0444 1288 hap17v2k (e815d29361de89d24c8dbe3e5a7006c9) C:\Windows\system32\drivers\hap17v2k.sys
14:06:13.0460 1288 hap17v2k - ok
14:06:13.0553 1288 Hardlock (091582da724f54830012e3faaf2f1d1a) C:\Windows\system32\drivers\hardlock.sys
14:06:13.0553 1288 Hardlock - ok
14:06:13.0569 1288 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:06:13.0569 1288 hcw85cir - ok
14:06:13.0600 1288 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
14:06:13.0616 1288 HdAudAddService - ok
14:06:13.0631 1288 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:06:13.0631 1288 HDAudBus - ok
14:06:13.0647 1288 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:06:13.0647 1288 HidBatt - ok
14:06:13.0647 1288 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:06:13.0647 1288 HidBth - ok
14:06:13.0663 1288 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:06:13.0663 1288 HidIr - ok
14:06:13.0694 1288 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:06:13.0694 1288 hidserv - ok
14:06:13.0741 1288 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
14:06:13.0741 1288 HidUsb - ok
14:06:13.0741 1288 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
14:06:13.0741 1288 hkmsvc - ok
14:06:13.0772 1288 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
14:06:13.0772 1288 HomeGroupListener - ok
14:06:13.0787 1288 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
14:06:13.0787 1288 HomeGroupProvider - ok
14:06:13.0787 1288 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
14:06:13.0787 1288 HpSAMD - ok
14:06:13.0834 1288 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
14:06:13.0850 1288 HTTP - ok
14:06:13.0865 1288 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
14:06:13.0865 1288 hwpolicy - ok
14:06:13.0897 1288 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:06:13.0897 1288 i8042prt - ok
14:06:14.0209 1288 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
14:06:14.0209 1288 iaStorV - ok
14:06:14.0349 1288 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:06:14.0349 1288 IDriverT - ok
14:06:14.0427 1288 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:06:14.0443 1288 idsvc - ok
14:06:14.0505 1288 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:06:14.0505 1288 iirsp - ok
14:06:14.0599 1288 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
14:06:14.0614 1288 IKEEXT - ok
14:06:14.0770 1288 IntcAzAudAddService (a0c2c3d4c03c4fb896cfc53873784178) C:\Windows\system32\drivers\RTKVHD64.sys
14:06:14.0786 1288 IntcAzAudAddService - ok
14:06:14.0879 1288 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
14:06:14.0879 1288 intelide - ok
14:06:14.0895 1288 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:06:14.0895 1288 intelppm - ok
14:06:14.0926 1288 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:06:14.0926 1288 IPBusEnum - ok
14:06:14.0942 1288 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:06:14.0942 1288 IpFilterDriver - ok
14:06:14.0942 1288 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:06:14.0942 1288 IPMIDRV - ok
14:06:14.0973 1288 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:06:14.0973 1288 IPNAT - ok
14:06:15.0082 1288 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
14:06:15.0082 1288 iPod Service - ok
14:06:15.0098 1288 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:06:15.0098 1288 IRENUM - ok
14:06:15.0129 1288 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
14:06:15.0129 1288 isapnp - ok
14:06:15.0145 1288 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
14:06:15.0145 1288 iScsiPrt - ok
14:06:15.0191 1288 JRAID (db85fe8d6cbaa2047cb4da1b2c193d76) C:\Windows\system32\DRIVERS\jraid.sys
14:06:15.0191 1288 JRAID - ok
14:06:15.0207 1288 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:06:15.0207 1288 kbdclass - ok
14:06:15.0238 1288 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
14:06:15.0238 1288 kbdhid - ok
14:06:15.0269 1288 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:15.0269 1288 KeyIso - ok
14:06:15.0316 1288 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
14:06:15.0316 1288 KSecDD - ok
14:06:15.0347 1288 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
14:06:15.0347 1288 KSecPkg - ok
14:06:15.0363 1288 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:06:15.0363 1288 ksthunk - ok
14:06:15.0410 1288 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:06:15.0410 1288 KtmRm - ok
14:06:15.0472 1288 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
14:06:15.0503 1288 LanmanServer - ok
14:06:15.0519 1288 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
14:06:15.0535 1288 LanmanWorkstation - ok
14:06:15.0566 1288 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:06:15.0566 1288 lltdio - ok
14:06:15.0597 1288 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:06:15.0597 1288 lltdsvc - ok
14:06:15.0597 1288 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:06:15.0597 1288 lmhosts - ok
14:06:15.0644 1288 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:06:15.0644 1288 LSI_FC - ok
14:06:15.0675 1288 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:06:15.0675 1288 LSI_SAS - ok
14:06:15.0691 1288 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:06:15.0691 1288 LSI_SAS2 - ok
14:06:15.0691 1288 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:06:15.0691 1288 LSI_SCSI - ok
14:06:15.0706 1288 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:06:15.0722 1288 luafv - ok
14:06:15.0737 1288 LVPr2M64 - ok
14:06:15.0831 1288 mbmiodrvr (2e1652d8ab971403eaaddc921800b1fa) C:\Windows\syswow64\mbmiodrvr.sys
14:06:15.0831 1288 mbmiodrvr - ok
14:06:15.0862 1288 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
14:06:15.0862 1288 Mcx2Svc - ok
14:06:15.0893 1288 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:06:15.0893 1288 megasas - ok
14:06:15.0909 1288 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:06:15.0909 1288 MegaSR - ok
14:06:16.0018 1288 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
14:06:16.0018 1288 Microsoft Office Groove Audit Service - ok
14:06:16.0034 1288 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:06:16.0034 1288 MMCSS - ok
14:06:16.0065 1288 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:06:16.0065 1288 Modem - ok
14:06:16.0081 1288 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:06:16.0081 1288 monitor - ok
14:06:16.0096 1288 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:06:16.0096 1288 mouclass - ok
14:06:16.0112 1288 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:06:16.0112 1288 mouhid - ok
14:06:16.0127 1288 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
14:06:16.0143 1288 mountmgr - ok
14:06:16.0190 1288 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:06:16.0190 1288 MozillaMaintenance - ok
14:06:16.0268 1288 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
14:06:16.0268 1288 MpFilter - ok
14:06:16.0283 1288 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
14:06:16.0299 1288 mpio - ok
14:06:16.0315 1288 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:06:16.0315 1288 mpsdrv - ok
14:06:16.0346 1288 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
14:06:16.0346 1288 MRxDAV - ok
14:06:16.0393 1288 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:06:16.0393 1288 mrxsmb - ok
14:06:16.0439 1288 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:06:16.0439 1288 mrxsmb10 - ok
14:06:16.0455 1288 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:06:16.0455 1288 mrxsmb20 - ok
14:06:16.0471 1288 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
14:06:16.0471 1288 msahci - ok
14:06:16.0486 1288 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
14:06:16.0486 1288 msdsm - ok
14:06:16.0533 1288 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:06:16.0533 1288 MSDTC - ok
14:06:16.0564 1288 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:06:16.0564 1288 Msfs - ok
14:06:16.0595 1288 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:06:16.0595 1288 mshidkmdf - ok
14:06:16.0611 1288 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
14:06:16.0611 1288 msisadrv - ok
14:06:16.0689 1288 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:06:16.0689 1288 MSiSCSI - ok
14:06:16.0689 1288 msiserver - ok
14:06:16.0720 1288 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:06:16.0720 1288 MSKSSRV - ok
14:06:16.0829 1288 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) C:\Program Files\Microsoft Security Client\MsMpEng.exe
14:06:16.0829 1288 MsMpSvc - ok
14:06:16.0829 1288 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:06:16.0829 1288 MSPCLOCK - ok
14:06:16.0829 1288 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:06:16.0829 1288 MSPQM - ok
14:06:16.0861 1288 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
14:06:16.0861 1288 MsRPC - ok
14:06:16.0876 1288 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
14:06:16.0876 1288 mssmbios - ok
14:06:16.0923 1288 MSSQL$SONY_MEDIAMGR - ok
14:06:16.0954 1288 MSSQLServerADHelper (cb7524c21727404bd3140dca32deb7de) C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
14:06:16.0954 1288 MSSQLServerADHelper - ok
14:06:16.0970 1288 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:06:16.0970 1288 MSTEE - ok
14:06:17.0001 1288 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:06:17.0001 1288 MTConfig - ok
14:06:17.0017 1288 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:06:17.0017 1288 Mup - ok
14:06:17.0048 1288 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
14:06:17.0063 1288 napagent - ok
14:06:17.0095 1288 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:06:17.0095 1288 NativeWifiP - ok
14:06:17.0157 1288 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
14:06:17.0173 1288 NDIS - ok
14:06:17.0188 1288 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:06:17.0188 1288 NdisCap - ok
14:06:17.0204 1288 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:06:17.0204 1288 NdisTapi - ok
14:06:17.0219 1288 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
14:06:17.0219 1288 Ndisuio - ok
14:06:17.0235 1288 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:06:17.0235 1288 NdisWan - ok
14:06:17.0251 1288 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
14:06:17.0251 1288 NDProxy - ok
14:06:17.0297 1288 Netaapl (6f4607e2333fe21e9e3ff8133a88b35b) C:\Windows\system32\DRIVERS\netaapl64.sys
14:06:17.0297 1288 Netaapl - ok
14:06:17.0329 1288 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:06:17.0329 1288 NetBIOS - ok
14:06:17.0344 1288 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
14:06:17.0344 1288 NetBT - ok
14:06:17.0391 1288 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:17.0391 1288 Netlogon - ok
14:06:17.0438 1288 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:06:17.0438 1288 Netman - ok
14:06:17.0469 1288 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:06:17.0469 1288 netprofm - ok
14:06:17.0531 1288 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:06:17.0531 1288 NetTcpPortSharing - ok
14:06:17.0563 1288 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:06:17.0563 1288 nfrd960 - ok
14:06:17.0625 1288 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:06:17.0625 1288 NisDrv - ok
14:06:17.0750 1288 NisSrv (10a43829a9e606af3eef25a1c1665923) C:\Program Files\Microsoft Security Client\NisSrv.exe
14:06:17.0750 1288 NisSrv - ok
14:06:17.0859 1288 NitroReaderDriverReadSpool2 (c9161bc998b33ca78a728c842ac6bdf6) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
14:06:17.0859 1288 NitroReaderDriverReadSpool2 - ok
14:06:17.0906 1288 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
14:06:17.0906 1288 NlaSvc - ok
14:06:17.0921 1288 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:06:17.0921 1288 Npfs - ok
14:06:17.0937 1288 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:06:17.0937 1288 nsi - ok
14:06:17.0953 1288 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:06:17.0953 1288 nsiproxy - ok
14:06:18.0062 1288 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
14:06:18.0077 1288 Ntfs - ok
14:06:18.0155 1288 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:06:18.0155 1288 Null - ok
14:06:18.0233 1288 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
14:06:18.0233 1288 nvraid - ok
14:06:18.0280 1288 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
14:06:18.0280 1288 nvstor - ok
14:06:18.0405 1288 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:06:18.0405 1288 odserv - ok
14:06:18.0421 1288 ogceuxlg - ok
14:06:18.0452 1288 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
14:06:18.0452 1288 ohci1394 - ok
14:06:18.0514 1288 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:06:18.0514 1288 ose - ok
14:06:18.0577 1288 ossrv (85ea378116e2c4385993ba5124536ffc) C:\Windows\system32\drivers\ctoss2k.sys
14:06:18.0577 1288 ossrv - ok
14:06:18.0608 1288 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:06:18.0608 1288 p2pimsvc - ok
14:06:18.0639 1288 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:06:18.0639 1288 p2psvc - ok
14:06:18.0639 1288 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:06:18.0639 1288 Parport - ok
14:06:18.0701 1288 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
14:06:18.0701 1288 partmgr - ok
14:06:18.0717 1288 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:06:18.0717 1288 PcaSvc - ok
14:06:18.0748 1288 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
14:06:18.0748 1288 pci - ok
14:06:18.0748 1288 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
14:06:18.0764 1288 pciide - ok
14:06:18.0779 1288 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:06:18.0779 1288 pcmcia - ok
14:06:18.0795 1288 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:06:18.0795 1288 pcw - ok
14:06:18.0842 1288 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:06:18.0842 1288 PEAUTH - ok
14:06:18.0920 1288 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
14:06:18.0935 1288 PeerDistSvc - ok
14:06:18.0998 1288 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:06:18.0998 1288 PerfHost - ok
14:06:19.0123 1288 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
14:06:19.0138 1288 pla - ok
14:06:19.0185 1288 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
14:06:19.0185 1288 PlugPlay - ok
14:06:19.0201 1288 PnkBstrA - ok
14:06:19.0232 1288 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:06:19.0232 1288 PNRPAutoReg - ok
14:06:19.0263 1288 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:06:19.0263 1288 PNRPsvc - ok
14:06:19.0294 1288 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
14:06:19.0310 1288 PolicyAgent - ok
14:06:19.0325 1288 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:06:19.0325 1288 Power - ok
14:06:19.0372 1288 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
14:06:19.0372 1288 PptpMiniport - ok
14:06:19.0403 1288 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:06:19.0403 1288 Processor - ok
14:06:19.0450 1288 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
14:06:19.0450 1288 ProfSvc - ok
14:06:19.0481 1288 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:19.0481 1288 ProtectedStorage - ok
14:06:19.0513 1288 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
14:06:19.0513 1288 Psched - ok
14:06:19.0591 1288 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:06:19.0606 1288 ql2300 - ok
14:06:19.0715 1288 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:06:19.0715 1288 ql40xx - ok
14:06:19.0762 1288 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:06:19.0762 1288 QWAVE - ok
14:06:19.0793 1288 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:06:19.0793 1288 QWAVEdrv - ok
14:06:19.0903 1288 RadeonPro Support Service (6c8f17953c07f88364307fc7811c5184) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
14:06:19.0903 1288 RadeonPro Support Service - ok
14:06:19.0918 1288 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:06:19.0918 1288 RasAcd - ok
14:06:19.0965 1288 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:06:19.0965 1288 RasAgileVpn - ok
14:06:19.0981 1288 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:06:19.0981 1288 RasAuto - ok
14:06:20.0012 1288 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:06:20.0012 1288 Rasl2tp - ok
14:06:20.0043 1288 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
14:06:20.0043 1288 RasMan - ok
14:06:20.0059 1288 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:06:20.0059 1288 RasPppoe - ok
14:06:20.0074 1288 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:06:20.0074 1288 RasSstp - ok
14:06:20.0105 1288 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
14:06:20.0105 1288 rdbss - ok
14:06:20.0105 1288 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:06:20.0105 1288 rdpbus - ok
14:06:20.0121 1288 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:06:20.0121 1288 RDPCDD - ok
14:06:20.0152 1288 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
14:06:20.0152 1288 RDPDR - ok
14:06:20.0183 1288 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:06:20.0183 1288 RDPENCDD - ok
14:06:20.0183 1288 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:06:20.0183 1288 RDPREFMP - ok
14:06:20.0230 1288 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
14:06:20.0230 1288 RDPWD - ok
14:06:20.0261 1288 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
14:06:20.0261 1288 rdyboost - ok
14:06:20.0293 1288 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:06:20.0293 1288 RemoteAccess - ok
14:06:20.0324 1288 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:06:20.0324 1288 RemoteRegistry - ok
14:06:20.0402 1288 Revoflt (9c3ac71a9934b884fac567a8807e9c4d) C:\Windows\system32\DRIVERS\revoflt.sys
14:06:20.0402 1288 Revoflt - ok
14:06:20.0449 1288 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
14:06:20.0449 1288 RFCOMM - ok
14:06:20.0480 1288 RMCAST (77b3b747eb2413072b8e4306018d0c9b) C:\Windows\system32\DRIVERS\RMCAST.sys
14:06:20.0480 1288 RMCAST - ok
14:06:20.0511 1288 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:06:20.0511 1288 RpcEptMapper - ok
14:06:20.0542 1288 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:06:20.0542 1288 RpcLocator - ok
14:06:20.0573 1288 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
14:06:20.0589 1288 RpcSs - ok
14:06:20.0620 1288 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:06:20.0636 1288 rspndr - ok
14:06:20.0698 1288 RTL8167 (4fbda07ef0a3097ce14c5cabf723b278) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:06:20.0698 1288 RTL8167 - ok
14:06:20.0745 1288 RtNdPt60 (2b38c905492f36fe42b59da52d6b4eb7) C:\Windows\system32\DRIVERS\RtNdPt60.sys
14:06:20.0745 1288 RtNdPt60 - ok
14:06:20.0792 1288 RTTEAMPT (3183388da27655085960a22b4b29caa9) C:\Windows\system32\DRIVERS\RtTeam60.sys
14:06:20.0792 1288 RTTEAMPT - ok
14:06:20.0807 1288 RTVLANPT (8b6b42d782202363a562f82b0e13b1c0) C:\Windows\system32\DRIVERS\RtVlan60.sys
14:06:20.0807 1288 RTVLANPT - ok
14:06:20.0807 1288 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
14:06:20.0823 1288 s3cap - ok
14:06:20.0854 1288 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:20.0854 1288 SamSs - ok
14:06:20.0870 1288 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
14:06:20.0870 1288 sbp2port - ok
14:06:20.0901 1288 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:06:20.0917 1288 SCardSvr - ok
14:06:20.0979 1288 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys
14:06:20.0979 1288 SCDEmu - ok
14:06:20.0995 1288 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
14:06:20.0995 1288 scfilter - ok
14:06:21.0073 1288 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
14:06:21.0088 1288 Schedule - ok
14:06:21.0104 1288 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
14:06:21.0104 1288 SCPolicySvc - ok
14:06:21.0151 1288 ScreamBAudioSvc (8b56bdce6a303dde63d63440d1cf9ad1) C:\Windows\system32\drivers\ScreamingBAudio64.sys
14:06:21.0151 1288 ScreamBAudioSvc - ok
14:06:21.0182 1288 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
14:06:21.0182 1288 SDRSVC - ok
14:06:21.0197 1288 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:06:21.0197 1288 secdrv - ok
14:06:21.0213 1288 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
14:06:21.0213 1288 seclogon - ok
14:06:21.0229 1288 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:06:21.0229 1288 SENS - ok
14:06:21.0244 1288 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:06:21.0244 1288 SensrSvc - ok
14:06:21.0260 1288 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:06:21.0260 1288 Serenum - ok
14:06:21.0275 1288 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:06:21.0275 1288 Serial - ok
14:06:21.0291 1288 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:06:21.0291 1288 sermouse - ok
14:06:21.0338 1288 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
14:06:21.0353 1288 SessionEnv - ok
14:06:21.0369 1288 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
14:06:21.0369 1288 sffdisk - ok
14:06:21.0369 1288 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:06:21.0369 1288 sffp_mmc - ok
14:06:21.0369 1288 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
14:06:21.0369 1288 sffp_sd - ok
14:06:21.0369 1288 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:06:21.0385 1288 sfloppy - ok
14:06:21.0416 1288 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
14:06:21.0431 1288 ShellHWDetection - ok
14:06:21.0431 1288 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:06:21.0431 1288 SiSRaid2 - ok
14:06:21.0447 1288 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:06:21.0447 1288 SiSRaid4 - ok
14:06:21.0463 1288 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:06:21.0463 1288 Smb - ok
14:06:21.0509 1288 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:06:21.0509 1288 SNMPTRAP - ok
14:06:21.0509 1288 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:06:21.0509 1288 spldr - ok
14:06:21.0572 1288 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
14:06:21.0572 1288 Spooler - ok
14:06:21.0728 1288 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
14:06:21.0759 1288 sppsvc - ok
14:06:21.0821 1288 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:06:21.0821 1288 sppuinotify - ok
14:06:21.0946 1288 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
14:06:21.0946 1288 sptd - ok
14:06:22.0009 1288 SQLAgent$SONY_MEDIAMGR - ok
14:06:22.0055 1288 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
14:06:22.0055 1288 srv - ok
14:06:22.0087 1288 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
14:06:22.0087 1288 srv2 - ok
14:06:22.0133 1288 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
14:06:22.0133 1288 srvnet - ok
14:06:22.0165 1288 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:06:22.0165 1288 SSDPSRV - ok
14:06:22.0180 1288 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:06:22.0180 1288 SstpSvc - ok
14:06:22.0211 1288 Steam Client Service - ok
14:06:22.0243 1288 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:06:22.0243 1288 stexstor - ok
14:06:22.0305 1288 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
14:06:22.0305 1288 stisvc - ok
14:06:22.0321 1288 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
14:06:22.0321 1288 storflt - ok
14:06:22.0336 1288 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
14:06:22.0336 1288 storvsc - ok
14:06:22.0336 1288 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
14:06:22.0336 1288 swenum - ok
14:06:22.0461 1288 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:06:22.0461 1288 SwitchBoard - ok
14:06:22.0523 1288 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:06:22.0523 1288 swprv - ok
14:06:22.0617 1288 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
14:06:22.0633 1288 SysMain - ok
14:06:22.0711 1288 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
14:06:22.0711 1288 TabletInputService - ok
14:06:22.0913 1288 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
14:06:22.0929 1288 TapiSrv - ok
14:06:22.0945 1288 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:06:22.0945 1288 TBS - ok
14:06:23.0054 1288 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
14:06:23.0069 1288 Tcpip - ok
14:06:23.0210 1288 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
14:06:23.0225 1288 TCPIP6 - ok
14:06:23.0257 1288 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
14:06:23.0257 1288 tcpipreg - ok
14:06:23.0303 1288 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:06:23.0303 1288 TDPIPE - ok
14:06:23.0335 1288 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
14:06:23.0335 1288 TDTCP - ok
14:06:23.0350 1288 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
14:06:23.0350 1288 tdx - ok
14:06:23.0413 1288 TEAM (3183388da27655085960a22b4b29caa9) C:\Windows\system32\DRIVERS\RtTeam60.sys
14:06:23.0413 1288 TEAM - ok
14:06:23.0584 1288 TeamViewer5 (2a64c802f4c8aa00ac8472c771688e00) C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
14:06:23.0600 1288 TeamViewer5 - ok
14:06:23.0756 1288 TeamViewer6 (fe559178000347d2ca1b7847f0379749) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
14:06:23.0771 1288 TeamViewer6 - ok
14:06:23.0865 1288 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
14:06:23.0865 1288 TermDD - ok
14:06:23.0927 1288 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
14:06:23.0927 1288 TermService - ok
14:06:23.0974 1288 tescdktp (fa1dabdba6721f4fe345413b3a189ead) C:\Windows\system32\drivers\tescdktp.sys
14:06:23.0974 1288 tescdktp - ok
14:06:23.0990 1288 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:06:23.0990 1288 Themes - ok
14:06:24.0021 1288 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:06:24.0021 1288 THREADORDER - ok
14:06:24.0037 1288 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:06:24.0037 1288 TrkWks - ok
14:06:24.0068 1288 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
14:06:24.0068 1288 TrustedInstaller - ok
14:06:24.0083 1288 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:06:24.0083 1288 tssecsrv - ok
14:06:24.0099 1288 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
14:06:24.0099 1288 tunnel - ok
14:06:24.0115 1288 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:06:24.0115 1288 uagp35 - ok
14:06:24.0130 1288 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
14:06:24.0130 1288 udfs - ok
14:06:24.0146 1288 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:06:24.0146 1288 UI0Detect - ok
14:06:24.0177 1288 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
14:06:24.0177 1288 uliagpkx - ok
14:06:24.0193 1288 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
14:06:24.0193 1288 umbus - ok
14:06:24.0208 1288 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:06:24.0208 1288 UmPass - ok
14:06:24.0239 1288 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
14:06:24.0239 1288 UmRdpService - ok
14:06:24.0317 1288 UnlockerDriver5 (9dc07e73a4abb9acf692113b36a5009f) C:\Program Files\Unlocker\UnlockerDriver5.sys
14:06:24.0317 1288 UnlockerDriver5 - ok
14:06:24.0349 1288 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:06:24.0349 1288 upnphost - ok
14:06:24.0395 1288 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
14:06:24.0395 1288 USBAAPL64 - ok
14:06:24.0427 1288 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
14:06:24.0427 1288 usbaudio - ok
14:06:24.0473 1288 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
14:06:24.0473 1288 usbccgp - ok
14:06:24.0505 1288 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
14:06:24.0505 1288 usbcir - ok
14:06:24.0520 1288 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
14:06:24.0520 1288 usbehci - ok
14:06:24.0583 1288 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
14:06:24.0583 1288 usbhub - ok
14:06:24.0583 1288 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
14:06:24.0598 1288 usbohci - ok
14:06:24.0614 1288 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:06:24.0629 1288 usbprint - ok
14:06:24.0645 1288 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:06:24.0645 1288 usbscan - ok
14:06:24.0692 1288 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:06:24.0692 1288 USBSTOR - ok
14:06:24.0723 1288 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
14:06:24.0723 1288 usbuhci - ok
14:06:24.0754 1288 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:06:24.0754 1288 UxSms - ok
14:06:24.0785 1288 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:24.0785 1288 VaultSvc - ok
14:06:24.0801 1288 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
14:06:24.0817 1288 vdrvroot - ok
14:06:24.0848 1288 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
14:06:24.0848 1288 vds - ok
14:06:24.0895 1288 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:06:24.0895 1288 vga - ok
14:06:24.0910 1288 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:06:24.0910 1288 VgaSave - ok
14:06:24.0926 1288 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
14:06:24.0926 1288 vhdmp - ok
14:06:24.0941 1288 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
14:06:24.0941 1288 viaide - ok
14:06:24.0941 1288 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
14:06:24.0941 1288 vmbus - ok
14:06:24.0957 1288 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
14:06:24.0957 1288 VMBusHID - ok
14:06:24.0973 1288 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
14:06:24.0973 1288 volmgr - ok
14:06:25.0004 1288 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
14:06:25.0004 1288 volmgrx - ok
14:06:25.0051 1288 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
14:06:25.0051 1288 volsnap - ok
14:06:25.0082 1288 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:06:25.0082 1288 vsmraid - ok
14:06:25.0160 1288 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
14:06:25.0175 1288 VSS - ok
14:06:25.0269 1288 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
14:06:25.0269 1288 vwifibus - ok
14:06:25.0300 1288 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:06:25.0300 1288 W32Time - ok
14:06:25.0316 1288 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:06:25.0316 1288 WacomPen - ok
14:06:25.0347 1288 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:06:25.0347 1288 WANARP - ok
14:06:25.0347 1288 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:06:25.0347 1288 Wanarpv6 - ok
14:06:25.0456 1288 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
14:06:25.0456 1288 WatAdminSvc - ok
14:06:25.0550 1288 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
14:06:25.0565 1288 wbengine - ok
14:06:25.0659 1288 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:06:25.0659 1288 WbioSrvc - ok
14:06:25.0706 1288 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
14:06:25.0706 1288 wcncsvc - ok
14:06:25.0737 1288 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:06:25.0737 1288 WcsPlugInService - ok
14:06:25.0768 1288 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:06:25.0768 1288 Wd - ok
14:06:25.0799 1288 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:06:25.0815 1288 Wdf01000 - ok
14:06:25.0831 1288 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:06:25.0831 1288 WdiServiceHost - ok
14:06:25.0831 1288 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:06:25.0831 1288 WdiSystemHost - ok
14:06:25.0877 1288 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
14:06:25.0877 1288 WebClient - ok
14:06:25.0924 1288 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:06:25.0924 1288 Wecsvc - ok
14:06:25.0940 1288 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:06:25.0940 1288 wercplsupport - ok
14:06:25.0955 1288 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:06:25.0955 1288 WerSvc - ok
14:06:26.0002 1288 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:06:26.0002 1288 WfpLwf - ok
14:06:26.0002 1288 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:06:26.0002 1288 WIMMount - ok
14:06:26.0002 1288 WinHttpAutoProxySvc - ok
14:06:26.0065 1288 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:06:26.0065 1288 Winmgmt - ok
14:06:26.0158 1288 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
14:06:26.0174 1288 WinRM - ok
14:06:26.0314 1288 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
14:06:26.0314 1288 WinUsb - ok
14:06:26.0377 1288 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:06:26.0377 1288 Wlansvc - ok
14:06:26.0611 1288 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:06:26.0611 1288 wlidsvc - ok
14:06:26.0735 1288 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:06:26.0735 1288 WmiAcpi - ok
14:06:26.0782 1288 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:06:26.0782 1288 wmiApSrv - ok
14:06:26.0813 1288 WMPNetworkSvc - ok
14:06:26.0829 1288 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:06:26.0829 1288 WPCSvc - ok
14:06:26.0845 1288 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
14:06:26.0845 1288 WPDBusEnum - ok
14:06:26.0860 1288 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:06:26.0860 1288 ws2ifsl - ok
14:06:26.0860 1288 WSearch - ok
14:06:26.0985 1288 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
14:06:27.0032 1288 wuauserv - ok
14:06:27.0125 1288 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
14:06:27.0125 1288 WudfPf - ok
14:06:27.0157 1288 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:06:27.0157 1288 WUDFRd - ok
14:06:27.0188 1288 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
14:06:27.0188 1288 wudfsvc - ok
14:06:27.0203 1288 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:06:27.0203 1288 WwanSvc - ok
14:06:27.0235 1288 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:06:27.0749 1288 \Device\Harddisk0\DR0 - ok
14:06:27.0781 1288 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
14:06:28.0139 1288 \Device\Harddisk1\DR1 - ok
14:06:28.0139 1288 MBR (0x1B8) (b8e6c11ca5664dbeda85d7507526e0f4) \Device\Harddisk2\DR2
14:06:28.0202 1288 \Device\Harddisk2\DR2 - ok
14:06:28.0202 1288 Boot (0x1200) (d6849811f6c6eda0556652fd3857cc9b) \Device\Harddisk0\DR0\Partition0
14:06:28.0202 1288 \Device\Harddisk0\DR0\Partition0 - ok
14:06:28.0202 1288 Boot (0x1200) (86274864a30718b03524e37ae465c93a) \Device\Harddisk1\DR1\Partition0
14:06:28.0202 1288 \Device\Harddisk1\DR1\Partition0 - ok
14:06:28.0202 1288 Boot (0x1200) (f35983ef6efa42bb505ddb73d95234ce) \Device\Harddisk2\DR2\Partition0
14:06:28.0217 1288 \Device\Harddisk2\DR2\Partition0 - ok
14:06:28.0217 1288 ============================================================
14:06:28.0217 1288 Scan finished
14:06:28.0217 1288 ============================================================
14:06:28.0233 0360 Detected object count: 0
14:06:28.0233 0360 Actual detected object count: 0

ESET online scanner Results:

C:\Windows\Installer\{09a03522-3ff5-a6dd-9afe-4641b8969c53}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{09a03522-3ff5-a6dd-9afe-4641b8969c53}\U\80000000.@ Win64/Sirefef.AE trojan cleaned by deleting - quarantined
C:\Windows\Installer\{09a03522-3ff5-a6dd-9afe-4641b8969c53}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
Operating memory a variant of Win32/Sirefef.EZ trojan

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 17 July 2012 - 02:07 PM

Aswmbr log?

#7 theatroN

theatroN
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:48 AM

Posted 17 July 2012 - 02:09 PM

It's in there. Just CTRL+F it. :)

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 17 July 2012 - 02:11 PM

Yes i know that Ctrl+F would give me aswmbr but not the actual log

You have posted TDSSkiller log again in the name of ASWMBR :)

#9 theatroN

theatroN
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:48 AM

Posted 17 July 2012 - 02:34 PM

Ohh. Damn. Sorry about that. :)

Here is the ASWMBR log, and thanks for helping me man!

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-17 14:09:01
-----------------------------
14:09:01.505 OS Version: Windows x64 6.1.7600
14:09:01.505 Number of processors: 8 586 0x1A05
14:09:01.506 ComputerName: AWESOMO-0 UserName: Malte
14:09:06.460 Initialize success
14:09:44.279 AVAST engine defs: 12071700
14:10:03.747 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
14:10:03.749 Disk 0 Vendor: WDC_WD10EARS-00MVWB0 51.0AB51 Size: 953869MB BusType: 3
14:10:03.750 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-1
14:10:03.752 Disk 1 Vendor: Hitachi_HDS721010CLA332 JP4OA39C Size: 953868MB BusType: 3
14:10:03.753 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP2T0L0-4
14:10:03.755 Disk 2 Vendor: WDC_WD7500AAKS-00RBA0 30.04G30 Size: 715404MB BusType: 3
14:10:03.765 Disk 1 MBR read successfully
14:10:03.767 Disk 1 MBR scan
14:10:03.795 Disk 1 Windows 7 default MBR code
14:10:03.801 Disk 1 Partition 1 80 (A) 07 HPFS/NTFS NTFS 953859 MB offset 63
14:10:03.818 Disk 1 scanning C:\Windows\system32\drivers
14:10:11.742 Service scanning
14:10:30.119 Modules scanning
14:10:30.123 Disk 1 trace - called modules:
14:10:30.163 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
14:10:30.166 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa8006250060]
14:10:30.169 3 CLASSPNP.SYS[fffff88000e0143f] -> nt!IofCallDriver -> [0xfffffa8005fdde40]
14:10:30.173 5 ACPI.sys[fffff8800117d781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T1L0-1[0xfffffa8005fec680]
14:10:32.299 AVAST engine scan C:\Windows
14:10:35.657 AVAST engine scan C:\Windows\system32
14:11:55.705 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
14:11:57.672 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
14:13:03.394 AVAST engine scan C:\Windows\system32\drivers
14:13:12.585 AVAST engine scan C:\Users\Malte
14:15:13.854 Disk 1 MBR has been saved successfully to "C:\Users\Malte\Desktop\virus fix\MBR.dat"
14:15:13.866 The log file has been saved successfully to "C:\Users\Malte\Desktop\virus fix\aswMBR.txt"

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 17 July 2012 - 03:59 PM

We require advanced tools to remove this one

Read the guide here on preparing logs

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users