Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Have security shield virus; rkill isn't working


  • Please log in to reply
23 replies to this topic

#1 salvia-girl

salvia-girl

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 04 August 2012 - 11:26 PM

My computer is infected with the security shield virus. I am running Vista. The "use proxy server for LAN" was not checked. When I run rkill, the job runs to completion but no processes are being shown as killed.

I have AVG running. Could that be interferring?

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:47 PM

Posted 04 August 2012 - 11:45 PM

Boot the PC into safemode with networking


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 salvia-girl

salvia-girl
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 12 August 2012 - 07:10 PM

Thanks for the info.

TDSS log report:
17:32:46.0216 2032 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
17:32:46.0450 2032 ============================================================
17:32:46.0450 2032 Current date / time: 2012/08/12 17:32:46.0450
17:32:46.0450 2032 SystemInfo:
17:32:46.0450 2032
17:32:46.0450 2032 OS Version: 6.0.6001 ServicePack: 1.0
17:32:46.0450 2032 Product type: Workstation
17:32:46.0450 2032 ComputerName: ROBIN-PC
17:32:46.0450 2032 UserName: robin
17:32:46.0450 2032 Windows directory: C:\Windows
17:32:46.0450 2032 System windows directory: C:\Windows
17:32:46.0450 2032 Processor architecture: Intel x86
17:32:46.0450 2032 Number of processors: 2
17:32:46.0450 2032 Page size: 0x1000
17:32:46.0450 2032 Boot type: Safe boot with network
17:32:46.0450 2032 ============================================================
17:32:47.0183 2032 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:32:47.0183 2032 ============================================================
17:32:47.0183 2032 \Device\Harddisk0\DR0:
17:32:47.0183 2032 MBR partitions:
17:32:47.0183 2032 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x115C0152
17:32:47.0183 2032 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x115C0191, BlocksNum 0x1458930
17:32:47.0183 2032 ============================================================
17:32:47.0199 2032 C: <-> \Device\Harddisk0\DR0\Partition0
17:32:47.0246 2032 D: <-> \Device\Harddisk0\DR0\Partition1
17:32:47.0246 2032 ============================================================
17:32:47.0246 2032 Initialize success
17:32:47.0246 2032 ============================================================
17:34:19.0317 1104 ============================================================
17:34:19.0317 1104 Scan started
17:34:19.0317 1104 Mode: Manual; TDLFS;
17:34:19.0317 1104 ============================================================
17:34:19.0317 1104 ============================================================
17:34:19.0317 1104 Scan finished
17:34:19.0317 1104 ============================================================
17:34:19.0333 1428 Detected object count: 0
17:34:19.0333 1428 Actual detected object count: 0
17:34:41.0251 1660 ============================================================
17:34:41.0251 1660 Scan started
17:34:41.0251 1660 Mode: Manual; TDLFS;
17:34:41.0251 1660 ============================================================
17:34:42.0499 1660 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
17:34:42.0515 1660 ACPI - ok
17:34:42.0593 1660 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:34:42.0593 1660 AdobeFlashPlayerUpdateSvc - ok
17:34:42.0686 1660 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
17:34:42.0702 1660 adp94xx - ok
17:34:42.0733 1660 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
17:34:42.0733 1660 adpahci - ok
17:34:42.0764 1660 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
17:34:42.0764 1660 adpu160m - ok
17:34:42.0796 1660 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
17:34:42.0811 1660 adpu320 - ok
17:34:42.0827 1660 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
17:34:42.0842 1660 AeLookupSvc - ok
17:34:42.0905 1660 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
17:34:42.0920 1660 AFD - ok
17:34:42.0998 1660 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
17:34:43.0014 1660 agp440 - ok
17:34:43.0030 1660 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:34:43.0030 1660 aic78xx - ok
17:34:43.0045 1660 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
17:34:43.0045 1660 ALG - ok
17:34:43.0061 1660 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
17:34:43.0061 1660 aliide - ok
17:34:43.0076 1660 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
17:34:43.0076 1660 amdagp - ok
17:34:43.0108 1660 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
17:34:43.0108 1660 amdide - ok
17:34:43.0123 1660 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
17:34:43.0123 1660 AmdK7 - ok
17:34:43.0139 1660 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
17:34:43.0139 1660 AmdK8 - ok
17:34:43.0154 1660 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
17:34:43.0154 1660 Appinfo - ok
17:34:43.0170 1660 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
17:34:43.0170 1660 arc - ok
17:34:43.0201 1660 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
17:34:43.0201 1660 arcsas - ok
17:34:43.0217 1660 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:34:43.0217 1660 AsyncMac - ok
17:34:43.0232 1660 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
17:34:43.0232 1660 atapi - ok
17:34:43.0279 1660 AudioEndpointBuilder (42076e29aafa0830a2c5d4e310f58dd1) C:\Windows\System32\Audiosrv.dll
17:34:43.0295 1660 AudioEndpointBuilder - ok
17:34:43.0295 1660 Audiosrv (42076e29aafa0830a2c5d4e310f58dd1) C:\Windows\System32\Audiosrv.dll
17:34:43.0295 1660 Audiosrv - ok
17:34:43.0591 1660 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files\AVG\AVG2012\avgidsagent.exe
17:34:43.0700 1660 AVGIDSAgent - ok
17:34:43.0810 1660 AVGIDSDriver (1074f787080068c71303b61fae7e7ca4) C:\Windows\system32\DRIVERS\avgidsdriverx.sys
17:34:43.0825 1660 AVGIDSDriver - ok
17:34:43.0825 1660 AVGIDSFilter (61a7e0b02f82cff3db2445bbe50b3589) C:\Windows\system32\DRIVERS\avgidsfilterx.sys
17:34:43.0825 1660 AVGIDSFilter - ok
17:34:43.0872 1660 AVGIDSHX (d63d83659eedf60b3a3e620281a888e5) C:\Windows\system32\DRIVERS\avgidshx.sys
17:34:43.0872 1660 AVGIDSHX - ok
17:34:43.0872 1660 AVGIDSShim (baf975b72062f53d327788e99d64197e) C:\Windows\system32\DRIVERS\avgidsshimx.sys
17:34:43.0872 1660 AVGIDSShim - ok
17:34:43.0919 1660 Avgldx86 (dda6a2a18841e4c9172bb85958b8d948) C:\Windows\system32\DRIVERS\avgldx86.sys
17:34:43.0934 1660 Avgldx86 - ok
17:34:43.0950 1660 Avgmfx86 (ccdd61545aaea265977e4b1efdc74e8c) C:\Windows\system32\DRIVERS\avgmfx86.sys
17:34:43.0950 1660 Avgmfx86 - ok
17:34:43.0997 1660 Avgrkx86 (1fd90b28d2c3100bf4500199c8ad6358) C:\Windows\system32\DRIVERS\avgrkx86.sys
17:34:43.0997 1660 Avgrkx86 - ok
17:34:44.0012 1660 Avgtdix (1263f2554ace925c237a40b4c568d815) C:\Windows\system32\DRIVERS\avgtdix.sys
17:34:44.0028 1660 Avgtdix - ok
17:34:44.0153 1660 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
17:34:44.0168 1660 avgwd - ok
17:34:44.0215 1660 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:34:44.0215 1660 Beep - ok
17:34:44.0262 1660 BFE (8582e233c346aefe759833e8a30dd697) C:\Windows\System32\bfe.dll
17:34:44.0262 1660 BFE - ok
17:34:44.0293 1660 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
17:34:44.0309 1660 blbdrive - ok
17:34:44.0340 1660 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
17:34:44.0340 1660 bowser - ok
17:34:44.0371 1660 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:34:44.0371 1660 BrFiltLo - ok
17:34:44.0387 1660 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:34:44.0387 1660 BrFiltUp - ok
17:34:44.0418 1660 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
17:34:44.0418 1660 Browser - ok
17:34:44.0434 1660 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:34:44.0449 1660 Brserid - ok
17:34:44.0480 1660 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:34:44.0480 1660 BrSerWdm - ok
17:34:44.0512 1660 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:34:44.0512 1660 BrUsbMdm - ok
17:34:44.0527 1660 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:34:44.0527 1660 BrUsbSer - ok
17:34:44.0543 1660 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
17:34:44.0543 1660 BTHMODEM - ok
17:34:44.0574 1660 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
17:34:44.0590 1660 cdfs - ok
17:34:44.0605 1660 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
17:34:44.0605 1660 cdrom - ok
17:34:44.0652 1660 CertPropSvc (87c2d0377b23e2d8a41093c2f5fb1a5b) C:\Windows\System32\certprop.dll
17:34:44.0652 1660 CertPropSvc - ok
17:34:44.0668 1660 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
17:34:44.0668 1660 circlass - ok
17:34:44.0683 1660 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
17:34:44.0699 1660 CLFS - ok
17:34:44.0761 1660 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:34:44.0761 1660 clr_optimization_v2.0.50727_32 - ok
17:34:44.0839 1660 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:34:44.0855 1660 clr_optimization_v4.0.30319_32 - ok
17:34:44.0870 1660 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
17:34:44.0870 1660 cmdide - ok
17:34:44.0902 1660 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
17:34:44.0902 1660 Compbatt - ok
17:34:44.0917 1660 COMSysApp - ok
17:34:44.0948 1660 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
17:34:44.0948 1660 crcdisk - ok
17:34:44.0964 1660 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
17:34:44.0980 1660 Crusoe - ok
17:34:45.0026 1660 CryptSvc (6de363f9f99334514c46aec02d3e3678) C:\Windows\system32\cryptsvc.dll
17:34:45.0042 1660 CryptSvc - ok
17:34:45.0073 1660 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\Windows\system32\DRIVERS\ctxusbm.sys
17:34:45.0089 1660 ctxusbm - ok
17:34:45.0104 1660 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
17:34:45.0104 1660 CVirtA - ok
17:34:45.0214 1660 CVPND (dad192d12dd0b4c92f6843203852829f) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
17:34:45.0260 1660 CVPND - ok
17:34:45.0385 1660 CVPNDRVA (26deef07394624247d1f549bd94f0b15) C:\Windows\system32\Drivers\CVPNDRVA.sys
17:34:45.0401 1660 CVPNDRVA - ok
17:34:45.0479 1660 DcomLaunch (301ae00e12408650baddc04dbc832830) C:\Windows\system32\rpcss.dll
17:34:45.0572 1660 DcomLaunch - ok
17:34:45.0619 1660 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
17:34:45.0635 1660 DfsC - ok
17:34:45.0760 1660 DFSR (fa3463f25f9cc9c3bcf1e7912feff099) C:\Windows\system32\DFSR.exe
17:34:45.0806 1660 DFSR - ok
17:34:45.0931 1660 Dhcp (43a988a9c10333476cb5fb667cbd629d) C:\Windows\System32\dhcpcsvc.dll
17:34:45.0947 1660 Dhcp - ok
17:34:45.0994 1660 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
17:34:45.0994 1660 disk - ok
17:34:46.0025 1660 DNE (7b4fdfbe97c047175e613aa96f3de987) C:\Windows\system32\DRIVERS\dne2000.sys
17:34:46.0025 1660 DNE - ok
17:34:46.0072 1660 Dnscache (4805d9a6d281c7a7defd9094dec6af7d) C:\Windows\System32\dnsrslvr.dll
17:34:46.0072 1660 Dnscache - ok
17:34:46.0134 1660 dot3svc (5af620a08c614e24206b79e8153cf1a8) C:\Windows\System32\dot3svc.dll
17:34:46.0134 1660 dot3svc - ok
17:34:46.0165 1660 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
17:34:46.0165 1660 DPS - ok
17:34:46.0196 1660 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
17:34:46.0196 1660 drmkaud - ok
17:34:46.0259 1660 dsNcAdpt (b2c3f71b86e25c3df78339ddb40a7562) C:\Windows\system32\DRIVERS\dsNcAdpt.sys
17:34:46.0259 1660 dsNcAdpt - ok
17:34:46.0384 1660 dsNcService (a6b5ecf684769a99d96175f9d1e1337c) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
17:34:46.0415 1660 dsNcService - ok
17:34:46.0477 1660 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
17:34:46.0493 1660 DXGKrnl - ok
17:34:46.0555 1660 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
17:34:46.0571 1660 E1G60 - ok
17:34:46.0633 1660 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
17:34:46.0633 1660 EapHost - ok
17:34:46.0649 1660 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
17:34:46.0664 1660 Ecache - ok
17:34:46.0696 1660 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
17:34:46.0711 1660 ehRecvr - ok
17:34:46.0727 1660 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
17:34:46.0727 1660 ehSched - ok
17:34:46.0742 1660 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
17:34:46.0742 1660 ehstart - ok
17:34:46.0789 1660 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
17:34:46.0805 1660 elxstor - ok
17:34:46.0852 1660 EMDMgmt (70b1a86df0c8ead17d2bc332edae2c7c) C:\Windows\system32\emdmgmt.dll
17:34:46.0867 1660 EMDMgmt - ok
17:34:46.0883 1660 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
17:34:46.0883 1660 ErrDev - ok
17:34:46.0930 1660 EventSystem (3cb3343d720168b575133a0a20dc2465) C:\Windows\system32\es.dll
17:34:46.0945 1660 EventSystem - ok
17:34:46.0992 1660 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
17:34:46.0992 1660 exfat - ok
17:34:47.0054 1660 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
17:34:47.0070 1660 fastfat - ok
17:34:47.0086 1660 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
17:34:47.0086 1660 fdc - ok
17:34:47.0117 1660 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
17:34:47.0117 1660 fdPHost - ok
17:34:47.0132 1660 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
17:34:47.0132 1660 FDResPub - ok
17:34:47.0148 1660 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
17:34:47.0148 1660 FileInfo - ok
17:34:47.0164 1660 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
17:34:47.0179 1660 Filetrace - ok
17:34:47.0195 1660 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
17:34:47.0195 1660 flpydisk - ok
17:34:47.0226 1660 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
17:34:47.0242 1660 FltMgr - ok
17:34:47.0288 1660 FontCache3.0.0.0 (c9be08664611ddaf98e2331e9288b00b) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:34:47.0288 1660 FontCache3.0.0.0 - ok
17:34:47.0304 1660 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
17:34:47.0304 1660 Fs_Rec - ok
17:34:47.0320 1660 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
17:34:47.0335 1660 gagp30kx - ok
17:34:47.0398 1660 GameConsoleService (6139ae70e943b2a57ad04b70a316c0a0) C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
17:34:47.0413 1660 GameConsoleService - ok
17:34:47.0460 1660 gpsvc (d9f1113d9401185245573350712f92fc) C:\Windows\System32\gpsvc.dll
17:34:47.0476 1660 gpsvc - ok
17:34:47.0554 1660 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files\Google\Update\GoogleUpdate.exe
17:34:47.0569 1660 gupdate - ok
17:34:47.0569 1660 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files\Google\Update\GoogleUpdate.exe
17:34:47.0569 1660 gupdatem - ok
17:34:47.0600 1660 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:34:47.0600 1660 HDAudBus - ok
17:34:47.0616 1660 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
17:34:47.0616 1660 HidBth - ok
17:34:47.0632 1660 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
17:34:47.0632 1660 HidIr - ok
17:34:47.0647 1660 hidserv (8fa640195279ace21bea91396a0054fc) C:\Windows\system32\hidserv.dll
17:34:47.0647 1660 hidserv - ok
17:34:47.0663 1660 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\drivers\hidusb.sys
17:34:47.0663 1660 HidUsb - ok
17:34:47.0694 1660 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
17:34:47.0694 1660 hkmsvc - ok
17:34:47.0741 1660 HP Health Check Service (cb383ab0b8ba871d893b86d3c9a3ed9f) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
17:34:47.0741 1660 HP Health Check Service - ok
17:34:47.0756 1660 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
17:34:47.0756 1660 HpCISSs - ok
17:34:47.0819 1660 HSF_DP (88749fbf8beb18c90e7d6626c8c1910b) C:\Windows\system32\DRIVERS\HSX_DP.sys
17:34:47.0834 1660 HSF_DP - ok
17:34:47.0881 1660 HSXHWBS2 (fe440536bd98af772130dc3a6fe1915f) C:\Windows\system32\DRIVERS\HSXHWBS2.sys
17:34:47.0897 1660 HSXHWBS2 - ok
17:34:47.0928 1660 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
17:34:47.0959 1660 HTTP - ok
17:34:47.0975 1660 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
17:34:47.0975 1660 i2omp - ok
17:34:48.0006 1660 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
17:34:48.0006 1660 i8042prt - ok
17:34:48.0037 1660 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
17:34:48.0053 1660 iaStorV - ok
17:34:48.0193 1660 idsvc (7b630acaed64fef0c3e1cf255cb56686) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:34:48.0209 1660 idsvc - ok
17:34:48.0256 1660 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
17:34:48.0256 1660 iirsp - ok
17:34:48.0302 1660 IKEEXT (a3bc480a2bf8aa8e4dabd2d5dce0afac) C:\Windows\System32\ikeext.dll
17:34:48.0334 1660 IKEEXT - ok
17:34:48.0458 1660 IntcAzAudAddService (4c01298060cf930d26a75a86b874b6ae) C:\Windows\system32\drivers\RTKVHDA.sys
17:34:48.0536 1660 IntcAzAudAddService - ok
17:34:48.0646 1660 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
17:34:48.0661 1660 intelide - ok
17:34:48.0677 1660 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
17:34:48.0677 1660 intelppm - ok
17:34:48.0739 1660 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
17:34:48.0739 1660 IPBusEnum - ok
17:34:48.0770 1660 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:34:48.0770 1660 IpFilterDriver - ok
17:34:48.0817 1660 iphlpsvc (6a35d233693edc29a12742049bc5e37f) C:\Windows\System32\iphlpsvc.dll
17:34:48.0833 1660 iphlpsvc - ok
17:34:48.0848 1660 IpInIp - ok
17:34:48.0864 1660 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
17:34:48.0864 1660 IPMIDRV - ok
17:34:48.0911 1660 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
17:34:48.0911 1660 IPNAT - ok
17:34:48.0958 1660 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
17:34:48.0958 1660 IRENUM - ok
17:34:49.0004 1660 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
17:34:49.0004 1660 isapnp - ok
17:34:49.0098 1660 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
17:34:49.0098 1660 iScsiPrt - ok
17:34:49.0160 1660 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
17:34:49.0176 1660 iteatapi - ok
17:34:49.0223 1660 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
17:34:49.0223 1660 iteraid - ok
17:34:49.0238 1660 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:34:49.0238 1660 kbdclass - ok
17:34:49.0285 1660 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
17:34:49.0285 1660 kbdhid - ok
17:34:49.0316 1660 KeyIso (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
17:34:49.0316 1660 KeyIso - ok
17:34:49.0363 1660 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
17:34:49.0426 1660 KSecDD - ok
17:34:49.0519 1660 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
17:34:49.0535 1660 KtmRm - ok
17:34:49.0582 1660 LanmanServer (1925e63c91cf1610ae41bfd539062079) C:\Windows\system32\srvsvc.dll
17:34:49.0597 1660 LanmanServer - ok
17:34:49.0644 1660 LanmanWorkstation (2ae2e1628c5d3f1c0a46a67c9fa1df15) C:\Windows\System32\wkssvc.dll
17:34:49.0660 1660 LanmanWorkstation - ok
17:34:49.0722 1660 LightScribeService (c215e09622118383b236dd56c2065183) c:\Program Files\Common Files\LightScribe\LSSrvc.exe
17:34:49.0722 1660 LightScribeService - ok
17:34:49.0753 1660 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
17:34:49.0753 1660 lltdio - ok
17:34:49.0784 1660 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
17:34:49.0800 1660 lltdsvc - ok
17:34:49.0816 1660 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
17:34:49.0816 1660 lmhosts - ok
17:34:49.0847 1660 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
17:34:49.0847 1660 LSI_FC - ok
17:34:49.0878 1660 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
17:34:49.0878 1660 LSI_SAS - ok
17:34:49.0925 1660 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
17:34:49.0925 1660 LSI_SCSI - ok
17:34:49.0940 1660 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
17:34:49.0956 1660 luafv - ok
17:34:50.0034 1660 lxdwCATSCustConnectService (0aeb868b9b13b74d9a6fb06630fd32dd) C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdwserv.exe
17:34:50.0050 1660 lxdwCATSCustConnectService - ok
17:34:50.0065 1660 lxdw_device - ok
17:34:50.0096 1660 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
17:34:50.0096 1660 Mcx2Svc - ok
17:34:50.0128 1660 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
17:34:50.0143 1660 mdmxsdk - ok
17:34:50.0190 1660 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
17:34:50.0190 1660 megasas - ok
17:34:50.0237 1660 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
17:34:50.0268 1660 MegaSR - ok
17:34:50.0284 1660 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
17:34:50.0284 1660 MMCSS - ok
17:34:50.0330 1660 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
17:34:50.0330 1660 Modem - ok
17:34:50.0362 1660 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
17:34:50.0362 1660 monitor - ok
17:34:50.0408 1660 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
17:34:50.0408 1660 mouclass - ok
17:34:50.0455 1660 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\drivers\mouhid.sys
17:34:50.0455 1660 mouhid - ok
17:34:50.0486 1660 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
17:34:50.0486 1660 MountMgr - ok
17:34:50.0533 1660 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
17:34:50.0549 1660 mpio - ok
17:34:50.0580 1660 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
17:34:50.0580 1660 mpsdrv - ok
17:34:50.0627 1660 MpsSvc (d1639ba315b0d79dec49a4b0e1fb929b) C:\Windows\system32\mpssvc.dll
17:34:50.0627 1660 MpsSvc - ok
17:34:50.0658 1660 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
17:34:50.0658 1660 Mraid35x - ok
17:34:50.0674 1660 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
17:34:50.0674 1660 MRxDAV - ok
17:34:50.0720 1660 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:34:50.0720 1660 mrxsmb - ok
17:34:50.0767 1660 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:34:50.0783 1660 mrxsmb10 - ok
17:34:50.0798 1660 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:34:50.0798 1660 mrxsmb20 - ok
17:34:50.0814 1660 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
17:34:50.0814 1660 msahci - ok
17:34:50.0830 1660 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
17:34:50.0830 1660 msdsm - ok
17:34:50.0861 1660 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
17:34:50.0876 1660 MSDTC - ok
17:34:50.0939 1660 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
17:34:50.0939 1660 Msfs - ok
17:34:50.0954 1660 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
17:34:50.0954 1660 msisadrv - ok
17:34:50.0986 1660 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
17:34:50.0986 1660 MSiSCSI - ok
17:34:51.0001 1660 msiserver - ok
17:34:51.0017 1660 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
17:34:51.0017 1660 MSKSSRV - ok
17:34:51.0048 1660 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
17:34:51.0048 1660 MSPCLOCK - ok
17:34:51.0079 1660 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
17:34:51.0079 1660 MSPQM - ok
17:34:51.0110 1660 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
17:34:51.0110 1660 MsRPC - ok
17:34:51.0126 1660 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
17:34:51.0126 1660 mssmbios - ok
17:34:51.0142 1660 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
17:34:51.0142 1660 MSTEE - ok
17:34:51.0173 1660 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
17:34:51.0173 1660 Mup - ok
17:34:51.0204 1660 napagent (c43b25863fbd65b6d2a142af3ae320ca) C:\Windows\system32\qagentRT.dll
17:34:51.0235 1660 napagent - ok
17:34:51.0266 1660 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
17:34:51.0282 1660 NativeWifiP - ok
17:34:51.0329 1660 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
17:34:51.0360 1660 NDIS - ok
17:34:51.0407 1660 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
17:34:51.0407 1660 NdisTapi - ok
17:34:51.0454 1660 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
17:34:51.0454 1660 Ndisuio - ok
17:34:51.0469 1660 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
17:34:51.0469 1660 NdisWan - ok
17:34:51.0500 1660 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
17:34:51.0500 1660 NDProxy - ok
17:34:51.0516 1660 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
17:34:51.0516 1660 NetBIOS - ok
17:34:51.0547 1660 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
17:34:51.0594 1660 netbt - ok
17:34:51.0641 1660 Netlogon (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
17:34:51.0641 1660 Netlogon - ok
17:34:51.0672 1660 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
17:34:51.0688 1660 Netman - ok
17:34:51.0734 1660 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
17:34:51.0734 1660 netprofm - ok
17:34:51.0828 1660 NetTcpPortSharing (0ad5876ef4e9eb77c8f93eb5b2fff386) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:34:51.0844 1660 NetTcpPortSharing - ok
17:34:51.0875 1660 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
17:34:51.0875 1660 nfrd960 - ok
17:34:51.0906 1660 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
17:34:51.0922 1660 NlaSvc - ok
17:34:51.0937 1660 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
17:34:51.0937 1660 Npfs - ok
17:34:51.0937 1660 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
17:34:51.0953 1660 nsi - ok
17:34:51.0984 1660 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
17:34:51.0984 1660 nsiproxy - ok
17:34:52.0046 1660 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
17:34:52.0109 1660 Ntfs - ok
17:34:52.0156 1660 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
17:34:52.0156 1660 ntrigdigi - ok
17:34:52.0187 1660 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
17:34:52.0187 1660 Null - ok
17:34:52.0280 1660 NVENETFD (ae78a7285df03a277415fc62f8ce8f24) C:\Windows\system32\DRIVERS\nvmfdx32.sys
17:34:52.0296 1660 NVENETFD - ok
17:34:52.0748 1660 nvlddmkm (1924b437d113e909abb7f11623884d77) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:34:52.0904 1660 nvlddmkm - ok
17:34:53.0076 1660 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
17:34:53.0092 1660 nvraid - ok
17:34:53.0138 1660 nvrd32 (0d15327134e5871c922760acd7449e84) C:\Windows\system32\drivers\nvrd32.sys
17:34:53.0138 1660 nvrd32 - ok
17:34:53.0154 1660 nvsmu (c44ee36dd84fa95eb81d79c374756003) C:\Windows\system32\drivers\nvsmu.sys
17:34:53.0154 1660 nvsmu - ok
17:34:53.0170 1660 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
17:34:53.0185 1660 nvstor - ok
17:34:53.0232 1660 nvstor32 (fa7b8eca6e845b244b7e30a9dcd82c6c) C:\Windows\system32\DRIVERS\nvstor32.sys
17:34:53.0232 1660 nvstor32 - ok
17:34:53.0263 1660 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
17:34:53.0279 1660 nv_agp - ok
17:34:53.0279 1660 NwlnkFlt - ok
17:34:53.0294 1660 NwlnkFwd - ok
17:34:53.0326 1660 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
17:34:53.0326 1660 ohci1394 - ok
17:34:53.0404 1660 p2pimsvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
17:34:53.0435 1660 p2pimsvc - ok
17:34:53.0450 1660 p2psvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
17:34:53.0450 1660 p2psvc - ok
17:34:53.0513 1660 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
17:34:53.0513 1660 Parport - ok
17:34:53.0606 1660 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
17:34:53.0606 1660 partmgr - ok
17:34:53.0622 1660 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
17:34:53.0622 1660 Parvdm - ok
17:34:53.0669 1660 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
17:34:53.0669 1660 PcaSvc - ok
17:34:54.0012 1660 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
17:34:54.0028 1660 pci - ok
17:34:54.0153 1660 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
17:34:54.0153 1660 pciide - ok
17:34:54.0184 1660 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
17:34:54.0246 1660 pcmcia - ok
17:34:54.0293 1660 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
17:34:54.0355 1660 PEAUTH - ok
17:34:54.0480 1660 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
17:34:54.0527 1660 pla - ok
17:34:54.0714 1660 PlugPlay (78f975cb6d18265be6f492edb2d7bc7b) C:\Windows\system32\umpnpmgr.dll
17:34:54.0745 1660 PlugPlay - ok
17:34:54.0808 1660 PNRPAutoReg (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
17:34:54.0808 1660 PNRPAutoReg - ok
17:34:54.0823 1660 PNRPsvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
17:34:54.0839 1660 PNRPsvc - ok
17:34:54.0917 1660 PolicyAgent (47b8f37aa18b74d8c2e1bc1a7a2c8f8a) C:\Windows\System32\ipsecsvc.dll
17:34:54.0933 1660 PolicyAgent - ok
17:34:54.0995 1660 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
17:34:54.0995 1660 PptpMiniport - ok
17:34:55.0120 1660 PRISM_A02 (57e95881e5f014816a8a53ad94ee0c48) C:\Windows\system32\DRIVERS\WUSB20XP.sys
17:34:55.0151 1660 PRISM_A02 - ok
17:34:55.0167 1660 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
17:34:55.0167 1660 Processor - ok
17:34:55.0245 1660 ProfSvc (b627e4fc8585e8843c5905d4d3587a90) C:\Windows\system32\profsvc.dll
17:34:55.0245 1660 ProfSvc - ok
17:34:55.0276 1660 ProtectedStorage (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
17:34:55.0276 1660 ProtectedStorage - ok
17:34:55.0338 1660 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
17:34:55.0354 1660 PSched - ok
17:34:55.0416 1660 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
17:34:55.0447 1660 ql2300 - ok
17:34:55.0479 1660 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
17:34:55.0479 1660 ql40xx - ok
17:34:55.0510 1660 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
17:34:55.0525 1660 QWAVE - ok
17:34:55.0557 1660 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
17:34:55.0557 1660 QWAVEdrv - ok
17:34:55.0572 1660 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
17:34:55.0572 1660 RasAcd - ok
17:34:55.0588 1660 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
17:34:55.0588 1660 RasAuto - ok
17:34:55.0603 1660 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:34:55.0603 1660 Rasl2tp - ok
17:34:55.0666 1660 RasMan (6e7c284fc5c4ec07ad164d93810385a6) C:\Windows\System32\rasmans.dll
17:34:55.0666 1660 RasMan - ok
17:34:55.0713 1660 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
17:34:55.0713 1660 RasPppoe - ok
17:34:55.0713 1660 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
17:34:55.0713 1660 RasSstp - ok
17:34:55.0744 1660 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
17:34:55.0759 1660 rdbss - ok
17:34:55.0791 1660 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:34:55.0791 1660 RDPCDD - ok
17:34:55.0822 1660 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
17:34:55.0837 1660 rdpdr - ok
17:34:55.0837 1660 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
17:34:55.0837 1660 RDPENCDD - ok
17:34:55.0869 1660 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
17:34:55.0869 1660 RDPWD - ok
17:34:55.0900 1660 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
17:34:55.0900 1660 RemoteAccess - ok
17:34:55.0931 1660 RemoteRegistry (cc4e32400f3c7253400cf8f3f3a0b676) C:\Windows\system32\regsvc.dll
17:34:55.0931 1660 RemoteRegistry - ok
17:34:55.0947 1660 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
17:34:55.0947 1660 RpcLocator - ok
17:34:56.0009 1660 RpcSs (301ae00e12408650baddc04dbc832830) C:\Windows\system32\rpcss.dll
17:34:56.0009 1660 RpcSs - ok
17:34:56.0056 1660 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
17:34:56.0056 1660 rspndr - ok
17:34:56.0149 1660 RTL8192su (3edfb0089b9455b26154b572db650ee3) C:\Windows\system32\DRIVERS\RTL8192su.sys
17:34:56.0165 1660 RTL8192su - ok
17:34:56.0196 1660 SamSs (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
17:34:56.0196 1660 SamSs - ok
17:34:56.0227 1660 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
17:34:56.0227 1660 sbp2port - ok
17:34:56.0274 1660 SCardSvr (11387e32642269c7e62e8b52c060b3c6) C:\Windows\System32\SCardSvr.dll
17:34:56.0290 1660 SCardSvr - ok
17:34:56.0337 1660 Schedule (7b587b8a6d4a99f79d2902d0385f29bd) C:\Windows\system32\schedsvc.dll
17:34:56.0352 1660 Schedule - ok
17:34:56.0383 1660 SCPolicySvc (87c2d0377b23e2d8a41093c2f5fb1a5b) C:\Windows\System32\certprop.dll
17:34:56.0383 1660 SCPolicySvc - ok
17:34:56.0399 1660 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
17:34:56.0415 1660 SDRSVC - ok
17:34:56.0430 1660 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:34:56.0430 1660 secdrv - ok
17:34:56.0446 1660 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
17:34:56.0446 1660 seclogon - ok
17:34:56.0477 1660 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
17:34:56.0493 1660 SENS - ok
17:34:56.0524 1660 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
17:34:56.0524 1660 Serenum - ok
17:34:56.0555 1660 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
17:34:56.0555 1660 Serial - ok
17:34:56.0571 1660 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
17:34:56.0571 1660 sermouse - ok
17:34:56.0617 1660 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
17:34:56.0633 1660 SessionEnv - ok
17:34:56.0664 1660 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
17:34:56.0664 1660 sffdisk - ok
17:34:56.0680 1660 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
17:34:56.0680 1660 sffp_mmc - ok
17:34:56.0711 1660 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
17:34:56.0727 1660 sffp_sd - ok
17:34:56.0758 1660 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
17:34:56.0758 1660 sfloppy - ok
17:34:56.0805 1660 ShellHWDetection (1e3fdb80e40a3ce645f229dfbdfb7694) C:\Windows\System32\shsvcs.dll
17:34:56.0820 1660 ShellHWDetection - ok
17:34:56.0851 1660 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
17:34:56.0867 1660 sisagp - ok
17:34:56.0898 1660 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
17:34:56.0898 1660 SiSRaid2 - ok
17:34:56.0914 1660 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
17:34:56.0914 1660 SiSRaid4 - ok
17:34:57.0039 1660 slsvc (0ba91e1358ad25236863039bb2609a2e) C:\Windows\system32\SLsvc.exe
17:34:57.0117 1660 slsvc - ok
17:34:57.0195 1660 SLUINotify (7c6dc44ca0bfa6291629ab764200d1d4) C:\Windows\system32\SLUINotify.dll
17:34:57.0210 1660 SLUINotify - ok
17:34:57.0241 1660 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
17:34:57.0241 1660 Smb - ok
17:34:57.0273 1660 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
17:34:57.0273 1660 SNMPTRAP - ok
17:34:57.0273 1660 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
17:34:57.0288 1660 spldr - ok
17:34:57.0304 1660 Spooler (3665f79026a3f91fbca63f2c65a09b19) C:\Windows\System32\spoolsv.exe
17:34:57.0319 1660 Spooler - ok
17:34:57.0366 1660 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
17:34:57.0366 1660 srv - ok
17:34:57.0429 1660 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
17:34:57.0444 1660 srv2 - ok
17:34:57.0460 1660 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
17:34:57.0460 1660 srvnet - ok
17:34:57.0475 1660 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
17:34:57.0491 1660 SSDPSRV - ok
17:34:57.0507 1660 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
17:34:57.0522 1660 SstpSvc - ok
17:34:57.0569 1660 stisvc (7dd08a597bc56051f320da0baf69e389) C:\Windows\System32\wiaservc.dll
17:34:57.0585 1660 stisvc - ok
17:34:57.0631 1660 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
17:34:57.0631 1660 swenum - ok
17:34:57.0647 1660 swprv (b36c7cdb86f7f7a8e884479219766950) C:\Windows\System32\swprv.dll
17:34:57.0663 1660 swprv - ok
17:34:57.0678 1660 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
17:34:57.0678 1660 Symc8xx - ok
17:34:57.0725 1660 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
17:34:57.0725 1660 Sym_hi - ok
17:34:57.0741 1660 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
17:34:57.0741 1660 Sym_u3 - ok
17:34:57.0772 1660 SysMain (8710a92d0024b03b5fb9540df1f71f1d) C:\Windows\system32\sysmain.dll
17:34:57.0819 1660 SysMain - ok
17:34:57.0850 1660 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
17:34:57.0850 1660 TabletInputService - ok
17:34:57.0897 1660 TapiSrv (680916bb09ee0f3a6aca7c274b0d633f) C:\Windows\System32\tapisrv.dll
17:34:57.0897 1660 TapiSrv - ok
17:34:57.0912 1660 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
17:34:57.0912 1660 TBS - ok
17:34:57.0975 1660 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
17:34:58.0006 1660 Tcpip - ok
17:34:58.0021 1660 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
17:34:58.0021 1660 Tcpip6 - ok
17:34:58.0053 1660 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
17:34:58.0053 1660 tcpipreg - ok
17:34:58.0068 1660 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
17:34:58.0068 1660 TDPIPE - ok
17:34:58.0115 1660 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
17:34:58.0115 1660 TDTCP - ok
17:34:58.0146 1660 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
17:34:58.0146 1660 tdx - ok
17:34:58.0271 1660 TeamViewer5 (925f0c3e7e53f1ff76c7256df17b2d73) C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
17:34:58.0287 1660 TeamViewer5 - ok
17:34:58.0333 1660 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
17:34:58.0333 1660 TermDD - ok
17:34:58.0365 1660 TermService (d605031e225aaccbceb5b76a4f1603a6) C:\Windows\System32\termsrv.dll
17:34:58.0396 1660 TermService - ok
17:34:58.0443 1660 Themes (1e3fdb80e40a3ce645f229dfbdfb7694) C:\Windows\system32\shsvcs.dll
17:34:58.0443 1660 Themes - ok
17:34:58.0474 1660 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
17:34:58.0489 1660 THREADORDER - ok
17:34:58.0505 1660 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
17:34:58.0521 1660 TrkWks - ok
17:34:58.0536 1660 TrustedInstaller (16613a1bad034d4ecf957af18b7c2ff5) C:\Windows\servicing\TrustedInstaller.exe
17:34:58.0536 1660 TrustedInstaller - ok
17:34:58.0567 1660 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:34:58.0567 1660 tssecsrv - ok
17:34:58.0599 1660 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
17:34:58.0599 1660 tunmp - ok
17:34:58.0614 1660 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
17:34:58.0614 1660 tunnel - ok
17:34:58.0630 1660 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
17:34:58.0630 1660 uagp35 - ok
17:34:58.0661 1660 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
17:34:58.0677 1660 udfs - ok
17:34:58.0708 1660 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
17:34:58.0723 1660 UI0Detect - ok
17:34:58.0739 1660 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
17:34:58.0739 1660 uliagpkx - ok
17:34:58.0770 1660 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
17:34:58.0786 1660 uliahci - ok
17:34:58.0817 1660 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
17:34:58.0833 1660 UlSata - ok
17:34:58.0848 1660 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
17:34:58.0848 1660 ulsata2 - ok
17:34:58.0864 1660 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
17:34:58.0864 1660 umbus - ok
17:34:58.0879 1660 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
17:34:58.0895 1660 upnphost - ok
17:34:58.0926 1660 usbccgp (8bd3ae150d97ba4e633c6c5c51b41ae1) C:\Windows\system32\drivers\usbccgp.sys
17:34:58.0926 1660 usbccgp - ok
17:34:58.0942 1660 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
17:34:58.0942 1660 usbcir - ok
17:34:58.0957 1660 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
17:34:58.0973 1660 usbehci - ok
17:34:58.0973 1660 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
17:34:58.0989 1660 usbhub - ok
17:34:59.0004 1660 usbohci (7bdb7b0e7d45ac0402d78b90789ef47c) C:\Windows\system32\DRIVERS\usbohci.sys
17:34:59.0020 1660 usbohci - ok
17:34:59.0051 1660 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
17:34:59.0051 1660 usbprint - ok
17:34:59.0098 1660 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
17:34:59.0098 1660 usbscan - ok
17:34:59.0145 1660 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:34:59.0145 1660 USBSTOR - ok
17:34:59.0160 1660 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
17:34:59.0176 1660 usbuhci - ok
17:34:59.0191 1660 UxSms (032a0acc3909ae7215d524e29d536797) C:\Windows\System32\uxsms.dll
17:34:59.0191 1660 UxSms - ok
17:34:59.0223 1660 vds (b13bc395b9d6116628f5af47e0802ac4) C:\Windows\System32\vds.exe
17:34:59.0238 1660 vds - ok
17:34:59.0254 1660 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
17:34:59.0269 1660 vga - ok
17:34:59.0285 1660 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
17:34:59.0285 1660 VgaSave - ok
17:34:59.0316 1660 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
17:34:59.0316 1660 viaagp - ok
17:34:59.0363 1660 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
17:34:59.0363 1660 ViaC7 - ok
17:34:59.0379 1660 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
17:34:59.0379 1660 viaide - ok
17:34:59.0457 1660 Viewpoint Manager Service (5f974fde801c73952770736becde11e7) C:\Program Files\Viewpoint\Common\ViewpointService.exe
17:34:59.0457 1660 Viewpoint Manager Service - ok
17:34:59.0472 1660 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
17:34:59.0472 1660 volmgr - ok
17:34:59.0488 1660 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
17:34:59.0503 1660 volmgrx - ok
17:34:59.0519 1660 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
17:34:59.0519 1660 volsnap - ok
17:34:59.0550 1660 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
17:34:59.0550 1660 vsmraid - ok
17:34:59.0613 1660 VSS (d5fb73d19c46ade183f968e13f186b23) C:\Windows\system32\vssvc.exe
17:34:59.0659 1660 VSS - ok
17:34:59.0706 1660 W32Time (1cf9206966a8458cda9a8b20df8ab7d3) C:\Windows\system32\w32time.dll
17:34:59.0706 1660 W32Time - ok
17:34:59.0769 1660 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
17:34:59.0769 1660 WacomPen - ok
17:34:59.0784 1660 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:34:59.0784 1660 Wanarp - ok
17:34:59.0784 1660 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:34:59.0784 1660 Wanarpv6 - ok
17:34:59.0831 1660 wcncsvc (f3a5c2e1a6533192b070d06ecf6be796) C:\Windows\System32\wcncsvc.dll
17:34:59.0847 1660 wcncsvc - ok
17:34:59.0878 1660 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
17:34:59.0878 1660 WcsPlugInService - ok
17:34:59.0893 1660 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
17:34:59.0893 1660 Wd - ok
17:34:59.0925 1660 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
17:34:59.0940 1660 Wdf01000 - ok
17:34:59.0971 1660 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
17:34:59.0971 1660 WdiServiceHost - ok
17:34:59.0987 1660 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
17:34:59.0987 1660 WdiSystemHost - ok
17:35:00.0018 1660 WebClient (cf9a5f41789b642db967021de06a2713) C:\Windows\System32\webclnt.dll
17:35:00.0034 1660 WebClient - ok
17:35:00.0081 1660 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
17:35:00.0096 1660 Wecsvc - ok
17:35:00.0127 1660 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
17:35:00.0127 1660 wercplsupport - ok
17:35:00.0159 1660 WerSvc (fd1965aaa112c6818a30ab02742d0461) C:\Windows\System32\WerSvc.dll
17:35:00.0174 1660 WerSvc - ok
17:35:00.0221 1660 winachsf (72cc6a8ca7891031d6380db5025c773c) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
17:35:00.0237 1660 winachsf - ok
17:35:00.0252 1660 WinHttpAutoProxySvc - ok
17:35:00.0299 1660 Winmgmt (00b79a7c984678f24cf052e5beb3a2f5) C:\Windows\system32\wbem\WMIsvc.dll
17:35:00.0315 1660 Winmgmt - ok
17:35:00.0393 1660 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
17:35:00.0424 1660 WinRM - ok
17:35:00.0502 1660 Wlansvc (275f4346e569df56cfb95243bd6f6ff0) C:\Windows\System32\wlansvc.dll
17:35:00.0549 1660 Wlansvc - ok
17:35:00.0611 1660 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
17:35:00.0611 1660 WmiAcpi - ok
17:35:00.0658 1660 wmiApSrv (aba4cf9f856d9a3a25f4ddd7690a6e9d) C:\Windows\system32\wbem\WmiApSrv.exe
17:35:00.0658 1660 wmiApSrv - ok
17:35:00.0751 1660 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
17:35:00.0798 1660 WMPNetworkSvc - ok
17:35:00.0829 1660 WPCSvc (5d94cd167751294962ba238d82dd1bb8) C:\Windows\System32\wpcsvc.dll
17:35:00.0845 1660 WPCSvc - ok
17:35:00.0861 1660 WPDBusEnum (396d406292b0cd26e3504ffe82784702) C:\Windows\system32\wpdbusenum.dll
17:35:00.0861 1660 WPDBusEnum - ok
17:35:00.0970 1660 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:35:01.0001 1660 WPFFontCache_v0400 - ok
17:35:01.0048 1660 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
17:35:01.0048 1660 ws2ifsl - ok
17:35:01.0095 1660 wscsvc (683dd16b590372f2c9661d277f35e49c) C:\Windows\System32\wscsvc.dll
17:35:01.0095 1660 wscsvc - ok
17:35:01.0110 1660 WSearch - ok
17:35:01.0157 1660 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:35:01.0173 1660 WUDFRd - ok
17:35:01.0188 1660 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
17:35:01.0188 1660 wudfsvc - ok
17:35:01.0219 1660 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
17:35:01.0219 1660 XAudio - ok
17:35:01.0235 1660 XAudioService (cd5f291a1161f15896d1a4d63daff5df) C:\Windows\system32\DRIVERS\xaudio.exe
17:35:01.0251 1660 XAudioService - ok
17:35:01.0297 1660 MBR (0x1B8) (03ba8f890b47c0be359a4d5a636d214d) \Device\Harddisk0\DR0
17:35:01.0734 1660 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:35:01.0734 1660 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:35:01.0734 1660 Boot (0x1200) (d940c9bc1be681430ee6a1a311ab6169) \Device\Harddisk0\DR0\Partition0
17:35:01.0734 1660 \Device\Harddisk0\DR0\Partition0 - ok
17:35:01.0750 1660 Boot (0x1200) (c56cc28dcca50b78b8ba16726e4de34e) \Device\Harddisk0\DR0\Partition1
17:35:01.0750 1660 \Device\Harddisk0\DR0\Partition1 - ok
17:35:01.0750 1660 ============================================================
17:35:01.0750 1660 Scan finished
17:35:01.0750 1660 ============================================================
17:35:01.0765 1308 Detected object count: 1
17:35:01.0765 1308 Actual detected object count: 1
17:35:37.0458 1308 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
17:35:37.0458 1308 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

avast log:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-12 17:42:02
-----------------------------
17:42:02.126 OS Version: Windows 6.0.6001 Service Pack 1
17:42:02.126 Number of processors: 2 586 0x6B02
17:42:02.141 ComputerName: ROBIN-PC UserName: robin
17:42:23.279 Initialize success
17:43:19.034 AVAST engine defs: 12081201
17:47:39.136 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006b
17:47:39.136 Disk 0 Vendor: ST316081 3.CH Size: 152627MB BusType: 6
17:47:39.151 Disk 0 MBR read successfully
17:47:39.151 Disk 0 MBR scan
17:47:39.151 Disk 0 unknown MBR code
17:47:39.167 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 142208 MB offset 63
17:47:39.198 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10417 MB offset 291242385
17:47:39.229 Disk 0 scanning sectors +312576705
17:47:39.292 Disk 0 scanning C:\Windows\system32\drivers
17:47:47.279 Service scanning
17:48:06.639 Modules scanning
17:48:09.400 Disk 0 trace - called modules:
17:48:09.415 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys
17:48:09.431 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8671d780]
17:48:09.431 3 CLASSPNP.SYS[83333745] -> nt!IofCallDriver -> [0x86609700]
17:48:09.447 5 acpi.sys[832106a0] -> nt!IofCallDriver -> \Device\0000006b[0x8620dc90]
17:48:10.086 AVAST engine scan C:\Windows
17:48:12.333 AVAST engine scan C:\Windows\system32
17:50:05.853 File: C:\Windows\assembly\GAC\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
17:50:58.581 AVAST engine scan C:\Windows\system32\drivers
17:51:09.782 AVAST engine scan C:\Users\robin
17:52:03.680 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
17:52:03.695 The log file has been saved successfully to "C:\aswMBR.txt"

eset log:
C:\Users\robin\AppData\Local\uvsevllnp.exe a variant of Win32/Kryptik.AJCV trojan
C:\Users\robin\AppData\Local\Temp\4918.tmp a variant of Win32/Kryptik.AJUZ trojan
C:\Users\robin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\52a6f410-37092c0a multiple threats
C:\Users\robin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\4b452d21-13f5dd26 multiple threats
C:\Users\robin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\5c46d844-7756c91d multiple threats
C:\Users\robin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7a614eb-2d5ca276 multiple threats
C:\Users\robin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7a614eb-4101dfe4 multiple threats
C:\Users\robin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\65f91745-58befaa9 multiple threats
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000004.@ Win32/Conedex.D trojan
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\000000cb.@ Win32/Conedex.E trojan
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000000.@ a variant of Win32/Sirefef.FA trojan
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000032.@ a variant of Win32/Sirefef.FD trojan
Operating memory multiple threats

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:47 PM

Posted 12 August 2012 - 09:48 PM

Download

systemlook

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}

Click on LOOK,post the generated log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 salvia-girl

salvia-girl
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 18 August 2012 - 10:25 PM

thanks again.

from system look:
SystemLook 30.07.11 by jpshortstuff
Log created at 23:17 on 18/08/2012 by robin
Administrator - Elevation successful

========== filefind ==========

Searching for "services.exe"
C:\Windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe --a---- 279552 bytes [19:44 19/09/2009] [06:27 11/04/2009] D4E6D91C1349B7BFB3599A6ADA56851B
C:\Windows\System32\services.exe --a---- 279040 bytes [02:24 21/01/2008] [02:24 21/01/2008] 5DC3C54FC22BBB6F66C290C7C0384DF9
C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe --a---- 279040 bytes [02:24 21/01/2008] [02:24 21/01/2008] 2B336AB6286D6C81FA02CBAB914E3C6C

========== folderfind ==========

Searching for "{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}"
C:\Users\robin\AppData\Local\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb} d--hs-- [21:42 09/02/2011]
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb} d--hs-- [21:42 09/02/2011]

-= EOF =-

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:47 PM

Posted 18 August 2012 - 10:28 PM

TDSSkiller has been updated,download a new copy and scan it,post the log

#7 salvia-girl

salvia-girl
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 19 August 2012 - 01:48 PM

I did a full scan using MBAM. Then, as ecommended, I rar MBAM using quick scan. I am geting the following results:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.19.01

Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 8.0.6001.19088
robin :: ROBIN-PC [administrator]

Protection: Enabled

8/19/2012 2:01:06 PM
mbam-log-2012-08-19 (14-25-00).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 205158
Time elapsed: 19 minute(s), 18 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 6
C:\Windows\assembly\GAC\Desktop.ini (Trojan.0access) -> No action taken.
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000004.@ (Rootkit.Zaccess) -> No action taken.
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000008.@ (Trojan.Dropper.BCMiner) -> No action taken.
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\000000cb.@ (Rootkit.0Access) -> No action taken.
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000000.@ (Rootkit.0Access) -> No action taken.
C:\Windows\Installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000032.@ (Rootkit.0Access) -> No action taken.

Should I move onto the mini toolbox step or do something else?

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:47 PM

Posted 19 August 2012 - 10:11 PM

Please follow my previous instructions

TDSSkiller has been updated,download a new copy and scan it,post the log



#9 salvia-girl

salvia-girl
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 20 August 2012 - 08:41 PM

log from latest version of TDSSKiller

21:36:32.0005 5900 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
21:36:32.0286 5900 ============================================================
21:36:32.0286 5900 Current date / time: 2012/08/20 21:36:32.0286
21:36:32.0286 5900 SystemInfo:
21:36:32.0286 5900
21:36:32.0286 5900 OS Version: 6.0.6001 ServicePack: 1.0
21:36:32.0286 5900 Product type: Workstation
21:36:32.0286 5900 ComputerName: ROBIN-PC
21:36:32.0286 5900 UserName: robin
21:36:32.0286 5900 Windows directory: C:\Windows
21:36:32.0286 5900 System windows directory: C:\Windows
21:36:32.0286 5900 Processor architecture: Intel x86
21:36:32.0286 5900 Number of processors: 2
21:36:32.0286 5900 Page size: 0x1000
21:36:32.0286 5900 Boot type: Normal boot
21:36:32.0286 5900 ============================================================
21:36:32.0661 5900 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:36:32.0676 5900 ============================================================
21:36:32.0676 5900 \Device\Harddisk0\DR0:
21:36:32.0676 5900 MBR partitions:
21:36:32.0676 5900 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x115C0152
21:36:32.0676 5900 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x115C0191, BlocksNum 0x1458930
21:36:32.0676 5900 ============================================================
21:36:32.0692 5900 C: <-> \Device\Harddisk0\DR0\Partition1
21:36:32.0739 5900 D: <-> \Device\Harddisk0\DR0\Partition2
21:36:32.0739 5900 ============================================================
21:36:32.0739 5900 Initialize success
21:36:32.0739 5900 ============================================================
21:36:47.0652 5336 ============================================================
21:36:47.0652 5336 Scan started
21:36:47.0652 5336 Mode: Manual; TDLFS;
21:36:47.0652 5336 ============================================================
21:36:48.0276 5336 ================ Scan system memory ========================
21:36:48.0276 5336 System memory - ok
21:36:48.0276 5336 ================ Scan services =============================
21:36:48.0432 5336 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
21:36:48.0448 5336 ACPI - ok
21:36:48.0588 5336 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:36:48.0588 5336 AdobeFlashPlayerUpdateSvc - ok
21:36:48.0682 5336 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:36:48.0697 5336 adp94xx - ok
21:36:48.0760 5336 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:36:48.0760 5336 adpahci - ok
21:36:48.0791 5336 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:36:48.0791 5336 adpu160m - ok
21:36:48.0807 5336 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:36:48.0807 5336 adpu320 - ok
21:36:48.0869 5336 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:36:48.0869 5336 AeLookupSvc - ok
21:36:48.0916 5336 [ 48EB99503533C27AC6135648E5474457 ] AFD C:\Windows\system32\drivers\afd.sys
21:36:48.0931 5336 AFD - ok
21:36:48.0963 5336 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:36:48.0963 5336 agp440 - ok
21:36:48.0994 5336 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:36:48.0994 5336 aic78xx - ok
21:36:49.0025 5336 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
21:36:49.0025 5336 ALG - ok
21:36:49.0056 5336 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
21:36:49.0056 5336 aliide - ok
21:36:49.0072 5336 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:36:49.0072 5336 amdagp - ok
21:36:49.0103 5336 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
21:36:49.0103 5336 amdide - ok
21:36:49.0150 5336 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:36:49.0150 5336 AmdK7 - ok
21:36:49.0181 5336 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:36:49.0181 5336 AmdK8 - ok
21:36:49.0212 5336 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
21:36:49.0212 5336 Appinfo - ok
21:36:49.0243 5336 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
21:36:49.0243 5336 arc - ok
21:36:49.0275 5336 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:36:49.0275 5336 arcsas - ok
21:36:49.0321 5336 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:36:49.0321 5336 AsyncMac - ok
21:36:49.0337 5336 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
21:36:49.0337 5336 atapi - ok
21:36:49.0384 5336 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:36:49.0399 5336 AudioEndpointBuilder - ok
21:36:49.0431 5336 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:36:49.0431 5336 Audiosrv - ok
21:36:49.0727 5336 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
21:36:49.0758 5336 AVGIDSAgent - ok
21:36:49.0805 5336 [ 1074F787080068C71303B61FAE7E7CA4 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
21:36:49.0805 5336 AVGIDSDriver - ok
21:36:49.0852 5336 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfilterx.sys
21:36:49.0852 5336 AVGIDSFilter - ok
21:36:49.0899 5336 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
21:36:49.0899 5336 AVGIDSHX - ok
21:36:49.0945 5336 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
21:36:49.0945 5336 AVGIDSShim - ok
21:36:49.0977 5336 [ DDA6A2A18841E4C9172BB85958B8D948 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
21:36:49.0977 5336 Avgldx86 - ok
21:36:50.0008 5336 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
21:36:50.0008 5336 Avgmfx86 - ok
21:36:50.0070 5336 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
21:36:50.0070 5336 Avgrkx86 - ok
21:36:50.0117 5336 [ 1263F2554ACE925C237A40B4C568D815 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
21:36:50.0117 5336 Avgtdix - ok
21:36:50.0195 5336 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
21:36:50.0195 5336 avgwd - ok
21:36:50.0242 5336 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
21:36:50.0242 5336 Beep - ok
21:36:50.0304 5336 [ 8582E233C346AEFE759833E8A30DD697 ] BFE C:\Windows\System32\bfe.dll
21:36:50.0320 5336 BFE - ok
21:36:50.0335 5336 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:36:50.0335 5336 blbdrive - ok
21:36:50.0382 5336 [ 8153396D5551276227FA146900F734E6 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:36:50.0382 5336 bowser - ok
21:36:50.0413 5336 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
21:36:50.0413 5336 BrFiltLo - ok
21:36:50.0429 5336 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
21:36:50.0429 5336 BrFiltUp - ok
21:36:50.0476 5336 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
21:36:50.0476 5336 Browser - ok
21:36:50.0491 5336 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
21:36:50.0491 5336 Brserid - ok
21:36:50.0523 5336 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
21:36:50.0523 5336 BrSerWdm - ok
21:36:50.0523 5336 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
21:36:50.0523 5336 BrUsbMdm - ok
21:36:50.0554 5336 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
21:36:50.0554 5336 BrUsbSer - ok
21:36:50.0569 5336 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:36:50.0569 5336 BTHMODEM - ok
21:36:50.0601 5336 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:36:50.0601 5336 cdfs - ok
21:36:50.0616 5336 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:36:50.0616 5336 cdrom - ok
21:36:50.0663 5336 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
21:36:50.0663 5336 CertPropSvc - ok
21:36:50.0679 5336 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
21:36:50.0679 5336 circlass - ok
21:36:50.0725 5336 [ 465745561C832B29F7C48B488AAB3842 ] CLFS C:\Windows\system32\CLFS.sys
21:36:50.0725 5336 CLFS - ok
21:36:50.0757 5336 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:36:50.0757 5336 clr_optimization_v2.0.50727_32 - ok
21:36:50.0835 5336 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:36:50.0835 5336 clr_optimization_v4.0.30319_32 - ok
21:36:50.0866 5336 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:36:50.0866 5336 cmdide - ok
21:36:50.0881 5336 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
21:36:50.0881 5336 Compbatt - ok
21:36:50.0897 5336 COMSysApp - ok
21:36:50.0913 5336 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:36:50.0913 5336 crcdisk - ok
21:36:50.0944 5336 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
21:36:50.0944 5336 Crusoe - ok
21:36:50.0975 5336 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:36:50.0975 5336 CryptSvc - ok
21:36:51.0022 5336 [ CB6FF7012BB5D59D7C12350DB795CE1F ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
21:36:51.0022 5336 ctxusbm - ok
21:36:51.0069 5336 [ B5ECADF7708960F1818C7FA015F4C239 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA.sys
21:36:51.0069 5336 CVirtA - ok
21:36:51.0131 5336 [ DAD192D12DD0B4C92F6843203852829F ] CVPND C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
21:36:51.0131 5336 CVPND - ok
21:36:51.0178 5336 [ 26DEEF07394624247D1F549BD94F0B15 ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys
21:36:51.0178 5336 CVPNDRVA - ok
21:36:51.0256 5336 [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:36:51.0256 5336 DcomLaunch - ok
21:36:51.0271 5336 [ A3E9FA213F443AC77C7746119D13FEEC ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:36:51.0271 5336 DfsC - ok
21:36:51.0365 5336 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
21:36:51.0381 5336 DFSR - ok
21:36:51.0412 5336 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
21:36:51.0412 5336 Dhcp - ok
21:36:51.0443 5336 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
21:36:51.0443 5336 disk - ok
21:36:51.0490 5336 [ 7B4FDFBE97C047175E613AA96F3DE987 ] DNE C:\Windows\system32\DRIVERS\dne2000.sys
21:36:51.0490 5336 DNE - ok
21:36:51.0537 5336 [ 4805D9A6D281C7A7DEFD9094DEC6AF7D ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:36:51.0537 5336 Dnscache - ok
21:36:51.0568 5336 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
21:36:51.0568 5336 dot3svc - ok
21:36:51.0599 5336 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
21:36:51.0599 5336 DPS - ok
21:36:51.0646 5336 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:36:51.0646 5336 drmkaud - ok
21:36:51.0724 5336 [ B2C3F71B86E25C3DF78339DDB40A7562 ] dsNcAdpt C:\Windows\system32\DRIVERS\dsNcAdpt.sys
21:36:51.0724 5336 dsNcAdpt - ok
21:36:51.0802 5336 [ A6B5ECF684769A99D96175F9D1E1337C ] dsNcService C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
21:36:51.0802 5336 dsNcService - ok
21:36:51.0864 5336 [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:36:51.0864 5336 DXGKrnl - ok
21:36:51.0927 5336 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
21:36:51.0927 5336 E1G60 - ok
21:36:51.0942 5336 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
21:36:51.0942 5336 EapHost - ok
21:36:51.0973 5336 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
21:36:51.0973 5336 Ecache - ok
21:36:52.0020 5336 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:36:52.0020 5336 ehRecvr - ok
21:36:52.0051 5336 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
21:36:52.0051 5336 ehSched - ok
21:36:52.0067 5336 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
21:36:52.0083 5336 ehstart - ok
21:36:52.0114 5336 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:36:52.0129 5336 elxstor - ok
21:36:52.0161 5336 [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt C:\Windows\system32\emdmgmt.dll
21:36:52.0176 5336 EMDMgmt - ok
21:36:52.0192 5336 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:36:52.0192 5336 ErrDev - ok
21:36:52.0239 5336 [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem C:\Windows\system32\es.dll
21:36:52.0254 5336 EventSystem - ok
21:36:52.0270 5336 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
21:36:52.0285 5336 exfat - ok
21:36:52.0301 5336 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:36:52.0301 5336 fastfat - ok
21:36:52.0332 5336 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:36:52.0332 5336 fdc - ok
21:36:52.0363 5336 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
21:36:52.0363 5336 fdPHost - ok
21:36:52.0363 5336 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
21:36:52.0363 5336 FDResPub - ok
21:36:52.0395 5336 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:36:52.0395 5336 FileInfo - ok
21:36:52.0410 5336 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:36:52.0410 5336 Filetrace - ok
21:36:52.0426 5336 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:36:52.0426 5336 flpydisk - ok
21:36:52.0441 5336 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:36:52.0441 5336 FltMgr - ok
21:36:52.0504 5336 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:36:52.0504 5336 FontCache3.0.0.0 - ok
21:36:52.0519 5336 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:36:52.0519 5336 Fs_Rec - ok
21:36:52.0551 5336 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:36:52.0551 5336 gagp30kx - ok
21:36:52.0582 5336 [ 6139AE70E943B2A57AD04B70A316C0A0 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
21:36:52.0582 5336 GameConsoleService - ok
21:36:52.0629 5336 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
21:36:52.0629 5336 gpsvc - ok
21:36:52.0707 5336 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:36:52.0707 5336 gupdate - ok
21:36:52.0722 5336 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:36:52.0722 5336 gupdatem - ok
21:36:52.0738 5336 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:36:52.0738 5336 HDAudBus - ok
21:36:52.0769 5336 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:36:52.0769 5336 HidBth - ok
21:36:52.0785 5336 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
21:36:52.0785 5336 HidIr - ok
21:36:52.0800 5336 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\system32\hidserv.dll
21:36:52.0816 5336 hidserv - ok
21:36:52.0831 5336 [ 3C64042B95E583B366BA4E5D2450235E ] HidUsb C:\Windows\system32\drivers\hidusb.sys
21:36:52.0831 5336 HidUsb - ok
21:36:52.0847 5336 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:36:52.0863 5336 hkmsvc - ok
21:36:52.0909 5336 [ CB383AB0B8BA871D893B86D3C9A3ED9F ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
21:36:52.0909 5336 HP Health Check Service - ok
21:36:52.0941 5336 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
21:36:52.0941 5336 HpCISSs - ok
21:36:52.0987 5336 [ 88749FBF8BEB18C90E7D6626C8C1910B ] HSF_DP C:\Windows\system32\DRIVERS\HSX_DP.sys
21:36:53.0003 5336 HSF_DP - ok
21:36:53.0034 5336 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
21:36:53.0034 5336 HSXHWBS2 - ok
21:36:53.0081 5336 [ 96E241624C71211A79C84F50A8E71CAB ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:36:53.0081 5336 HTTP - ok
21:36:53.0112 5336 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
21:36:53.0112 5336 i2omp - ok
21:36:53.0143 5336 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:36:53.0143 5336 i8042prt - ok
21:36:53.0159 5336 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
21:36:53.0175 5336 iaStorV - ok
21:36:53.0221 5336 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:36:53.0237 5336 idsvc - ok
21:36:53.0268 5336 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:36:53.0268 5336 iirsp - ok
21:36:53.0284 5336 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
21:36:53.0299 5336 IKEEXT - ok
21:36:53.0362 5336 [ 4C01298060CF930D26A75A86B874B6AE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:36:53.0377 5336 IntcAzAudAddService - ok
21:36:53.0409 5336 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
21:36:53.0409 5336 intelide - ok
21:36:53.0424 5336 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:36:53.0424 5336 intelppm - ok
21:36:53.0455 5336 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:36:53.0455 5336 IPBusEnum - ok
21:36:53.0471 5336 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:36:53.0471 5336 IpFilterDriver - ok
21:36:53.0502 5336 [ 6A35D233693EDC29A12742049BC5E37F ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:36:53.0502 5336 iphlpsvc - ok
21:36:53.0502 5336 IpInIp - ok
21:36:53.0533 5336 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
21:36:53.0533 5336 IPMIDRV - ok
21:36:53.0549 5336 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
21:36:53.0549 5336 IPNAT - ok
21:36:53.0565 5336 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:36:53.0565 5336 IRENUM - ok
21:36:53.0580 5336 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:36:53.0580 5336 isapnp - ok
21:36:53.0627 5336 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:36:53.0627 5336 iScsiPrt - ok
21:36:53.0658 5336 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
21:36:53.0674 5336 iteatapi - ok
21:36:53.0674 5336 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
21:36:53.0674 5336 iteraid - ok
21:36:53.0689 5336 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:36:53.0689 5336 kbdclass - ok
21:36:53.0705 5336 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
21:36:53.0705 5336 kbdhid - ok
21:36:53.0736 5336 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] KeyIso C:\Windows\system32\lsass.exe
21:36:53.0736 5336 KeyIso - ok
21:36:53.0783 5336 [ 7A0CF7908B6824D6A2A1D313E5AE3DCA ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:36:53.0783 5336 KSecDD - ok
21:36:53.0814 5336 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:36:53.0830 5336 KtmRm - ok
21:36:53.0877 5336 [ 1925E63C91CF1610AE41BFD539062079 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:36:53.0877 5336 LanmanServer - ok
21:36:53.0908 5336 [ 2AE2E1628C5D3F1C0A46A67C9FA1DF15 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:36:53.0908 5336 LanmanWorkstation - ok
21:36:54.0001 5336 [ C215E09622118383B236DD56C2065183 ] LightScribeService c:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:36:54.0001 5336 LightScribeService - ok
21:36:54.0048 5336 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:36:54.0048 5336 lltdio - ok
21:36:54.0079 5336 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:36:54.0079 5336 lltdsvc - ok
21:36:54.0095 5336 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:36:54.0095 5336 lmhosts - ok
21:36:54.0126 5336 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:36:54.0126 5336 LSI_FC - ok
21:36:54.0142 5336 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:36:54.0142 5336 LSI_SAS - ok
21:36:54.0173 5336 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:36:54.0173 5336 LSI_SCSI - ok
21:36:54.0204 5336 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
21:36:54.0204 5336 luafv - ok
21:36:54.0267 5336 [ 0AEB868B9B13B74D9A6FB06630FD32DD ] lxdwCATSCustConnectService C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdwserv.exe
21:36:54.0267 5336 lxdwCATSCustConnectService - ok
21:36:54.0282 5336 lxdw_device - ok
21:36:54.0329 5336 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:36:54.0329 5336 MBAMProtector - ok
21:36:54.0407 5336 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:36:54.0407 5336 MBAMService - ok
21:36:54.0438 5336 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:36:54.0438 5336 Mcx2Svc - ok
21:36:54.0485 5336 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
21:36:54.0485 5336 mdmxsdk - ok
21:36:54.0501 5336 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
21:36:54.0501 5336 megasas - ok
21:36:54.0532 5336 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
21:36:54.0547 5336 MegaSR - ok
21:36:54.0563 5336 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
21:36:54.0563 5336 MMCSS - ok
21:36:54.0579 5336 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
21:36:54.0579 5336 Modem - ok
21:36:54.0610 5336 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:36:54.0610 5336 monitor - ok
21:36:54.0625 5336 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:36:54.0625 5336 mouclass - ok
21:36:54.0641 5336 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\drivers\mouhid.sys
21:36:54.0641 5336 mouhid - ok
21:36:54.0672 5336 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
21:36:54.0672 5336 MountMgr - ok
21:36:54.0703 5336 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
21:36:54.0703 5336 mpio - ok
21:36:54.0735 5336 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:36:54.0735 5336 mpsdrv - ok
21:36:54.0781 5336 [ D1639BA315B0D79DEC49A4B0E1FB929B ] MpsSvc C:\Windows\system32\mpssvc.dll
21:36:54.0781 5336 MpsSvc - ok
21:36:54.0797 5336 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
21:36:54.0797 5336 Mraid35x - ok
21:36:54.0828 5336 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:36:54.0828 5336 MRxDAV - ok
21:36:54.0875 5336 [ 5734A0F2BE7E495F7D3ED6EFD4B9F5A1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:36:54.0875 5336 mrxsmb - ok
21:36:54.0922 5336 [ 6B5FA5ADFACAC9DBBE0991F4566D7D55 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:36:54.0922 5336 mrxsmb10 - ok
21:36:54.0937 5336 [ 5C80D8159181C7ABF1B14BA703B01E0B ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:36:54.0937 5336 mrxsmb20 - ok
21:36:54.0969 5336 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
21:36:54.0969 5336 msahci - ok
21:36:54.0984 5336 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:36:54.0984 5336 msdsm - ok
21:36:55.0015 5336 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
21:36:55.0015 5336 MSDTC - ok
21:36:55.0047 5336 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:36:55.0047 5336 Msfs - ok
21:36:55.0078 5336 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:36:55.0078 5336 msisadrv - ok
21:36:55.0109 5336 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:36:55.0109 5336 MSiSCSI - ok
21:36:55.0125 5336 msiserver - ok
21:36:55.0140 5336 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:36:55.0140 5336 MSKSSRV - ok
21:36:55.0156 5336 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:36:55.0156 5336 MSPCLOCK - ok
21:36:55.0171 5336 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:36:55.0187 5336 MSPQM - ok
21:36:55.0203 5336 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:36:55.0203 5336 MsRPC - ok
21:36:55.0234 5336 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:36:55.0234 5336 mssmbios - ok
21:36:55.0234 5336 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:36:55.0234 5336 MSTEE - ok
21:36:55.0265 5336 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
21:36:55.0265 5336 Mup - ok
21:36:55.0296 5336 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
21:36:55.0296 5336 napagent - ok
21:36:55.0343 5336 [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:36:55.0343 5336 NativeWifiP - ok
21:36:55.0390 5336 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:36:55.0390 5336 NDIS - ok
21:36:55.0405 5336 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:36:55.0405 5336 NdisTapi - ok
21:36:55.0421 5336 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:36:55.0421 5336 Ndisuio - ok
21:36:55.0437 5336 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:36:55.0437 5336 NdisWan - ok
21:36:55.0452 5336 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:36:55.0452 5336 NDProxy - ok
21:36:55.0468 5336 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:36:55.0468 5336 NetBIOS - ok
21:36:55.0483 5336 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
21:36:55.0499 5336 netbt - ok
21:36:55.0515 5336 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] Netlogon C:\Windows\system32\lsass.exe
21:36:55.0515 5336 Netlogon - ok
21:36:55.0546 5336 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
21:36:55.0546 5336 Netman - ok
21:36:55.0577 5336 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
21:36:55.0577 5336 netprofm - ok
21:36:55.0608 5336 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:36:55.0608 5336 NetTcpPortSharing - ok
21:36:55.0639 5336 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:36:55.0639 5336 nfrd960 - ok
21:36:55.0655 5336 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:36:55.0655 5336 NlaSvc - ok
21:36:55.0671 5336 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:36:55.0671 5336 Npfs - ok
21:36:55.0702 5336 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
21:36:55.0702 5336 nsi - ok
21:36:55.0733 5336 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:36:55.0733 5336 nsiproxy - ok
21:36:55.0764 5336 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:36:55.0764 5336 Ntfs - ok
21:36:55.0795 5336 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
21:36:55.0795 5336 ntrigdigi - ok
21:36:55.0827 5336 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
21:36:55.0827 5336 Null - ok
21:36:55.0889 5336 [ AE78A7285DF03A277415FC62F8CE8F24 ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
21:36:55.0889 5336 NVENETFD - ok
21:36:56.0092 5336 [ 1924B437D113E909ABB7F11623884D77 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:36:56.0154 5336 nvlddmkm - ok
21:36:56.0185 5336 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:36:56.0185 5336 nvraid - ok
21:36:56.0217 5336 [ 0D15327134E5871C922760ACD7449E84 ] nvrd32 C:\Windows\system32\drivers\nvrd32.sys
21:36:56.0232 5336 nvrd32 - ok
21:36:56.0248 5336 [ C44EE36DD84FA95EB81D79C374756003 ] nvsmu C:\Windows\system32\drivers\nvsmu.sys
21:36:56.0248 5336 nvsmu - ok
21:36:56.0263 5336 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:36:56.0263 5336 nvstor - ok
21:36:56.0295 5336 [ FA7B8ECA6E845B244B7E30A9DCD82C6C ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
21:36:56.0295 5336 nvstor32 - ok
21:36:56.0310 5336 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:36:56.0310 5336 nv_agp - ok
21:36:56.0326 5336 NwlnkFlt - ok
21:36:56.0341 5336 NwlnkFwd - ok
21:36:56.0357 5336 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:36:56.0357 5336 ohci1394 - ok
21:36:56.0404 5336 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
21:36:56.0404 5336 p2pimsvc - ok
21:36:56.0435 5336 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
21:36:56.0435 5336 p2psvc - ok
21:36:56.0466 5336 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
21:36:56.0466 5336 Parport - ok
21:36:56.0482 5336 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:36:56.0482 5336 partmgr - ok
21:36:56.0513 5336 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
21:36:56.0513 5336 Parvdm - ok
21:36:56.0544 5336 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
21:36:56.0544 5336 PcaSvc - ok
21:36:56.0560 5336 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
21:36:56.0560 5336 pci - ok
21:36:56.0591 5336 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
21:36:56.0591 5336 pciide - ok
21:36:56.0607 5336 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:36:56.0607 5336 pcmcia - ok
21:36:56.0653 5336 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:36:56.0653 5336 PEAUTH - ok
21:36:56.0731 5336 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
21:36:56.0747 5336 pla - ok
21:36:56.0778 5336 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:36:56.0778 5336 PlugPlay - ok
21:36:56.0809 5336 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
21:36:56.0809 5336 PNRPAutoReg - ok
21:36:56.0841 5336 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
21:36:56.0841 5336 PNRPsvc - ok
21:36:56.0872 5336 [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:36:56.0887 5336 PolicyAgent - ok
21:36:56.0903 5336 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:36:56.0903 5336 PptpMiniport - ok
21:36:56.0950 5336 [ 57E95881E5F014816A8A53AD94EE0C48 ] PRISM_A02 C:\Windows\system32\DRIVERS\WUSB20XP.sys
21:36:56.0950 5336 PRISM_A02 - ok
21:36:56.0981 5336 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
21:36:56.0981 5336 Processor - ok
21:36:57.0012 5336 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
21:36:57.0012 5336 ProfSvc - ok
21:36:57.0028 5336 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:36:57.0028 5336 ProtectedStorage - ok
21:36:57.0059 5336 [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched C:\Windows\system32\DRIVERS\pacer.sys
21:36:57.0059 5336 PSched - ok
21:36:57.0106 5336 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:36:57.0121 5336 ql2300 - ok
21:36:57.0153 5336 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:36:57.0153 5336 ql40xx - ok
21:36:57.0215 5336 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
21:36:57.0215 5336 QWAVE - ok
21:36:57.0231 5336 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:36:57.0231 5336 QWAVEdrv - ok
21:36:57.0246 5336 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:36:57.0246 5336 RasAcd - ok
21:36:57.0262 5336 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
21:36:57.0277 5336 RasAuto - ok
21:36:57.0277 5336 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:36:57.0277 5336 Rasl2tp - ok
21:36:57.0309 5336 [ 6E7C284FC5C4EC07AD164D93810385A6 ] RasMan C:\Windows\System32\rasmans.dll
21:36:57.0324 5336 RasMan - ok
21:36:57.0340 5336 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:36:57.0340 5336 RasPppoe - ok
21:36:57.0340 5336 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:36:57.0340 5336 RasSstp - ok
21:36:57.0371 5336 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:36:57.0371 5336 rdbss - ok
21:36:57.0387 5336 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:36:57.0387 5336 RDPCDD - ok
21:36:57.0402 5336 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
21:36:57.0402 5336 rdpdr - ok
21:36:57.0418 5336 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:36:57.0418 5336 RDPENCDD - ok
21:36:57.0433 5336 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:36:57.0449 5336 RDPWD - ok
21:36:57.0465 5336 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:36:57.0465 5336 RemoteAccess - ok
21:36:57.0496 5336 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:36:57.0496 5336 RemoteRegistry - ok
21:36:57.0511 5336 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
21:36:57.0511 5336 RpcLocator - ok
21:36:57.0543 5336 [ 301AE00E12408650BADDC04DBC832830 ] RpcSs C:\Windows\system32\rpcss.dll
21:36:57.0543 5336 RpcSs - ok
21:36:57.0558 5336 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:36:57.0558 5336 rspndr - ok
21:36:57.0636 5336 [ 3EDFB0089B9455B26154B572DB650EE3 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
21:36:57.0652 5336 RTL8192su - ok
21:36:57.0683 5336 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] SamSs C:\Windows\system32\lsass.exe
21:36:57.0683 5336 SamSs - ok
21:36:57.0699 5336 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:36:57.0699 5336 sbp2port - ok
21:36:57.0777 5336 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:36:57.0777 5336 SCardSvr - ok
21:36:57.0808 5336 [ 7B587B8A6D4A99F79D2902D0385F29BD ] Schedule C:\Windows\system32\schedsvc.dll
21:36:57.0823 5336 Schedule - ok
21:36:57.0839 5336 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
21:36:57.0839 5336 SCPolicySvc - ok
21:36:57.0870 5336 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:36:57.0870 5336 SDRSVC - ok
21:36:57.0901 5336 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:36:57.0901 5336 secdrv - ok
21:36:57.0917 5336 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
21:36:57.0917 5336 seclogon - ok
21:36:57.0933 5336 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
21:36:57.0933 5336 SENS - ok
21:36:57.0948 5336 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
21:36:57.0948 5336 Serenum - ok
21:36:57.0964 5336 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
21:36:57.0979 5336 Serial - ok
21:36:57.0995 5336 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:36:57.0995 5336 sermouse - ok
21:36:58.0042 5336 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
21:36:58.0042 5336 SessionEnv - ok
21:36:58.0073 5336 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:36:58.0073 5336 sffdisk - ok
21:36:58.0089 5336 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:36:58.0089 5336 sffp_mmc - ok
21:36:58.0151 5336 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:36:58.0151 5336 sffp_sd - ok
21:36:58.0198 5336 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:36:58.0198 5336 sfloppy - ok
21:36:58.0245 5336 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:36:58.0245 5336 ShellHWDetection - ok
21:36:58.0260 5336 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:36:58.0276 5336 sisagp - ok
21:36:58.0291 5336 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
21:36:58.0291 5336 SiSRaid2 - ok
21:36:58.0323 5336 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:36:58.0323 5336 SiSRaid4 - ok
21:36:58.0401 5336 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
21:36:58.0432 5336 slsvc - ok
21:36:58.0447 5336 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
21:36:58.0447 5336 SLUINotify - ok
21:36:58.0479 5336 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:36:58.0479 5336 Smb - ok
21:36:58.0494 5336 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:36:58.0510 5336 SNMPTRAP - ok
21:36:58.0525 5336 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
21:36:58.0525 5336 spldr - ok
21:36:58.0557 5336 [ 3665F79026A3F91FBCA63F2C65A09B19 ] Spooler C:\Windows\System32\spoolsv.exe
21:36:58.0572 5336 Spooler - ok
21:36:58.0619 5336 [ 2252AEF839B1093D16761189F45AF885 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:36:58.0619 5336 srv - ok
21:36:58.0666 5336 [ B7FF59408034119476B00A81BB53D5D1 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:36:58.0666 5336 srv2 - ok
21:36:58.0713 5336 [ 2ACCC9B12AF02030F531E6CCA6F8B76E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:36:58.0713 5336 srvnet - ok
21:36:58.0728 5336 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:36:58.0728 5336 SSDPSRV - ok
21:36:58.0759 5336 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:36:58.0759 5336 SstpSvc - ok
21:36:58.0791 5336 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
21:36:58.0806 5336 stisvc - ok
21:36:58.0822 5336 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:36:58.0822 5336 swenum - ok
21:36:58.0837 5336 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
21:36:58.0853 5336 swprv - ok
21:36:58.0869 5336 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
21:36:58.0869 5336 Symc8xx - ok
21:36:58.0884 5336 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
21:36:58.0884 5336 Sym_hi - ok
21:36:58.0915 5336 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
21:36:58.0915 5336 Sym_u3 - ok
21:36:58.0947 5336 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
21:36:58.0962 5336 SysMain - ok
21:36:58.0978 5336 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:36:58.0978 5336 TabletInputService - ok
21:36:59.0009 5336 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
21:36:59.0009 5336 TapiSrv - ok
21:36:59.0025 5336 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
21:36:59.0025 5336 TBS - ok
21:36:59.0071 5336 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:36:59.0087 5336 Tcpip - ok
21:36:59.0118 5336 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
21:36:59.0134 5336 Tcpip6 - ok
21:36:59.0149 5336 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:36:59.0149 5336 tcpipreg - ok
21:36:59.0181 5336 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:36:59.0181 5336 TDPIPE - ok
21:36:59.0196 5336 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:36:59.0196 5336 TDTCP - ok
21:36:59.0227 5336 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:36:59.0227 5336 tdx - ok
21:36:59.0321 5336 [ 925F0C3E7E53F1FF76C7256DF17B2D73 ] TeamViewer5 C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
21:36:59.0321 5336 TeamViewer5 - ok
21:36:59.0337 5336 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:36:59.0337 5336 TermDD - ok
21:36:59.0368 5336 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
21:36:59.0383 5336 TermService - ok
21:36:59.0399 5336 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] Themes C:\Windows\system32\shsvcs.dll
21:36:59.0399 5336 Themes - ok
21:36:59.0430 5336 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
21:36:59.0430 5336 THREADORDER - ok
21:36:59.0446 5336 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
21:36:59.0446 5336 TrkWks - ok
21:36:59.0477 5336 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:36:59.0477 5336 TrustedInstaller - ok
21:36:59.0508 5336 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:36:59.0508 5336 tssecsrv - ok
21:36:59.0524 5336 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
21:36:59.0524 5336 tunmp - ok
21:36:59.0555 5336 [ 6042505FF6FA9AC1EF7684D0E03B6940 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:36:59.0555 5336 tunnel - ok
21:36:59.0571 5336 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:36:59.0586 5336 uagp35 - ok
21:36:59.0602 5336 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:36:59.0617 5336 udfs - ok
21:36:59.0649 5336 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:36:59.0649 5336 UI0Detect - ok
21:36:59.0680 5336 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:36:59.0680 5336 uliagpkx - ok
21:36:59.0695 5336 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
21:36:59.0711 5336 uliahci - ok
21:36:59.0742 5336 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
21:36:59.0742 5336 UlSata - ok
21:36:59.0758 5336 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
21:36:59.0773 5336 ulsata2 - ok
21:36:59.0805 5336 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:36:59.0805 5336 umbus - ok
21:36:59.0820 5336 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
21:36:59.0836 5336 upnphost - ok
21:36:59.0867 5336 [ 8BD3AE150D97BA4E633C6C5C51B41AE1 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
21:36:59.0867 5336 usbccgp - ok
21:36:59.0883 5336 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:36:59.0883 5336 usbcir - ok
21:36:59.0914 5336 [ CEBE90821810E76320155BEBA722FCF9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:36:59.0914 5336 usbehci - ok
21:36:59.0929 5336 [ CC6B28E4CE39951357963119CE47B143 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:36:59.0929 5336 usbhub - ok
21:36:59.0961 5336 [ 7BDB7B0E7D45AC0402D78B90789EF47C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:36:59.0961 5336 usbohci - ok
21:36:59.0976 5336 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
21:36:59.0976 5336 usbprint - ok
21:37:00.0023 5336 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:37:00.0023 5336 usbscan - ok
21:37:00.0054 5336 [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:37:00.0054 5336 USBSTOR - ok
21:37:00.0070 5336 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:37:00.0070 5336 usbuhci - ok
21:37:00.0117 5336 [ 032A0ACC3909AE7215D524E29D536797 ] UxSms C:\Windows\System32\uxsms.dll
21:37:00.0117 5336 UxSms - ok
21:37:00.0148 5336 [ B13BC395B9D6116628F5AF47E0802AC4 ] vds C:\Windows\System32\vds.exe
21:37:00.0148 5336 vds - ok
21:37:00.0163 5336 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:37:00.0179 5336 vga - ok
21:37:00.0210 5336 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
21:37:00.0210 5336 VgaSave - ok
21:37:00.0226 5336 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:37:00.0226 5336 viaagp - ok
21:37:00.0257 5336 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
21:37:00.0257 5336 ViaC7 - ok
21:37:00.0273 5336 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
21:37:00.0273 5336 viaide - ok
21:37:00.0319 5336 [ 5F974FDE801C73952770736BECDE11E7 ] Viewpoint Manager Service C:\Program Files\Viewpoint\Common\ViewpointService.exe
21:37:00.0319 5336 Viewpoint Manager Service - ok
21:37:00.0335 5336 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:37:00.0351 5336 volmgr - ok
21:37:00.0366 5336 [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:37:00.0366 5336 volmgrx - ok
21:37:00.0382 5336 [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:37:00.0382 5336 volsnap - ok
21:37:00.0413 5336 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:37:00.0413 5336 vsmraid - ok
21:37:00.0460 5336 [ D5FB73D19C46ADE183F968E13F186B23 ] VSS C:\Windows\system32\vssvc.exe
21:37:00.0475 5336 VSS - ok
21:37:00.0491 5336 [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time C:\Windows\system32\w32time.dll
21:37:00.0491 5336 W32Time - ok
21:37:00.0522 5336 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:37:00.0522 5336 WacomPen - ok
21:37:00.0553 5336 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
21:37:00.0553 5336 Wanarp - ok
21:37:00.0569 5336 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:37:00.0569 5336 Wanarpv6 - ok
21:37:00.0585 5336 [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:37:00.0600 5336 wcncsvc - ok
21:37:00.0616 5336 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:37:00.0616 5336 WcsPlugInService - ok
21:37:00.0631 5336 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
21:37:00.0631 5336 Wd - ok
21:37:00.0663 5336 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:37:00.0678 5336 Wdf01000 - ok
21:37:00.0694 5336 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:37:00.0694 5336 WdiServiceHost - ok
21:37:00.0709 5336 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:37:00.0709 5336 WdiSystemHost - ok
21:37:00.0741 5336 [ CF9A5F41789B642DB967021DE06A2713 ] WebClient C:\Windows\System32\webclnt.dll
21:37:00.0741 5336 WebClient - ok
21:37:00.0803 5336 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:37:00.0803 5336 Wecsvc - ok
21:37:00.0819 5336 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:37:00.0819 5336 wercplsupport - ok
21:37:00.0850 5336 [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc C:\Windows\System32\WerSvc.dll
21:37:00.0850 5336 WerSvc - ok
21:37:00.0897 5336 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
21:37:00.0897 5336 winachsf - ok
21:37:00.0912 5336 WinHttpAutoProxySvc - ok
21:37:00.0975 5336 [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:37:00.0975 5336 Winmgmt - ok
21:37:01.0053 5336 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
21:37:01.0053 5336 WinRM - ok
21:37:01.0099 5336 [ 275F4346E569DF56CFB95243BD6F6FF0 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:37:01.0099 5336 Wlansvc - ok
21:37:01.0131 5336 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:37:01.0131 5336 WmiAcpi - ok
21:37:01.0177 5336 [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:37:01.0177 5336 wmiApSrv - ok
21:37:01.0255 5336 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:37:01.0255 5336 WMPNetworkSvc - ok
21:37:01.0333 5336 [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:37:01.0333 5336 WPCSvc - ok
21:37:01.0365 5336 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:37:01.0365 5336 WPDBusEnum - ok
21:37:01.0443 5336 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:37:01.0458 5336 WPFFontCache_v0400 - ok
21:37:01.0489 5336 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:37:01.0489 5336 ws2ifsl - ok
21:37:01.0521 5336 [ 683DD16B590372F2C9661D277F35E49C ] wscsvc C:\Windows\System32\wscsvc.dll
21:37:01.0521 5336 wscsvc - ok
21:37:01.0521 5336 WSearch - ok
21:37:01.0583 5336 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:37:01.0583 5336 WUDFRd - ok
21:37:01.0614 5336 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:37:01.0614 5336 wudfsvc - ok
21:37:01.0645 5336 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
21:37:01.0645 5336 XAudio - ok
21:37:01.0661 5336 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
21:37:01.0677 5336 XAudioService - ok
21:37:01.0708 5336 ================ Scan global ===============================
21:37:01.0739 5336 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
21:37:01.0786 5336 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
21:37:01.0801 5336 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
21:37:01.0848 5336 [ 5DC3C54FC22BBB6F66C290C7C0384DF9 ] C:\Windows\system32\services.exe
21:37:01.0864 5336 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
21:37:01.0864 5336 C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
21:37:01.0864 5336 ================ Scan MBR ==================================
21:37:01.0864 5336 [ 03BA8F890B47C0BE359A4D5A636D214D ] \Device\Harddisk0\DR0
21:37:02.0363 5336 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
21:37:02.0363 5336 \Device\Harddisk0\DR0 - detected TDSS File System (1)
21:37:02.0363 5336 ================ Scan VBR ==================================
21:37:02.0363 5336 [ D940C9BC1BE681430EE6A1A311AB6169 ] \Device\Harddisk0\DR0\Partition1
21:37:02.0363 5336 \Device\Harddisk0\DR0\Partition1 - ok
21:37:02.0379 5336 [ C56CC28DCCA50B78B8BA16726E4DE34E ] \Device\Harddisk0\DR0\Partition2
21:37:02.0379 5336 \Device\Harddisk0\DR0\Partition2 - ok
21:37:02.0379 5336 ============================================================
21:37:02.0379 5336 Scan finished
21:37:02.0379 5336 ============================================================
21:37:02.0410 3332 Detected object count: 2
21:37:02.0410 3332 Actual detected object count: 2
21:38:17.0661 3332 C:\Windows\system32\services.exe - copied to quarantine
21:38:19.0331 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\@ - copied to quarantine
21:38:19.0332 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\L\00000004.@ - copied to quarantine
21:38:19.0337 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\L\1afb2d56 - copied to quarantine
21:38:19.0341 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\L\201d3dde - copied to quarantine
21:38:19.0343 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000004.@ - copied to quarantine
21:38:19.0345 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000008.@ - copied to quarantine
21:38:19.0347 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\000000cb.@ - copied to quarantine
21:38:19.0350 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000000.@ - copied to quarantine
21:38:19.0352 3332 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000032.@ - copied to quarantine
21:38:19.0391 3332 C:\Users\robin\AppData\Local\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\@ - copied to quarantine
21:38:19.0393 3332 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - User select action: Quarantine
21:38:19.0397 3332 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
21:38:19.0397 3332 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:47 PM

Posted 20 August 2012 - 08:42 PM

Run TDSSkiller again,delete this

21:38:19.0397 3332 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user

restart the PC ,post the new TDSSkiller log,please post the other logs together.

#11 salvia-girl

salvia-girl
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 22 August 2012 - 10:15 AM

Here is the most current TDSSKill log:
10:55:33.0283 7696 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
10:55:33.0533 7696 ============================================================
10:55:33.0533 7696 Current date / time: 2012/08/22 10:55:33.0533
10:55:33.0533 7696 SystemInfo:
10:55:33.0533 7696
10:55:33.0533 7696 OS Version: 6.0.6001 ServicePack: 1.0
10:55:33.0533 7696 Product type: Workstation
10:55:33.0533 7696 ComputerName: ROBIN-PC
10:55:33.0533 7696 UserName: robin
10:55:33.0533 7696 Windows directory: C:\Windows
10:55:33.0533 7696 System windows directory: C:\Windows
10:55:33.0533 7696 Processor architecture: Intel x86
10:55:33.0533 7696 Number of processors: 2
10:55:33.0533 7696 Page size: 0x1000
10:55:33.0533 7696 Boot type: Normal boot
10:55:33.0533 7696 ============================================================
10:55:33.0985 7696 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:55:34.0001 7696 ============================================================
10:55:34.0001 7696 \Device\Harddisk0\DR0:
10:55:34.0001 7696 MBR partitions:
10:55:34.0001 7696 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x115C0152
10:55:34.0001 7696 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x115C0191, BlocksNum 0x1458930
10:55:34.0001 7696 ============================================================
10:55:34.0141 7696 C: <-> \Device\Harddisk0\DR0\Partition1
10:55:34.0313 7696 D: <-> \Device\Harddisk0\DR0\Partition2
10:55:34.0313 7696 ============================================================
10:55:34.0313 7696 Initialize success
10:55:34.0313 7696 ============================================================
10:55:45.0513 5692 ============================================================
10:55:45.0513 5692 Scan started
10:55:45.0513 5692 Mode: Manual; TDLFS;
10:55:45.0513 5692 ============================================================
10:55:46.0527 5692 ================ Scan system memory ========================
10:55:46.0527 5692 System memory - ok
10:55:46.0527 5692 ================ Scan services =============================
10:55:46.0777 5692 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
10:55:46.0777 5692 ACPI - ok
10:55:46.0917 5692 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:55:46.0917 5692 AdobeFlashPlayerUpdateSvc - ok
10:55:46.0964 5692 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:55:46.0980 5692 adp94xx - ok
10:55:47.0011 5692 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:55:47.0011 5692 adpahci - ok
10:55:47.0042 5692 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
10:55:47.0058 5692 adpu160m - ok
10:55:47.0105 5692 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:55:47.0105 5692 adpu320 - ok
10:55:47.0136 5692 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:55:47.0136 5692 AeLookupSvc - ok
10:55:47.0183 5692 [ 48EB99503533C27AC6135648E5474457 ] AFD C:\Windows\system32\drivers\afd.sys
10:55:47.0198 5692 AFD - ok
10:55:47.0276 5692 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:55:47.0276 5692 agp440 - ok
10:55:47.0307 5692 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
10:55:47.0307 5692 aic78xx - ok
10:55:47.0323 5692 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
10:55:47.0323 5692 ALG - ok
10:55:47.0354 5692 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
10:55:47.0354 5692 aliide - ok
10:55:47.0385 5692 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
10:55:47.0385 5692 amdagp - ok
10:55:47.0401 5692 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
10:55:47.0401 5692 amdide - ok
10:55:47.0448 5692 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
10:55:47.0448 5692 AmdK7 - ok
10:55:47.0463 5692 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:55:47.0463 5692 AmdK8 - ok
10:55:47.0510 5692 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
10:55:47.0510 5692 Appinfo - ok
10:55:47.0526 5692 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
10:55:47.0526 5692 arc - ok
10:55:47.0557 5692 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:55:47.0557 5692 arcsas - ok
10:55:47.0588 5692 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:55:47.0588 5692 AsyncMac - ok
10:55:47.0635 5692 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
10:55:47.0635 5692 atapi - ok
10:55:47.0697 5692 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:55:47.0697 5692 AudioEndpointBuilder - ok
10:55:47.0713 5692 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
10:55:47.0713 5692 Audiosrv - ok
10:55:47.0963 5692 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
10:55:48.0009 5692 AVGIDSAgent - ok
10:55:48.0072 5692 [ 1074F787080068C71303B61FAE7E7CA4 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
10:55:48.0072 5692 AVGIDSDriver - ok
10:55:48.0103 5692 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfilterx.sys
10:55:48.0103 5692 AVGIDSFilter - ok
10:55:48.0150 5692 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
10:55:48.0150 5692 AVGIDSHX - ok
10:55:48.0197 5692 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
10:55:48.0197 5692 AVGIDSShim - ok
10:55:48.0243 5692 [ DDA6A2A18841E4C9172BB85958B8D948 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
10:55:48.0243 5692 Avgldx86 - ok
10:55:48.0275 5692 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
10:55:48.0275 5692 Avgmfx86 - ok
10:55:48.0321 5692 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
10:55:48.0321 5692 Avgrkx86 - ok
10:55:48.0368 5692 [ 1263F2554ACE925C237A40B4C568D815 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
10:55:48.0368 5692 Avgtdix - ok
10:55:48.0431 5692 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
10:55:48.0431 5692 avgwd - ok
10:55:48.0462 5692 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
10:55:48.0462 5692 Beep - ok
10:55:48.0509 5692 [ 8582E233C346AEFE759833E8A30DD697 ] BFE C:\Windows\System32\bfe.dll
10:55:48.0509 5692 BFE - ok
10:55:48.0540 5692 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
10:55:48.0540 5692 blbdrive - ok
10:55:48.0571 5692 [ 8153396D5551276227FA146900F734E6 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:55:48.0571 5692 bowser - ok
10:55:48.0602 5692 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
10:55:48.0602 5692 BrFiltLo - ok
10:55:48.0633 5692 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
10:55:48.0633 5692 BrFiltUp - ok
10:55:48.0665 5692 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
10:55:48.0665 5692 Browser - ok
10:55:48.0711 5692 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
10:55:48.0711 5692 Brserid - ok
10:55:48.0743 5692 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
10:55:48.0743 5692 BrSerWdm - ok
10:55:48.0774 5692 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
10:55:48.0774 5692 BrUsbMdm - ok
10:55:48.0805 5692 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
10:55:48.0805 5692 BrUsbSer - ok
10:55:48.0821 5692 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:55:48.0821 5692 BTHMODEM - ok
10:55:48.0852 5692 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:55:48.0852 5692 cdfs - ok
10:55:48.0883 5692 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:55:48.0883 5692 cdrom - ok
10:55:48.0930 5692 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
10:55:48.0930 5692 CertPropSvc - ok
10:55:48.0945 5692 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
10:55:48.0945 5692 circlass - ok
10:55:48.0977 5692 [ 465745561C832B29F7C48B488AAB3842 ] CLFS C:\Windows\system32\CLFS.sys
10:55:48.0977 5692 CLFS - ok
10:55:49.0023 5692 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:55:49.0023 5692 clr_optimization_v2.0.50727_32 - ok
10:55:49.0086 5692 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:55:49.0086 5692 clr_optimization_v4.0.30319_32 - ok
10:55:49.0117 5692 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:55:49.0117 5692 cmdide - ok
10:55:49.0133 5692 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
10:55:49.0133 5692 Compbatt - ok
10:55:49.0133 5692 COMSysApp - ok
10:55:49.0164 5692 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:55:49.0164 5692 crcdisk - ok
10:55:49.0195 5692 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
10:55:49.0195 5692 Crusoe - ok
10:55:49.0242 5692 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:55:49.0242 5692 CryptSvc - ok
10:55:49.0304 5692 [ CB6FF7012BB5D59D7C12350DB795CE1F ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
10:55:49.0304 5692 ctxusbm - ok
10:55:49.0335 5692 [ B5ECADF7708960F1818C7FA015F4C239 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA.sys
10:55:49.0335 5692 CVirtA - ok
10:55:49.0413 5692 [ DAD192D12DD0B4C92F6843203852829F ] CVPND C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
10:55:49.0413 5692 CVPND - ok
10:55:49.0491 5692 [ 26DEEF07394624247D1F549BD94F0B15 ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys
10:55:49.0491 5692 CVPNDRVA - ok
10:55:49.0569 5692 [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:55:49.0569 5692 DcomLaunch - ok
10:55:49.0585 5692 [ A3E9FA213F443AC77C7746119D13FEEC ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:55:49.0585 5692 DfsC - ok
10:55:49.0663 5692 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
10:55:49.0679 5692 DFSR - ok
10:55:49.0710 5692 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
10:55:49.0710 5692 Dhcp - ok
10:55:49.0741 5692 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
10:55:49.0741 5692 disk - ok
10:55:49.0772 5692 [ 7B4FDFBE97C047175E613AA96F3DE987 ] DNE C:\Windows\system32\DRIVERS\dne2000.sys
10:55:49.0772 5692 DNE - ok
10:55:49.0819 5692 [ 4805D9A6D281C7A7DEFD9094DEC6AF7D ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:55:49.0819 5692 Dnscache - ok
10:55:49.0850 5692 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
10:55:49.0866 5692 dot3svc - ok
10:55:49.0881 5692 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
10:55:49.0881 5692 DPS - ok
10:55:49.0913 5692 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:55:49.0913 5692 drmkaud - ok
10:55:49.0991 5692 [ B2C3F71B86E25C3DF78339DDB40A7562 ] dsNcAdpt C:\Windows\system32\DRIVERS\dsNcAdpt.sys
10:55:49.0991 5692 dsNcAdpt - ok
10:55:50.0053 5692 [ A6B5ECF684769A99D96175F9D1E1337C ] dsNcService C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
10:55:50.0053 5692 dsNcService - ok
10:55:50.0115 5692 [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:55:50.0115 5692 DXGKrnl - ok
10:55:50.0209 5692 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
10:55:50.0209 5692 E1G60 - ok
10:55:50.0256 5692 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
10:55:50.0256 5692 EapHost - ok
10:55:50.0287 5692 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
10:55:50.0287 5692 Ecache - ok
10:55:50.0334 5692 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:55:50.0334 5692 ehRecvr - ok
10:55:50.0349 5692 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
10:55:50.0349 5692 ehSched - ok
10:55:50.0381 5692 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
10:55:50.0381 5692 ehstart - ok
10:55:50.0427 5692 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:55:50.0427 5692 elxstor - ok
10:55:50.0490 5692 [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt C:\Windows\system32\emdmgmt.dll
10:55:50.0505 5692 EMDMgmt - ok
10:55:50.0521 5692 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:55:50.0521 5692 ErrDev - ok
10:55:50.0568 5692 [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem C:\Windows\system32\es.dll
10:55:50.0568 5692 EventSystem - ok
10:55:50.0583 5692 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
10:55:50.0583 5692 exfat - ok
10:55:50.0599 5692 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:55:50.0615 5692 fastfat - ok
10:55:50.0630 5692 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:55:50.0630 5692 fdc - ok
10:55:50.0661 5692 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
10:55:50.0661 5692 fdPHost - ok
10:55:50.0677 5692 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
10:55:50.0693 5692 FDResPub - ok
10:55:50.0708 5692 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:55:50.0724 5692 FileInfo - ok
10:55:50.0739 5692 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:55:50.0755 5692 Filetrace - ok
10:55:50.0771 5692 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:55:50.0771 5692 flpydisk - ok
10:55:50.0802 5692 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:55:50.0802 5692 FltMgr - ok
10:55:50.0849 5692 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:55:50.0849 5692 FontCache3.0.0.0 - ok
10:55:50.0864 5692 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:55:50.0864 5692 Fs_Rec - ok
10:55:50.0880 5692 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:55:50.0895 5692 gagp30kx - ok
10:55:50.0927 5692 [ 6139AE70E943B2A57AD04B70A316C0A0 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
10:55:50.0942 5692 GameConsoleService - ok
10:55:50.0973 5692 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
10:55:50.0989 5692 gpsvc - ok
10:55:51.0067 5692 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
10:55:51.0067 5692 gupdate - ok
10:55:51.0067 5692 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
10:55:51.0067 5692 gupdatem - ok
10:55:51.0098 5692 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:55:51.0098 5692 HDAudBus - ok
10:55:51.0114 5692 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:55:51.0114 5692 HidBth - ok
10:55:51.0129 5692 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
10:55:51.0129 5692 HidIr - ok
10:55:51.0161 5692 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\system32\hidserv.dll
10:55:51.0161 5692 hidserv - ok
10:55:51.0161 5692 [ 3C64042B95E583B366BA4E5D2450235E ] HidUsb C:\Windows\system32\drivers\hidusb.sys
10:55:51.0161 5692 HidUsb - ok
10:55:51.0192 5692 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:55:51.0192 5692 hkmsvc - ok
10:55:51.0254 5692 [ CB383AB0B8BA871D893B86D3C9A3ED9F ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
10:55:51.0254 5692 HP Health Check Service - ok
10:55:51.0270 5692 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
10:55:51.0270 5692 HpCISSs - ok
10:55:51.0332 5692 [ 88749FBF8BEB18C90E7D6626C8C1910B ] HSF_DP C:\Windows\system32\DRIVERS\HSX_DP.sys
10:55:51.0332 5692 HSF_DP - ok
10:55:51.0363 5692 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
10:55:51.0363 5692 HSXHWBS2 - ok
10:55:51.0395 5692 [ 96E241624C71211A79C84F50A8E71CAB ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:55:51.0395 5692 HTTP - ok
10:55:51.0426 5692 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
10:55:51.0426 5692 i2omp - ok
10:55:51.0457 5692 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:55:51.0457 5692 i8042prt - ok
10:55:51.0473 5692 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
10:55:51.0473 5692 iaStorV - ok
10:55:51.0566 5692 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:55:51.0582 5692 idsvc - ok
10:55:51.0597 5692 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:55:51.0597 5692 iirsp - ok
10:55:51.0629 5692 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
10:55:51.0629 5692 IKEEXT - ok
10:55:51.0707 5692 [ 4C01298060CF930D26A75A86B874B6AE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
10:55:51.0722 5692 IntcAzAudAddService - ok
10:55:51.0769 5692 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
10:55:51.0769 5692 intelide - ok
10:55:51.0785 5692 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:55:51.0785 5692 intelppm - ok
10:55:51.0800 5692 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:55:51.0800 5692 IPBusEnum - ok
10:55:51.0831 5692 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:55:51.0831 5692 IpFilterDriver - ok
10:55:51.0878 5692 [ 6A35D233693EDC29A12742049BC5E37F ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:55:51.0878 5692 iphlpsvc - ok
10:55:51.0894 5692 IpInIp - ok
10:55:51.0909 5692 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
10:55:51.0909 5692 IPMIDRV - ok
10:55:51.0941 5692 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
10:55:51.0941 5692 IPNAT - ok
10:55:51.0972 5692 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:55:51.0972 5692 IRENUM - ok
10:55:51.0987 5692 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:55:52.0003 5692 isapnp - ok
10:55:52.0034 5692 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:55:52.0034 5692 iScsiPrt - ok
10:55:52.0050 5692 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
10:55:52.0050 5692 iteatapi - ok
10:55:52.0065 5692 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
10:55:52.0065 5692 iteraid - ok
10:55:52.0097 5692 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:55:52.0097 5692 kbdclass - ok
10:55:52.0112 5692 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:55:52.0112 5692 kbdhid - ok
10:55:52.0128 5692 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] KeyIso C:\Windows\system32\lsass.exe
10:55:52.0143 5692 KeyIso - ok
10:55:52.0175 5692 [ 7A0CF7908B6824D6A2A1D313E5AE3DCA ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:55:52.0175 5692 KSecDD - ok
10:55:52.0221 5692 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
10:55:52.0221 5692 KtmRm - ok
10:55:52.0268 5692 [ 1925E63C91CF1610AE41BFD539062079 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:55:52.0268 5692 LanmanServer - ok
10:55:52.0299 5692 [ 2AE2E1628C5D3F1C0A46A67C9FA1DF15 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:55:52.0299 5692 LanmanWorkstation - ok
10:55:52.0362 5692 [ C215E09622118383B236DD56C2065183 ] LightScribeService c:\Program Files\Common Files\LightScribe\LSSrvc.exe
10:55:52.0362 5692 LightScribeService - ok
10:55:52.0377 5692 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:55:52.0393 5692 lltdio - ok
10:55:52.0409 5692 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:55:52.0424 5692 lltdsvc - ok
10:55:52.0440 5692 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:55:52.0440 5692 lmhosts - ok
10:55:52.0455 5692 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:55:52.0455 5692 LSI_FC - ok
10:55:52.0471 5692 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:55:52.0487 5692 LSI_SAS - ok
10:55:52.0502 5692 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:55:52.0502 5692 LSI_SCSI - ok
10:55:52.0533 5692 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
10:55:52.0533 5692 luafv - ok
10:55:52.0596 5692 [ 0AEB868B9B13B74D9A6FB06630FD32DD ] lxdwCATSCustConnectService C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdwserv.exe
10:55:52.0611 5692 lxdwCATSCustConnectService - ok
10:55:52.0627 5692 lxdw_device - ok
10:55:52.0658 5692 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:55:52.0658 5692 MBAMProtector - ok
10:55:52.0736 5692 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
10:55:52.0752 5692 MBAMService - ok
10:55:52.0799 5692 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:55:52.0799 5692 Mcx2Svc - ok
10:55:52.0861 5692 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
10:55:52.0861 5692 mdmxsdk - ok
10:55:52.0892 5692 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
10:55:52.0892 5692 megasas - ok
10:55:52.0923 5692 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
10:55:52.0923 5692 MegaSR - ok
10:55:52.0939 5692 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
10:55:52.0939 5692 MMCSS - ok
10:55:52.0955 5692 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
10:55:52.0955 5692 Modem - ok
10:55:52.0970 5692 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:55:52.0970 5692 monitor - ok
10:55:53.0001 5692 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:55:53.0001 5692 mouclass - ok
10:55:53.0017 5692 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\drivers\mouhid.sys
10:55:53.0017 5692 mouhid - ok
10:55:53.0048 5692 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
10:55:53.0048 5692 MountMgr - ok
10:55:53.0079 5692 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
10:55:53.0079 5692 mpio - ok
10:55:53.0111 5692 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:55:53.0111 5692 mpsdrv - ok
10:55:53.0142 5692 [ D1639BA315B0D79DEC49A4B0E1FB929B ] MpsSvc C:\Windows\system32\mpssvc.dll
10:55:53.0142 5692 MpsSvc - ok
10:55:53.0173 5692 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
10:55:53.0173 5692 Mraid35x - ok
10:55:53.0204 5692 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:55:53.0204 5692 MRxDAV - ok
10:55:53.0251 5692 [ 5734A0F2BE7E495F7D3ED6EFD4B9F5A1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:55:53.0267 5692 mrxsmb - ok
10:55:53.0360 5692 [ 6B5FA5ADFACAC9DBBE0991F4566D7D55 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:55:53.0360 5692 mrxsmb10 - ok
10:55:53.0360 5692 [ 5C80D8159181C7ABF1B14BA703B01E0B ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:55:53.0360 5692 mrxsmb20 - ok
10:55:53.0391 5692 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
10:55:53.0391 5692 msahci - ok
10:55:53.0407 5692 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:55:53.0407 5692 msdsm - ok
10:55:53.0454 5692 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
10:55:53.0454 5692 MSDTC - ok
10:55:53.0485 5692 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:55:53.0485 5692 Msfs - ok
10:55:53.0516 5692 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:55:53.0516 5692 msisadrv - ok
10:55:53.0547 5692 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:55:53.0547 5692 MSiSCSI - ok
10:55:53.0547 5692 msiserver - ok
10:55:53.0579 5692 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:55:53.0579 5692 MSKSSRV - ok
10:55:53.0610 5692 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:55:53.0610 5692 MSPCLOCK - ok
10:55:53.0610 5692 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:55:53.0610 5692 MSPQM - ok
10:55:53.0641 5692 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:55:53.0641 5692 MsRPC - ok
10:55:53.0657 5692 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:55:53.0657 5692 mssmbios - ok
10:55:53.0688 5692 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:55:53.0688 5692 MSTEE - ok
10:55:53.0719 5692 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
10:55:53.0719 5692 Mup - ok
10:55:53.0750 5692 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
10:55:53.0766 5692 napagent - ok
10:55:53.0797 5692 [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:55:53.0797 5692 NativeWifiP - ok
10:55:53.0844 5692 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:55:53.0844 5692 NDIS - ok
10:55:53.0891 5692 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:55:53.0906 5692 NdisTapi - ok
10:55:53.0922 5692 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:55:53.0922 5692 Ndisuio - ok
10:55:53.0937 5692 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:55:53.0937 5692 NdisWan - ok
10:55:53.0969 5692 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:55:53.0969 5692 NDProxy - ok
10:55:53.0984 5692 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:55:53.0984 5692 NetBIOS - ok
10:55:54.0031 5692 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
10:55:54.0031 5692 netbt - ok
10:55:54.0031 5692 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] Netlogon C:\Windows\system32\lsass.exe
10:55:54.0031 5692 Netlogon - ok
10:55:54.0078 5692 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
10:55:54.0078 5692 Netman - ok
10:55:54.0109 5692 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
10:55:54.0109 5692 netprofm - ok
10:55:54.0140 5692 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:55:54.0140 5692 NetTcpPortSharing - ok
10:55:54.0171 5692 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:55:54.0171 5692 nfrd960 - ok
10:55:54.0187 5692 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:55:54.0203 5692 NlaSvc - ok
10:55:54.0203 5692 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:55:54.0203 5692 Npfs - ok
10:55:54.0234 5692 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
10:55:54.0234 5692 nsi - ok
10:55:54.0249 5692 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:55:54.0249 5692 nsiproxy - ok
10:55:54.0296 5692 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:55:54.0312 5692 Ntfs - ok
10:55:54.0327 5692 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
10:55:54.0327 5692 ntrigdigi - ok
10:55:54.0359 5692 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
10:55:54.0359 5692 Null - ok
10:55:54.0405 5692 [ AE78A7285DF03A277415FC62F8CE8F24 ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
10:55:54.0421 5692 NVENETFD - ok
10:55:54.0702 5692 [ 1924B437D113E909ABB7F11623884D77 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:55:54.0780 5692 nvlddmkm - ok
10:55:54.0795 5692 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:55:54.0795 5692 nvraid - ok
10:55:54.0827 5692 [ 0D15327134E5871C922760ACD7449E84 ] nvrd32 C:\Windows\system32\drivers\nvrd32.sys
10:55:54.0827 5692 nvrd32 - ok
10:55:54.0858 5692 [ C44EE36DD84FA95EB81D79C374756003 ] nvsmu C:\Windows\system32\drivers\nvsmu.sys
10:55:54.0858 5692 nvsmu - ok
10:55:54.0889 5692 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:55:54.0889 5692 nvstor - ok
10:55:54.0920 5692 [ FA7B8ECA6E845B244B7E30A9DCD82C6C ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
10:55:54.0920 5692 nvstor32 - ok
10:55:54.0936 5692 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:55:54.0936 5692 nv_agp - ok
10:55:54.0936 5692 NwlnkFlt - ok
10:55:54.0951 5692 NwlnkFwd - ok
10:55:54.0983 5692 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:55:54.0983 5692 ohci1394 - ok
10:55:55.0014 5692 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
10:55:55.0029 5692 p2pimsvc - ok
10:55:55.0061 5692 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
10:55:55.0061 5692 p2psvc - ok
10:55:55.0092 5692 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
10:55:55.0092 5692 Parport - ok
10:55:55.0107 5692 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:55:55.0107 5692 partmgr - ok
10:55:55.0139 5692 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
10:55:55.0139 5692 Parvdm - ok
10:55:55.0185 5692 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
10:55:55.0185 5692 PcaSvc - ok
10:55:55.0201 5692 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
10:55:55.0201 5692 pci - ok
10:55:55.0232 5692 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
10:55:55.0232 5692 pciide - ok
10:55:55.0248 5692 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:55:55.0248 5692 pcmcia - ok
10:55:55.0310 5692 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:55:55.0326 5692 PEAUTH - ok
10:55:55.0435 5692 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
10:55:55.0435 5692 pla - ok
10:55:55.0482 5692 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:55:55.0482 5692 PlugPlay - ok
10:55:55.0653 5692 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
10:55:55.0653 5692 PNRPAutoReg - ok
10:55:55.0685 5692 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
10:55:55.0700 5692 PNRPsvc - ok
10:55:55.0747 5692 [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:55:55.0763 5692 PolicyAgent - ok
10:55:55.0809 5692 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:55:55.0809 5692 PptpMiniport - ok
10:55:55.0841 5692 [ 57E95881E5F014816A8A53AD94EE0C48 ] PRISM_A02 C:\Windows\system32\DRIVERS\WUSB20XP.sys
10:55:55.0841 5692 PRISM_A02 - ok
10:55:55.0872 5692 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
10:55:55.0872 5692 Processor - ok
10:55:55.0903 5692 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
10:55:55.0903 5692 ProfSvc - ok
10:55:55.0934 5692 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:55:55.0934 5692 ProtectedStorage - ok
10:55:55.0965 5692 [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched C:\Windows\system32\DRIVERS\pacer.sys
10:55:55.0965 5692 PSched - ok
10:55:56.0012 5692 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:55:56.0028 5692 ql2300 - ok
10:55:56.0059 5692 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:55:56.0059 5692 ql40xx - ok
10:55:56.0075 5692 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
10:55:56.0090 5692 QWAVE - ok
10:55:56.0106 5692 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:55:56.0106 5692 QWAVEdrv - ok
10:55:56.0121 5692 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:55:56.0121 5692 RasAcd - ok
10:55:56.0137 5692 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
10:55:56.0153 5692 RasAuto - ok
10:55:56.0168 5692 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:55:56.0168 5692 Rasl2tp - ok
10:55:56.0199 5692 [ 6E7C284FC5C4EC07AD164D93810385A6 ] RasMan C:\Windows\System32\rasmans.dll
10:55:56.0199 5692 RasMan - ok
10:55:56.0231 5692 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:55:56.0231 5692 RasPppoe - ok
10:55:56.0246 5692 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:55:56.0246 5692 RasSstp - ok
10:55:56.0262 5692 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:55:56.0262 5692 rdbss - ok
10:55:56.0277 5692 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:55:56.0277 5692 RDPCDD - ok
10:55:56.0309 5692 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
10:55:56.0309 5692 rdpdr - ok
10:55:56.0324 5692 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:55:56.0324 5692 RDPENCDD - ok
10:55:56.0387 5692 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:55:56.0387 5692 RDPWD - ok
10:55:56.0418 5692 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:55:56.0418 5692 RemoteAccess - ok
10:55:56.0433 5692 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:55:56.0433 5692 RemoteRegistry - ok
10:55:56.0449 5692 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
10:55:56.0449 5692 RpcLocator - ok
10:55:56.0511 5692 [ 301AE00E12408650BADDC04DBC832830 ] RpcSs C:\Windows\system32\rpcss.dll
10:55:56.0511 5692 RpcSs - ok
10:55:56.0558 5692 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:55:56.0558 5692 rspndr - ok
10:55:56.0667 5692 [ 3EDFB0089B9455B26154B572DB650EE3 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
10:55:56.0667 5692 RTL8192su - ok
10:55:56.0683 5692 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] SamSs C:\Windows\system32\lsass.exe
10:55:56.0683 5692 SamSs - ok
10:55:56.0714 5692 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:55:56.0714 5692 sbp2port - ok
10:55:56.0792 5692 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:55:56.0792 5692 SCardSvr - ok
10:55:56.0839 5692 [ 7B587B8A6D4A99F79D2902D0385F29BD ] Schedule C:\Windows\system32\schedsvc.dll
10:55:56.0839 5692 Schedule - ok
10:55:56.0855 5692 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
10:55:56.0855 5692 SCPolicySvc - ok
10:55:56.0870 5692 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:55:56.0886 5692 SDRSVC - ok
10:55:56.0901 5692 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:55:56.0901 5692 secdrv - ok
10:55:56.0917 5692 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
10:55:56.0917 5692 seclogon - ok
10:55:56.0964 5692 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
10:55:56.0964 5692 SENS - ok
10:55:56.0979 5692 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
10:55:56.0979 5692 Serenum - ok
10:55:57.0011 5692 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
10:55:57.0011 5692 Serial - ok
10:55:57.0057 5692 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:55:57.0057 5692 sermouse - ok
10:55:57.0089 5692 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
10:55:57.0104 5692 SessionEnv - ok
10:55:57.0135 5692 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:55:57.0135 5692 sffdisk - ok
10:55:57.0151 5692 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:55:57.0151 5692 sffp_mmc - ok
10:55:57.0167 5692 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:55:57.0167 5692 sffp_sd - ok
10:55:57.0182 5692 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
10:55:57.0182 5692 sfloppy - ok
10:55:57.0229 5692 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:55:57.0245 5692 ShellHWDetection - ok
10:55:57.0260 5692 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
10:55:57.0260 5692 sisagp - ok
10:55:57.0276 5692 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
10:55:57.0291 5692 SiSRaid2 - ok
10:55:57.0307 5692 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:55:57.0307 5692 SiSRaid4 - ok
10:55:57.0385 5692 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
10:55:57.0416 5692 slsvc - ok
10:55:57.0432 5692 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
10:55:57.0432 5692 SLUINotify - ok
10:55:57.0447 5692 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:55:57.0447 5692 Smb - ok
10:55:57.0479 5692 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:55:57.0479 5692 SNMPTRAP - ok
10:55:57.0510 5692 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
10:55:57.0510 5692 spldr - ok
10:55:57.0541 5692 [ 3665F79026A3F91FBCA63F2C65A09B19 ] Spooler C:\Windows\System32\spoolsv.exe
10:55:57.0541 5692 Spooler - ok
10:55:57.0588 5692 [ 2252AEF839B1093D16761189F45AF885 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:55:57.0588 5692 srv - ok
10:55:57.0635 5692 [ B7FF59408034119476B00A81BB53D5D1 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:55:57.0650 5692 srv2 - ok
10:55:57.0681 5692 [ 2ACCC9B12AF02030F531E6CCA6F8B76E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:55:57.0681 5692 srvnet - ok
10:55:57.0713 5692 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:55:57.0713 5692 SSDPSRV - ok
10:55:57.0744 5692 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:55:57.0744 5692 SstpSvc - ok
10:55:57.0791 5692 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
10:55:57.0791 5692 stisvc - ok
10:55:57.0822 5692 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:55:57.0822 5692 swenum - ok
10:55:57.0837 5692 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
10:55:57.0853 5692 swprv - ok
10:55:57.0869 5692 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
10:55:57.0869 5692 Symc8xx - ok
10:55:57.0884 5692 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
10:55:57.0884 5692 Sym_hi - ok
10:55:57.0915 5692 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
10:55:57.0915 5692 Sym_u3 - ok
10:55:57.0947 5692 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
10:55:57.0962 5692 SysMain - ok
10:55:57.0993 5692 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:55:57.0993 5692 TabletInputService - ok
10:55:58.0040 5692 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
10:55:58.0056 5692 TapiSrv - ok
10:55:58.0071 5692 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
10:55:58.0071 5692 TBS - ok
10:55:58.0134 5692 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:55:58.0134 5692 Tcpip - ok
10:55:58.0165 5692 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
10:55:58.0181 5692 Tcpip6 - ok
10:55:58.0212 5692 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:55:58.0212 5692 tcpipreg - ok
10:55:58.0227 5692 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:55:58.0227 5692 TDPIPE - ok
10:55:58.0243 5692 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:55:58.0243 5692 TDTCP - ok
10:55:58.0259 5692 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:55:58.0259 5692 tdx - ok
10:55:58.0399 5692 [ 925F0C3E7E53F1FF76C7256DF17B2D73 ] TeamViewer5 C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
10:55:58.0399 5692 TeamViewer5 - ok
10:55:58.0430 5692 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:55:58.0430 5692 TermDD - ok
10:55:58.0461 5692 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
10:55:58.0477 5692 TermService - ok
10:55:58.0493 5692 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] Themes C:\Windows\system32\shsvcs.dll
10:55:58.0493 5692 Themes - ok
10:55:58.0508 5692 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
10:55:58.0508 5692 THREADORDER - ok
10:55:58.0524 5692 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
10:55:58.0539 5692 TrkWks - ok
10:55:58.0571 5692 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:55:58.0571 5692 TrustedInstaller - ok
10:55:58.0586 5692 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:55:58.0586 5692 tssecsrv - ok
10:55:58.0617 5692 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
10:55:58.0617 5692 tunmp - ok
10:55:58.0633 5692 [ 6042505FF6FA9AC1EF7684D0E03B6940 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:55:58.0633 5692 tunnel - ok
10:55:58.0649 5692 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:55:58.0649 5692 uagp35 - ok
10:55:58.0680 5692 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:55:58.0680 5692 udfs - ok
10:55:58.0711 5692 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:55:58.0711 5692 UI0Detect - ok
10:55:58.0742 5692 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:55:58.0742 5692 uliagpkx - ok
10:55:58.0758 5692 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
10:55:58.0758 5692 uliahci - ok
10:55:58.0789 5692 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
10:55:58.0789 5692 UlSata - ok
10:55:58.0820 5692 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
10:55:58.0820 5692 ulsata2 - ok
10:55:58.0851 5692 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:55:58.0851 5692 umbus - ok
10:55:58.0883 5692 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
10:55:58.0883 5692 upnphost - ok
10:55:58.0914 5692 [ 8BD3AE150D97BA4E633C6C5C51B41AE1 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
10:55:58.0914 5692 usbccgp - ok
10:55:58.0929 5692 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:55:58.0929 5692 usbcir - ok
10:55:58.0961 5692 [ CEBE90821810E76320155BEBA722FCF9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:55:58.0961 5692 usbehci - ok
10:55:58.0976 5692 [ CC6B28E4CE39951357963119CE47B143 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:55:58.0976 5692 usbhub - ok
10:55:59.0007 5692 [ 7BDB7B0E7D45AC0402D78B90789EF47C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:55:59.0007 5692 usbohci - ok
10:55:59.0039 5692 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
10:55:59.0039 5692 usbprint - ok
10:55:59.0085 5692 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:55:59.0085 5692 usbscan - ok
10:55:59.0132 5692 [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:55:59.0132 5692 USBSTOR - ok
10:55:59.0148 5692 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
10:55:59.0148 5692 usbuhci - ok
10:55:59.0163 5692 [ 032A0ACC3909AE7215D524E29D536797 ] UxSms C:\Windows\System32\uxsms.dll
10:55:59.0179 5692 UxSms - ok
10:55:59.0210 5692 [ B13BC395B9D6116628F5AF47E0802AC4 ] vds C:\Windows\System32\vds.exe
10:55:59.0210 5692 vds - ok
10:55:59.0241 5692 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:55:59.0241 5692 vga - ok
10:55:59.0257 5692 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
10:55:59.0273 5692 VgaSave - ok
10:55:59.0288 5692 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
10:55:59.0304 5692 viaagp - ok
10:55:59.0319 5692 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
10:55:59.0335 5692 ViaC7 - ok
10:55:59.0351 5692 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
10:55:59.0351 5692 viaide - ok
10:55:59.0397 5692 [ 5F974FDE801C73952770736BECDE11E7 ] Viewpoint Manager Service C:\Program Files\Viewpoint\Common\ViewpointService.exe
10:55:59.0397 5692 Viewpoint Manager Service - ok
10:55:59.0413 5692 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:55:59.0413 5692 volmgr - ok
10:55:59.0429 5692 [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:55:59.0444 5692 volmgrx - ok
10:55:59.0444 5692 [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:55:59.0444 5692 volsnap - ok
10:55:59.0491 5692 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:55:59.0507 5692 vsmraid - ok
10:55:59.0553 5692 [ D5FB73D19C46ADE183F968E13F186B23 ] VSS C:\Windows\system32\vssvc.exe
10:55:59.0553 5692 VSS - ok
10:55:59.0585 5692 [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time C:\Windows\system32\w32time.dll
10:55:59.0600 5692 W32Time - ok
10:55:59.0616 5692 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:55:59.0631 5692 WacomPen - ok
10:55:59.0663 5692 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
10:55:59.0663 5692 Wanarp - ok
10:55:59.0663 5692 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:55:59.0663 5692 Wanarpv6 - ok
10:55:59.0694 5692 [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:55:59.0694 5692 wcncsvc - ok
10:55:59.0709 5692 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:55:59.0709 5692 WcsPlugInService - ok
10:55:59.0741 5692 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
10:55:59.0741 5692 Wd - ok
10:55:59.0756 5692 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:55:59.0772 5692 Wdf01000 - ok
10:55:59.0787 5692 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:55:59.0787 5692 WdiServiceHost - ok
10:55:59.0803 5692 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:55:59.0803 5692 WdiSystemHost - ok
10:55:59.0819 5692 [ CF9A5F41789B642DB967021DE06A2713 ] WebClient C:\Windows\System32\webclnt.dll
10:55:59.0819 5692 WebClient - ok
10:55:59.0865 5692 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:55:59.0881 5692 Wecsvc - ok
10:55:59.0897 5692 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:55:59.0897 5692 wercplsupport - ok
10:55:59.0928 5692 [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc C:\Windows\System32\WerSvc.dll
10:55:59.0928 5692 WerSvc - ok
10:55:59.0975 5692 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
10:55:59.0975 5692 winachsf - ok
10:55:59.0990 5692 WinHttpAutoProxySvc - ok
10:56:00.0084 5692 [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:56:00.0084 5692 Winmgmt - ok
10:56:00.0146 5692 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
10:56:00.0162 5692 WinRM - ok
10:56:00.0209 5692 [ 275F4346E569DF56CFB95243BD6F6FF0 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:56:00.0224 5692 Wlansvc - ok
10:56:00.0255 5692 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:56:00.0255 5692 WmiAcpi - ok
10:56:00.0287 5692 [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:56:00.0287 5692 wmiApSrv - ok
10:56:00.0333 5692 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
10:56:00.0349 5692 WMPNetworkSvc - ok
10:56:00.0380 5692 [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:56:00.0380 5692 WPCSvc - ok
10:56:00.0458 5692 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:56:00.0458 5692 WPDBusEnum - ok
10:56:00.0567 5692 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:56:00.0583 5692 WPFFontCache_v0400 - ok
10:56:00.0614 5692 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:56:00.0614 5692 ws2ifsl - ok
10:56:00.0645 5692 [ 683DD16B590372F2C9661D277F35E49C ] wscsvc C:\Windows\System32\wscsvc.dll
10:56:00.0645 5692 wscsvc - ok
10:56:00.0661 5692 WSearch - ok
10:56:00.0708 5692 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:56:00.0708 5692 WUDFRd - ok
10:56:00.0739 5692 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:56:00.0755 5692 wudfsvc - ok
10:56:00.0770 5692 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
10:56:00.0770 5692 XAudio - ok
10:56:00.0786 5692 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
10:56:00.0801 5692 XAudioService - ok
10:56:00.0833 5692 ================ Scan global ===============================
10:56:00.0911 5692 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
10:56:00.0973 5692 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
10:56:01.0004 5692 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
10:56:01.0051 5692 [ 5DC3C54FC22BBB6F66C290C7C0384DF9 ] C:\Windows\system32\services.exe
10:56:01.0067 5692 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
10:56:01.0067 5692 C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
10:56:01.0067 5692 ================ Scan MBR ==================================
10:56:01.0082 5692 [ 03BA8F890B47C0BE359A4D5A636D214D ] \Device\Harddisk0\DR0
10:56:01.0722 5692 \Device\Harddisk0\DR0 - ok
10:56:01.0722 5692 ================ Scan VBR ==================================
10:56:01.0753 5692 [ D940C9BC1BE681430EE6A1A311AB6169 ] \Device\Harddisk0\DR0\Partition1
10:56:01.0753 5692 \Device\Harddisk0\DR0\Partition1 - ok
10:56:01.0769 5692 [ C56CC28DCCA50B78B8BA16726E4DE34E ] \Device\Harddisk0\DR0\Partition2
10:56:01.0784 5692 \Device\Harddisk0\DR0\Partition2 - ok
10:56:01.0784 5692 ============================================================
10:56:01.0784 5692 Scan finished
10:56:01.0784 5692 ============================================================
10:56:01.0800 6108 Detected object count: 1
10:56:01.0800 6108 Actual detected object count: 1
11:04:13.0449 6108 C:\Windows\system32\services.exe - copied to quarantine
11:04:15.0171 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\@ - copied to quarantine
11:04:15.0172 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\L\00000004.@ - copied to quarantine
11:04:15.0174 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\L\1afb2d56 - copied to quarantine
11:04:15.0177 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\L\201d3dde - copied to quarantine
11:04:15.0178 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000004.@ - copied to quarantine
11:04:15.0181 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000008.@ - copied to quarantine
11:04:15.0185 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\000000cb.@ - copied to quarantine
11:04:15.0187 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000000.@ - copied to quarantine
11:04:15.0189 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000032.@ - copied to quarantine
11:04:15.0209 6108 C:\Users\robin\AppData\Local\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\@ - copied to quarantine
11:04:19.0881 6108 Backup copy found, using it..
11:04:20.0037 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\@ - will be deleted on reboot
11:04:20.0037 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000004.@ - will be deleted on reboot
11:04:20.0037 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\00000008.@ - will be deleted on reboot
11:04:20.0037 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\000000cb.@ - will be deleted on reboot
11:04:20.0037 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000000.@ - will be deleted on reboot
11:04:20.0037 6108 C:\Windows\installer\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\U\80000032.@ - will be deleted on reboot
11:04:20.0037 6108 C:\Users\robin\AppData\Local\{d6fce643-3df9-d5e8-b35c-4bfca5f346fb}\@ - will be deleted on reboot
11:04:20.0037 6108 C:\Windows\system32\services.exe - will be cured on reboot
11:04:20.0037 6108 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - User select action: Cure
11:04:53.0915 5452 Deinitialize success

#12 salvia-girl

salvia-girl
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 22 August 2012 - 10:17 AM

I posted the most recent TDSSKill log in the immediate prior response, I'm not entirely sure by what you meant by 'please post the other logs together.'

Thanks again for all the help.

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:47 PM

Posted 22 August 2012 - 11:07 AM

Run TDSSkiller again and post the clean log

Update malwarebytes and scan again and post the clean log

I'm not entirely sure by what you meant by 'please post the other logs together.'


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#14 salvia-girl

salvia-girl
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 22 August 2012 - 01:29 PM

Current log from TDSSkiller: (Current log from malwarebytes coming shortly)

14:19:39.0095 1400 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
14:19:39.0376 1400 ============================================================
14:19:39.0376 1400 Current date / time: 2012/08/22 14:19:39.0376
14:19:39.0376 1400 SystemInfo:
14:19:39.0376 1400
14:19:39.0376 1400 OS Version: 6.0.6001 ServicePack: 1.0
14:19:39.0376 1400 Product type: Workstation
14:19:39.0376 1400 ComputerName: ROBIN-PC
14:19:39.0376 1400 UserName: robin
14:19:39.0376 1400 Windows directory: C:\Windows
14:19:39.0376 1400 System windows directory: C:\Windows
14:19:39.0376 1400 Processor architecture: Intel x86
14:19:39.0376 1400 Number of processors: 2
14:19:39.0376 1400 Page size: 0x1000
14:19:39.0376 1400 Boot type: Normal boot
14:19:39.0376 1400 ============================================================
14:19:39.0454 1400 BG loaded
14:19:39.0750 1400 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:19:39.0750 1400 ============================================================
14:19:39.0750 1400 \Device\Harddisk0\DR0:
14:19:39.0750 1400 MBR partitions:
14:19:39.0750 1400 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x115C0152
14:19:39.0750 1400 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x115C0191, BlocksNum 0x1458930
14:19:39.0750 1400 ============================================================
14:19:39.0766 1400 C: <-> \Device\Harddisk0\DR0\Partition1
14:19:39.0813 1400 D: <-> \Device\Harddisk0\DR0\Partition2
14:19:39.0813 1400 ============================================================
14:19:39.0813 1400 Initialize success
14:19:39.0813 1400 ============================================================
14:20:01.0840 6132 ============================================================
14:20:01.0840 6132 Scan started
14:20:01.0840 6132 Mode: Manual; TDLFS;
14:20:01.0840 6132 ============================================================
14:20:02.0089 6132 ================ Scan system memory ========================
14:20:02.0089 6132 System memory - ok
14:20:02.0089 6132 ================ Scan services =============================
14:20:02.0214 6132 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
14:20:02.0214 6132 ACPI - ok
14:20:02.0292 6132 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:20:02.0292 6132 AdobeFlashPlayerUpdateSvc - ok
14:20:02.0323 6132 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
14:20:02.0323 6132 adp94xx - ok
14:20:02.0386 6132 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
14:20:02.0386 6132 adpahci - ok
14:20:02.0401 6132 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
14:20:02.0401 6132 adpu160m - ok
14:20:02.0433 6132 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
14:20:02.0433 6132 adpu320 - ok
14:20:02.0464 6132 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:20:02.0464 6132 AeLookupSvc - ok
14:20:02.0526 6132 [ 48EB99503533C27AC6135648E5474457 ] AFD C:\Windows\system32\drivers\afd.sys
14:20:02.0526 6132 AFD - ok
14:20:02.0573 6132 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:20:02.0573 6132 agp440 - ok
14:20:02.0604 6132 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
14:20:02.0604 6132 aic78xx - ok
14:20:02.0635 6132 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
14:20:02.0635 6132 ALG - ok
14:20:02.0651 6132 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
14:20:02.0651 6132 aliide - ok
14:20:02.0667 6132 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
14:20:02.0667 6132 amdagp - ok
14:20:02.0682 6132 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
14:20:02.0682 6132 amdide - ok
14:20:02.0713 6132 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
14:20:02.0713 6132 AmdK7 - ok
14:20:02.0729 6132 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:20:02.0729 6132 AmdK8 - ok
14:20:02.0760 6132 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
14:20:02.0760 6132 Appinfo - ok
14:20:02.0776 6132 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
14:20:02.0776 6132 arc - ok
14:20:02.0791 6132 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
14:20:02.0791 6132 arcsas - ok
14:20:02.0807 6132 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:20:02.0807 6132 AsyncMac - ok
14:20:02.0823 6132 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
14:20:02.0823 6132 atapi - ok
14:20:02.0869 6132 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:20:02.0869 6132 AudioEndpointBuilder - ok
14:20:02.0869 6132 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
14:20:02.0885 6132 Audiosrv - ok
14:20:03.0150 6132 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
14:20:03.0228 6132 AVGIDSAgent - ok
14:20:03.0275 6132 [ 1074F787080068C71303B61FAE7E7CA4 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
14:20:03.0275 6132 AVGIDSDriver - ok
14:20:03.0306 6132 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfilterx.sys
14:20:03.0306 6132 AVGIDSFilter - ok
14:20:03.0353 6132 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
14:20:03.0353 6132 AVGIDSHX - ok
14:20:03.0384 6132 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
14:20:03.0384 6132 AVGIDSShim - ok
14:20:03.0431 6132 [ DDA6A2A18841E4C9172BB85958B8D948 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
14:20:03.0431 6132 Avgldx86 - ok
14:20:03.0462 6132 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
14:20:03.0462 6132 Avgmfx86 - ok
14:20:03.0509 6132 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
14:20:03.0509 6132 Avgrkx86 - ok
14:20:03.0540 6132 [ 1263F2554ACE925C237A40B4C568D815 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
14:20:03.0540 6132 Avgtdix - ok
14:20:03.0571 6132 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
14:20:03.0571 6132 avgwd - ok
14:20:03.0603 6132 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
14:20:03.0618 6132 Beep - ok
14:20:03.0649 6132 [ 8582E233C346AEFE759833E8A30DD697 ] BFE C:\Windows\System32\bfe.dll
14:20:03.0649 6132 BFE - ok
14:20:03.0681 6132 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
14:20:03.0681 6132 blbdrive - ok
14:20:03.0727 6132 [ 8153396D5551276227FA146900F734E6 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:20:03.0727 6132 bowser - ok
14:20:03.0743 6132 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
14:20:03.0743 6132 BrFiltLo - ok
14:20:03.0759 6132 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
14:20:03.0759 6132 BrFiltUp - ok
14:20:03.0774 6132 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
14:20:03.0774 6132 Browser - ok
14:20:03.0805 6132 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
14:20:03.0805 6132 Brserid - ok
14:20:03.0821 6132 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
14:20:03.0821 6132 BrSerWdm - ok
14:20:03.0837 6132 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
14:20:03.0837 6132 BrUsbMdm - ok
14:20:03.0868 6132 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
14:20:03.0868 6132 BrUsbSer - ok
14:20:03.0883 6132 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
14:20:03.0883 6132 BTHMODEM - ok
14:20:03.0899 6132 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:20:03.0899 6132 cdfs - ok
14:20:03.0930 6132 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:20:03.0930 6132 cdrom - ok
14:20:03.0977 6132 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
14:20:03.0977 6132 CertPropSvc - ok
14:20:03.0993 6132 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
14:20:03.0993 6132 circlass - ok
14:20:04.0008 6132 [ 465745561C832B29F7C48B488AAB3842 ] CLFS C:\Windows\system32\CLFS.sys
14:20:04.0024 6132 CLFS - ok
14:20:04.0055 6132 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:20:04.0055 6132 clr_optimization_v2.0.50727_32 - ok
14:20:04.0117 6132 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:20:04.0117 6132 clr_optimization_v4.0.30319_32 - ok
14:20:04.0149 6132 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:20:04.0149 6132 cmdide - ok
14:20:04.0164 6132 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
14:20:04.0164 6132 Compbatt - ok
14:20:04.0164 6132 COMSysApp - ok
14:20:04.0195 6132 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
14:20:04.0195 6132 crcdisk - ok
14:20:04.0211 6132 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
14:20:04.0211 6132 Crusoe - ok
14:20:04.0242 6132 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:20:04.0242 6132 CryptSvc - ok
14:20:04.0273 6132 [ CB6FF7012BB5D59D7C12350DB795CE1F ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
14:20:04.0273 6132 ctxusbm - ok
14:20:04.0305 6132 [ B5ECADF7708960F1818C7FA015F4C239 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA.sys
14:20:04.0320 6132 CVirtA - ok
14:20:04.0414 6132 [ DAD192D12DD0B4C92F6843203852829F ] CVPND C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
14:20:04.0429 6132 CVPND - ok
14:20:04.0476 6132 [ 26DEEF07394624247D1F549BD94F0B15 ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys
14:20:04.0476 6132 CVPNDRVA - ok
14:20:04.0523 6132 [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:20:04.0523 6132 DcomLaunch - ok
14:20:04.0539 6132 [ A3E9FA213F443AC77C7746119D13FEEC ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:20:04.0539 6132 DfsC - ok
14:20:04.0632 6132 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
14:20:04.0648 6132 DFSR - ok
14:20:04.0679 6132 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
14:20:04.0679 6132 Dhcp - ok
14:20:04.0710 6132 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
14:20:04.0710 6132 disk - ok
14:20:04.0757 6132 [ 7B4FDFBE97C047175E613AA96F3DE987 ] DNE C:\Windows\system32\DRIVERS\dne2000.sys
14:20:04.0757 6132 DNE - ok
14:20:04.0804 6132 [ 4805D9A6D281C7A7DEFD9094DEC6AF7D ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:20:04.0804 6132 Dnscache - ok
14:20:04.0835 6132 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
14:20:04.0835 6132 dot3svc - ok
14:20:04.0866 6132 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
14:20:04.0866 6132 DPS - ok
14:20:04.0897 6132 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:20:04.0897 6132 drmkaud - ok
14:20:04.0975 6132 [ B2C3F71B86E25C3DF78339DDB40A7562 ] dsNcAdpt C:\Windows\system32\DRIVERS\dsNcAdpt.sys
14:20:04.0975 6132 dsNcAdpt - ok
14:20:05.0038 6132 [ A6B5ECF684769A99D96175F9D1E1337C ] dsNcService C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
14:20:05.0038 6132 dsNcService - ok
14:20:05.0085 6132 [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:20:05.0100 6132 DXGKrnl - ok
14:20:05.0131 6132 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
14:20:05.0131 6132 E1G60 - ok
14:20:05.0147 6132 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
14:20:05.0147 6132 EapHost - ok
14:20:05.0178 6132 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
14:20:05.0178 6132 Ecache - ok
14:20:05.0209 6132 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:20:05.0225 6132 ehRecvr - ok
14:20:05.0241 6132 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
14:20:05.0241 6132 ehSched - ok
14:20:05.0256 6132 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
14:20:05.0256 6132 ehstart - ok
14:20:05.0303 6132 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
14:20:05.0303 6132 elxstor - ok
14:20:05.0334 6132 [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt C:\Windows\system32\emdmgmt.dll
14:20:05.0350 6132 EMDMgmt - ok
14:20:05.0365 6132 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:20:05.0365 6132 ErrDev - ok
14:20:05.0412 6132 [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem C:\Windows\system32\es.dll
14:20:05.0412 6132 EventSystem - ok
14:20:05.0428 6132 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
14:20:05.0428 6132 exfat - ok
14:20:05.0443 6132 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:20:05.0443 6132 fastfat - ok
14:20:05.0459 6132 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:20:05.0459 6132 fdc - ok
14:20:05.0490 6132 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
14:20:05.0490 6132 fdPHost - ok
14:20:05.0506 6132 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
14:20:05.0521 6132 FDResPub - ok
14:20:05.0521 6132 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:20:05.0537 6132 FileInfo - ok
14:20:05.0537 6132 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:20:05.0537 6132 Filetrace - ok
14:20:05.0553 6132 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:20:05.0553 6132 flpydisk - ok
14:20:05.0568 6132 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:20:05.0584 6132 FltMgr - ok
14:20:05.0615 6132 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:20:05.0615 6132 FontCache3.0.0.0 - ok
14:20:05.0631 6132 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:20:05.0631 6132 Fs_Rec - ok
14:20:05.0646 6132 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
14:20:05.0646 6132 gagp30kx - ok
14:20:05.0693 6132 [ 6139AE70E943B2A57AD04B70A316C0A0 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
14:20:05.0693 6132 GameConsoleService - ok
14:20:05.0740 6132 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
14:20:05.0740 6132 gpsvc - ok
14:20:05.0818 6132 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
14:20:05.0818 6132 gupdate - ok
14:20:05.0833 6132 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
14:20:05.0833 6132 gupdatem - ok
14:20:05.0865 6132 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:20:05.0865 6132 HDAudBus - ok
14:20:05.0896 6132 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
14:20:05.0896 6132 HidBth - ok
14:20:05.0911 6132 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
14:20:05.0927 6132 HidIr - ok
14:20:05.0958 6132 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\system32\hidserv.dll
14:20:05.0958 6132 hidserv - ok
14:20:05.0974 6132 [ 3C64042B95E583B366BA4E5D2450235E ] HidUsb C:\Windows\system32\drivers\hidusb.sys
14:20:05.0974 6132 HidUsb - ok
14:20:06.0005 6132 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:20:06.0021 6132 hkmsvc - ok
14:20:06.0067 6132 [ CB383AB0B8BA871D893B86D3C9A3ED9F ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
14:20:06.0067 6132 HP Health Check Service - ok
14:20:06.0099 6132 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
14:20:06.0099 6132 HpCISSs - ok
14:20:06.0161 6132 [ 88749FBF8BEB18C90E7D6626C8C1910B ] HSF_DP C:\Windows\system32\DRIVERS\HSX_DP.sys
14:20:06.0177 6132 HSF_DP - ok
14:20:06.0208 6132 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
14:20:06.0223 6132 HSXHWBS2 - ok
14:20:06.0255 6132 [ 96E241624C71211A79C84F50A8E71CAB ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:20:06.0270 6132 HTTP - ok
14:20:06.0301 6132 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
14:20:06.0301 6132 i2omp - ok
14:20:06.0333 6132 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
14:20:06.0333 6132 i8042prt - ok
14:20:06.0348 6132 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
14:20:06.0364 6132 iaStorV - ok
14:20:06.0411 6132 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:20:06.0426 6132 idsvc - ok
14:20:06.0442 6132 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
14:20:06.0442 6132 iirsp - ok
14:20:06.0473 6132 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
14:20:06.0473 6132 IKEEXT - ok
14:20:06.0551 6132 [ 4C01298060CF930D26A75A86B874B6AE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
14:20:06.0567 6132 IntcAzAudAddService - ok
14:20:06.0582 6132 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
14:20:06.0582 6132 intelide - ok
14:20:06.0613 6132 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:20:06.0613 6132 intelppm - ok
14:20:06.0613 6132 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:20:06.0629 6132 IPBusEnum - ok
14:20:06.0645 6132 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:20:06.0645 6132 IpFilterDriver - ok
14:20:06.0676 6132 [ 6A35D233693EDC29A12742049BC5E37F ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:20:06.0676 6132 iphlpsvc - ok
14:20:06.0676 6132 IpInIp - ok
14:20:06.0691 6132 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
14:20:06.0691 6132 IPMIDRV - ok
14:20:06.0707 6132 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
14:20:06.0707 6132 IPNAT - ok
14:20:06.0723 6132 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:20:06.0723 6132 IRENUM - ok
14:20:06.0738 6132 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:20:06.0738 6132 isapnp - ok
14:20:06.0769 6132 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
14:20:06.0769 6132 iScsiPrt - ok
14:20:06.0801 6132 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
14:20:06.0801 6132 iteatapi - ok
14:20:06.0801 6132 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
14:20:06.0816 6132 iteraid - ok
14:20:06.0816 6132 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:20:06.0816 6132 kbdclass - ok
14:20:06.0832 6132 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
14:20:06.0832 6132 kbdhid - ok
14:20:06.0863 6132 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] KeyIso C:\Windows\system32\lsass.exe
14:20:06.0863 6132 KeyIso - ok
14:20:06.0894 6132 [ 7A0CF7908B6824D6A2A1D313E5AE3DCA ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:20:06.0910 6132 KSecDD - ok
14:20:06.0941 6132 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
14:20:06.0941 6132 KtmRm - ok
14:20:06.0988 6132 [ 1925E63C91CF1610AE41BFD539062079 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:20:06.0988 6132 LanmanServer - ok
14:20:07.0003 6132 [ 2AE2E1628C5D3F1C0A46A67C9FA1DF15 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:20:07.0019 6132 LanmanWorkstation - ok
14:20:07.0081 6132 [ C215E09622118383B236DD56C2065183 ] LightScribeService c:\Program Files\Common Files\LightScribe\LSSrvc.exe
14:20:07.0081 6132 LightScribeService - ok
14:20:07.0097 6132 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:20:07.0097 6132 lltdio - ok
14:20:07.0128 6132 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:20:07.0128 6132 lltdsvc - ok
14:20:07.0144 6132 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:20:07.0144 6132 lmhosts - ok
14:20:07.0159 6132 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
14:20:07.0175 6132 LSI_FC - ok
14:20:07.0191 6132 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
14:20:07.0191 6132 LSI_SAS - ok
14:20:07.0206 6132 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
14:20:07.0206 6132 LSI_SCSI - ok
14:20:07.0222 6132 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
14:20:07.0222 6132 luafv - ok
14:20:07.0300 6132 [ 0AEB868B9B13B74D9A6FB06630FD32DD ] lxdwCATSCustConnectService C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdwserv.exe
14:20:07.0300 6132 lxdwCATSCustConnectService - ok
14:20:07.0300 6132 lxdw_device - ok
14:20:07.0347 6132 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
14:20:07.0347 6132 MBAMProtector - ok
14:20:07.0425 6132 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
14:20:07.0440 6132 MBAMService - ok
14:20:07.0456 6132 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:20:07.0456 6132 Mcx2Svc - ok
14:20:07.0503 6132 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
14:20:07.0503 6132 mdmxsdk - ok
14:20:07.0518 6132 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
14:20:07.0518 6132 megasas - ok
14:20:07.0565 6132 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
14:20:07.0565 6132 MegaSR - ok
14:20:07.0581 6132 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
14:20:07.0581 6132 MMCSS - ok
14:20:07.0596 6132 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
14:20:07.0596 6132 Modem - ok
14:20:07.0627 6132 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:20:07.0627 6132 monitor - ok
14:20:07.0627 6132 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:20:07.0627 6132 mouclass - ok
14:20:07.0643 6132 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\drivers\mouhid.sys
14:20:07.0643 6132 mouhid - ok
14:20:07.0659 6132 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
14:20:07.0659 6132 MountMgr - ok
14:20:07.0690 6132 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
14:20:07.0690 6132 mpio - ok
14:20:07.0721 6132 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:20:07.0721 6132 mpsdrv - ok
14:20:07.0737 6132 [ D1639BA315B0D79DEC49A4B0E1FB929B ] MpsSvc C:\Windows\system32\mpssvc.dll
14:20:07.0752 6132 MpsSvc - ok
14:20:07.0768 6132 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
14:20:07.0768 6132 Mraid35x - ok
14:20:07.0783 6132 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:20:07.0783 6132 MRxDAV - ok
14:20:07.0815 6132 [ 5734A0F2BE7E495F7D3ED6EFD4B9F5A1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:20:07.0830 6132 mrxsmb - ok
14:20:07.0861 6132 [ 6B5FA5ADFACAC9DBBE0991F4566D7D55 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:20:07.0877 6132 mrxsmb10 - ok
14:20:07.0877 6132 [ 5C80D8159181C7ABF1B14BA703B01E0B ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:20:07.0877 6132 mrxsmb20 - ok
14:20:07.0908 6132 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
14:20:07.0908 6132 msahci - ok
14:20:07.0924 6132 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:20:07.0924 6132 msdsm - ok
14:20:07.0955 6132 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
14:20:07.0955 6132 MSDTC - ok
14:20:07.0971 6132 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:20:07.0971 6132 Msfs - ok
14:20:08.0002 6132 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:20:08.0017 6132 msisadrv - ok
14:20:08.0033 6132 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:20:08.0033 6132 MSiSCSI - ok
14:20:08.0049 6132 msiserver - ok
14:20:08.0080 6132 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:20:08.0080 6132 MSKSSRV - ok
14:20:08.0080 6132 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:20:08.0080 6132 MSPCLOCK - ok
14:20:08.0111 6132 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:20:08.0111 6132 MSPQM - ok
14:20:08.0127 6132 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:20:08.0127 6132 MsRPC - ok
14:20:08.0158 6132 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
14:20:08.0158 6132 mssmbios - ok
14:20:08.0173 6132 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:20:08.0173 6132 MSTEE - ok
14:20:08.0189 6132 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
14:20:08.0189 6132 Mup - ok
14:20:08.0220 6132 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
14:20:08.0236 6132 napagent - ok
14:20:08.0267 6132 [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:20:08.0267 6132 NativeWifiP - ok
14:20:08.0298 6132 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:20:08.0314 6132 NDIS - ok
14:20:08.0314 6132 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:20:08.0314 6132 NdisTapi - ok
14:20:08.0329 6132 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:20:08.0329 6132 Ndisuio - ok
14:20:08.0345 6132 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:20:08.0345 6132 NdisWan - ok
14:20:08.0361 6132 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:20:08.0361 6132 NDProxy - ok
14:20:08.0392 6132 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:20:08.0392 6132 NetBIOS - ok
14:20:08.0407 6132 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
14:20:08.0407 6132 netbt - ok
14:20:08.0423 6132 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] Netlogon C:\Windows\system32\lsass.exe
14:20:08.0423 6132 Netlogon - ok
14:20:08.0454 6132 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
14:20:08.0454 6132 Netman - ok
14:20:08.0485 6132 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
14:20:08.0485 6132 netprofm - ok
14:20:08.0501 6132 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:20:08.0517 6132 NetTcpPortSharing - ok
14:20:08.0532 6132 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
14:20:08.0532 6132 nfrd960 - ok
14:20:08.0548 6132 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:20:08.0548 6132 NlaSvc - ok
14:20:08.0563 6132 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:20:08.0563 6132 Npfs - ok
14:20:08.0595 6132 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
14:20:08.0595 6132 nsi - ok
14:20:08.0610 6132 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:20:08.0610 6132 nsiproxy - ok
14:20:08.0657 6132 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:20:08.0673 6132 Ntfs - ok
14:20:08.0704 6132 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
14:20:08.0704 6132 ntrigdigi - ok
14:20:08.0719 6132 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
14:20:08.0719 6132 Null - ok
14:20:08.0782 6132 [ AE78A7285DF03A277415FC62F8CE8F24 ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
14:20:08.0782 6132 NVENETFD - ok
14:20:09.0016 6132 [ 1924B437D113E909ABB7F11623884D77 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:20:09.0094 6132 nvlddmkm - ok
14:20:09.0125 6132 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:20:09.0125 6132 nvraid - ok
14:20:09.0141 6132 [ 0D15327134E5871C922760ACD7449E84 ] nvrd32 C:\Windows\system32\drivers\nvrd32.sys
14:20:09.0156 6132 nvrd32 - ok
14:20:09.0156 6132 [ C44EE36DD84FA95EB81D79C374756003 ] nvsmu C:\Windows\system32\drivers\nvsmu.sys
14:20:09.0172 6132 nvsmu - ok
14:20:09.0187 6132 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:20:09.0187 6132 nvstor - ok
14:20:09.0203 6132 [ FA7B8ECA6E845B244B7E30A9DCD82C6C ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
14:20:09.0219 6132 nvstor32 - ok
14:20:09.0234 6132 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:20:09.0234 6132 nv_agp - ok
14:20:09.0234 6132 NwlnkFlt - ok
14:20:09.0250 6132 NwlnkFwd - ok
14:20:09.0265 6132 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:20:09.0265 6132 ohci1394 - ok
14:20:09.0312 6132 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
14:20:09.0328 6132 p2pimsvc - ok
14:20:09.0343 6132 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
14:20:09.0359 6132 p2psvc - ok
14:20:09.0375 6132 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
14:20:09.0375 6132 Parport - ok
14:20:09.0390 6132 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:20:09.0390 6132 partmgr - ok
14:20:09.0406 6132 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
14:20:09.0421 6132 Parvdm - ok
14:20:09.0437 6132 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
14:20:09.0437 6132 PcaSvc - ok
14:20:09.0453 6132 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
14:20:09.0453 6132 pci - ok
14:20:09.0484 6132 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
14:20:09.0484 6132 pciide - ok
14:20:09.0499 6132 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
14:20:09.0499 6132 pcmcia - ok
14:20:09.0546 6132 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:20:09.0562 6132 PEAUTH - ok
14:20:09.0640 6132 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
14:20:09.0640 6132 pla - ok
14:20:09.0671 6132 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:20:09.0671 6132 PlugPlay - ok
14:20:09.0702 6132 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
14:20:09.0718 6132 PNRPAutoReg - ok
14:20:09.0733 6132 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
14:20:09.0733 6132 PNRPsvc - ok
14:20:09.0765 6132 [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:20:09.0765 6132 PolicyAgent - ok
14:20:09.0796 6132 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:20:09.0796 6132 PptpMiniport - ok
14:20:09.0843 6132 [ 57E95881E5F014816A8A53AD94EE0C48 ] PRISM_A02 C:\Windows\system32\DRIVERS\WUSB20XP.sys
14:20:09.0843 6132 PRISM_A02 - ok
14:20:09.0858 6132 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
14:20:09.0874 6132 Processor - ok
14:20:09.0889 6132 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
14:20:09.0889 6132 ProfSvc - ok
14:20:09.0921 6132 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:20:09.0921 6132 ProtectedStorage - ok
14:20:09.0936 6132 [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched C:\Windows\system32\DRIVERS\pacer.sys
14:20:09.0936 6132 PSched - ok
14:20:09.0983 6132 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
14:20:10.0030 6132 ql2300 - ok
14:20:10.0061 6132 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
14:20:10.0061 6132 ql40xx - ok
14:20:10.0108 6132 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
14:20:10.0108 6132 QWAVE - ok
14:20:10.0123 6132 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:20:10.0123 6132 QWAVEdrv - ok
14:20:10.0155 6132 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:20:10.0155 6132 RasAcd - ok
14:20:10.0170 6132 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
14:20:10.0170 6132 RasAuto - ok
14:20:10.0186 6132 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:20:10.0186 6132 Rasl2tp - ok
14:20:10.0217 6132 [ 6E7C284FC5C4EC07AD164D93810385A6 ] RasMan C:\Windows\System32\rasmans.dll
14:20:10.0217 6132 RasMan - ok
14:20:10.0233 6132 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:20:10.0233 6132 RasPppoe - ok
14:20:10.0248 6132 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:20:10.0248 6132 RasSstp - ok
14:20:10.0264 6132 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:20:10.0279 6132 rdbss - ok
14:20:10.0295 6132 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:20:10.0295 6132 RDPCDD - ok
14:20:10.0311 6132 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
14:20:10.0326 6132 rdpdr - ok
14:20:10.0326 6132 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:20:10.0326 6132 RDPENCDD - ok
14:20:10.0357 6132 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:20:10.0357 6132 RDPWD - ok
14:20:10.0389 6132 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:20:10.0389 6132 RemoteAccess - ok
14:20:10.0404 6132 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:20:10.0404 6132 RemoteRegistry - ok
14:20:10.0420 6132 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
14:20:10.0420 6132 RpcLocator - ok
14:20:10.0435 6132 [ 301AE00E12408650BADDC04DBC832830 ] RpcSs C:\Windows\system32\rpcss.dll
14:20:10.0451 6132 RpcSs - ok
14:20:10.0451 6132 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:20:10.0451 6132 rspndr - ok
14:20:10.0513 6132 [ 3EDFB0089B9455B26154B572DB650EE3 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
14:20:10.0529 6132 RTL8192su - ok
14:20:10.0545 6132 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] SamSs C:\Windows\system32\lsass.exe
14:20:10.0545 6132 SamSs - ok
14:20:10.0545 6132 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:20:10.0545 6132 sbp2port - ok
14:20:10.0591 6132 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:20:10.0591 6132 SCardSvr - ok
14:20:10.0623 6132 [ 7B587B8A6D4A99F79D2902D0385F29BD ] Schedule C:\Windows\system32\schedsvc.dll
14:20:10.0638 6132 Schedule - ok
14:20:10.0654 6132 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
14:20:10.0654 6132 SCPolicySvc - ok
14:20:10.0685 6132 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:20:10.0685 6132 SDRSVC - ok
14:20:10.0701 6132 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:20:10.0701 6132 secdrv - ok
14:20:10.0716 6132 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
14:20:10.0716 6132 seclogon - ok
14:20:10.0747 6132 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
14:20:10.0747 6132 SENS - ok
14:20:10.0763 6132 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
14:20:10.0763 6132 Serenum - ok
14:20:10.0779 6132 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
14:20:10.0779 6132 Serial - ok
14:20:10.0794 6132 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
14:20:10.0794 6132 sermouse - ok
14:20:10.0841 6132 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
14:20:10.0841 6132 SessionEnv - ok
14:20:10.0841 6132 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:20:10.0841 6132 sffdisk - ok
14:20:10.0857 6132 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:20:10.0872 6132 sffp_mmc - ok
14:20:10.0888 6132 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:20:10.0888 6132 sffp_sd - ok
14:20:10.0888 6132 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
14:20:10.0888 6132 sfloppy - ok
14:20:10.0950 6132 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:20:10.0950 6132 ShellHWDetection - ok
14:20:10.0966 6132 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
14:20:10.0966 6132 sisagp - ok
14:20:10.0981 6132 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
14:20:10.0997 6132 SiSRaid2 - ok
14:20:10.0997 6132 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
14:20:11.0013 6132 SiSRaid4 - ok
14:20:11.0075 6132 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
14:20:11.0106 6132 slsvc - ok
14:20:11.0122 6132 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
14:20:11.0137 6132 SLUINotify - ok
14:20:11.0153 6132 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:20:11.0153 6132 Smb - ok
14:20:11.0184 6132 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:20:11.0184 6132 SNMPTRAP - ok
14:20:11.0215 6132 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
14:20:11.0215 6132 spldr - ok
14:20:11.0247 6132 [ 3665F79026A3F91FBCA63F2C65A09B19 ] Spooler C:\Windows\System32\spoolsv.exe
14:20:11.0247 6132 Spooler - ok
14:20:11.0293 6132 [ 2252AEF839B1093D16761189F45AF885 ] srv C:\Windows\system32\DRIVERS\srv.sys
14:20:11.0309 6132 srv - ok
14:20:11.0340 6132 [ B7FF59408034119476B00A81BB53D5D1 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:20:11.0356 6132 srv2 - ok
14:20:11.0403 6132 [ 2ACCC9B12AF02030F531E6CCA6F8B76E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:20:11.0403 6132 srvnet - ok
14:20:11.0434 6132 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:20:11.0434 6132 SSDPSRV - ok
14:20:11.0481 6132 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:20:11.0481 6132 SstpSvc - ok
14:20:11.0527 6132 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
14:20:11.0543 6132 stisvc - ok
14:20:11.0574 6132 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
14:20:11.0574 6132 swenum - ok
14:20:11.0605 6132 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
14:20:11.0621 6132 swprv - ok
14:20:11.0637 6132 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
14:20:11.0652 6132 Symc8xx - ok
14:20:11.0683 6132 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
14:20:11.0683 6132 Sym_hi - ok
14:20:11.0699 6132 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
14:20:11.0699 6132 Sym_u3 - ok
14:20:11.0746 6132 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
14:20:11.0761 6132 SysMain - ok
14:20:11.0793 6132 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:20:11.0793 6132 TabletInputService - ok
14:20:11.0824 6132 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
14:20:11.0839 6132 TapiSrv - ok
14:20:11.0855 6132 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
14:20:11.0871 6132 TBS - ok
14:20:11.0933 6132 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:20:11.0964 6132 Tcpip - ok
14:20:12.0011 6132 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
14:20:12.0027 6132 Tcpip6 - ok
14:20:12.0058 6132 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:20:12.0058 6132 tcpipreg - ok
14:20:12.0089 6132 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:20:12.0089 6132 TDPIPE - ok
14:20:12.0105 6132 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:20:12.0120 6132 TDTCP - ok
14:20:12.0136 6132 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:20:12.0136 6132 tdx - ok
14:20:12.0229 6132 [ 925F0C3E7E53F1FF76C7256DF17B2D73 ] TeamViewer5 C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
14:20:12.0245 6132 TeamViewer5 - ok
14:20:12.0261 6132 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
14:20:12.0261 6132 TermDD - ok
14:20:12.0307 6132 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
14:20:12.0323 6132 TermService - ok
14:20:12.0339 6132 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] Themes C:\Windows\system32\shsvcs.dll
14:20:12.0354 6132 Themes - ok
14:20:12.0370 6132 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
14:20:12.0370 6132 THREADORDER - ok
14:20:12.0401 6132 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
14:20:12.0401 6132 TrkWks - ok
14:20:12.0432 6132 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:20:12.0448 6132 TrustedInstaller - ok
14:20:12.0448 6132 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:20:12.0463 6132 tssecsrv - ok
14:20:12.0463 6132 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
14:20:12.0463 6132 tunmp - ok
14:20:12.0495 6132 [ 6042505FF6FA9AC1EF7684D0E03B6940 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:20:12.0495 6132 tunnel - ok
14:20:12.0495 6132 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
14:20:12.0510 6132 uagp35 - ok
14:20:12.0526 6132 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:20:12.0526 6132 udfs - ok
14:20:12.0557 6132 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:20:12.0557 6132 UI0Detect - ok
14:20:12.0588 6132 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:20:12.0588 6132 uliagpkx - ok
14:20:12.0604 6132 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
14:20:12.0604 6132 uliahci - ok
14:20:12.0635 6132 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
14:20:12.0635 6132 UlSata - ok
14:20:12.0651 6132 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
14:20:12.0651 6132 ulsata2 - ok
14:20:12.0682 6132 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:20:12.0682 6132 umbus - ok
14:20:12.0697 6132 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
14:20:12.0697 6132 upnphost - ok
14:20:12.0729 6132 [ 8BD3AE150D97BA4E633C6C5C51B41AE1 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
14:20:12.0729 6132 usbccgp - ok
14:20:12.0744 6132 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:20:12.0744 6132 usbcir - ok
14:20:12.0775 6132 [ CEBE90821810E76320155BEBA722FCF9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:20:12.0775 6132 usbehci - ok
14:20:12.0791 6132 [ CC6B28E4CE39951357963119CE47B143 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:20:12.0791 6132 usbhub - ok
14:20:12.0822 6132 [ 7BDB7B0E7D45AC0402D78B90789EF47C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
14:20:12.0822 6132 usbohci - ok
14:20:12.0853 6132 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
14:20:12.0853 6132 usbprint - ok
14:20:12.0900 6132 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:20:12.0900 6132 usbscan - ok
14:20:12.0916 6132 [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:20:12.0931 6132 USBSTOR - ok
14:20:12.0931 6132 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
14:20:12.0947 6132 usbuhci - ok
14:20:12.0963 6132 [ 032A0ACC3909AE7215D524E29D536797 ] UxSms C:\Windows\System32\uxsms.dll
14:20:12.0963 6132 UxSms - ok
14:20:12.0978 6132 [ B13BC395B9D6116628F5AF47E0802AC4 ] vds C:\Windows\System32\vds.exe
14:20:12.0994 6132 vds - ok
14:20:13.0009 6132 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:20:13.0009 6132 vga - ok
14:20:13.0025 6132 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
14:20:13.0025 6132 VgaSave - ok
14:20:13.0041 6132 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
14:20:13.0041 6132 viaagp - ok
14:20:13.0056 6132 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
14:20:13.0056 6132 ViaC7 - ok
14:20:13.0072 6132 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
14:20:13.0072 6132 viaide - ok
14:20:13.0103 6132 [ 5F974FDE801C73952770736BECDE11E7 ] Viewpoint Manager Service C:\Program Files\Viewpoint\Common\ViewpointService.exe
14:20:13.0103 6132 Viewpoint Manager Service - ok
14:20:13.0119 6132 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:20:13.0119 6132 volmgr - ok
14:20:13.0134 6132 [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:20:13.0150 6132 volmgrx - ok
14:20:13.0165 6132 [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:20:13.0165 6132 volsnap - ok
14:20:13.0197 6132 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
14:20:13.0197 6132 vsmraid - ok
14:20:13.0243 6132 [ D5FB73D19C46ADE183F968E13F186B23 ] VSS C:\Windows\system32\vssvc.exe
14:20:13.0243 6132 VSS - ok
14:20:13.0275 6132 [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time C:\Windows\system32\w32time.dll
14:20:13.0275 6132 W32Time - ok
14:20:13.0290 6132 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
14:20:13.0290 6132 WacomPen - ok
14:20:13.0306 6132 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
14:20:13.0306 6132 Wanarp - ok
14:20:13.0306 6132 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:20:13.0321 6132 Wanarpv6 - ok
14:20:13.0337 6132 [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:20:13.0353 6132 wcncsvc - ok
14:20:13.0353 6132 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:20:13.0368 6132 WcsPlugInService - ok
14:20:13.0384 6132 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
14:20:13.0384 6132 Wd - ok
14:20:13.0415 6132 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:20:13.0415 6132 Wdf01000 - ok
14:20:13.0431 6132 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:20:13.0431 6132 WdiServiceHost - ok
14:20:13.0431 6132 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:20:13.0446 6132 WdiSystemHost - ok
14:20:13.0462 6132 [ CF9A5F41789B642DB967021DE06A2713 ] WebClient C:\Windows\System32\webclnt.dll
14:20:13.0462 6132 WebClient - ok
14:20:13.0524 6132 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:20:13.0524 6132 Wecsvc - ok
14:20:13.0540 6132 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:20:13.0555 6132 wercplsupport - ok
14:20:13.0571 6132 [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc C:\Windows\System32\WerSvc.dll
14:20:13.0587 6132 WerSvc - ok
14:20:13.0633 6132 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
14:20:13.0649 6132 winachsf - ok
14:20:13.0665 6132 WinHttpAutoProxySvc - ok
14:20:13.0727 6132 [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:20:13.0727 6132 Winmgmt - ok
14:20:13.0789 6132 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
14:20:13.0805 6132 WinRM - ok
14:20:13.0852 6132 [ 275F4346E569DF56CFB95243BD6F6FF0 ] Wlansvc C:\Windows\System32\wlansvc.dll
14:20:13.0867 6132 Wlansvc - ok
14:20:13.0883 6132 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:20:13.0883 6132 WmiAcpi - ok
14:20:13.0899 6132 [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:20:13.0914 6132 wmiApSrv - ok
14:20:13.0961 6132 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
14:20:13.0961 6132 WMPNetworkSvc - ok
14:20:13.0992 6132 [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:20:13.0992 6132 WPCSvc - ok
14:20:14.0023 6132 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:20:14.0023 6132 WPDBusEnum - ok
14:20:14.0101 6132 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
14:20:14.0117 6132 WPFFontCache_v0400 - ok
14:20:14.0133 6132 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:20:14.0133 6132 ws2ifsl - ok
14:20:14.0148 6132 [ 683DD16B590372F2C9661D277F35E49C ] wscsvc C:\Windows\System32\wscsvc.dll
14:20:14.0164 6132 wscsvc - ok
14:20:14.0164 6132 WSearch - ok
14:20:14.0195 6132 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:20:14.0195 6132 WUDFRd - ok
14:20:14.0226 6132 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:20:14.0226 6132 wudfsvc - ok
14:20:14.0242 6132 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
14:20:14.0242 6132 XAudio - ok
14:20:14.0273 6132 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
14:20:14.0273 6132 XAudioService - ok
14:20:14.0304 6132 ================ Scan global ===============================
14:20:14.0320 6132 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
14:20:14.0367 6132 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
14:20:14.0382 6132 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
14:20:14.0429 6132 [ 2B336AB6286D6C81FA02CBAB914E3C6C ] C:\Windows\system32\services.exe
14:20:14.0429 6132 [Global] - ok
14:20:14.0429 6132 ================ Scan MBR ==================================
14:20:14.0445 6132 [ 03BA8F890B47C0BE359A4D5A636D214D ] \Device\Harddisk0\DR0
14:20:14.0975 6132 \Device\Harddisk0\DR0 - ok
14:20:14.0975 6132 ================ Scan VBR ==================================
14:20:14.0975 6132 [ D940C9BC1BE681430EE6A1A311AB6169 ] \Device\Harddisk0\DR0\Partition1
14:20:14.0975 6132 \Device\Harddisk0\DR0\Partition1 - ok
14:20:14.0975 6132 [ C56CC28DCCA50B78B8BA16726E4DE34E ] \Device\Harddisk0\DR0\Partition2
14:20:14.0991 6132 \Device\Harddisk0\DR0\Partition2 - ok
14:20:14.0991 6132 ============================================================
14:20:14.0991 6132 Scan finished
14:20:14.0991 6132 ============================================================
14:20:15.0006 5608 Detected object count: 0
14:20:15.0006 5608 Actual detected object count: 0

#15 salvia-girl

salvia-girl
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 22 August 2012 - 03:36 PM

Ran a full scan MBAM and got this:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.20.09

Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 8.0.6001.19088
robin :: ROBIN-PC [administrator]

Protection: Enabled

8/22/2012 2:36:35 PM
mbam-log-2012-08-22 (14-36-35).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 368423
Time elapsed: 1 hour(s), 15 minute(s), 43 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 11
C:\TDSSKiller_Quarantine\20.08.2012_21.36.32\zasubsys0000\zafs0000\tsk0004.dta (Rootkit.Zaccess) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\20.08.2012_21.36.32\zasubsys0000\zafs0000\tsk0005.dta (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\20.08.2012_21.36.32\zasubsys0000\zafs0000\tsk0006.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\20.08.2012_21.36.32\zasubsys0000\zafs0000\tsk0007.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\20.08.2012_21.36.32\zasubsys0000\zafs0000\tsk0008.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\22.08.2012_10.55.33\zasubsys0000\zafs0000\tsk0004.dta (Rootkit.Zaccess) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\22.08.2012_10.55.33\zasubsys0000\zafs0000\tsk0005.dta (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\22.08.2012_10.55.33\zasubsys0000\zafs0000\tsk0006.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\22.08.2012_10.55.33\zasubsys0000\zafs0000\tsk0007.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\22.08.2012_10.55.33\zasubsys0000\zafs0000\tsk0008.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\Windows\assembly\GAC\Desktop.ini (Trojan.0access) -> Quarantined and deleted successfully.

(end)

Rebooted and ran a quick scan and got this:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.20.09

Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 8.0.6001.19088
robin :: ROBIN-PC [administrator]

Protection: Enabled

8/22/2012 4:13:41 PM
mbam-log-2012-08-22 (16-13-41).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 187271
Time elapsed: 6 minute(s), 28 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

will now dl the mini toolkit.

Files Detected: 0
(No malicious items detected)

(end)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users