Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

trojan horse dropper generic


  • Please log in to reply
18 replies to this topic

#1 bekiw

bekiw

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 13 August 2012 - 01:33 PM

Someone please help me!! I am running AVG and it has identified Trojan horse Dropper.Generic_c.MMI in C:\windows\system32\services.exe. Says the object is white listed and should not be deleted. Also says Found Luhe.Sirefef.A in c:\program files (x86)\Internet Explorer\iexplore.exe Object is inaccessible. It shows three instances of the last error that cannot be deleted. It lets me delete others but the just come right back. What should I do?

Thanks!!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:29 AM

Posted 13 August 2012 - 01:36 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 16 August 2012 - 10:06 AM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-16 10:02:37
-----------------------------
10:02:37.850 OS Version: Windows x64 6.1.7601 Service Pack 1
10:02:37.850 Number of processors: 2 586 0x100
10:02:37.853 ComputerName: BEKI-HP UserName: Beki
10:02:40.670 Initialize success
10:03:01.818 AVAST engine download error: 0
10:04:03.946 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006c
10:04:03.962 Disk 0 Vendor: WDC_WD32 02.0 Size: 305245MB BusType: 11
10:04:03.962 Device \Driver\amd_sata -> MajorFunction fffffa80035c55e8
10:04:03.977 Disk 0 MBR read successfully
10:04:03.977 Disk 0 MBR scan
10:04:03.993 Disk 0 Windows 7 default MBR code
10:04:03.993 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
10:04:04.024 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 286069 MB offset 409600
10:04:04.055 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 14912 MB offset 586278912
10:04:04.086 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 4063 MB offset 616818688
10:04:04.149 Disk 0 scanning C:\Windows\system32\drivers
10:04:14.056 Service scanning
10:04:15.362 Service 38147841 C:\Windows\system32\drivers\40381119.sys **HIDDEN**
10:05:15.955 Modules scanning
10:05:15.978 Disk 0 trace - called modules:
10:05:15.993 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys ACPI.sys >>UNKNOWN [0xfffffa80065ec0d0]<<81739756.sys >>UNKNOWN [0xfffffa80035c55e8]<<
10:05:16.006 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80031296f0]
10:05:16.020 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa8002ff9ac0]
10:05:16.033 5 amd_xata.sys[fffff88001130a1d] -> nt!IofCallDriver -> [0xfffffa8002a6dcc0]
10:05:16.046 7 ACPI.sys[fffff88000eeb7a1] -> nt!IofCallDriver -> \Device\0000006c[0xfffffa8002a6d5d0]
10:05:16.060 \Driver\amd_sata[0xfffffa80034d52d0] -> IRP_MJ_CREATE -> 0xfffffa80035c55e8
10:05:16.075 Scan finished successfully
10:05:35.227 Disk 0 MBR has been saved successfully to "C:\Users\Beki\Documents\MBR.dat"
10:05:35.240 The log file has been saved successfully to "C:\Users\Beki\Documents\aswMBR.txt"

#4 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 16 August 2012 - 12:11 PM

C:\ProgramData\Microsoft\Windows\DRM\B30D.tmp Win64/Olmarik.AH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.NH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\zasubsys0000\file0000\tsk0000.dta Win64/Patched.B.Gen trojan deleted - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\zasubsys0000\zafs0000\tsk0004.dta Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\zasubsys0000\zafs0000\tsk0005.dta Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\zasubsys0000\zafs0000\tsk0006.dta Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_09.51.45\zasubsys0000\zafs0000\tsk0007.dta a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:29 AM

Posted 16 August 2012 - 01:46 PM

TDSSkiller log?

#6 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 16 August 2012 - 11:34 PM

sorry, thought I posted it:

09:51:44.0710 3348 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
09:51:45.0158 3348 ============================================================
09:51:45.0158 3348 Current date / time: 2012/08/16 09:51:45.0158
09:51:45.0158 3348 SystemInfo:
09:51:45.0158 3348
09:51:45.0158 3348 OS Version: 6.1.7601 ServicePack: 1.0
09:51:45.0158 3348 Product type: Workstation
09:51:45.0159 3348 ComputerName: BEKI-HP
09:51:45.0159 3348 UserName: Beki
09:51:45.0159 3348 Windows directory: C:\Windows
09:51:45.0159 3348 System windows directory: C:\Windows
09:51:45.0159 3348 Running under WOW64
09:51:45.0159 3348 Processor architecture: Intel x64
09:51:45.0159 3348 Number of processors: 2
09:51:45.0160 3348 Page size: 0x1000
09:51:45.0160 3348 Boot type: Normal boot
09:51:45.0160 3348 ============================================================
09:51:47.0908 3348 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:51:47.0955 3348 ============================================================
09:51:47.0955 3348 \Device\Harddisk0\DR0:
09:51:47.0997 3348 MBR partitions:
09:51:47.0997 3348 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
09:51:47.0997 3348 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x22EBA800
09:51:47.0997 3348 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x22F1E800, BlocksNum 0x1D20000
09:51:47.0997 3348 ============================================================
09:51:48.0081 3348 C: <-> \Device\Harddisk0\DR0\Partition2
09:51:48.0207 3348 D: <-> \Device\Harddisk0\DR0\Partition3
09:51:48.0318 3348 ============================================================
09:51:48.0318 3348 Initialize success
09:51:48.0318 3348 ============================================================
09:51:54.0568 4424 ============================================================
09:51:54.0568 4424 Scan started
09:51:54.0568 4424 Mode: Manual;
09:51:54.0568 4424 ============================================================
09:51:57.0498 4424 ================ Scan services =============================
09:51:58.0484 4424 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:51:58.0504 4424 1394ohci - ok
09:51:58.0584 4424 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:51:58.0694 4424 ACPI - ok
09:51:58.0774 4424 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:51:58.0784 4424 AcpiPmi - ok
09:51:59.0044 4424 [ 62b7936f9036dd6ed36e6a7efa805dc0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:51:59.0114 4424 AdobeARMservice - ok
09:51:59.0494 4424 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:51:59.0514 4424 AdobeFlashPlayerUpdateSvc - ok
09:51:59.0634 4424 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
09:51:59.0644 4424 adp94xx - ok
09:51:59.0744 4424 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
09:51:59.0764 4424 adpahci - ok
09:51:59.0884 4424 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
09:51:59.0884 4424 adpu320 - ok
09:51:59.0934 4424 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:51:59.0944 4424 AeLookupSvc - ok
09:52:00.0094 4424 [ d1e343bc00136ce03c4d403194d06a80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
09:52:00.0134 4424 AERTFilters - ok
09:52:00.0234 4424 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
09:52:00.0254 4424 AFD - ok
09:52:00.0334 4424 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
09:52:00.0354 4424 agp440 - ok
09:52:00.0424 4424 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
09:52:00.0454 4424 ALG - ok
09:52:00.0554 4424 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
09:52:00.0574 4424 aliide - ok
09:52:00.0654 4424 [ 814e7787e2a80f0c9b4c528f628153d1 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
09:52:00.0664 4424 AMD External Events Utility - ok
09:52:00.0774 4424 AMD FUEL Service - ok
09:52:00.0854 4424 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
09:52:00.0874 4424 amdide - ok
09:52:00.0914 4424 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
09:52:00.0924 4424 amdiox64 - ok
09:52:01.0024 4424 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
09:52:01.0034 4424 AmdK8 - ok
09:52:01.0424 4424 [ 8e1f914e0c802e4e28affc30bbfe8439 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
09:52:01.0831 4424 amdkmdag - ok
09:52:01.0987 4424 [ 2a3fca5a0bf17202c2debbb898672769 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
09:52:01.0987 4424 amdkmdap - ok
09:52:02.0065 4424 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:52:02.0081 4424 AmdPPM - ok
09:52:02.0159 4424 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:52:02.0175 4424 amdsata - ok
09:52:02.0268 4424 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
09:52:02.0284 4424 amdsbs - ok
09:52:02.0315 4424 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:52:02.0331 4424 amdxata - ok
09:52:02.0377 4424 [ f9d46b6b322708bd5afcc8767ebdc901 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
09:52:02.0377 4424 amd_sata - ok
09:52:02.0393 4424 [ 329cc9c7e20deebcd4cd10816193ef14 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
09:52:02.0409 4424 amd_xata - ok
09:52:02.0580 4424 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
09:52:02.0610 4424 AppID - ok
09:52:02.0650 4424 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:52:02.0660 4424 AppIDSvc - ok
09:52:02.0750 4424 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
09:52:02.0780 4424 Appinfo - ok
09:52:02.0966 4424 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:52:02.0982 4424 Apple Mobile Device - ok
09:52:03.0075 4424 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\drivers\arc.sys
09:52:03.0091 4424 arc - ok
09:52:03.0169 4424 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\drivers\arcsas.sys
09:52:03.0185 4424 arcsas - ok
09:52:03.0621 4424 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:52:03.0621 4424 aspnet_state - ok
09:52:03.0731 4424 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:52:03.0746 4424 AsyncMac - ok
09:52:03.0793 4424 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
09:52:03.0809 4424 atapi - ok
09:52:03.0949 4424 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:52:03.0965 4424 AudioEndpointBuilder - ok
09:52:03.0980 4424 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:52:03.0996 4424 AudioSrv - ok
09:52:04.0370 4424 [ d67719bcfde5798f5c30d14efed3bcaf ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
09:52:04.0542 4424 AVGIDSAgent - ok
09:52:04.0667 4424 Scan interrupted by user!
09:52:04.0667 4424 ================ Scan global ===============================
09:52:04.0667 4424 Scan interrupted by user!
09:52:04.0667 4424 ================ Scan MBR ==================================
09:52:04.0667 4424 Scan interrupted by user!
09:52:04.0667 4424 ================ Scan VBR ==================================
09:52:04.0667 4424 Scan interrupted by user!
09:52:04.0667 4424 ============================================================
09:52:04.0667 4424 Scan finished
09:52:04.0667 4424 ============================================================
09:52:04.0698 6232 Detected object count: 0
09:52:04.0698 6232 Actual detected object count: 0
09:52:25.0329 6436 ============================================================
09:52:25.0329 6436 Scan started
09:52:25.0329 6436 Mode: Manual; TDLFS;
09:52:25.0329 6436 ============================================================
09:52:26.0046 6436 ================ Scan services =============================
09:52:26.0246 6436 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:52:26.0256 6436 1394ohci - ok
09:52:26.0286 6436 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:52:26.0286 6436 ACPI - ok
09:52:26.0326 6436 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:52:26.0326 6436 AcpiPmi - ok
09:52:26.0406 6436 [ 62b7936f9036dd6ed36e6a7efa805dc0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:52:26.0416 6436 AdobeARMservice - ok
09:52:26.0916 6436 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:52:26.0916 6436 AdobeFlashPlayerUpdateSvc - ok
09:52:26.0996 6436 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
09:52:27.0006 6436 adp94xx - ok
09:52:27.0056 6436 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
09:52:27.0056 6436 adpahci - ok
09:52:27.0106 6436 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
09:52:27.0106 6436 adpu320 - ok
09:52:27.0136 6436 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:52:27.0136 6436 AeLookupSvc - ok
09:52:27.0236 6436 [ d1e343bc00136ce03c4d403194d06a80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
09:52:27.0236 6436 AERTFilters - ok
09:52:27.0286 6436 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
09:52:27.0296 6436 AFD - ok
09:52:27.0336 6436 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
09:52:27.0336 6436 agp440 - ok
09:52:27.0386 6436 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
09:52:27.0386 6436 ALG - ok
09:52:27.0426 6436 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
09:52:27.0426 6436 aliide - ok
09:52:27.0476 6436 [ 814e7787e2a80f0c9b4c528f628153d1 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
09:52:27.0476 6436 AMD External Events Utility - ok
09:52:27.0496 6436 AMD FUEL Service - ok
09:52:27.0526 6436 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
09:52:27.0536 6436 amdide - ok
09:52:27.0576 6436 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
09:52:27.0576 6436 amdiox64 - ok
09:52:27.0606 6436 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
09:52:27.0606 6436 AmdK8 - ok
09:52:27.0916 6436 [ 8e1f914e0c802e4e28affc30bbfe8439 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
09:52:28.0006 6436 amdkmdag - ok
09:52:28.0076 6436 [ 2a3fca5a0bf17202c2debbb898672769 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
09:52:28.0076 6436 amdkmdap - ok
09:52:28.0116 6436 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:52:28.0116 6436 AmdPPM - ok
09:52:28.0156 6436 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:52:28.0156 6436 amdsata - ok
09:52:28.0196 6436 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
09:52:28.0206 6436 amdsbs - ok
09:52:28.0236 6436 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:52:28.0236 6436 amdxata - ok
09:52:28.0306 6436 [ f9d46b6b322708bd5afcc8767ebdc901 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
09:52:28.0306 6436 amd_sata - ok
09:52:28.0326 6436 [ 329cc9c7e20deebcd4cd10816193ef14 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
09:52:28.0326 6436 amd_xata - ok
09:52:28.0366 6436 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
09:52:28.0376 6436 AppID - ok
09:52:28.0396 6436 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:52:28.0396 6436 AppIDSvc - ok
09:52:28.0446 6436 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
09:52:28.0446 6436 Appinfo - ok
09:52:28.0526 6436 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:52:28.0536 6436 Apple Mobile Device - ok
09:52:28.0566 6436 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\drivers\arc.sys
09:52:28.0576 6436 arc - ok
09:52:28.0606 6436 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\drivers\arcsas.sys
09:52:28.0606 6436 arcsas - ok
09:52:28.0786 6436 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:52:28.0786 6436 aspnet_state - ok
09:52:28.0846 6436 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:52:28.0856 6436 AsyncMac - ok
09:52:28.0876 6436 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
09:52:28.0876 6436 atapi - ok
09:52:28.0946 6436 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:52:28.0946 6436 AudioEndpointBuilder - ok
09:52:28.0966 6436 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:52:28.0976 6436 AudioSrv - ok
09:52:29.0297 6436 [ d67719bcfde5798f5c30d14efed3bcaf ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
09:52:29.0347 6436 AVGIDSAgent - ok
09:52:29.0417 6436 [ 1b2e9fcdc26dc7c81d4131430e2dc936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
09:52:29.0417 6436 AVGIDSDriver - ok
09:52:29.0487 6436 [ 0f293406f64b48d5d2f0d3a1117f3a83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
09:52:29.0487 6436 AVGIDSFilter - ok
09:52:29.0517 6436 [ cffc3a4a638f462e0561cb368b9a7a3a ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
09:52:29.0527 6436 AVGIDSHA - ok
09:52:29.0567 6436 [ 59955b4c288dd2a8b9fd2cd5158355c5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
09:52:29.0567 6436 Avgldx64 - ok
09:52:29.0587 6436 [ a6aec362aae5e2dda7445e7690cb0f33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
09:52:29.0597 6436 Avgmfx64 - ok
09:52:29.0657 6436 [ 645c7f0a0e39758a0024a9b1748273c0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
09:52:29.0657 6436 Avgrkx64 - ok
09:52:29.0687 6436 [ 1bee674ad792b1c63bb0dac5fa724b23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
09:52:29.0697 6436 Avgtdia - ok
09:52:29.0767 6436 [ ea1145debcd508fd25bd1e95c4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
09:52:29.0777 6436 avgwd - ok
09:52:29.0867 6436 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:52:29.0877 6436 AxInstSV - ok
09:52:29.0947 6436 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
09:52:29.0957 6436 b06bdrv - ok
09:52:30.0027 6436 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
09:52:30.0037 6436 b57nd60a - ok
09:52:30.0157 6436 [ eb015cba77a30e97c28abaad98da19d8 ] bcm C:\Windows\system32\DRIVERS\drxvi314_64.sys
09:52:30.0197 6436 bcm - ok
09:52:30.0287 6436 [ 9e84a931dbee0292e38ed672f6293a99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
09:52:30.0377 6436 BCM43XX - ok
09:52:30.0437 6436 [ c0a0264cc38a17455d398452551231f8 ] bcmbusctr C:\Windows\system32\DRIVERS\BcmBusCtr_64.sys
09:52:30.0447 6436 bcmbusctr - ok
09:52:30.0497 6436 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
09:52:30.0527 6436 BDESVC - ok
09:52:30.0615 6436 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
09:52:30.0615 6436 Beep - ok
09:52:30.0678 6436 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
09:52:30.0678 6436 blbdrive - ok
09:52:30.0756 6436 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:52:30.0802 6436 bowser - ok
09:52:30.0865 6436 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
09:52:30.0880 6436 BrFiltLo - ok
09:52:30.0896 6436 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
09:52:30.0927 6436 BrFiltUp - ok
09:52:30.0990 6436 [ 8ef0d5c41ec907751b8429162b1239ed ] Browser C:\Windows\System32\browser.dll
09:52:30.0990 6436 Browser - ok
09:52:31.0036 6436 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:52:31.0036 6436 Brserid - ok
09:52:31.0083 6436 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:52:31.0083 6436 BrSerWdm - ok
09:52:31.0130 6436 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:52:31.0130 6436 BrUsbMdm - ok
09:52:31.0161 6436 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:52:31.0161 6436 BrUsbSer - ok
09:52:31.0255 6436 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
09:52:31.0255 6436 BTHMODEM - ok
09:52:31.0348 6436 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
09:52:31.0348 6436 bthserv - ok
09:52:31.0380 6436 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:52:31.0380 6436 cdfs - ok
09:52:31.0442 6436 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:52:31.0458 6436 cdrom - ok
09:52:31.0504 6436 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
09:52:31.0504 6436 CertPropSvc - ok
09:52:31.0567 6436 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\drivers\circlass.sys
09:52:31.0567 6436 circlass - ok
09:52:31.0614 6436 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
09:52:31.0614 6436 CLFS - ok
09:52:31.0723 6436 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:52:31.0754 6436 clr_optimization_v2.0.50727_32 - ok
09:52:31.0801 6436 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:52:31.0816 6436 clr_optimization_v2.0.50727_64 - ok
09:52:31.0894 6436 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:52:31.0926 6436 clr_optimization_v4.0.30319_32 - ok
09:52:31.0972 6436 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:52:31.0988 6436 clr_optimization_v4.0.30319_64 - ok
09:52:32.0050 6436 [ 50f92c943f18b070f166d019dfab3d9a ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
09:52:32.0082 6436 clwvd - ok
09:52:32.0160 6436 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
09:52:32.0160 6436 CmBatt - ok
09:52:32.0222 6436 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:52:32.0222 6436 cmdide - ok
09:52:32.0269 6436 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
09:52:32.0284 6436 CNG - ok
09:52:32.0362 6436 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
09:52:32.0362 6436 Compbatt - ok
09:52:32.0425 6436 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
09:52:32.0425 6436 CompositeBus - ok
09:52:32.0472 6436 COMSysApp - ok
09:52:32.0518 6436 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
09:52:32.0518 6436 crcdisk - ok
09:52:32.0595 6436 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:52:32.0605 6436 CryptSvc - ok
09:52:32.0715 6436 [ 72794d112cbaff3bc0c29bf7350d4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
09:52:32.0745 6436 cvhsvc - ok
09:52:32.0815 6436 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:52:32.0845 6436 DcomLaunch - ok
09:52:32.0885 6436 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
09:52:32.0895 6436 defragsvc - ok
09:52:32.0965 6436 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:52:32.0965 6436 DfsC - ok
09:52:33.0045 6436 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
09:52:33.0055 6436 Dhcp - ok
09:52:33.0065 6436 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
09:52:33.0065 6436 discache - ok
09:52:33.0135 6436 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\drivers\disk.sys
09:52:33.0185 6436 Disk - ok
09:52:33.0245 6436 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:52:33.0275 6436 Dnscache - ok
09:52:33.0325 6436 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
09:52:33.0325 6436 dot3svc - ok
09:52:33.0415 6436 [ b42ed0320c6e41102fde0005154849bb ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
09:52:33.0415 6436 Dot4 - ok
09:52:33.0475 6436 [ e9f5969233c5d89f3c35e3a66a52a361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
09:52:33.0485 6436 Dot4Print - ok
09:52:33.0505 6436 [ fd05a02b0370bc3000f402e543ca5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
09:52:33.0515 6436 dot4usb - ok
09:52:33.0555 6436 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
09:52:33.0565 6436 DPS - ok
09:52:33.0625 6436 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:52:33.0635 6436 drmkaud - ok
09:52:33.0685 6436 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:52:33.0695 6436 DXGKrnl - ok
09:52:33.0775 6436 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
09:52:33.0775 6436 EapHost - ok
09:52:33.0915 6436 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\drivers\evbda.sys
09:52:33.0985 6436 ebdrv - ok
09:52:34.0025 6436 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
09:52:34.0055 6436 EFS - ok
09:52:34.0196 6436 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:52:34.0226 6436 ehRecvr - ok
09:52:34.0246 6436 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
09:52:34.0246 6436 ehSched - ok
09:52:34.0336 6436 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
09:52:34.0346 6436 elxstor - ok
09:52:34.0386 6436 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:52:34.0386 6436 ErrDev - ok
09:52:34.0466 6436 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
09:52:34.0476 6436 EventSystem - ok
09:52:34.0506 6436 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
09:52:34.0506 6436 exfat - ok
09:52:34.0536 6436 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:52:34.0536 6436 fastfat - ok
09:52:34.0616 6436 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
09:52:34.0636 6436 Fax - ok
09:52:34.0686 6436 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\drivers\fdc.sys
09:52:34.0686 6436 fdc - ok
09:52:34.0756 6436 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
09:52:34.0756 6436 fdPHost - ok
09:52:34.0786 6436 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
09:52:34.0796 6436 FDResPub - ok
09:52:34.0856 6436 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:52:34.0866 6436 FileInfo - ok
09:52:34.0896 6436 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:52:34.0896 6436 Filetrace - ok
09:52:34.0936 6436 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
09:52:34.0936 6436 flpydisk - ok
09:52:34.0976 6436 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:52:34.0986 6436 FltMgr - ok
09:52:35.0046 6436 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
09:52:35.0086 6436 FontCache - ok
09:52:35.0146 6436 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:52:35.0156 6436 FontCache3.0.0.0 - ok
09:52:35.0176 6436 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:52:35.0186 6436 FsDepends - ok
09:52:35.0206 6436 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:52:35.0226 6436 Fs_Rec - ok
09:52:35.0296 6436 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:52:35.0346 6436 fvevol - ok
09:52:35.0416 6436 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
09:52:35.0426 6436 gagp30kx - ok
09:52:35.0516 6436 [ c403c5db49a0f9aaf4f2128edc0106d8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
09:52:35.0516 6436 GamesAppService - ok
09:52:35.0626 6436 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:52:35.0656 6436 GEARAspiWDM - ok
09:52:35.0716 6436 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
09:52:35.0736 6436 gpsvc - ok
09:52:35.0866 6436 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:52:35.0926 6436 gupdate - ok
09:52:35.0976 6436 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:52:35.0976 6436 gupdatem - ok
09:52:36.0046 6436 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
09:52:36.0086 6436 gusvc - ok
09:52:36.0156 6436 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:52:36.0156 6436 hcw85cir - ok
09:52:36.0236 6436 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:52:36.0246 6436 HdAudAddService - ok
09:52:36.0326 6436 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
09:52:36.0336 6436 HDAudBus - ok
09:52:36.0396 6436 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
09:52:36.0396 6436 HidBatt - ok
09:52:36.0436 6436 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
09:52:36.0446 6436 HidBth - ok
09:52:36.0486 6436 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
09:52:36.0516 6436 HidIr - ok
09:52:36.0566 6436 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
09:52:36.0576 6436 hidserv - ok
09:52:36.0706 6436 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:52:36.0756 6436 HidUsb - ok
09:52:36.0806 6436 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
09:52:36.0806 6436 hkmsvc - ok
09:52:36.0866 6436 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:52:36.0876 6436 HomeGroupListener - ok
09:52:36.0946 6436 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:52:36.0946 6436 HomeGroupProvider - ok
09:52:37.0076 6436 [ 13bb1114451c63bfb41ba7daa4d70a29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
09:52:37.0096 6436 HP Support Assistant Service - ok
09:52:37.0206 6436 [ 6a181452d4e240b8ecc7614b9a19bde9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
09:52:37.0236 6436 HPClientSvc - ok
09:52:37.0316 6436 [ b19ff523b533a3f198b9239e1749c940 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
09:52:37.0356 6436 HPDrvMntSvc.exe - ok
09:52:37.0436 6436 [ 01091b900e15878b4434f9c726c4541d ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
09:52:37.0456 6436 hpqwmiex - ok
09:52:37.0526 6436 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
09:52:37.0526 6436 HpSAMD - ok
09:52:37.0616 6436 [ 2bec76bdcd1bc080210325e7b5094834 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
09:52:37.0626 6436 HPWMISVC - ok
09:52:37.0706 6436 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:52:37.0716 6436 HTTP - ok
09:52:37.0766 6436 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:52:37.0776 6436 hwpolicy - ok
09:52:37.0856 6436 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
09:52:37.0866 6436 i8042prt - ok
09:52:37.0926 6436 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
09:52:37.0936 6436 iaStorV - ok
09:52:38.0076 6436 [ e4693409d06785477a49fb34afae1b92 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
09:52:39.0076 6436 IconMan_R - ok
09:52:39.0147 6436 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:52:39.0167 6436 idsvc - ok
09:52:39.0207 6436 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
09:52:39.0217 6436 iirsp - ok
09:52:39.0307 6436 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
09:52:39.0327 6436 IKEEXT - ok
09:52:39.0477 6436 [ e395d888ef6d3777134a9e09ff7582c2 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
09:52:39.0577 6436 IntcAzAudAddService - ok
09:52:39.0617 6436 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
09:52:39.0627 6436 intelide - ok
09:52:39.0687 6436 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
09:52:39.0697 6436 intelppm - ok
09:52:39.0737 6436 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:52:39.0737 6436 IPBusEnum - ok
09:52:39.0787 6436 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:52:39.0787 6436 IpFilterDriver - ok
09:52:39.0817 6436 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
09:52:39.0817 6436 IPMIDRV - ok
09:52:39.0857 6436 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:52:39.0857 6436 IPNAT - ok
09:52:39.0957 6436 [ 50d6ccc6ff5561f9f56946b3e6164fb8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
09:52:39.0987 6436 iPod Service - ok
09:52:40.0027 6436 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:52:40.0037 6436 IRENUM - ok
09:52:40.0067 6436 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:52:40.0067 6436 isapnp - ok
09:52:40.0097 6436 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
09:52:40.0107 6436 iScsiPrt - ok
09:52:40.0157 6436 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
09:52:40.0167 6436 kbdclass - ok
09:52:40.0207 6436 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
09:52:40.0227 6436 kbdhid - ok
09:52:40.0247 6436 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
09:52:40.0257 6436 KeyIso - ok
09:52:40.0297 6436 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:52:40.0307 6436 KSecDD - ok
09:52:40.0347 6436 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:52:40.0357 6436 KSecPkg - ok
09:52:40.0427 6436 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
09:52:40.0427 6436 ksthunk - ok
09:52:40.0527 6436 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
09:52:40.0537 6436 KtmRm - ok
09:52:40.0617 6436 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
09:52:40.0627 6436 LanmanServer - ok
09:52:40.0697 6436 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:52:40.0697 6436 LanmanWorkstation - ok
09:52:40.0787 6436 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:52:40.0787 6436 lltdio - ok
09:52:40.0867 6436 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:52:40.0877 6436 lltdsvc - ok
09:52:40.0917 6436 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:52:40.0927 6436 lmhosts - ok
09:52:40.0987 6436 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
09:52:40.0987 6436 LSI_FC - ok
09:52:41.0047 6436 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
09:52:41.0057 6436 LSI_SAS - ok
09:52:41.0077 6436 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
09:52:41.0087 6436 LSI_SAS2 - ok
09:52:41.0107 6436 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
09:52:41.0117 6436 LSI_SCSI - ok
09:52:41.0147 6436 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
09:52:41.0157 6436 luafv - ok
09:52:41.0277 6436 [ 485405de203e88b3fe4294a2ea48d7ee ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.271\McCHSvc.exe
09:52:41.0287 6436 McComponentHostService - ok
09:52:41.0357 6436 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:52:41.0377 6436 Mcx2Svc - ok
09:52:41.0457 6436 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\drivers\megasas.sys
09:52:41.0477 6436 megasas - ok
09:52:41.0537 6436 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
09:52:41.0537 6436 MegaSR - ok
09:52:41.0597 6436 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
09:52:41.0607 6436 MMCSS - ok
09:52:41.0647 6436 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
09:52:41.0657 6436 Modem - ok
09:52:41.0714 6436 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:52:41.0714 6436 monitor - ok
09:52:41.0761 6436 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:52:41.0761 6436 mouclass - ok
09:52:41.0823 6436 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:52:41.0823 6436 mouhid - ok
09:52:41.0854 6436 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:52:41.0854 6436 mountmgr - ok
09:52:41.0886 6436 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
09:52:41.0886 6436 mpio - ok
09:52:41.0917 6436 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:52:41.0932 6436 mpsdrv - ok
09:52:41.0979 6436 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:52:41.0979 6436 MRxDAV - ok
09:52:42.0057 6436 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:52:42.0088 6436 mrxsmb - ok
09:52:42.0120 6436 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:52:42.0120 6436 mrxsmb10 - ok
09:52:42.0167 6436 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:52:42.0183 6436 mrxsmb20 - ok
09:52:42.0230 6436 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
09:52:42.0245 6436 msahci - ok
09:52:42.0285 6436 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:52:42.0305 6436 msdsm - ok
09:52:42.0325 6436 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
09:52:42.0335 6436 MSDTC - ok
09:52:42.0365 6436 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:52:42.0375 6436 Msfs - ok
09:52:42.0425 6436 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:52:42.0425 6436 mshidkmdf - ok
09:52:42.0465 6436 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:52:42.0465 6436 msisadrv - ok
09:52:42.0505 6436 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:52:42.0525 6436 MSiSCSI - ok
09:52:42.0535 6436 msiserver - ok
09:52:42.0585 6436 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:52:42.0585 6436 MSKSSRV - ok
09:52:42.0615 6436 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:52:42.0625 6436 MSPCLOCK - ok
09:52:42.0645 6436 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:52:42.0655 6436 MSPQM - ok
09:52:42.0695 6436 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:52:42.0695 6436 MsRPC - ok
09:52:42.0755 6436 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
09:52:42.0755 6436 mssmbios - ok
09:52:42.0785 6436 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:52:42.0785 6436 MSTEE - ok
09:52:42.0815 6436 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
09:52:42.0825 6436 MTConfig - ok
09:52:42.0875 6436 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
09:52:42.0885 6436 Mup - ok
09:52:42.0925 6436 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
09:52:42.0935 6436 napagent - ok
09:52:43.0035 6436 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:52:43.0035 6436 NativeWifiP - ok
09:52:43.0115 6436 [ c38b8ae57f78915905064a9a24dc1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:52:43.0135 6436 NDIS - ok
09:52:43.0195 6436 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:52:43.0195 6436 NdisCap - ok
09:52:43.0255 6436 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:52:43.0255 6436 NdisTapi - ok
09:52:43.0305 6436 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:52:43.0315 6436 Ndisuio - ok
09:52:43.0345 6436 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:52:43.0345 6436 NdisWan - ok
09:52:43.0405 6436 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:52:43.0405 6436 NDProxy - ok
09:52:43.0465 6436 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:52:43.0475 6436 NetBIOS - ok
09:52:43.0495 6436 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:52:43.0505 6436 NetBT - ok
09:52:43.0525 6436 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
09:52:43.0525 6436 Netlogon - ok
09:52:43.0595 6436 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
09:52:43.0615 6436 Netman - ok
09:52:43.0705 6436 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:52:43.0705 6436 NetMsmqActivator - ok
09:52:43.0725 6436 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:52:43.0725 6436 NetPipeActivator - ok
09:52:43.0765 6436 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
09:52:43.0775 6436 netprofm - ok
09:52:43.0795 6436 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:52:43.0795 6436 NetTcpActivator - ok
09:52:43.0805 6436 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:52:43.0815 6436 NetTcpPortSharing - ok
09:52:43.0875 6436 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
09:52:43.0885 6436 nfrd960 - ok
09:52:43.0955 6436 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
09:52:43.0965 6436 NlaSvc - ok
09:52:44.0025 6436 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:52:44.0025 6436 Npfs - ok
09:52:44.0045 6436 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
09:52:44.0055 6436 nsi - ok
09:52:44.0065 6436 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:52:44.0065 6436 nsiproxy - ok
09:52:44.0175 6436 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:52:44.0235 6436 Ntfs - ok
09:52:44.0285 6436 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
09:52:44.0285 6436 Null - ok
09:52:44.0345 6436 [ a85b4f2ef3a7304a5399ef0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
09:52:44.0355 6436 NVENETFD - ok
09:52:44.0405 6436 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:52:44.0405 6436 nvraid - ok
09:52:44.0425 6436 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:52:44.0435 6436 nvstor - ok
09:52:44.0455 6436 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:52:44.0465 6436 nv_agp - ok
09:52:44.0515 6436 [ 78c1a05c2e460adf3661bc60d115cc8d ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
09:52:44.0535 6436 NWADI - ok
09:52:44.0585 6436 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:52:44.0595 6436 ohci1394 - ok
09:52:44.0675 6436 [ 9d10f99a6712e28f8acd5641e3a7ea6b ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:52:44.0685 6436 ose - ok
09:52:44.0925 6436 [ 61bffb5f57ad12f83ab64b7181829b34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:52:45.0085 6436 osppsvc - ok
09:52:45.0125 6436 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:52:45.0135 6436 p2pimsvc - ok
09:52:45.0165 6436 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
09:52:45.0175 6436 p2psvc - ok
09:52:45.0195 6436 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\drivers\parport.sys
09:52:45.0205 6436 Parport - ok
09:52:45.0235 6436 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:52:45.0245 6436 partmgr - ok
09:52:45.0295 6436 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
09:52:45.0305 6436 PcaSvc - ok
09:52:45.0325 6436 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
09:52:45.0335 6436 pci - ok
09:52:45.0365 6436 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
09:52:45.0365 6436 pciide - ok
09:52:45.0405 6436 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
09:52:45.0405 6436 pcmcia - ok
09:52:45.0445 6436 PCTINDIS5X64 - ok
09:52:45.0485 6436 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
09:52:45.0495 6436 pcw - ok
09:52:45.0525 6436 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:52:45.0535 6436 PEAUTH - ok
09:52:45.0685 6436 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
09:52:45.0695 6436 PerfHost - ok
09:52:45.0785 6436 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
09:52:45.0825 6436 pla - ok
09:52:45.0915 6436 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:52:45.0925 6436 PlugPlay - ok
09:52:46.0005 6436 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:52:46.0015 6436 PNRPAutoReg - ok
09:52:46.0085 6436 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:52:46.0095 6436 PNRPsvc - ok
09:52:46.0135 6436 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:52:46.0145 6436 PolicyAgent - ok
09:52:46.0186 6436 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
09:52:46.0206 6436 Power - ok
09:52:46.0266 6436 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:52:46.0276 6436 PptpMiniport - ok
09:52:46.0316 6436 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\drivers\processr.sys
09:52:46.0316 6436 Processor - ok
09:52:46.0366 6436 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
09:52:46.0366 6436 ProfSvc - ok
09:52:46.0386 6436 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:52:46.0396 6436 ProtectedStorage - ok
09:52:46.0486 6436 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:52:46.0496 6436 Psched - ok
09:52:46.0606 6436 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
09:52:46.0656 6436 ql2300 - ok
09:52:46.0686 6436 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
09:52:46.0696 6436 ql40xx - ok
09:52:46.0736 6436 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
09:52:46.0746 6436 QWAVE - ok
09:52:46.0776 6436 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:52:46.0776 6436 QWAVEdrv - ok
09:52:46.0806 6436 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:52:46.0816 6436 RasAcd - ok
09:52:46.0866 6436 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:52:46.0876 6436 RasAgileVpn - ok
09:52:46.0906 6436 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
09:52:46.0906 6436 RasAuto - ok
09:52:46.0936 6436 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:52:46.0936 6436 Rasl2tp - ok
09:52:46.0996 6436 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
09:52:47.0006 6436 RasMan - ok
09:52:47.0026 6436 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:52:47.0036 6436 RasPppoe - ok
09:52:47.0106 6436 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:52:47.0106 6436 RasSstp - ok
09:52:47.0146 6436 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:52:47.0156 6436 rdbss - ok
09:52:47.0166 6436 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
09:52:47.0176 6436 rdpbus - ok
09:52:47.0206 6436 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:52:47.0206 6436 RDPCDD - ok
09:52:47.0246 6436 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:52:47.0246 6436 RDPENCDD - ok
09:52:47.0306 6436 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:52:47.0306 6436 RDPREFMP - ok
09:52:47.0336 6436 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:52:47.0346 6436 RDPWD - ok
09:52:47.0366 6436 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:52:47.0386 6436 rdyboost - ok
09:52:47.0466 6436 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:52:47.0466 6436 RemoteAccess - ok
09:52:47.0556 6436 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:52:47.0576 6436 RemoteRegistry - ok
09:52:47.0666 6436 [ 085d18c71ab2611a3d61528132b6501e ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
09:52:47.0666 6436 RoxioNow Service - ok
09:52:47.0706 6436 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:52:47.0716 6436 RpcEptMapper - ok
09:52:47.0776 6436 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
09:52:47.0776 6436 RpcLocator - ok
09:52:47.0808 6436 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
09:52:47.0808 6436 RpcSs - ok
09:52:47.0870 6436 [ 546d7f426776090b90ef5f195b6ae662 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
09:52:47.0886 6436 RSPCIESTOR - ok
09:52:47.0948 6436 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:52:47.0948 6436 rspndr - ok
09:52:48.0026 6436 [ 3372196f61af48503656ef6aa3e92d1b ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
09:52:48.0042 6436 RTL8167 - ok
09:52:48.0120 6436 [ 508d997a5e9f400fade6c85251bf13df ] RTL8192Ce C:\Windows\system32\DRIVERS\rtl8192Ce.sys
09:52:48.0135 6436 RTL8192Ce - ok
09:52:48.0151 6436 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
09:52:48.0151 6436 SamSs - ok
09:52:48.0182 6436 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:52:48.0182 6436 sbp2port - ok
09:52:48.0229 6436 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:52:48.0244 6436 SCardSvr - ok
09:52:48.0260 6436 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:52:48.0260 6436 scfilter - ok
09:52:48.0307 6436 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
09:52:48.0338 6436 Schedule - ok
09:52:48.0385 6436 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
09:52:48.0385 6436 SCPolicySvc - ok
09:52:48.0447 6436 [ 111e0ebc0ad79cb0fa014b907b231cf0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
09:52:48.0463 6436 sdbus - ok
09:52:48.0510 6436 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:52:48.0525 6436 SDRSVC - ok
09:52:48.0556 6436 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:52:48.0572 6436 secdrv - ok
09:52:48.0588 6436 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
09:52:48.0588 6436 seclogon - ok
09:52:48.0650 6436 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
09:52:48.0666 6436 SENS - ok
09:52:48.0759 6436 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:52:48.0759 6436 SensrSvc - ok
09:52:48.0805 6436 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\drivers\serenum.sys
09:52:48.0805 6436 Serenum - ok
09:52:48.0845 6436 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\drivers\serial.sys
09:52:48.0845 6436 Serial - ok
09:52:48.0885 6436 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
09:52:48.0885 6436 sermouse - ok
09:52:48.0945 6436 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
09:52:48.0955 6436 SessionEnv - ok
09:52:48.0975 6436 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:52:48.0975 6436 sffdisk - ok
09:52:48.0995 6436 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:52:49.0005 6436 sffp_mmc - ok
09:52:49.0045 6436 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:52:49.0055 6436 sffp_sd - ok
09:52:49.0075 6436 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
09:52:49.0085 6436 sfloppy - ok
09:52:49.0155 6436 [ c6cc9297bd53e5229653303e556aa539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
09:52:49.0175 6436 Sftfs - ok
09:52:49.0255 6436 [ 13693b6354dd6e72dc5131da7d764b90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
09:52:49.0275 6436 sftlist - ok
09:52:49.0315 6436 [ 390aa7bc52cee43f6790cdea1e776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
09:52:49.0325 6436 Sftplay - ok
09:52:49.0345 6436 [ 617e29a0b0a2807466560d4c4e338d3e ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
09:52:49.0355 6436 Sftredir - ok
09:52:49.0375 6436 [ 8f571f016fa1976f445147e9e6c8ae9b ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
09:52:49.0375 6436 Sftvol - ok
09:52:49.0425 6436 [ c3cddd18f43d44ab713cf8c4916f7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
09:52:49.0425 6436 sftvsa - ok
09:52:49.0475 6436 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:52:49.0485 6436 ShellHWDetection - ok
09:52:49.0585 6436 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
09:52:49.0595 6436 SiSRaid2 - ok
09:52:49.0635 6436 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
09:52:49.0645 6436 SiSRaid4 - ok
09:52:49.0705 6436 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:52:49.0705 6436 Smb - ok
09:52:49.0775 6436 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:52:49.0785 6436 SNMPTRAP - ok
09:52:49.0805 6436 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
09:52:49.0805 6436 spldr - ok
09:52:49.0875 6436 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\Windows\System32\spoolsv.exe
09:52:49.0905 6436 Spooler - ok
09:52:50.0025 6436 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
09:52:50.0115 6436 sppsvc - ok
09:52:50.0145 6436 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:52:50.0155 6436 sppuinotify - ok
09:52:50.0276 6436 [ cef26d36cf0c8a2ae6aac27767070308 ] SpyHunter 4 Service C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
09:52:50.0296 6436 SpyHunter 4 Service - ok
09:52:50.0356 6436 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
09:52:50.0366 6436 srv - ok
09:52:50.0396 6436 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:52:50.0406 6436 srv2 - ok
09:52:50.0466 6436 [ 0c4540311e11664b245a263e1154cef8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
09:52:50.0476 6436 SrvHsfHDA - ok
09:52:50.0556 6436 [ 02071d207a9858fbe3a48cbfd59c4a04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
09:52:50.0616 6436 SrvHsfV92 - ok
09:52:50.0646 6436 [ 18e40c245dbfaf36fd0134a7ef2df396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
09:52:50.0656 6436 SrvHsfWinac - ok
09:52:50.0696 6436 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:52:50.0696 6436 srvnet - ok
09:52:50.0756 6436 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:52:50.0766 6436 SSDPSRV - ok
09:52:50.0786 6436 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:52:50.0786 6436 SstpSvc - ok
09:52:50.0816 6436 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\drivers\stexstor.sys
09:52:50.0836 6436 stexstor - ok
09:52:50.0896 6436 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
09:52:50.0906 6436 stisvc - ok
09:52:50.0926 6436 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
09:52:50.0936 6436 swenum - ok
09:52:50.0996 6436 [ a8e9e76cc2f342f205273702969c84c9 ] swmx00 C:\Windows\system32\DRIVERS\swmx00.sys
09:52:51.0006 6436 swmx00 - ok
09:52:51.0086 6436 [ b053610bb36d9bd1bff7102727427600 ] SWNC5E00 C:\Windows\system32\DRIVERS\SWNC5E00.sys
09:52:51.0096 6436 SWNC5E00 - ok
09:52:51.0146 6436 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
09:52:51.0156 6436 swprv - ok
09:52:51.0266 6436 [ c447977ed2a4ae9346fe3a0579a34d7c ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
09:52:51.0316 6436 SynTP - ok
09:52:51.0386 6436 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
09:52:51.0456 6436 SysMain - ok
09:52:51.0476 6436 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:52:51.0476 6436 TabletInputService - ok
09:52:51.0506 6436 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:52:51.0516 6436 TapiSrv - ok
09:52:51.0576 6436 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
09:52:51.0586 6436 TBS - ok
09:52:51.0656 6436 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:52:51.0716 6436 Tcpip - ok
09:52:51.0796 6436 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:52:51.0816 6436 TCPIP6 - ok
09:52:51.0866 6436 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:52:51.0876 6436 tcpipreg - ok
09:52:51.0906 6436 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:52:51.0916 6436 TDPIPE - ok
09:52:51.0956 6436 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:52:51.0956 6436 TDTCP - ok
09:52:51.0986 6436 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:52:51.0986 6436 tdx - ok
09:52:52.0026 6436 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
09:52:52.0026 6436 TermDD - ok
09:52:52.0076 6436 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
09:52:52.0086 6436 TermService - ok
09:52:52.0106 6436 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
09:52:52.0116 6436 Themes - ok
09:52:52.0166 6436 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
09:52:52.0166 6436 THREADORDER - ok
09:52:52.0206 6436 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
09:52:52.0216 6436 TrkWks - ok
09:52:52.0276 6436 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:52:52.0276 6436 TrustedInstaller - ok
09:52:52.0326 6436 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:52:52.0336 6436 tssecsrv - ok
09:52:52.0396 6436 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
09:52:52.0406 6436 TsUsbFlt - ok
09:52:52.0426 6436 [ 9cc2ccae8a84820eaecb886d477cbcb8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
09:52:52.0436 6436 TsUsbGD - ok
09:52:52.0486 6436 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:52:52.0486 6436 tunnel - ok
09:52:52.0536 6436 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
09:52:52.0536 6436 uagp35 - ok
09:52:52.0616 6436 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:52:52.0636 6436 udfs - ok
09:52:52.0696 6436 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:52:52.0706 6436 UI0Detect - ok
09:52:52.0746 6436 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:52:52.0756 6436 uliagpkx - ok
09:52:52.0816 6436 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
09:52:52.0826 6436 umbus - ok
09:52:52.0856 6436 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\drivers\umpass.sys
09:52:52.0866 6436 UmPass - ok
09:52:52.0926 6436 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
09:52:52.0936 6436 upnphost - ok
09:52:52.0976 6436 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
09:52:53.0326 6436 USBAAPL64 - ok
09:52:53.0386 6436 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:52:53.0406 6436 usbccgp - ok
09:52:53.0446 6436 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:52:53.0456 6436 usbcir - ok
09:52:53.0476 6436 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\Windows\system32\drivers\usbehci.sys
09:52:53.0476 6436 usbehci - ok
09:52:53.0566 6436 [ 76e2ffad301490ba27b947c6507752fb ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
09:52:53.0566 6436 usbfilter - ok
09:52:53.0626 6436 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:52:53.0626 6436 usbhub - ok
09:52:53.0656 6436 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
09:52:53.0666 6436 usbohci - ok
09:52:53.0716 6436 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:52:53.0716 6436 usbprint - ok
09:52:53.0736 6436 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:52:53.0746 6436 USBSTOR - ok
09:52:53.0786 6436 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
09:52:53.0796 6436 usbuhci - ok
09:52:53.0866 6436 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
09:52:53.0866 6436 usbvideo - ok
09:52:53.0896 6436 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
09:52:53.0906 6436 UxSms - ok
09:52:53.0926 6436 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
09:52:53.0926 6436 VaultSvc - ok
09:52:53.0946 6436 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
09:52:53.0946 6436 vdrvroot - ok
09:52:53.0976 6436 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
09:52:54.0006 6436 vds - ok
09:52:54.0036 6436 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:52:54.0036 6436 vga - ok
09:52:54.0076 6436 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
09:52:54.0086 6436 VgaSave - ok
09:52:54.0116 6436 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
09:52:54.0116 6436 vhdmp - ok
09:52:54.0156 6436 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
09:52:54.0166 6436 viaide - ok
09:52:54.0186 6436 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:52:54.0206 6436 volmgr - ok
09:52:54.0256 6436 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:52:54.0266 6436 volmgrx - ok
09:52:54.0306 6436 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:52:54.0316 6436 volsnap - ok
09:52:54.0366 6436 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
09:52:54.0366 6436 vsmraid - ok
09:52:54.0486 6436 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
09:52:54.0576 6436 VSS - ok
09:52:54.0756 6436 [ 8ed347bad8d1fb7c40b593bfb01786d2 ] vToolbarUpdater11.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
09:52:54.0786 6436 vToolbarUpdater11.2.0 - ok
09:52:54.0826 6436 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
09:52:54.0826 6436 vwifibus - ok
09:52:54.0896 6436 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
09:52:54.0906 6436 vwififlt - ok
09:52:54.0976 6436 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
09:52:54.0986 6436 vwifimp - ok
09:52:55.0026 6436 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
09:52:55.0036 6436 W32Time - ok
09:52:55.0106 6436 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\drivers\wacompen.sys
09:52:55.0116 6436 WacomPen - ok
09:52:55.0237 6436 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:52:55.0237 6436 WANARP - ok
09:52:55.0277 6436 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:52:55.0277 6436 Wanarpv6 - ok
09:52:55.0357 6436 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
09:52:55.0387 6436 WatAdminSvc - ok
09:52:55.0487 6436 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
09:52:55.0527 6436 wbengine - ok
09:52:55.0577 6436 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:52:55.0597 6436 WbioSrvc - ok
09:52:55.0637 6436 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:52:55.0647 6436 wcncsvc - ok
09:52:55.0677 6436 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:52:55.0692 6436 WcsPlugInService - ok
09:52:55.0755 6436 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\drivers\wd.sys
09:52:55.0755 6436 Wd - ok
09:52:55.0833 6436 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:52:55.0848 6436 Wdf01000 - ok
09:52:55.0880 6436 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:52:55.0895 6436 WdiServiceHost - ok
09:52:55.0895 6436 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:52:55.0911 6436 WdiSystemHost - ok
09:52:55.0958 6436 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
09:52:55.0973 6436 WebClient - ok
09:52:56.0004 6436 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:52:56.0004 6436 Wecsvc - ok
09:52:56.0051 6436 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:52:56.0067 6436 wercplsupport - ok
09:52:56.0129 6436 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
09:52:56.0160 6436 WerSvc - ok
09:52:56.0238 6436 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:52:56.0238 6436 WfpLwf - ok
09:52:56.0270 6436 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:52:56.0285 6436 WIMMount - ok
09:52:56.0394 6436 WinHttpAutoProxySvc - ok
09:52:56.0488 6436 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:52:56.0504 6436 Winmgmt - ok
09:52:56.0613 6436 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
09:52:56.0660 6436 WinRM - ok
09:52:56.0784 6436 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
09:52:56.0784 6436 WinUsb - ok
09:52:56.0847 6436 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
09:52:56.0862 6436 Wlansvc - ok
09:52:56.0925 6436 [ 06c8fa1cf39de6a735b54d906ba791c6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:52:56.0956 6436 wlcrasvc - ok
09:52:57.0096 6436 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:52:57.0143 6436 wlidsvc - ok
09:52:57.0190 6436 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:52:57.0206 6436 WmiAcpi - ok
09:52:57.0252 6436 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:52:57.0252 6436 wmiApSrv - ok
09:52:57.0315 6436 WMPNetworkSvc - ok
09:52:57.0362 6436 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:52:57.0362 6436 WPCSvc - ok
09:52:57.0393 6436 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:52:57.0408 6436 WPDBusEnum - ok
09:52:57.0455 6436 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:52:57.0471 6436 ws2ifsl - ok
09:52:57.0486 6436 WSearch - ok
09:52:57.0564 6436 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:52:57.0564 6436 WudfPf - ok
09:52:57.0596 6436 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:52:57.0596 6436 WUDFRd - ok
09:52:57.0642 6436 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:52:57.0642 6436 wudfsvc - ok
09:52:57.0720 6436 [ ce8cf9de9cbfdaa318bd04d8be3fcada ] WwanSvc C:\Windows\System32\wwansvc.dll
09:52:57.0720 6436 WwanSvc - ok
09:52:57.0892 6436 ================ Scan global ===============================
09:52:57.0970 6436 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
09:52:58.0017 6436 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
09:52:58.0048 6436 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
09:52:58.0095 6436 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
09:52:58.0142 6436 (014a9cb92514e27c0107614df764bc06) C:\Windows\system32\services.exe
09:52:58.0173 6436 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
09:52:58.0173 6436 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
09:52:58.0188 6436 ================ Scan MBR ==================================
09:52:58.0204 6436 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
09:52:58.0204 6436 Suspicious mbr (Forged): \Device\Harddisk0\DR0
09:52:58.0282 6436 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
09:52:58.0282 6436 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
09:52:58.0360 6436 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:52:58.0360 6436 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:52:58.0376 6436 ================ Scan VBR ==================================
09:52:58.0376 6436 Boot (0x1200) (92b12c65148456aed864bb75d6608529) \Device\Harddisk0\DR0\Partition1
09:52:58.0391 6436 \Device\Harddisk0\DR0\Partition1 - ok
09:52:58.0407 6436 Boot (0x1200) (3c7c11a7f13a8e18ca414bb298be28b1) \Device\Harddisk0\DR0\Partition2
09:52:58.0407 6436 \Device\Harddisk0\DR0\Partition2 - ok
09:52:58.0454 6436 Boot (0x1200) (cc1442ac1d842a238b02b1290063fb2d) \Device\Harddisk0\DR0\Partition3
09:52:58.0454 6436 \Device\Harddisk0\DR0\Partition3 - ok
09:52:58.0454 6436 ============================================================
09:52:58.0454 6436 Scan finished
09:52:58.0454 6436 ============================================================
09:52:58.0469 5344 Detected object count: 3
09:52:58.0469 5344 Actual detected object count: 3
09:53:17.0607 5344 C:\Windows\system32\services.exe - copied to quarantine
09:53:18.0699 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\@ - copied to quarantine
09:53:18.0715 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\L\00000004.@ - copied to quarantine
09:53:18.0715 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\L\201d3dde - copied to quarantine
09:53:18.0730 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\00000004.@ - copied to quarantine
09:53:18.0730 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\00000008.@ - copied to quarantine
09:53:18.0746 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\000000cb.@ - copied to quarantine
09:53:18.0746 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\80000000.@ - copied to quarantine
09:53:18.0746 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\80000032.@ - copied to quarantine
09:53:18.0746 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\80000064.@ - copied to quarantine
09:53:53.0266 5344 Backup copy found, using it..
09:53:53.0906 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\@ - will be deleted on reboot
09:53:53.0946 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\00000004.@ - will be deleted on reboot
09:53:53.0946 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\00000008.@ - will be deleted on reboot
09:53:53.0946 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\000000cb.@ - will be deleted on reboot
09:53:53.0946 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\80000000.@ - will be deleted on reboot
09:53:53.0946 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\80000032.@ - will be deleted on reboot
09:53:53.0946 5344 C:\Windows\installer\{a539af42-94fd-7423-2944-99522a429af2}\U\80000064.@ - will be deleted on reboot
09:53:53.0956 5344 C:\Windows\system32\services.exe - will be cured on reboot
09:53:53.0956 5344 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure
09:53:56.0140 5344 \Device\Harddisk0\DR0\# - copied to quarantine
09:53:56.0140 5344 \Device\Harddisk0\DR0 - copied to quarantine
09:53:56.0210 5344 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:53:56.0220 5344 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:53:56.0230 5344 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
09:53:56.0240 5344 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
09:53:56.0260 5344 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
09:53:56.0270 5344 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
09:53:56.0290 5344 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
09:53:56.0290 5344 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
09:53:56.0300 5344 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:53:56.0310 5344 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:53:56.0320 5344 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:53:56.0350 5344 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
09:53:56.0360 5344 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
09:53:56.0360 5344 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
09:53:56.0390 5344 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
09:53:56.0430 5344 \Device\Harddisk0\DR0 - ok
09:53:57.0070 5344 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
09:53:57.0080 5344 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
09:53:57.0080 5344 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
10:07:05.0750 2600 Deinitialize success

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:29 AM

Posted 17 August 2012 - 05:09 AM

Restart the PC ,run TDSSkiller and ASWMBR again and post the logs


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#8 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 17 August 2012 - 02:41 PM

14:38:47.0777 5828 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
14:38:49.0779 5828 ============================================================
14:38:49.0779 5828 Current date / time: 2012/08/17 14:38:49.0779
14:38:49.0779 5828 SystemInfo:
14:38:49.0779 5828
14:38:49.0779 5828 OS Version: 6.1.7601 ServicePack: 1.0
14:38:49.0779 5828 Product type: Workstation
14:38:49.0779 5828 ComputerName: BEKI-HP
14:38:49.0779 5828 UserName: Beki
14:38:49.0779 5828 Windows directory: C:\Windows
14:38:49.0779 5828 System windows directory: C:\Windows
14:38:49.0779 5828 Running under WOW64
14:38:49.0779 5828 Processor architecture: Intel x64
14:38:49.0779 5828 Number of processors: 2
14:38:49.0779 5828 Page size: 0x1000
14:38:49.0779 5828 Boot type: Normal boot
14:38:49.0779 5828 ============================================================
14:38:50.0889 5828 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:38:50.0904 5828 ============================================================
14:38:50.0904 5828 \Device\Harddisk0\DR0:
14:38:50.0905 5828 MBR partitions:
14:38:50.0905 5828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
14:38:50.0905 5828 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x22EBA800
14:38:50.0905 5828 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x22F1E800, BlocksNum 0x1D20000
14:38:50.0905 5828 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x24C3E800, BlocksNum 0x7EFAB0
14:38:50.0905 5828 ============================================================
14:38:50.0951 5828 C: <-> \Device\Harddisk0\DR0\Partition2
14:38:51.0011 5828 D: <-> \Device\Harddisk0\DR0\Partition3
14:38:51.0031 5828 E: <-> \Device\Harddisk0\DR0\Partition4
14:38:51.0061 5828 ============================================================
14:38:51.0061 5828 Initialize success
14:38:51.0061 5828 ============================================================
14:38:53.0645 7076 ============================================================
14:38:53.0645 7076 Scan started
14:38:53.0645 7076 Mode: Manual;
14:38:53.0645 7076 ============================================================
14:38:55.0615 7076 ================ Scan services =============================
14:38:56.0307 7076 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:38:56.0317 7076 1394ohci - ok
14:38:56.0397 7076 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:38:56.0407 7076 ACPI - ok
14:38:56.0457 7076 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:38:56.0457 7076 AcpiPmi - ok
14:38:56.0597 7076 [ d19c4ee2ac7c47b8f5f84fff1a789d8a ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:38:56.0607 7076 AdobeARMservice - ok
14:38:56.0797 7076 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:38:56.0807 7076 AdobeFlashPlayerUpdateSvc - ok
14:38:56.0897 7076 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
14:38:56.0907 7076 adp94xx - ok
14:38:56.0987 7076 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
14:38:56.0997 7076 adpahci - ok
14:38:57.0037 7076 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
14:38:57.0037 7076 adpu320 - ok
14:38:57.0107 7076 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:38:57.0117 7076 AeLookupSvc - ok
14:38:57.0207 7076 [ d1e343bc00136ce03c4d403194d06a80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
14:38:57.0217 7076 AERTFilters - ok
14:38:57.0337 7076 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:38:57.0347 7076 AFD - ok
14:38:57.0427 7076 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:38:57.0437 7076 agp440 - ok
14:38:57.0497 7076 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
14:38:57.0507 7076 ALG - ok
14:38:57.0587 7076 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:38:57.0597 7076 aliide - ok
14:38:57.0667 7076 [ 814e7787e2a80f0c9b4c528f628153d1 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:38:57.0677 7076 AMD External Events Utility - ok
14:38:57.0747 7076 AMD FUEL Service - ok
14:38:57.0807 7076 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
14:38:57.0807 7076 amdide - ok
14:38:57.0867 7076 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
14:38:57.0867 7076 amdiox64 - ok
14:38:57.0927 7076 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
14:38:57.0937 7076 AmdK8 - ok
14:38:58.0229 7076 [ 8e1f914e0c802e4e28affc30bbfe8439 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
14:38:58.0499 7076 amdkmdag - ok
14:38:58.0548 7076 Scan interrupted by user!
14:38:58.0549 7076 ================ Scan global ===============================
14:38:58.0549 7076 Scan interrupted by user!
14:38:58.0549 7076 ================ Scan MBR ==================================
14:38:58.0549 7076 Scan interrupted by user!
14:38:58.0549 7076 ================ Scan VBR ==================================
14:38:58.0549 7076 Scan interrupted by user!
14:38:58.0549 7076 ============================================================
14:38:58.0549 7076 Scan finished
14:38:58.0549 7076 ============================================================
14:38:58.0571 6416 Detected object count: 0
14:38:58.0571 6416 Actual detected object count: 0
14:39:06.0164 0196 ============================================================
14:39:06.0164 0196 Scan started
14:39:06.0164 0196 Mode: Manual; TDLFS;
14:39:06.0164 0196 ============================================================
14:39:06.0428 0196 ================ Scan services =============================
14:39:06.0648 0196 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:39:06.0648 0196 1394ohci - ok
14:39:06.0708 0196 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:39:06.0708 0196 ACPI - ok
14:39:06.0758 0196 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:39:06.0758 0196 AcpiPmi - ok
14:39:06.0858 0196 [ d19c4ee2ac7c47b8f5f84fff1a789d8a ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:39:06.0858 0196 AdobeARMservice - ok
14:39:07.0038 0196 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:39:07.0038 0196 AdobeFlashPlayerUpdateSvc - ok
14:39:07.0108 0196 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
14:39:07.0118 0196 adp94xx - ok
14:39:07.0168 0196 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
14:39:07.0178 0196 adpahci - ok
14:39:07.0218 0196 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
14:39:07.0228 0196 adpu320 - ok
14:39:07.0288 0196 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:39:07.0288 0196 AeLookupSvc - ok
14:39:07.0368 0196 [ d1e343bc00136ce03c4d403194d06a80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
14:39:07.0368 0196 AERTFilters - ok
14:39:07.0438 0196 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:39:07.0448 0196 AFD - ok
14:39:07.0508 0196 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:39:07.0508 0196 agp440 - ok
14:39:07.0558 0196 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
14:39:07.0558 0196 ALG - ok
14:39:07.0608 0196 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:39:07.0618 0196 aliide - ok
14:39:07.0658 0196 [ 814e7787e2a80f0c9b4c528f628153d1 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:39:07.0668 0196 AMD External Events Utility - ok
14:39:07.0688 0196 AMD FUEL Service - ok
14:39:07.0718 0196 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
14:39:07.0718 0196 amdide - ok
14:39:07.0738 0196 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
14:39:07.0738 0196 amdiox64 - ok
14:39:07.0768 0196 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
14:39:07.0768 0196 AmdK8 - ok
14:39:08.0019 0196 [ 8e1f914e0c802e4e28affc30bbfe8439 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
14:39:08.0109 0196 amdkmdag - ok
14:39:08.0251 0196 [ 2a3fca5a0bf17202c2debbb898672769 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
14:39:08.0261 0196 amdkmdap - ok
14:39:08.0321 0196 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:39:08.0331 0196 AmdPPM - ok
14:39:08.0391 0196 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:39:08.0401 0196 amdsata - ok
14:39:08.0461 0196 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
14:39:08.0471 0196 amdsbs - ok
14:39:08.0501 0196 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:39:08.0501 0196 amdxata - ok
14:39:08.0531 0196 [ f9d46b6b322708bd5afcc8767ebdc901 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
14:39:08.0531 0196 amd_sata - ok
14:39:08.0551 0196 [ 329cc9c7e20deebcd4cd10816193ef14 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
14:39:08.0551 0196 amd_xata - ok
14:39:08.0631 0196 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
14:39:08.0641 0196 AppID - ok
14:39:08.0671 0196 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:39:08.0671 0196 AppIDSvc - ok
14:39:08.0711 0196 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:39:08.0711 0196 Appinfo - ok
14:39:08.0851 0196 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:39:08.0851 0196 Apple Mobile Device - ok
14:39:08.0921 0196 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\drivers\arc.sys
14:39:08.0931 0196 arc - ok
14:39:08.0993 0196 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\drivers\arcsas.sys
14:39:08.0993 0196 arcsas - ok
14:39:09.0173 0196 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:39:09.0173 0196 aspnet_state - ok
14:39:09.0223 0196 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:39:09.0233 0196 AsyncMac - ok
14:39:09.0273 0196 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
14:39:09.0273 0196 atapi - ok
14:39:09.0363 0196 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:39:09.0373 0196 AudioEndpointBuilder - ok
14:39:09.0393 0196 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:39:09.0403 0196 AudioSrv - ok
14:39:09.0805 0196 [ d67719bcfde5798f5c30d14efed3bcaf ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
14:39:09.0990 0196 AVGIDSAgent - ok
14:39:10.0091 0196 [ 1b2e9fcdc26dc7c81d4131430e2dc936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
14:39:10.0101 0196 AVGIDSDriver - ok
14:39:10.0164 0196 [ 0f293406f64b48d5d2f0d3a1117f3a83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
14:39:10.0170 0196 AVGIDSFilter - ok
14:39:10.0198 0196 [ cffc3a4a638f462e0561cb368b9a7a3a ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
14:39:10.0200 0196 AVGIDSHA - ok
14:39:10.0283 0196 [ 59955b4c288dd2a8b9fd2cd5158355c5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
14:39:10.0303 0196 Avgldx64 - ok
14:39:10.0373 0196 [ a6aec362aae5e2dda7445e7690cb0f33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
14:39:10.0373 0196 Avgmfx64 - ok
14:39:10.0423 0196 [ 645c7f0a0e39758a0024a9b1748273c0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
14:39:10.0433 0196 Avgrkx64 - ok
14:39:10.0463 0196 [ 1bee674ad792b1c63bb0dac5fa724b23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
14:39:10.0473 0196 Avgtdia - ok
14:39:10.0533 0196 [ ea1145debcd508fd25bd1e95c4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
14:39:10.0543 0196 avgwd - ok
14:39:10.0603 0196 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:39:10.0603 0196 AxInstSV - ok
14:39:10.0673 0196 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
14:39:10.0683 0196 b06bdrv - ok
14:39:10.0753 0196 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:39:10.0753 0196 b57nd60a - ok
14:39:10.0848 0196 [ eb015cba77a30e97c28abaad98da19d8 ] bcm C:\Windows\system32\DRIVERS\drxvi314_64.sys
14:39:10.0856 0196 bcm - ok
14:39:10.0925 0196 [ 9e84a931dbee0292e38ed672f6293a99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
14:39:10.0955 0196 BCM43XX - ok
14:39:11.0035 0196 [ c0a0264cc38a17455d398452551231f8 ] bcmbusctr C:\Windows\system32\DRIVERS\BcmBusCtr_64.sys
14:39:11.0035 0196 bcmbusctr - ok
14:39:11.0085 0196 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:39:11.0095 0196 BDESVC - ok
14:39:11.0165 0196 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:39:11.0165 0196 Beep - ok
14:39:11.0235 0196 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
14:39:11.0245 0196 blbdrive - ok
14:39:11.0305 0196 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:39:11.0305 0196 bowser - ok
14:39:11.0355 0196 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
14:39:11.0365 0196 BrFiltLo - ok
14:39:11.0385 0196 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
14:39:11.0395 0196 BrFiltUp - ok
14:39:11.0435 0196 [ 8ef0d5c41ec907751b8429162b1239ed ] Browser C:\Windows\System32\browser.dll
14:39:11.0445 0196 Browser - ok
14:39:11.0485 0196 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:39:11.0495 0196 Brserid - ok
14:39:11.0545 0196 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:39:11.0545 0196 BrSerWdm - ok
14:39:11.0595 0196 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:39:11.0605 0196 BrUsbMdm - ok
14:39:11.0625 0196 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:39:11.0625 0196 BrUsbSer - ok
14:39:11.0695 0196 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
14:39:11.0695 0196 BTHMODEM - ok
14:39:11.0765 0196 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
14:39:11.0765 0196 bthserv - ok
14:39:11.0865 0196 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:39:11.0875 0196 cdfs - ok
14:39:11.0955 0196 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:39:11.0965 0196 cdrom - ok
14:39:12.0015 0196 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
14:39:12.0015 0196 CertPropSvc - ok
14:39:12.0085 0196 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\drivers\circlass.sys
14:39:12.0095 0196 circlass - ok
14:39:12.0175 0196 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
14:39:12.0185 0196 CLFS - ok
14:39:12.0275 0196 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:39:12.0285 0196 clr_optimization_v2.0.50727_32 - ok
14:39:12.0345 0196 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:39:12.0345 0196 clr_optimization_v2.0.50727_64 - ok
14:39:12.0445 0196 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:39:12.0525 0196 clr_optimization_v4.0.30319_32 - ok
14:39:12.0545 0196 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:39:12.0595 0196 clr_optimization_v4.0.30319_64 - ok
14:39:12.0655 0196 [ 50f92c943f18b070f166d019dfab3d9a ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
14:39:12.0655 0196 clwvd - ok
14:39:12.0797 0196 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
14:39:12.0797 0196 CmBatt - ok
14:39:12.0837 0196 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:39:12.0849 0196 cmdide - ok
14:39:12.0909 0196 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
14:39:12.0919 0196 CNG - ok
14:39:12.0989 0196 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
14:39:12.0989 0196 Compbatt - ok
14:39:13.0059 0196 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:39:13.0059 0196 CompositeBus - ok
14:39:13.0089 0196 COMSysApp - ok
14:39:13.0139 0196 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
14:39:13.0149 0196 crcdisk - ok
14:39:13.0219 0196 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:39:13.0229 0196 CryptSvc - ok
14:39:13.0349 0196 [ 72794d112cbaff3bc0c29bf7350d4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
14:39:13.0369 0196 cvhsvc - ok
14:39:13.0459 0196 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:39:13.0479 0196 DcomLaunch - ok
14:39:13.0559 0196 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
14:39:13.0569 0196 defragsvc - ok
14:39:13.0639 0196 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:39:13.0639 0196 DfsC - ok
14:39:13.0709 0196 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
14:39:13.0719 0196 Dhcp - ok
14:39:13.0739 0196 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
14:39:13.0739 0196 discache - ok
14:39:13.0809 0196 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\drivers\disk.sys
14:39:13.0819 0196 Disk - ok
14:39:13.0889 0196 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:39:13.0899 0196 Dnscache - ok
14:39:13.0959 0196 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:39:13.0979 0196 dot3svc - ok
14:39:14.0049 0196 [ b42ed0320c6e41102fde0005154849bb ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
14:39:14.0049 0196 Dot4 - ok
14:39:14.0119 0196 [ e9f5969233c5d89f3c35e3a66a52a361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:39:14.0119 0196 Dot4Print - ok
14:39:14.0149 0196 [ fd05a02b0370bc3000f402e543ca5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
14:39:14.0159 0196 dot4usb - ok
14:39:14.0199 0196 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
14:39:14.0209 0196 DPS - ok
14:39:14.0269 0196 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:39:14.0269 0196 drmkaud - ok
14:39:14.0349 0196 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:39:14.0379 0196 DXGKrnl - ok
14:39:14.0449 0196 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:39:14.0449 0196 EapHost - ok
14:39:14.0569 0196 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\drivers\evbda.sys
14:39:14.0669 0196 ebdrv - ok
14:39:14.0709 0196 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
14:39:14.0709 0196 EFS - ok
14:39:14.0809 0196 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:39:14.0829 0196 ehRecvr - ok
14:39:14.0859 0196 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
14:39:14.0869 0196 ehSched - ok
14:39:14.0939 0196 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
14:39:14.0949 0196 elxstor - ok
14:39:14.0989 0196 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:39:14.0999 0196 ErrDev - ok
14:39:15.0079 0196 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
14:39:15.0099 0196 EventSystem - ok
14:39:15.0129 0196 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
14:39:15.0139 0196 exfat - ok
14:39:15.0159 0196 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:39:15.0169 0196 fastfat - ok
14:39:15.0229 0196 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
14:39:15.0239 0196 Fax - ok
14:39:15.0289 0196 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\drivers\fdc.sys
14:39:15.0299 0196 fdc - ok
14:39:15.0359 0196 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:39:15.0369 0196 fdPHost - ok
14:39:15.0389 0196 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:39:15.0399 0196 FDResPub - ok
14:39:15.0449 0196 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:39:15.0459 0196 FileInfo - ok
14:39:15.0479 0196 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:39:15.0489 0196 Filetrace - ok
14:39:15.0559 0196 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
14:39:15.0569 0196 flpydisk - ok
14:39:15.0609 0196 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:39:15.0619 0196 FltMgr - ok
14:39:15.0691 0196 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
14:39:15.0711 0196 FontCache - ok
14:39:15.0771 0196 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:39:15.0771 0196 FontCache3.0.0.0 - ok
14:39:15.0801 0196 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:39:15.0801 0196 FsDepends - ok
14:39:15.0841 0196 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:39:15.0841 0196 Fs_Rec - ok
14:39:15.0901 0196 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:39:15.0911 0196 fvevol - ok
14:39:15.0971 0196 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
14:39:15.0971 0196 gagp30kx - ok
14:39:16.0041 0196 [ c403c5db49a0f9aaf4f2128edc0106d8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
14:39:16.0071 0196 GamesAppService - ok
14:39:16.0141 0196 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:39:16.0141 0196 GEARAspiWDM - ok
14:39:16.0201 0196 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
14:39:16.0221 0196 gpsvc - ok
14:39:16.0331 0196 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:39:16.0341 0196 gupdate - ok
14:39:16.0381 0196 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:39:16.0381 0196 gupdatem - ok
14:39:16.0451 0196 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:39:16.0461 0196 gusvc - ok
14:39:16.0501 0196 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:39:16.0511 0196 hcw85cir - ok
14:39:16.0581 0196 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:39:16.0591 0196 HdAudAddService - ok
14:39:16.0651 0196 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
14:39:16.0661 0196 HDAudBus - ok
14:39:16.0691 0196 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
14:39:16.0691 0196 HidBatt - ok
14:39:16.0731 0196 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
14:39:16.0741 0196 HidBth - ok
14:39:16.0801 0196 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
14:39:16.0801 0196 HidIr - ok
14:39:16.0841 0196 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
14:39:16.0841 0196 hidserv - ok
14:39:16.0901 0196 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:39:16.0901 0196 HidUsb - ok
14:39:16.0931 0196 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:39:16.0941 0196 hkmsvc - ok
14:39:16.0961 0196 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:39:16.0971 0196 HomeGroupListener - ok
14:39:17.0011 0196 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:39:17.0031 0196 HomeGroupProvider - ok
14:39:17.0151 0196 [ 13bb1114451c63bfb41ba7daa4d70a29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
14:39:17.0151 0196 HP Support Assistant Service - ok
14:39:17.0251 0196 [ 6a181452d4e240b8ecc7614b9a19bde9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
14:39:17.0261 0196 HPClientSvc - ok
14:39:17.0381 0196 [ b19ff523b533a3f198b9239e1749c940 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
14:39:17.0391 0196 HPDrvMntSvc.exe - ok
14:39:17.0481 0196 [ 01091b900e15878b4434f9c726c4541d ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
14:39:17.0501 0196 hpqwmiex - ok
14:39:17.0571 0196 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:39:17.0581 0196 HpSAMD - ok
14:39:17.0661 0196 [ 2bec76bdcd1bc080210325e7b5094834 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
14:39:17.0661 0196 HPWMISVC - ok
14:39:17.0751 0196 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:39:17.0761 0196 HTTP - ok
14:39:17.0796 0196 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:39:17.0799 0196 hwpolicy - ok
14:39:17.0853 0196 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
14:39:17.0863 0196 i8042prt - ok
14:39:17.0923 0196 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:39:17.0934 0196 iaStorV - ok
14:39:18.0074 0196 [ e4693409d06785477a49fb34afae1b92 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
14:39:18.0104 0196 IconMan_R - ok
14:39:18.0174 0196 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:39:18.0194 0196 idsvc - ok
14:39:18.0244 0196 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
14:39:18.0244 0196 iirsp - ok
14:39:18.0334 0196 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
14:39:18.0354 0196 IKEEXT - ok
14:39:18.0524 0196 [ e395d888ef6d3777134a9e09ff7582c2 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:39:18.0644 0196 IntcAzAudAddService - ok
14:39:18.0694 0196 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
14:39:18.0699 0196 intelide - ok
14:39:18.0756 0196 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
14:39:18.0756 0196 intelppm - ok
14:39:18.0786 0196 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:39:18.0786 0196 IPBusEnum - ok
14:39:18.0816 0196 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:39:18.0816 0196 IpFilterDriver - ok
14:39:18.0846 0196 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:39:18.0846 0196 IPMIDRV - ok
14:39:18.0926 0196 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:39:18.0936 0196 IPNAT - ok
14:39:19.0036 0196 [ 50d6ccc6ff5561f9f56946b3e6164fb8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:39:19.0056 0196 iPod Service - ok
14:39:19.0116 0196 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:39:19.0116 0196 IRENUM - ok
14:39:19.0186 0196 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:39:19.0186 0196 isapnp - ok
14:39:19.0216 0196 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:39:19.0226 0196 iScsiPrt - ok
14:39:19.0276 0196 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
14:39:19.0286 0196 kbdclass - ok
14:39:19.0336 0196 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
14:39:19.0346 0196 kbdhid - ok
14:39:19.0376 0196 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
14:39:19.0376 0196 KeyIso - ok
14:39:19.0426 0196 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:39:19.0436 0196 KSecDD - ok
14:39:19.0466 0196 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:39:19.0480 0196 KSecPkg - ok
14:39:19.0550 0196 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:39:19.0553 0196 ksthunk - ok
14:39:19.0628 0196 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
14:39:19.0638 0196 KtmRm - ok
14:39:19.0728 0196 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:39:19.0738 0196 LanmanServer - ok
14:39:19.0798 0196 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:39:19.0808 0196 LanmanWorkstation - ok
14:39:19.0890 0196 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:39:19.0920 0196 lltdio - ok
14:39:20.0003 0196 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:39:20.0012 0196 lltdsvc - ok
14:39:20.0032 0196 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:39:20.0042 0196 lmhosts - ok
14:39:20.0124 0196 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
14:39:20.0134 0196 LSI_FC - ok
14:39:20.0182 0196 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
14:39:20.0187 0196 LSI_SAS - ok
14:39:20.0226 0196 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
14:39:20.0236 0196 LSI_SAS2 - ok
14:39:20.0276 0196 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
14:39:20.0281 0196 LSI_SCSI - ok
14:39:20.0350 0196 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
14:39:20.0360 0196 luafv - ok
14:39:20.0460 0196 [ 485405de203e88b3fe4294a2ea48d7ee ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.271\McCHSvc.exe
14:39:20.0470 0196 McComponentHostService - ok
14:39:20.0552 0196 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:39:20.0552 0196 Mcx2Svc - ok
14:39:20.0592 0196 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\drivers\megasas.sys
14:39:20.0592 0196 megasas - ok
14:39:20.0662 0196 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
14:39:20.0682 0196 MegaSR - ok
14:39:20.0724 0196 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
14:39:20.0734 0196 MMCSS - ok
14:39:20.0794 0196 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:39:20.0796 0196 Modem - ok
14:39:20.0866 0196 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:39:20.0866 0196 monitor - ok
14:39:20.0916 0196 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:39:20.0916 0196 mouclass - ok
14:39:20.0966 0196 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:39:20.0966 0196 mouhid - ok
14:39:20.0986 0196 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:39:20.0986 0196 mountmgr - ok
14:39:21.0026 0196 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:39:21.0036 0196 mpio - ok
14:39:21.0076 0196 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:39:21.0076 0196 mpsdrv - ok
14:39:21.0116 0196 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:39:21.0116 0196 MRxDAV - ok
14:39:21.0158 0196 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:39:21.0168 0196 mrxsmb - ok
14:39:21.0188 0196 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:39:21.0198 0196 mrxsmb10 - ok
14:39:21.0218 0196 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:39:21.0228 0196 mrxsmb20 - ok
14:39:21.0258 0196 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:39:21.0258 0196 msahci - ok
14:39:21.0298 0196 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:39:21.0308 0196 msdsm - ok
14:39:21.0328 0196 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
14:39:21.0328 0196 MSDTC - ok
14:39:21.0378 0196 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:39:21.0378 0196 Msfs - ok
14:39:21.0428 0196 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:39:21.0438 0196 mshidkmdf - ok
14:39:21.0458 0196 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:39:21.0468 0196 msisadrv - ok
14:39:21.0498 0196 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:39:21.0508 0196 MSiSCSI - ok
14:39:21.0518 0196 msiserver - ok
14:39:21.0568 0196 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:39:21.0568 0196 MSKSSRV - ok
14:39:21.0598 0196 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:39:21.0608 0196 MSPCLOCK - ok
14:39:21.0648 0196 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:39:21.0648 0196 MSPQM - ok
14:39:21.0678 0196 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:39:21.0688 0196 MsRPC - ok
14:39:21.0728 0196 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:39:21.0728 0196 mssmbios - ok
14:39:21.0748 0196 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:39:21.0748 0196 MSTEE - ok
14:39:21.0778 0196 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
14:39:21.0778 0196 MTConfig - ok
14:39:21.0838 0196 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:39:21.0848 0196 Mup - ok
14:39:21.0878 0196 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
14:39:21.0898 0196 napagent - ok
14:39:21.0958 0196 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:39:21.0968 0196 NativeWifiP - ok
14:39:22.0088 0196 [ c38b8ae57f78915905064a9a24dc1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:39:22.0108 0196 NDIS - ok
14:39:22.0168 0196 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:39:22.0178 0196 NdisCap - ok
14:39:22.0228 0196 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:39:22.0228 0196 NdisTapi - ok
14:39:22.0288 0196 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:39:22.0288 0196 Ndisuio - ok
14:39:22.0318 0196 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:39:22.0318 0196 NdisWan - ok
14:39:22.0348 0196 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:39:22.0348 0196 NDProxy - ok
14:39:22.0368 0196 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:39:22.0368 0196 NetBIOS - ok
14:39:22.0388 0196 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:39:22.0398 0196 NetBT - ok
14:39:22.0418 0196 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
14:39:22.0418 0196 Netlogon - ok
14:39:22.0508 0196 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
14:39:22.0518 0196 Netman - ok
14:39:22.0588 0196 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:39:22.0618 0196 NetMsmqActivator - ok
14:39:22.0628 0196 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:39:22.0638 0196 NetPipeActivator - ok
14:39:22.0658 0196 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
14:39:22.0668 0196 netprofm - ok
14:39:22.0678 0196 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:39:22.0688 0196 NetTcpActivator - ok
14:39:22.0698 0196 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:39:22.0708 0196 NetTcpPortSharing - ok
14:39:22.0788 0196 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
14:39:22.0788 0196 nfrd960 - ok
14:39:22.0848 0196 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:39:22.0858 0196 NlaSvc - ok
14:39:22.0908 0196 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:39:22.0908 0196 Npfs - ok
14:39:22.0928 0196 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:39:22.0938 0196 nsi - ok
14:39:22.0959 0196 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:39:22.0969 0196 nsiproxy - ok
14:39:23.0049 0196 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:39:23.0119 0196 Ntfs - ok
14:39:23.0149 0196 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
14:39:23.0149 0196 Null - ok
14:39:23.0209 0196 [ a85b4f2ef3a7304a5399ef0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
14:39:23.0209 0196 NVENETFD - ok
14:39:23.0269 0196 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:39:23.0269 0196 nvraid - ok
14:39:23.0329 0196 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:39:23.0329 0196 nvstor - ok
14:39:23.0359 0196 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:39:23.0359 0196 nv_agp - ok
14:39:23.0419 0196 [ 78c1a05c2e460adf3661bc60d115cc8d ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
14:39:23.0429 0196 NWADI - ok
14:39:23.0459 0196 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:39:23.0469 0196 ohci1394 - ok
14:39:23.0549 0196 [ 9d10f99a6712e28f8acd5641e3a7ea6b ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:39:23.0549 0196 ose - ok
14:39:23.0739 0196 [ 61bffb5f57ad12f83ab64b7181829b34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:39:23.0879 0196 osppsvc - ok
14:39:23.0929 0196 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:39:23.0939 0196 p2pimsvc - ok
14:39:23.0980 0196 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:39:24.0000 0196 p2psvc - ok
14:39:24.0040 0196 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\drivers\parport.sys
14:39:24.0040 0196 Parport - ok
14:39:24.0090 0196 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:39:24.0090 0196 partmgr - ok
14:39:24.0110 0196 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:39:24.0120 0196 PcaSvc - ok
14:39:24.0150 0196 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
14:39:24.0150 0196 pci - ok
14:39:24.0180 0196 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
14:39:24.0180 0196 pciide - ok
14:39:24.0220 0196 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
14:39:24.0230 0196 pcmcia - ok
14:39:24.0260 0196 PCTINDIS5X64 - ok
14:39:24.0290 0196 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:39:24.0290 0196 pcw - ok
14:39:24.0330 0196 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:39:24.0340 0196 PEAUTH - ok
14:39:24.0480 0196 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:39:24.0490 0196 PerfHost - ok
14:39:24.0580 0196 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
14:39:24.0620 0196 pla - ok
14:39:24.0710 0196 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:39:24.0720 0196 PlugPlay - ok
14:39:24.0790 0196 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:39:24.0790 0196 PNRPAutoReg - ok
14:39:24.0830 0196 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:39:24.0840 0196 PNRPsvc - ok
14:39:24.0890 0196 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:39:24.0910 0196 PolicyAgent - ok
14:39:24.0960 0196 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
14:39:24.0970 0196 Power - ok
14:39:25.0040 0196 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:39:25.0050 0196 PptpMiniport - ok
14:39:25.0090 0196 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\drivers\processr.sys
14:39:25.0090 0196 Processor - ok
14:39:25.0140 0196 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
14:39:25.0150 0196 ProfSvc - ok
14:39:25.0170 0196 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:39:25.0180 0196 ProtectedStorage - ok
14:39:25.0240 0196 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:39:25.0250 0196 Psched - ok
14:39:25.0350 0196 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
14:39:25.0410 0196 ql2300 - ok
14:39:25.0440 0196 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
14:39:25.0440 0196 ql40xx - ok
14:39:25.0490 0196 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
14:39:25.0490 0196 QWAVE - ok
14:39:25.0530 0196 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:39:25.0530 0196 QWAVEdrv - ok
14:39:25.0550 0196 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:39:25.0550 0196 RasAcd - ok
14:39:25.0620 0196 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:39:25.0620 0196 RasAgileVpn - ok
14:39:25.0650 0196 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
14:39:25.0660 0196 RasAuto - ok
14:39:25.0700 0196 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:39:25.0700 0196 Rasl2tp - ok
14:39:25.0760 0196 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
14:39:25.0770 0196 RasMan - ok
14:39:25.0820 0196 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:39:25.0830 0196 RasPppoe - ok
14:39:25.0880 0196 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:39:25.0880 0196 RasSstp - ok
14:39:25.0910 0196 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:39:25.0910 0196 rdbss - ok
14:39:25.0930 0196 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
14:39:25.0940 0196 rdpbus - ok
14:39:25.0980 0196 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:39:25.0980 0196 RDPCDD - ok
14:39:26.0000 0196 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:39:26.0000 0196 RDPENCDD - ok
14:39:26.0060 0196 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:39:26.0060 0196 RDPREFMP - ok
14:39:26.0100 0196 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:39:26.0110 0196 RDPWD - ok
14:39:26.0130 0196 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:39:26.0140 0196 rdyboost - ok
14:39:26.0220 0196 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:39:26.0220 0196 RemoteAccess - ok
14:39:26.0260 0196 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:39:26.0260 0196 RemoteRegistry - ok
14:39:26.0310 0196 [ 085d18c71ab2611a3d61528132b6501e ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
14:39:26.0320 0196 RoxioNow Service - ok
14:39:26.0340 0196 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:39:26.0350 0196 RpcEptMapper - ok
14:39:26.0380 0196 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
14:39:26.0380 0196 RpcLocator - ok
14:39:26.0420 0196 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
14:39:26.0430 0196 RpcSs - ok
14:39:26.0490 0196 [ 546d7f426776090b90ef5f195b6ae662 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
14:39:26.0490 0196 RSPCIESTOR - ok
14:39:26.0550 0196 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:39:26.0560 0196 rspndr - ok
14:39:26.0630 0196 [ 3372196f61af48503656ef6aa3e92d1b ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
14:39:26.0640 0196 RTL8167 - ok
14:39:26.0730 0196 [ 508d997a5e9f400fade6c85251bf13df ] RTL8192Ce C:\Windows\system32\DRIVERS\rtl8192Ce.sys
14:39:26.0760 0196 RTL8192Ce - ok
14:39:26.0780 0196 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
14:39:26.0790 0196 SamSs - ok
14:39:26.0840 0196 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:39:26.0850 0196 sbp2port - ok
14:39:26.0890 0196 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:39:26.0910 0196 SCardSvr - ok
14:39:26.0940 0196 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:39:26.0940 0196 scfilter - ok
14:39:27.0000 0196 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
14:39:27.0030 0196 Schedule - ok
14:39:27.0070 0196 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
14:39:27.0070 0196 SCPolicySvc - ok
14:39:27.0130 0196 [ 111e0ebc0ad79cb0fa014b907b231cf0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
14:39:27.0130 0196 sdbus - ok
14:39:27.0170 0196 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:39:27.0180 0196 SDRSVC - ok
14:39:27.0230 0196 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:39:27.0230 0196 secdrv - ok
14:39:27.0260 0196 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
14:39:27.0260 0196 seclogon - ok
14:39:27.0280 0196 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
14:39:27.0290 0196 SENS - ok
14:39:27.0350 0196 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:39:27.0360 0196 SensrSvc - ok
14:39:27.0470 0196 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\drivers\serenum.sys
14:39:27.0470 0196 Serenum - ok
14:39:27.0520 0196 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\drivers\serial.sys
14:39:27.0530 0196 Serial - ok
14:39:27.0590 0196 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
14:39:27.0600 0196 sermouse - ok
14:39:27.0670 0196 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:39:27.0680 0196 SessionEnv - ok
14:39:27.0700 0196 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:39:27.0710 0196 sffdisk - ok
14:39:27.0730 0196 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:39:27.0730 0196 sffp_mmc - ok
14:39:27.0760 0196 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:39:27.0760 0196 sffp_sd - ok
14:39:27.0810 0196 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
14:39:27.0810 0196 sfloppy - ok
14:39:27.0890 0196 [ c6cc9297bd53e5229653303e556aa539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
14:39:27.0910 0196 Sftfs - ok
14:39:27.0981 0196 [ 13693b6354dd6e72dc5131da7d764b90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
14:39:28.0001 0196 sftlist - ok
14:39:28.0041 0196 [ 390aa7bc52cee43f6790cdea1e776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
14:39:28.0051 0196 Sftplay - ok
14:39:28.0081 0196 [ 617e29a0b0a2807466560d4c4e338d3e ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
14:39:28.0081 0196 Sftredir - ok
14:39:28.0111 0196 [ 8f571f016fa1976f445147e9e6c8ae9b ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
14:39:28.0121 0196 Sftvol - ok
14:39:28.0141 0196 [ c3cddd18f43d44ab713cf8c4916f7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
14:39:28.0141 0196 sftvsa - ok
14:39:28.0191 0196 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:39:28.0201 0196 ShellHWDetection - ok
14:39:28.0261 0196 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
14:39:28.0261 0196 SiSRaid2 - ok
14:39:28.0301 0196 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
14:39:28.0301 0196 SiSRaid4 - ok
14:39:28.0361 0196 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:39:28.0371 0196 Smb - ok
14:39:28.0441 0196 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:39:28.0451 0196 SNMPTRAP - ok
14:39:28.0491 0196 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:39:28.0491 0196 spldr - ok
14:39:28.0531 0196 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\Windows\System32\spoolsv.exe
14:39:28.0551 0196 Spooler - ok
14:39:28.0651 0196 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
14:39:28.0781 0196 sppsvc - ok
14:39:28.0821 0196 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:39:28.0821 0196 sppuinotify - ok
14:39:28.0951 0196 [ cef26d36cf0c8a2ae6aac27767070308 ] SpyHunter 4 Service C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
14:39:28.0971 0196 SpyHunter 4 Service - ok
14:39:29.0021 0196 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
14:39:29.0031 0196 srv - ok
14:39:29.0071 0196 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:39:29.0081 0196 srv2 - ok
14:39:29.0151 0196 [ 0c4540311e11664b245a263e1154cef8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
14:39:29.0161 0196 SrvHsfHDA - ok
14:39:29.0211 0196 [ 02071d207a9858fbe3a48cbfd59c4a04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
14:39:29.0261 0196 SrvHsfV92 - ok
14:39:29.0291 0196 [ 18e40c245dbfaf36fd0134a7ef2df396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
14:39:29.0311 0196 SrvHsfWinac - ok
14:39:29.0341 0196 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:39:29.0351 0196 srvnet - ok
14:39:29.0411 0196 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:39:29.0411 0196 SSDPSRV - ok
14:39:29.0431 0196 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:39:29.0441 0196 SstpSvc - ok
14:39:29.0461 0196 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\drivers\stexstor.sys
14:39:29.0471 0196 stexstor - ok
14:39:29.0531 0196 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
14:39:29.0551 0196 stisvc - ok
14:39:29.0571 0196 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:39:29.0571 0196 swenum - ok
14:39:29.0641 0196 [ a8e9e76cc2f342f205273702969c84c9 ] swmx00 C:\Windows\system32\DRIVERS\swmx00.sys
14:39:29.0641 0196 swmx00 - ok
14:39:29.0711 0196 [ b053610bb36d9bd1bff7102727427600 ] SWNC5E00 C:\Windows\system32\DRIVERS\SWNC5E00.sys
14:39:29.0721 0196 SWNC5E00 - ok
14:39:29.0811 0196 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
14:39:29.0831 0196 swprv - ok
14:39:29.0961 0196 [ c447977ed2a4ae9346fe3a0579a34d7c ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
14:39:30.0001 0196 SynTP - ok
14:39:30.0121 0196 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
14:39:30.0181 0196 SysMain - ok
14:39:30.0211 0196 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:39:30.0221 0196 TabletInputService - ok
14:39:30.0251 0196 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:39:30.0261 0196 TapiSrv - ok
14:39:30.0281 0196 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
14:39:30.0291 0196 TBS - ok
14:39:30.0411 0196 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:39:30.0481 0196 Tcpip - ok
14:39:30.0551 0196 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:39:30.0571 0196 TCPIP6 - ok
14:39:30.0621 0196 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:39:30.0621 0196 tcpipreg - ok
14:39:30.0661 0196 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:39:30.0661 0196 TDPIPE - ok
14:39:30.0691 0196 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:39:30.0701 0196 TDTCP - ok
14:39:30.0721 0196 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:39:30.0731 0196 tdx - ok
14:39:30.0801 0196 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:39:30.0801 0196 TermDD - ok
14:39:30.0841 0196 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
14:39:30.0851 0196 TermService - ok
14:39:30.0891 0196 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
14:39:30.0901 0196 Themes - ok
14:39:30.0941 0196 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
14:39:30.0941 0196 THREADORDER - ok
14:39:30.0961 0196 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
14:39:30.0971 0196 TrkWks - ok
14:39:31.0021 0196 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:39:31.0031 0196 TrustedInstaller - ok
14:39:31.0071 0196 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:39:31.0071 0196 tssecsrv - ok
14:39:31.0131 0196 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:39:31.0141 0196 TsUsbFlt - ok
14:39:31.0161 0196 [ 9cc2ccae8a84820eaecb886d477cbcb8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
14:39:31.0161 0196 TsUsbGD - ok
14:39:31.0211 0196 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:39:31.0221 0196 tunnel - ok
14:39:31.0251 0196 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
14:39:31.0261 0196 uagp35 - ok
14:39:31.0301 0196 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:39:31.0301 0196 udfs - ok
14:39:31.0351 0196 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:39:31.0361 0196 UI0Detect - ok
14:39:31.0391 0196 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:39:31.0391 0196 uliagpkx - ok
14:39:31.0451 0196 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:39:31.0451 0196 umbus - ok
14:39:31.0471 0196 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\drivers\umpass.sys
14:39:31.0471 0196 UmPass - ok
14:39:31.0521 0196 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
14:39:31.0531 0196 upnphost - ok
14:39:31.0581 0196 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:39:31.0581 0196 USBAAPL64 - ok
14:39:31.0611 0196 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:39:31.0611 0196 usbccgp - ok
14:39:31.0681 0196 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:39:31.0691 0196 usbcir - ok
14:39:31.0721 0196 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\Windows\system32\drivers\usbehci.sys
14:39:31.0731 0196 usbehci - ok
14:39:31.0771 0196 [ 76e2ffad301490ba27b947c6507752fb ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
14:39:31.0771 0196 usbfilter - ok
14:39:31.0821 0196 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:39:31.0831 0196 usbhub - ok
14:39:31.0861 0196 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:39:31.0861 0196 usbohci - ok
14:39:31.0921 0196 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:39:31.0921 0196 usbprint - ok
14:39:31.0961 0196 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:39:31.0961 0196 USBSTOR - ok
14:39:32.0001 0196 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:39:32.0011 0196 usbuhci - ok
14:39:32.0081 0196 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
14:39:32.0091 0196 usbvideo - ok
14:39:32.0131 0196 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
14:39:32.0141 0196 UxSms - ok
14:39:32.0161 0196 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
14:39:32.0171 0196 VaultSvc - ok
14:39:32.0201 0196 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:39:32.0201 0196 vdrvroot - ok
14:39:32.0261 0196 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
14:39:32.0291 0196 vds - ok
14:39:32.0321 0196 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:39:32.0321 0196 vga - ok
14:39:32.0351 0196 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
14:39:32.0351 0196 VgaSave - ok
14:39:32.0381 0196 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:39:32.0391 0196 vhdmp - ok
14:39:32.0451 0196 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:39:32.0461 0196 viaide - ok
14:39:32.0521 0196 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:39:32.0521 0196 volmgr - ok
14:39:32.0571 0196 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:39:32.0581 0196 volmgrx - ok
14:39:32.0601 0196 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:39:32.0611 0196 volsnap - ok
14:39:32.0661 0196 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
14:39:32.0661 0196 vsmraid - ok
14:39:32.0741 0196 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
14:39:32.0801 0196 VSS - ok
14:39:32.0931 0196 [ 8ed347bad8d1fb7c40b593bfb01786d2 ] vToolbarUpdater11.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
14:39:32.0951 0196 vToolbarUpdater11.2.0 - ok
14:39:32.0981 0196 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:39:32.0992 0196 vwifibus - ok
14:39:33.0032 0196 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:39:33.0042 0196 vwififlt - ok
14:39:33.0122 0196 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
14:39:33.0122 0196 vwifimp - ok
14:39:33.0162 0196 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
14:39:33.0172 0196 W32Time - ok
14:39:33.0212 0196 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\drivers\wacompen.sys
14:39:33.0222 0196 WacomPen - ok
14:39:33.0272 0196 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:39:33.0282 0196 WANARP - ok
14:39:33.0312 0196 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:39:33.0312 0196 Wanarpv6 - ok
14:39:33.0392 0196 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:39:33.0432 0196 WatAdminSvc - ok
14:39:33.0502 0196 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
14:39:33.0552 0196 wbengine - ok
14:39:33.0592 0196 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:39:33.0602 0196 WbioSrvc - ok
14:39:33.0622 0196 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:39:33.0642 0196 wcncsvc - ok
14:39:33.0662 0196 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:39:33.0672 0196 WcsPlugInService - ok
14:39:33.0702 0196 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\drivers\wd.sys
14:39:33.0702 0196 Wd - ok
14:39:33.0752 0196 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:39:33.0762 0196 Wdf01000 - ok
14:39:33.0782 0196 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:39:33.0792 0196 WdiServiceHost - ok
14:39:33.0802 0196 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:39:33.0812 0196 WdiSystemHost - ok
14:39:33.0832 0196 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:39:33.0842 0196 WebClient - ok
14:39:33.0872 0196 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:39:33.0882 0196 Wecsvc - ok
14:39:33.0902 0196 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:39:33.0912 0196 wercplsupport - ok
14:39:33.0962 0196 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:39:33.0962 0196 WerSvc - ok
14:39:34.0032 0196 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:39:34.0032 0196 WfpLwf - ok
14:39:34.0052 0196 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:39:34.0052 0196 WIMMount - ok
14:39:34.0102 0196 WinHttpAutoProxySvc - ok
14:39:34.0192 0196 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:39:34.0212 0196 Winmgmt - ok
14:39:34.0302 0196 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
14:39:34.0392 0196 WinRM - ok
14:39:34.0492 0196 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:39:34.0492 0196 WinUsb - ok
14:39:34.0552 0196 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
14:39:34.0582 0196 Wlansvc - ok
14:39:34.0632 0196 [ 06c8fa1cf39de6a735b54d906ba791c6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:39:34.0632 0196 wlcrasvc - ok
14:39:34.0752 0196 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:39:34.0772 0196 wlidsvc - ok
14:39:34.0844 0196 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:39:34.0844 0196 WmiAcpi - ok
14:39:34.0894 0196 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:39:34.0904 0196 wmiApSrv - ok
14:39:34.0964 0196 WMPNetworkSvc - ok
14:39:34.0994 0196 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:39:35.0004 0196 WPCSvc - ok
14:39:35.0034 0196 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:39:35.0044 0196 WPDBusEnum - ok
14:39:35.0074 0196 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:39:35.0074 0196 ws2ifsl - ok
14:39:35.0084 0196 WSearch - ok
14:39:35.0124 0196 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:39:35.0134 0196 WudfPf - ok
14:39:35.0164 0196 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:39:35.0164 0196 WUDFRd - ok
14:39:35.0194 0196 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:39:35.0204 0196 wudfsvc - ok
14:39:35.0244 0196 [ ce8cf9de9cbfdaa318bd04d8be3fcada ] WwanSvc C:\Windows\System32\wwansvc.dll
14:39:35.0254 0196 WwanSvc - ok
14:39:35.0364 0196 ================ Scan global ===============================
14:39:35.0414 0196 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
14:39:35.0454 0196 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
14:39:35.0474 0196 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
14:39:35.0504 0196 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
14:39:35.0544 0196 (24acb7e5be595468e3b9aa488b9b4fcb) C:\Windows\system32\services.exe
14:39:35.0554 0196 [Global] - ok
14:39:35.0554 0196 ================ Scan MBR ==================================
14:39:35.0574 0196 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:39:36.0124 0196 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
14:39:36.0124 0196 \Device\Harddisk0\DR0 - detected TDSS File System (1)
14:39:36.0124 0196 ================ Scan VBR ==================================
14:39:36.0134 0196 Boot (0x1200) (92b12c65148456aed864bb75d6608529) \Device\Harddisk0\DR0\Partition1
14:39:36.0144 0196 \Device\Harddisk0\DR0\Partition1 - ok
14:39:36.0184 0196 Boot (0x1200) (3c7c11a7f13a8e18ca414bb298be28b1) \Device\Harddisk0\DR0\Partition2
14:39:36.0184 0196 \Device\Harddisk0\DR0\Partition2 - ok
14:39:36.0224 0196 Boot (0x1200) (cc1442ac1d842a238b02b1290063fb2d) \Device\Harddisk0\DR0\Partition3
14:39:36.0234 0196 \Device\Harddisk0\DR0\Partition3 - ok
14:39:36.0254 0196 Boot (0x1200) (599da6ad964222c097c722493594e6c9) \Device\Harddisk0\DR0\Partition4
14:39:36.0264 0196 \Device\Harddisk0\DR0\Partition4 - ok
14:39:36.0264 0196 ============================================================
14:39:36.0264 0196 Scan finished
14:39:36.0264 0196 ============================================================
14:39:36.0314 6440 Detected object count: 1
14:39:36.0314 6440 Actual detected object count: 1
14:39:50.0956 6440 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
14:39:50.0956 6440 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
14:39:50.0976 6440 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
14:39:50.0976 6440 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
14:39:50.0996 6440 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
14:39:51.0306 6440 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
14:39:51.0376 6440 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
14:39:51.0386 6440 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
14:39:51.0416 6440 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
14:39:51.0496 6440 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
14:39:51.0586 6440 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
14:39:51.0596 6440 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
14:39:51.0606 6440 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
14:39:51.0606 6440 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
14:39:51.0606 6440 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
14:40:05.0598 5068 Deinitialize success

#9 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 17 August 2012 - 03:04 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-16 10:02:37
-----------------------------
10:02:37.850 OS Version: Windows x64 6.1.7601 Service Pack 1
10:02:37.850 Number of processors: 2 586 0x100
10:02:37.853 ComputerName: BEKI-HP UserName: Beki
10:02:40.670 Initialize success
10:03:01.818 AVAST engine download error: 0
10:04:03.946 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006c
10:04:03.962 Disk 0 Vendor: WDC_WD32 02.0 Size: 305245MB BusType: 11
10:04:03.962 Device \Driver\amd_sata -> MajorFunction fffffa80035c55e8
10:04:03.977 Disk 0 MBR read successfully
10:04:03.977 Disk 0 MBR scan
10:04:03.993 Disk 0 Windows 7 default MBR code
10:04:03.993 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
10:04:04.024 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 286069 MB offset 409600
10:04:04.055 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 14912 MB offset 586278912
10:04:04.086 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 4063 MB offset 616818688
10:04:04.149 Disk 0 scanning C:\Windows\system32\drivers
10:04:14.056 Service scanning
10:04:15.362 Service 38147841 C:\Windows\system32\drivers\40381119.sys **HIDDEN**
10:05:15.955 Modules scanning
10:05:15.978 Disk 0 trace - called modules:
10:05:15.993 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys ACPI.sys >>UNKNOWN [0xfffffa80065ec0d0]<<81739756.sys >>UNKNOWN [0xfffffa80035c55e8]<<
10:05:16.006 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80031296f0]
10:05:16.020 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa8002ff9ac0]
10:05:16.033 5 amd_xata.sys[fffff88001130a1d] -> nt!IofCallDriver -> [0xfffffa8002a6dcc0]
10:05:16.046 7 ACPI.sys[fffff88000eeb7a1] -> nt!IofCallDriver -> \Device\0000006c[0xfffffa8002a6d5d0]
10:05:16.060 \Driver\amd_sata[0xfffffa80034d52d0] -> IRP_MJ_CREATE -> 0xfffffa80035c55e8
10:05:16.075 Scan finished successfully
10:05:35.227 Disk 0 MBR has been saved successfully to "C:\Users\Beki\Documents\MBR.dat"
10:05:35.240 The log file has been saved successfully to "C:\Users\Beki\Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-17 14:42:09
-----------------------------
14:42:09.805 OS Version: Windows x64 6.1.7601 Service Pack 1
14:42:09.805 Number of processors: 2 586 0x100
14:42:09.805 ComputerName: BEKI-HP UserName: Beki
14:42:11.905 Initialize success
14:45:41.196 AVAST engine defs: 12081700
14:46:28.937 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006c
14:46:28.937 Disk 0 Vendor: WDC_WD32 02.0 Size: 305245MB BusType: 11
14:46:28.957 Disk 0 MBR read successfully
14:46:28.977 Disk 0 MBR scan
14:46:28.987 Disk 0 Windows 7 default MBR code
14:46:28.997 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
14:46:29.027 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 286069 MB offset 409600
14:46:29.067 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 14912 MB offset 586278912
14:46:29.097 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 4063 MB offset 616818688
14:46:29.157 Disk 0 scanning C:\Windows\system32\drivers
14:46:45.496 Service scanning
14:47:30.805 Modules scanning
14:47:30.825 Disk 0 trace - called modules:
14:47:31.199
14:47:33.291 AVAST engine scan C:\Windows
14:47:37.142 AVAST engine scan C:\Windows\system32
14:50:10.767 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
14:50:15.255 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
14:52:22.832 AVAST engine scan C:\Windows\system32\drivers
14:52:49.831 AVAST engine scan C:\Users\Beki
15:00:26.894 AVAST engine scan C:\ProgramData
15:01:33.129 Scan finished successfully
15:03:04.982 Disk 0 MBR has been saved successfully to "C:\Users\Beki\Documents\MBR.dat"
15:03:05.014 The log file has been saved successfully to "C:\Users\Beki\Documents\aswMBR.txt"

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:29 AM

Posted 17 August 2012 - 03:22 PM

Please run TDSSkiller and post the log

#11 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 17 August 2012 - 05:25 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by Beki (administrator) on 17-08-2012 at 17:23:32
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8188CE 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Beki-HP
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 68-A3-C4-AD-15-CE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 3C-D9-2B-2E-1B-9E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::143b:275d:a05d:5f1%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, August 17, 2012 5:19:36 PM
Lease Expires . . . . . . . . . . : Saturday, August 18, 2012 5:19:36 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 339532075
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-DB-4C-80-68-A3-C4-AD-15-CE
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8188CE 802.11b/g/n WiFi Adapter
Physical Address. . . . . . . . . : 68-A3-C4-AD-15-CE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::694c:f209:bd87:886c%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, August 17, 2012 5:20:21 PM
Lease Expires . . . . . . . . . . : Saturday, August 18, 2012 5:20:22 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 241738692
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-DB-4C-80-68-A3-C4-AD-15-CE
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{AD7801A5-C08E-4B43-A1AA-EC9C084EBE32}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{62A55D6F-755D-41BC-9D0B-96205EA3D638}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.SWDL.COM:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{495DC9EF-BABB-4694-929D-551DD872F944}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{5F0EE99D-4A4E-433C-850B-B447A5C95E6B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2001:4860:800a::8b
74.125.137.139
74.125.137.138
74.125.137.113
74.125.137.101
74.125.137.102
74.125.137.100


Pinging google.com [74.125.45.138] with 32 bytes of data:
Reply from 74.125.45.138: bytes=32 time=27ms TTL=49
Reply from 74.125.45.138: bytes=32 time=30ms TTL=50

Ping statistics for 74.125.45.138:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 27ms, Maximum = 30ms, Average = 28ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=111ms TTL=47
Reply from 72.30.38.140: bytes=32 time=122ms TTL=47

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 111ms, Maximum = 122ms, Average = 116ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
28...68 a3 c4 ad 15 ce ......Microsoft Virtual WiFi Miniport Adapter
12...3c d9 2b 2e 1b 9e ......Realtek PCIe FE Family Controller
11...68 a3 c4 ad 15 ce ......Realtek RTL8188CE 802.11b/g/n WiFi Adapter
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
27...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
26...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 20
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 276
192.168.1.0 255.255.255.0 On-link 192.168.1.4 281
192.168.1.2 255.255.255.255 On-link 192.168.1.2 276
192.168.1.4 255.255.255.255 On-link 192.168.1.4 281
192.168.1.255 255.255.255.255 On-link 192.168.1.2 276
192.168.1.255 255.255.255.255 On-link 192.168.1.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 276
224.0.0.0 240.0.0.0 On-link 192.168.1.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 276
255.255.255.255 255.255.255.255 On-link 192.168.1.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
12 276 fe80::/64 On-link
11 281 fe80::/64 On-link
12 276 fe80::143b:275d:a05d:5f1/128
On-link
11 281 fe80::694c:f209:bd87:886c/128
On-link
1 306 ff00::/8 On-link
12 276 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/17/2012 04:21:16 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (08/17/2012 04:11:26 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/17/2012 03:21:24 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (08/17/2012 03:11:45 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/17/2012 02:25:49 PM) (Source: Application Error) (User: )
Description: Faulting application name: pcutilitykit.exe, version: 3.1.3.0, time stamp: 0x4f2716fe
Faulting module name: pcutilitykit.exe, version: 3.1.3.0, time stamp: 0x4f2716fe
Exception code: 0xc0000005
Fault offset: 0x00033d06
Faulting process id: 0x1988
Faulting application start time: 0xpcutilitykit.exe0
Faulting application path: pcutilitykit.exe1
Faulting module path: pcutilitykit.exe2
Report Id: pcutilitykit.exe3

Error: (08/16/2012 00:56:47 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (08/16/2012 00:46:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/16/2012 10:20:32 AM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (08/16/2012 10:14:41 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/16/2012 10:14:31 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (08/17/2012 05:20:19 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/17/2012 05:20:19 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (08/17/2012 05:19:37 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (08/17/2012 05:19:37 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/17/2012 05:16:46 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126

Error: (08/17/2012 05:11:02 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126

Error: (08/17/2012 05:05:49 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (08/17/2012 05:05:49 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/17/2012 04:11:09 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (08/17/2012 04:11:08 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.


Microsoft Office Sessions:
=========================
Error: (08/17/2012 04:21:16 PM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (08/17/2012 04:11:26 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/17/2012 03:21:24 PM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (08/17/2012 03:11:45 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/17/2012 02:25:49 PM) (Source: Application Error)(User: )
Description: pcutilitykit.exe3.1.3.04f2716fepcutilitykit.exe3.1.3.04f2716fec000000500033d06198801cd7c82eae018b6C:\Program Files (x86)\PC Utility Kit\PC Utility Kit\pcutilitykit.exeC:\Program Files (x86)\PC Utility Kit\PC Utility Kit\pcutilitykit.exe598e3cd1-e8a1-11e1-961c-3cd92b2e1b9e

Error: (08/16/2012 00:56:47 PM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (08/16/2012 00:46:34 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/16/2012 10:20:32 AM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (08/16/2012 10:14:41 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Beki\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JI3M5B8Y\esetsmartinstaller_enu.exe

Error: (08/16/2012 10:14:31 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Beki\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JI3M5B8Y\esetsmartinstaller_enu.exe


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Reader X (10.1.4) MUI (Version: 10.1.4)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
AMD APP SDK Runtime (Version: 2.4.650.9)
AMD Fuel (Version: 2011.0616.2209.37946)
AMD Media Foundation Decoders (Version: 1.0.60616.2211)
AMD VISION Engine Control Center (Version: 2011.0616.2209.37946)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.829.0)
AVG 2012 (Version: 12.0.2197)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2197)
Bejeweled 3 (Version: 2.2.0.97)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.97)
Blio (Version: 3.0.9482)
Bounce Symphony (Version: 2.2.0.97)
Cake Mania (Version: 2.2.0.95)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2011.0616.2209.37946)
Catalyst Control Center InstallProxy (Version: 2011.0616.2209.37946)
Catalyst Control Center Localization All (Version: 2011.0616.2209.37946)
ccc-utility64 (Version: 2011.0616.2209.37946)
CCC Help Chinese Standard (Version: 2011.0616.2208.37946)
CCC Help Chinese Traditional (Version: 2011.0616.2208.37946)
CCC Help Czech (Version: 2011.0616.2208.37946)
CCC Help Danish (Version: 2011.0616.2208.37946)
CCC Help Dutch (Version: 2011.0616.2208.37946)
CCC Help English (Version: 2011.0616.2208.37946)
CCC Help Finnish (Version: 2011.0616.2208.37946)
CCC Help French (Version: 2011.0616.2208.37946)
CCC Help German (Version: 2011.0616.2208.37946)
CCC Help Greek (Version: 2011.0616.2208.37946)
CCC Help Hungarian (Version: 2011.0616.2208.37946)
CCC Help Italian (Version: 2011.0616.2208.37946)
CCC Help Japanese (Version: 2011.0616.2208.37946)
CCC Help Korean (Version: 2011.0616.2208.37946)
CCC Help Norwegian (Version: 2011.0616.2208.37946)
CCC Help Polish (Version: 2011.0616.2208.37946)
CCC Help Portuguese (Version: 2011.0616.2208.37946)
CCC Help Russian (Version: 2011.0616.2208.37946)
CCC Help Spanish (Version: 2011.0616.2208.37946)
CCC Help Swedish (Version: 2011.0616.2208.37946)
CCC Help Thai (Version: 2011.0616.2208.37946)
CCC Help Turkish (Version: 2011.0616.2208.37946)
Chronicles of Albian (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Cradle of Rome 2 (Version: 2.2.0.95)
CyberLink YouCam (Version: 3.5.1.4606)
D3DX10 (Version: 15.4.2368.0902)
ESET Online Scanner v3
ESU for Microsoft Windows 7 SP1 (Version: 2.1.1)
Evernote v. 4.2.3 (Version: 4.2.3.22)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.97)
FLV Runner Toolbar (Version: 6.9.0.16)
Google Chrome (Version: 21.0.1180.79)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.2.5)
HP Launch Box (Version: 1.1.5)
HP MovieStore (Version: 1.0.057)
HP MovieStore (Version: 2.0)
HP On Screen Display (Version: 1.3.5)
HP Power Manager (Version: 1.4.8)
HP Quick Launch (Version: 2.7.2)
HP QuickWeb (Version: 3.1.0.9742)
HP Setup (Version: 8.7.4751.3798)
HP Setup Manager (Version: 1.1.13476.3753)
HP Software Framework (Version: 4.1.13.1)
iCloud (Version: 1.1.0.40)
InstallVC90Support (Version: 1.01.0000)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ SE Runtime Environment 6 Update 1 (Version: 1.6.0.10)
Jewel Quest: The Sleepless Star - Collector's Edition (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Mah Jong Medley (Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee Security Scan Plus (Version: 3.0.271.4)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5131.5000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
MP3 Rocket
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery of Mortlake Mansion (Version: 2.2.0.97)
Namco All-Stars: PAC-MAN (Version: 2.2.0.95)
OpenOffice.org 3.3 (Version: 3.3.9567)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.95)
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver (Version: 7.42.304.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6461)
Realtek PCIE Card Reader (Version: 6.1.7600.77)
REALTEK Wireless LAN Driver (Version: 1.00.11.0706)
Recovery Manager (Version: 2.0.0)
RoxioNow Player (Version: 1.9.5.103)
Slingo Supreme (Version: 2.2.0.97)
SpyHunter (Version: 4.9.12.4023)
Synaptics TouchPad Driver (Version: 15.3.11.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update Installer for WildTangent Games App
Vacation Quest - The Hawaiian Islands (Version: 2.2.0.97)
Virtual Villagers 5 - New Believers (Version: 2.2.0.97)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
WildTangent Games App (HP Games) (Version: 4.0.5.36)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 54%
Total physical RAM: 2666.91 MB
Available physical RAM: 1210.87 MB
Total Pagefile: 5332 MB
Available Pagefile: 3328.29 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.43 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:279.36 GB) (Free:232.78 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:14.56 GB) (Free:1.62 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.08 GB) FAT32

========================= Users: ========================================

User accounts for \\BEKI-HP

Administrator Beki Guest


**** End of log ****

#12 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 17 August 2012 - 05:27 PM

Farbar Service Scanner Version: 06-08-2012
Ran by Beki (administrator) on 17-08-2012 at 17:26:18
Running from "C:\Users\Beki\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TT4TX7HL"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#13 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 17 August 2012 - 05:34 PM

# AdwCleaner v1.801 - Logfile created 08/17/2012 at 17:28:07
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Beki - BEKI-HP
# Boot Mode : Normal
# Running from : C:\Users\Beki\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8TDMKP3T\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : vToolbarUpdater11.2.0

***** [Files / Folders] *****

Folder Deleted : C:\Users\Beki\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Beki\AppData\Local\Conduit
Folder Deleted : C:\Users\Beki\AppData\Local\Temp\avg@toolbar
Folder Deleted : C:\Users\Beki\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Beki\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Beki\AppData\LocalLow\FLV_Runner
Folder Deleted : C:\Users\Beki\AppData\LocalLow\PriceGong
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\FLV_Runner
Folder Deleted : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
File Deleted : C:\Users\Public\Desktop\eBay.lnk

***** [Registry] *****

[*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3201318
Key Deleted : HKCU\Software\APN DTX
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKLM\SOFTWARE\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\FLV_Runner
Key Deleted : HKLM\SOFTWARE\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FLV_Runner Toolbar
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BBD3C14-4C16-4989-8366-95BC9179779D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{07CEA379-7178-4758-9C80-969876E32395}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31A86988-2D2D-47E7-9F5E-A7A22CD0CE39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F1214323-BE46-4D3B-8120-5126A3367AD3}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3BBD3C14-4C16-4989-8366-95BC9179779D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07CEA379-7178-4758-9C80-969876E32395}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3BBD3C14-4C16-4989-8366-95BC9179779D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3BBD3C14-4C16-4989-8366-95BC9179779D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07CEA379-7178-4758-9C80-969876E32395}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3BBD3C14-4C16-4989-8366-95BC9179779D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{3BBD3C14-4C16-4989-8366-95BC9179779D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{3BBD3C14-4C16-4989-8366-95BC9179779D}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{3BBD3C14-4C16-4989-8366-95BC9179779D}]
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[x64] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v21.0.1180.79

File : C:\Users\Beki\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [8043 octets] - [17/08/2012 17:28:07]

########## EOF - C:\AdwCleaner[S1].txt - [8171 octets] ##########

#14 bekiw

bekiw
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:29 AM

Posted 17 August 2012 - 05:38 PM

17:35:39.0124 1580 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
17:35:39.0592 1580 ============================================================
17:35:39.0592 1580 Current date / time: 2012/08/17 17:35:39.0592
17:35:39.0592 1580 SystemInfo:
17:35:39.0592 1580
17:35:39.0592 1580 OS Version: 6.1.7601 ServicePack: 1.0
17:35:39.0592 1580 Product type: Workstation
17:35:39.0592 1580 ComputerName: BEKI-HP
17:35:39.0592 1580 UserName: Beki
17:35:39.0592 1580 Windows directory: C:\Windows
17:35:39.0592 1580 System windows directory: C:\Windows
17:35:39.0592 1580 Running under WOW64
17:35:39.0592 1580 Processor architecture: Intel x64
17:35:39.0592 1580 Number of processors: 2
17:35:39.0592 1580 Page size: 0x1000
17:35:39.0592 1580 Boot type: Normal boot
17:35:39.0592 1580 ============================================================
17:35:42.0775 1580 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:35:42.0790 1580 ============================================================
17:35:42.0790 1580 \Device\Harddisk0\DR0:
17:35:42.0790 1580 MBR partitions:
17:35:42.0790 1580 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:35:42.0790 1580 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x22EBA800
17:35:42.0790 1580 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x22F1E800, BlocksNum 0x1D20000
17:35:42.0790 1580 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x24C3E800, BlocksNum 0x7EFAB0
17:35:42.0790 1580 ============================================================
17:35:42.0822 1580 C: <-> \Device\Harddisk0\DR0\Partition2
17:35:42.0868 1580 D: <-> \Device\Harddisk0\DR0\Partition3
17:35:42.0900 1580 E: <-> \Device\Harddisk0\DR0\Partition4
17:35:42.0900 1580 ============================================================
17:35:42.0900 1580 Initialize success
17:35:42.0900 1580 ============================================================
17:36:07.0668 5044 ============================================================
17:36:07.0668 5044 Scan started
17:36:07.0668 5044 Mode: Manual; TDLFS;
17:36:07.0668 5044 ============================================================
17:36:09.0774 5044 ================ Scan services =============================
17:36:10.0632 5044 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:36:10.0632 5044 1394ohci - ok
17:36:10.0694 5044 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:36:10.0694 5044 ACPI - ok
17:36:10.0772 5044 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:36:10.0788 5044 AcpiPmi - ok
17:36:11.0006 5044 [ d19c4ee2ac7c47b8f5f84fff1a789d8a ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:36:11.0006 5044 AdobeARMservice - ok
17:36:11.0334 5044 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:36:11.0349 5044 AdobeFlashPlayerUpdateSvc - ok
17:36:11.0443 5044 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:36:11.0443 5044 adp94xx - ok
17:36:11.0521 5044 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:36:11.0536 5044 adpahci - ok
17:36:11.0599 5044 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:36:11.0614 5044 adpu320 - ok
17:36:11.0677 5044 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:36:11.0677 5044 AeLookupSvc - ok
17:36:11.0848 5044 [ d1e343bc00136ce03c4d403194d06a80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
17:36:11.0864 5044 AERTFilters - ok
17:36:11.0958 5044 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:36:11.0958 5044 AFD - ok
17:36:12.0036 5044 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:36:12.0036 5044 agp440 - ok
17:36:12.0098 5044 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
17:36:12.0114 5044 ALG - ok
17:36:12.0176 5044 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:36:12.0176 5044 aliide - ok
17:36:12.0238 5044 [ 814e7787e2a80f0c9b4c528f628153d1 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:36:12.0238 5044 AMD External Events Utility - ok
17:36:12.0301 5044 AMD FUEL Service - ok
17:36:12.0379 5044 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
17:36:12.0379 5044 amdide - ok
17:36:12.0410 5044 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
17:36:12.0410 5044 amdiox64 - ok
17:36:12.0472 5044 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:36:12.0472 5044 AmdK8 - ok
17:36:12.0956 5044 [ 8e1f914e0c802e4e28affc30bbfe8439 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:36:13.0206 5044 amdkmdag - ok
17:36:13.0315 5044 [ 2a3fca5a0bf17202c2debbb898672769 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:36:13.0330 5044 amdkmdap - ok
17:36:13.0377 5044 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:36:13.0377 5044 AmdPPM - ok
17:36:13.0440 5044 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:36:13.0440 5044 amdsata - ok
17:36:13.0533 5044 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:36:13.0549 5044 amdsbs - ok
17:36:13.0580 5044 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:36:13.0596 5044 amdxata - ok
17:36:13.0627 5044 [ f9d46b6b322708bd5afcc8767ebdc901 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
17:36:13.0627 5044 amd_sata - ok
17:36:13.0658 5044 [ 329cc9c7e20deebcd4cd10816193ef14 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
17:36:13.0674 5044 amd_xata - ok
17:36:13.0783 5044 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
17:36:13.0798 5044 AppID - ok
17:36:13.0876 5044 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:36:13.0892 5044 AppIDSvc - ok
17:36:13.0970 5044 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:36:13.0986 5044 Appinfo - ok
17:36:14.0157 5044 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:36:14.0157 5044 Apple Mobile Device - ok
17:36:14.0235 5044 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\drivers\arc.sys
17:36:14.0251 5044 arc - ok
17:36:14.0282 5044 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:36:14.0282 5044 arcsas - ok
17:36:14.0578 5044 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:36:14.0610 5044 aspnet_state - ok
17:36:14.0672 5044 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:36:14.0672 5044 AsyncMac - ok
17:36:14.0750 5044 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
17:36:14.0750 5044 atapi - ok
17:36:14.0859 5044 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:36:14.0859 5044 AudioEndpointBuilder - ok
17:36:14.0890 5044 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:36:14.0906 5044 AudioSrv - ok
17:36:15.0546 5044 [ d67719bcfde5798f5c30d14efed3bcaf ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
17:36:15.0670 5044 AVGIDSAgent - ok
17:36:15.0748 5044 [ 1b2e9fcdc26dc7c81d4131430e2dc936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
17:36:15.0764 5044 AVGIDSDriver - ok
17:36:15.0795 5044 [ 0f293406f64b48d5d2f0d3a1117f3a83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
17:36:15.0795 5044 AVGIDSFilter - ok
17:36:15.0842 5044 [ cffc3a4a638f462e0561cb368b9a7a3a ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
17:36:15.0842 5044 AVGIDSHA - ok
17:36:15.0936 5044 [ 59955b4c288dd2a8b9fd2cd5158355c5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
17:36:15.0936 5044 Avgldx64 - ok
17:36:16.0014 5044 [ a6aec362aae5e2dda7445e7690cb0f33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
17:36:16.0014 5044 Avgmfx64 - ok
17:36:16.0076 5044 [ 645c7f0a0e39758a0024a9b1748273c0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
17:36:16.0092 5044 Avgrkx64 - ok
17:36:16.0170 5044 [ 1bee674ad792b1c63bb0dac5fa724b23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
17:36:16.0185 5044 Avgtdia - ok
17:36:16.0232 5044 [ ea1145debcd508fd25bd1e95c4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
17:36:16.0248 5044 avgwd - ok
17:36:16.0310 5044 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:36:16.0310 5044 AxInstSV - ok
17:36:16.0404 5044 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:36:16.0419 5044 b06bdrv - ok
17:36:16.0513 5044 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:36:16.0528 5044 b57nd60a - ok
17:36:16.0622 5044 [ eb015cba77a30e97c28abaad98da19d8 ] bcm C:\Windows\system32\DRIVERS\drxvi314_64.sys
17:36:16.0638 5044 bcm - ok
17:36:16.0762 5044 [ 9e84a931dbee0292e38ed672f6293a99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
17:36:16.0794 5044 BCM43XX - ok
17:36:16.0887 5044 [ c0a0264cc38a17455d398452551231f8 ] bcmbusctr C:\Windows\system32\DRIVERS\BcmBusCtr_64.sys
17:36:16.0903 5044 bcmbusctr - ok
17:36:17.0012 5044 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:36:17.0028 5044 BDESVC - ok
17:36:17.0137 5044 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:36:17.0168 5044 Beep - ok
17:36:17.0262 5044 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
17:36:17.0262 5044 blbdrive - ok
17:36:17.0340 5044 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:36:17.0340 5044 bowser - ok
17:36:17.0402 5044 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:36:17.0402 5044 BrFiltLo - ok
17:36:17.0433 5044 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:36:17.0449 5044 BrFiltUp - ok
17:36:17.0496 5044 [ 8ef0d5c41ec907751b8429162b1239ed ] Browser C:\Windows\System32\browser.dll
17:36:17.0496 5044 Browser - ok
17:36:17.0527 5044 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:36:17.0542 5044 Brserid - ok
17:36:17.0574 5044 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:36:17.0589 5044 BrSerWdm - ok
17:36:17.0636 5044 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:36:17.0636 5044 BrUsbMdm - ok
17:36:17.0667 5044 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:36:17.0667 5044 BrUsbSer - ok
17:36:17.0745 5044 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:36:17.0745 5044 BTHMODEM - ok
17:36:17.0854 5044 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
17:36:17.0870 5044 bthserv - ok
17:36:17.0901 5044 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:36:17.0917 5044 cdfs - ok
17:36:17.0979 5044 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:36:17.0979 5044 cdrom - ok
17:36:18.0104 5044 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
17:36:18.0120 5044 CertPropSvc - ok
17:36:18.0229 5044 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\drivers\circlass.sys
17:36:18.0229 5044 circlass - ok
17:36:18.0291 5044 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
17:36:18.0291 5044 CLFS - ok
17:36:18.0447 5044 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:36:18.0447 5044 clr_optimization_v2.0.50727_32 - ok
17:36:18.0525 5044 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:36:18.0525 5044 clr_optimization_v2.0.50727_64 - ok
17:36:18.0666 5044 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:36:18.0853 5044 clr_optimization_v4.0.30319_32 - ok
17:36:18.0884 5044 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:36:18.0962 5044 clr_optimization_v4.0.30319_64 - ok
17:36:19.0024 5044 [ 50f92c943f18b070f166d019dfab3d9a ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
17:36:19.0024 5044 clwvd - ok
17:36:19.0087 5044 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
17:36:19.0087 5044 CmBatt - ok
17:36:19.0118 5044 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:36:19.0118 5044 cmdide - ok
17:36:19.0227 5044 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
17:36:19.0243 5044 CNG - ok
17:36:19.0305 5044 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
17:36:19.0305 5044 Compbatt - ok
17:36:19.0383 5044 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:36:19.0399 5044 CompositeBus - ok
17:36:19.0430 5044 COMSysApp - ok
17:36:19.0477 5044 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:36:19.0508 5044 crcdisk - ok
17:36:19.0586 5044 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:36:19.0586 5044 CryptSvc - ok
17:36:19.0726 5044 [ 72794d112cbaff3bc0c29bf7350d4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:36:19.0742 5044 cvhsvc - ok
17:36:19.0851 5044 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:36:19.0867 5044 DcomLaunch - ok
17:36:19.0945 5044 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
17:36:19.0945 5044 defragsvc - ok
17:36:20.0038 5044 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:36:20.0054 5044 DfsC - ok
17:36:20.0116 5044 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
17:36:20.0132 5044 Dhcp - ok
17:36:20.0179 5044 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
17:36:20.0194 5044 discache - ok
17:36:20.0319 5044 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\drivers\disk.sys
17:36:20.0319 5044 Disk - ok
17:36:20.0413 5044 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:36:20.0413 5044 Dnscache - ok
17:36:20.0460 5044 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:36:20.0491 5044 dot3svc - ok
17:36:20.0569 5044 [ b42ed0320c6e41102fde0005154849bb ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:36:20.0584 5044 Dot4 - ok
17:36:20.0678 5044 [ e9f5969233c5d89f3c35e3a66a52a361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:36:20.0709 5044 Dot4Print - ok
17:36:20.0740 5044 [ fd05a02b0370bc3000f402e543ca5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:36:20.0740 5044 dot4usb - ok
17:36:20.0803 5044 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
17:36:20.0818 5044 DPS - ok
17:36:20.0912 5044 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:36:20.0928 5044 drmkaud - ok
17:36:20.0974 5044 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:36:20.0990 5044 DXGKrnl - ok
17:36:21.0037 5044 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:36:21.0052 5044 EapHost - ok
17:36:21.0286 5044 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:36:21.0380 5044 ebdrv - ok
17:36:21.0442 5044 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
17:36:21.0442 5044 EFS - ok
17:36:21.0552 5044 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:36:21.0567 5044 ehRecvr - ok
17:36:21.0598 5044 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
17:36:21.0598 5044 ehSched - ok
17:36:21.0676 5044 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:36:21.0692 5044 elxstor - ok
17:36:21.0801 5044 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:36:21.0817 5044 ErrDev - ok
17:36:21.0910 5044 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
17:36:21.0926 5044 EventSystem - ok
17:36:21.0957 5044 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
17:36:21.0957 5044 exfat - ok
17:36:21.0988 5044 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:36:21.0988 5044 fastfat - ok
17:36:22.0066 5044 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
17:36:22.0098 5044 Fax - ok
17:36:22.0160 5044 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\drivers\fdc.sys
17:36:22.0176 5044 fdc - ok
17:36:22.0222 5044 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:36:22.0222 5044 fdPHost - ok
17:36:22.0254 5044 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:36:22.0269 5044 FDResPub - ok
17:36:22.0285 5044 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:36:22.0285 5044 FileInfo - ok
17:36:22.0316 5044 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:36:22.0316 5044 Filetrace - ok
17:36:22.0378 5044 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:36:22.0394 5044 flpydisk - ok
17:36:22.0425 5044 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:36:22.0441 5044 FltMgr - ok
17:36:22.0519 5044 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
17:36:22.0566 5044 FontCache - ok
17:36:22.0722 5044 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:36:22.0722 5044 FontCache3.0.0.0 - ok
17:36:22.0784 5044 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:36:22.0784 5044 FsDepends - ok
17:36:22.0831 5044 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:36:22.0831 5044 Fs_Rec - ok
17:36:22.0893 5044 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:36:22.0893 5044 fvevol - ok
17:36:22.0971 5044 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:36:22.0987 5044 gagp30kx - ok
17:36:23.0096 5044 [ c403c5db49a0f9aaf4f2128edc0106d8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
17:36:23.0112 5044 GamesAppService - ok
17:36:23.0190 5044 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:36:23.0190 5044 GEARAspiWDM - ok
17:36:23.0236 5044 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
17:36:23.0252 5044 gpsvc - ok
17:36:23.0377 5044 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:36:23.0377 5044 gupdate - ok
17:36:23.0408 5044 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:36:23.0424 5044 gupdatem - ok
17:36:23.0455 5044 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:36:23.0455 5044 gusvc - ok
17:36:23.0517 5044 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:36:23.0517 5044 hcw85cir - ok
17:36:23.0595 5044 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:36:23.0611 5044 HdAudAddService - ok
17:36:23.0689 5044 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:36:23.0689 5044 HDAudBus - ok
17:36:23.0751 5044 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:36:23.0767 5044 HidBatt - ok
17:36:23.0798 5044 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:36:23.0814 5044 HidBth - ok
17:36:23.0829 5044 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
17:36:23.0829 5044 HidIr - ok
17:36:23.0892 5044 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
17:36:23.0923 5044 hidserv - ok
17:36:24.0016 5044 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:36:24.0016 5044 HidUsb - ok
17:36:24.0048 5044 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:36:24.0063 5044 hkmsvc - ok
17:36:24.0094 5044 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:36:24.0126 5044 HomeGroupListener - ok
17:36:24.0172 5044 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:36:24.0172 5044 HomeGroupProvider - ok
17:36:24.0328 5044 [ 13bb1114451c63bfb41ba7daa4d70a29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:36:24.0344 5044 HP Support Assistant Service - ok
17:36:24.0516 5044 [ 6a181452d4e240b8ecc7614b9a19bde9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
17:36:24.0531 5044 HPClientSvc - ok
17:36:24.0609 5044 [ b19ff523b533a3f198b9239e1749c940 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:36:24.0609 5044 HPDrvMntSvc.exe - ok
17:36:24.0703 5044 [ 01091b900e15878b4434f9c726c4541d ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:36:24.0734 5044 hpqwmiex - ok
17:36:24.0812 5044 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:36:24.0812 5044 HpSAMD - ok
17:36:24.0906 5044 [ 2bec76bdcd1bc080210325e7b5094834 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
17:36:24.0906 5044 HPWMISVC - ok
17:36:24.0968 5044 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:36:24.0984 5044 HTTP - ok
17:36:25.0015 5044 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:36:25.0015 5044 hwpolicy - ok
17:36:25.0124 5044 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:36:25.0124 5044 i8042prt - ok
17:36:25.0171 5044 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:36:25.0186 5044 iaStorV - ok
17:36:25.0420 5044 [ e4693409d06785477a49fb34afae1b92 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
17:36:25.0452 5044 IconMan_R - ok
17:36:25.0514 5044 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:36:25.0530 5044 idsvc - ok
17:36:25.0576 5044 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:36:25.0576 5044 iirsp - ok
17:36:25.0670 5044 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
17:36:25.0686 5044 IKEEXT - ok
17:36:25.0873 5044 [ e395d888ef6d3777134a9e09ff7582c2 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:36:25.0904 5044 IntcAzAudAddService - ok
17:36:25.0951 5044 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
17:36:25.0951 5044 intelide - ok
17:36:26.0013 5044 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
17:36:26.0013 5044 intelppm - ok
17:36:26.0044 5044 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:36:26.0044 5044 IPBusEnum - ok
17:36:26.0060 5044 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:36:26.0091 5044 IpFilterDriver - ok
17:36:26.0107 5044 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:36:26.0107 5044 IPMIDRV - ok
17:36:26.0232 5044 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:36:26.0247 5044 IPNAT - ok
17:36:26.0341 5044 [ 50d6ccc6ff5561f9f56946b3e6164fb8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:36:26.0372 5044 iPod Service - ok
17:36:26.0419 5044 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:36:26.0419 5044 IRENUM - ok
17:36:26.0497 5044 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:36:26.0497 5044 isapnp - ok
17:36:26.0528 5044 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:36:26.0544 5044 iScsiPrt - ok
17:36:26.0622 5044 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:36:26.0622 5044 kbdclass - ok
17:36:26.0668 5044 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:36:26.0684 5044 kbdhid - ok
17:36:26.0731 5044 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
17:36:26.0731 5044 KeyIso - ok
17:36:26.0778 5044 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:36:26.0778 5044 KSecDD - ok
17:36:26.0840 5044 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:36:26.0856 5044 KSecPkg - ok
17:36:26.0949 5044 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:36:26.0965 5044 ksthunk - ok
17:36:27.0058 5044 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
17:36:27.0074 5044 KtmRm - ok
17:36:27.0152 5044 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:36:27.0168 5044 LanmanServer - ok
17:36:27.0230 5044 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:36:27.0230 5044 LanmanWorkstation - ok
17:36:27.0355 5044 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:36:27.0355 5044 lltdio - ok
17:36:27.0433 5044 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:36:27.0448 5044 lltdsvc - ok
17:36:27.0464 5044 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:36:27.0480 5044 lmhosts - ok
17:36:27.0542 5044 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:36:27.0542 5044 LSI_FC - ok
17:36:27.0589 5044 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:36:27.0604 5044 LSI_SAS - ok
17:36:27.0651 5044 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:36:27.0667 5044 LSI_SAS2 - ok
17:36:27.0714 5044 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:36:27.0714 5044 LSI_SCSI - ok
17:36:27.0792 5044 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
17:36:27.0792 5044 luafv - ok
17:36:27.0870 5044 [ dc8490812a3b72811ae534f423b4c206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:36:27.0885 5044 MBAMProtector - ok
17:36:27.0979 5044 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:36:28.0010 5044 MBAMService - ok
17:36:28.0119 5044 [ 485405de203e88b3fe4294a2ea48d7ee ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.271\McCHSvc.exe
17:36:28.0119 5044 McComponentHostService - ok
17:36:28.0197 5044 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:36:28.0197 5044 Mcx2Svc - ok
17:36:28.0291 5044 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\drivers\megasas.sys
17:36:28.0322 5044 megasas - ok
17:36:28.0369 5044 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:36:28.0369 5044 MegaSR - ok
17:36:28.0431 5044 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
17:36:28.0431 5044 MMCSS - ok
17:36:28.0494 5044 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:36:28.0509 5044 Modem - ok
17:36:28.0556 5044 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:36:28.0556 5044 monitor - ok
17:36:28.0634 5044 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:36:28.0634 5044 mouclass - ok
17:36:28.0681 5044 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:36:28.0696 5044 mouhid - ok
17:36:28.0743 5044 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:36:28.0743 5044 mountmgr - ok
17:36:28.0774 5044 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:36:28.0806 5044 mpio - ok
17:36:28.0837 5044 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:36:28.0837 5044 mpsdrv - ok
17:36:28.0852 5044 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:36:28.0868 5044 MRxDAV - ok
17:36:28.0899 5044 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:36:28.0915 5044 mrxsmb - ok
17:36:28.0946 5044 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:36:28.0946 5044 mrxsmb10 - ok
17:36:28.0993 5044 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:36:28.0993 5044 mrxsmb20 - ok
17:36:29.0086 5044 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:36:29.0086 5044 msahci - ok
17:36:29.0133 5044 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:36:29.0149 5044 msdsm - ok
17:36:29.0180 5044 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
17:36:29.0180 5044 MSDTC - ok
17:36:29.0227 5044 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:36:29.0227 5044 Msfs - ok
17:36:29.0242 5044 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:36:29.0242 5044 mshidkmdf - ok
17:36:29.0274 5044 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:36:29.0274 5044 msisadrv - ok
17:36:29.0336 5044 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:36:29.0352 5044 MSiSCSI - ok
17:36:29.0367 5044 msiserver - ok
17:36:29.0430 5044 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:36:29.0430 5044 MSKSSRV - ok
17:36:29.0492 5044 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:36:29.0508 5044 MSPCLOCK - ok
17:36:29.0539 5044 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:36:29.0539 5044 MSPQM - ok
17:36:29.0570 5044 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:36:29.0586 5044 MsRPC - ok
17:36:29.0617 5044 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:36:29.0632 5044 mssmbios - ok
17:36:29.0664 5044 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:36:29.0695 5044 MSTEE - ok
17:36:29.0726 5044 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:36:29.0726 5044 MTConfig - ok
17:36:29.0788 5044 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:36:29.0804 5044 Mup - ok
17:36:29.0835 5044 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
17:36:29.0851 5044 napagent - ok
17:36:29.0913 5044 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:36:29.0929 5044 NativeWifiP - ok
17:36:30.0007 5044 [ c38b8ae57f78915905064a9a24dc1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:36:30.0022 5044 NDIS - ok
17:36:30.0085 5044 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:36:30.0100 5044 NdisCap - ok
17:36:30.0163 5044 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:36:30.0178 5044 NdisTapi - ok
17:36:30.0210 5044 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:36:30.0225 5044 Ndisuio - ok
17:36:30.0256 5044 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:36:30.0272 5044 NdisWan - ok
17:36:30.0288 5044 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:36:30.0288 5044 NDProxy - ok
17:36:30.0350 5044 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:36:30.0350 5044 NetBIOS - ok
17:36:30.0381 5044 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:36:30.0397 5044 NetBT - ok
17:36:30.0412 5044 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
17:36:30.0428 5044 Netlogon - ok
17:36:30.0490 5044 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
17:36:30.0506 5044 Netman - ok
17:36:30.0584 5044 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:36:30.0631 5044 NetMsmqActivator - ok
17:36:30.0631 5044 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:36:30.0646 5044 NetPipeActivator - ok
17:36:30.0678 5044 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
17:36:30.0709 5044 netprofm - ok
17:36:30.0771 5044 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:36:30.0771 5044 NetTcpActivator - ok
17:36:30.0787 5044 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:36:30.0802 5044 NetTcpPortSharing - ok
17:36:30.0849 5044 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:36:30.0865 5044 nfrd960 - ok
17:36:30.0912 5044 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:36:30.0927 5044 NlaSvc - ok
17:36:30.0958 5044 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:36:30.0958 5044 Npfs - ok
17:36:30.0990 5044 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:36:30.0990 5044 nsi - ok
17:36:31.0021 5044 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:36:31.0036 5044 nsiproxy - ok
17:36:31.0192 5044 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:36:31.0224 5044 Ntfs - ok
17:36:31.0239 5044 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
17:36:31.0239 5044 Null - ok
17:36:31.0302 5044 [ a85b4f2ef3a7304a5399ef0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
17:36:31.0317 5044 NVENETFD - ok
17:36:31.0380 5044 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:36:31.0395 5044 nvraid - ok
17:36:31.0442 5044 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:36:31.0458 5044 nvstor - ok
17:36:31.0473 5044 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:36:31.0490 5044 nv_agp - ok
17:36:31.0568 5044 [ 78c1a05c2e460adf3661bc60d115cc8d ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
17:36:31.0584 5044 NWADI - ok
17:36:31.0615 5044 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:36:31.0630 5044 ohci1394 - ok
17:36:31.0693 5044 [ 9d10f99a6712e28f8acd5641e3a7ea6b ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:36:31.0724 5044 ose - ok
17:36:32.0067 5044 [ 61bffb5f57ad12f83ab64b7181829b34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:36:32.0239 5044 osppsvc - ok
17:36:32.0286 5044 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:36:32.0301 5044 p2pimsvc - ok
17:36:32.0348 5044 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:36:32.0379 5044 p2psvc - ok
17:36:32.0410 5044 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\drivers\parport.sys
17:36:32.0410 5044 Parport - ok
17:36:32.0473 5044 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:36:32.0473 5044 partmgr - ok
17:36:32.0536 5044 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:36:32.0552 5044 PcaSvc - ok
17:36:32.0567 5044 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
17:36:32.0567 5044 pci - ok
17:36:32.0614 5044 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
17:36:32.0614 5044 pciide - ok
17:36:32.0661 5044 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:36:32.0677 5044 pcmcia - ok
17:36:32.0708 5044 PCTINDIS5X64 - ok
17:36:32.0755 5044 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:36:32.0755 5044 pcw - ok
17:36:32.0801 5044 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:36:32.0817 5044 PEAUTH - ok
17:36:33.0067 5044 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:36:33.0082 5044 PerfHost - ok
17:36:33.0223 5044 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
17:36:33.0269 5044 pla - ok
17:36:33.0379 5044 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:36:33.0379 5044 PlugPlay - ok
17:36:33.0425 5044 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:36:33.0425 5044 PNRPAutoReg - ok
17:36:33.0488 5044 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:36:33.0488 5044 PNRPsvc - ok
17:36:33.0551 5044 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:36:33.0567 5044 PolicyAgent - ok
17:36:33.0645 5044 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
17:36:33.0645 5044 Power - ok
17:36:33.0692 5044 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:36:33.0692 5044 PptpMiniport - ok
17:36:33.0785 5044 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\drivers\processr.sys
17:36:33.0816 5044 Processor - ok
17:36:33.0863 5044 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:36:33.0879 5044 ProfSvc - ok
17:36:33.0910 5044 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:36:33.0926 5044 ProtectedStorage - ok
17:36:34.0004 5044 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:36:34.0019 5044 Psched - ok
17:36:34.0175 5044 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:36:34.0206 5044 ql2300 - ok
17:36:34.0269 5044 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:36:34.0284 5044 ql40xx - ok
17:36:34.0331 5044 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
17:36:34.0347 5044 QWAVE - ok
17:36:34.0378 5044 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:36:34.0394 5044 QWAVEdrv - ok
17:36:34.0409 5044 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:36:34.0425 5044 RasAcd - ok
17:36:34.0472 5044 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:36:34.0472 5044 RasAgileVpn - ok
17:36:34.0518 5044 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
17:36:34.0535 5044 RasAuto - ok
17:36:34.0566 5044 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:36:34.0566 5044 Rasl2tp - ok
17:36:34.0629 5044 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
17:36:34.0644 5044 RasMan - ok
17:36:34.0660 5044 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:36:34.0675 5044 RasPppoe - ok
17:36:34.0722 5044 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:36:34.0738 5044 RasSstp - ok
17:36:34.0769 5044 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:36:34.0785 5044 rdbss - ok
17:36:34.0816 5044 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
17:36:34.0831 5044 rdpbus - ok
17:36:34.0847 5044 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:36:34.0863 5044 RDPCDD - ok
17:36:34.0894 5044 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:36:34.0909 5044 RDPENCDD - ok
17:36:34.0956 5044 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:36:34.0972 5044 RDPREFMP - ok
17:36:35.0019 5044 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:36:35.0019 5044 RDPWD - ok
17:36:35.0050 5044 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:36:35.0050 5044 rdyboost - ok
17:36:35.0128 5044 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:36:35.0143 5044 RemoteAccess - ok
17:36:35.0175 5044 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:36:35.0190 5044 RemoteRegistry - ok
17:36:35.0253 5044 [ 085d18c71ab2611a3d61528132b6501e ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
17:36:35.0268 5044 RoxioNow Service - ok
17:36:35.0299 5044 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:36:35.0299 5044 RpcEptMapper - ok
17:36:35.0346 5044 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
17:36:35.0362 5044 RpcLocator - ok
17:36:35.0393 5044 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
17:36:35.0409 5044 RpcSs - ok
17:36:35.0471 5044 [ 546d7f426776090b90ef5f195b6ae662 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
17:36:35.0487 5044 RSPCIESTOR - ok
17:36:35.0549 5044 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:36:35.0549 5044 rspndr - ok
17:36:35.0611 5044 [ 3372196f61af48503656ef6aa3e92d1b ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:36:35.0627 5044 RTL8167 - ok
17:36:35.0736 5044 [ 508d997a5e9f400fade6c85251bf13df ] RTL8192Ce C:\Windows\system32\DRIVERS\rtl8192Ce.sys
17:36:35.0752 5044 RTL8192Ce - ok
17:36:35.0814 5044 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
17:36:35.0814 5044 SamSs - ok
17:36:35.0892 5044 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:36:35.0892 5044 sbp2port - ok
17:36:35.0955 5044 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:36:35.0970 5044 SCardSvr - ok
17:36:35.0986 5044 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:36:36.0001 5044 scfilter - ok
17:36:36.0048 5044 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
17:36:36.0064 5044 Schedule - ok
17:36:36.0095 5044 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
17:36:36.0095 5044 SCPolicySvc - ok
17:36:36.0189 5044 [ 111e0ebc0ad79cb0fa014b907b231cf0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:36:36.0189 5044 sdbus - ok
17:36:36.0235 5044 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:36:36.0235 5044 SDRSVC - ok
17:36:36.0298 5044 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:36:36.0313 5044 secdrv - ok
17:36:36.0329 5044 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
17:36:36.0345 5044 seclogon - ok
17:36:36.0376 5044 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
17:36:36.0376 5044 SENS - ok
17:36:36.0423 5044 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:36:36.0438 5044 SensrSvc - ok
17:36:36.0516 5044 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\drivers\serenum.sys
17:36:36.0516 5044 Serenum - ok
17:36:36.0547 5044 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\drivers\serial.sys
17:36:36.0563 5044 Serial - ok
17:36:36.0719 5044 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:36:36.0735 5044 sermouse - ok
17:36:36.0813 5044 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:36:36.0828 5044 SessionEnv - ok
17:36:36.0875 5044 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:36:36.0891 5044 sffdisk - ok
17:36:36.0906 5044 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:36:36.0906 5044 sffp_mmc - ok
17:36:37.0000 5044 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:36:37.0015 5044 sffp_sd - ok
17:36:37.0109 5044 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:36:37.0109 5044 sfloppy - ok
17:36:37.0218 5044 [ c6cc9297bd53e5229653303e556aa539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
17:36:37.0234 5044 Sftfs - ok
17:36:37.0359 5044 [ 13693b6354dd6e72dc5131da7d764b90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:36:37.0359 5044 sftlist - ok
17:36:37.0421 5044 [ 390aa7bc52cee43f6790cdea1e776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:36:37.0421 5044 Sftplay - ok
17:36:37.0437 5044 [ 617e29a0b0a2807466560d4c4e338d3e ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:36:37.0452 5044 Sftredir - ok
17:36:37.0468 5044 [ 8f571f016fa1976f445147e9e6c8ae9b ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
17:36:37.0468 5044 Sftvol - ok
17:36:37.0499 5044 [ c3cddd18f43d44ab713cf8c4916f7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:36:37.0499 5044 sftvsa - ok
17:36:37.0561 5044 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:36:37.0561 5044 ShellHWDetection - ok
17:36:37.0624 5044 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:36:37.0624 5044 SiSRaid2 - ok
17:36:37.0671 5044 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:36:37.0686 5044 SiSRaid4 - ok
17:36:37.0717 5044 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:36:37.0717 5044 Smb - ok
17:36:37.0811 5044 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:36:37.0827 5044 SNMPTRAP - ok
17:36:37.0889 5044 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:36:37.0889 5044 spldr - ok
17:36:37.0936 5044 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\Windows\System32\spoolsv.exe
17:36:37.0951 5044 Spooler - ok
17:36:38.0092 5044 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
17:36:38.0201 5044 sppsvc - ok
17:36:38.0263 5044 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:36:38.0295 5044 sppuinotify - ok
17:36:38.0482 5044 [ cef26d36cf0c8a2ae6aac27767070308 ] SpyHunter 4 Service C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
17:36:38.0497 5044 SpyHunter 4 Service - ok
17:36:38.0544 5044 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
17:36:38.0544 5044 srv - ok
17:36:38.0575 5044 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:36:38.0591 5044 srv2 - ok
17:36:38.0669 5044 [ 0c4540311e11664b245a263e1154cef8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:36:38.0669 5044 SrvHsfHDA - ok
17:36:38.0731 5044 [ 02071d207a9858fbe3a48cbfd59c4a04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:36:38.0763 5044 SrvHsfV92 - ok
17:36:38.0825 5044 [ 18e40c245dbfaf36fd0134a7ef2df396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:36:38.0856 5044 SrvHsfWinac - ok
17:36:38.0919 5044 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:36:38.0919 5044 srvnet - ok
17:36:39.0012 5044 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:36:39.0028 5044 SSDPSRV - ok
17:36:39.0059 5044 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:36:39.0090 5044 SstpSvc - ok
17:36:39.0106 5044 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:36:39.0106 5044 stexstor - ok
17:36:39.0184 5044 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
17:36:39.0199 5044 stisvc - ok
17:36:39.0231 5044 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:36:39.0231 5044 swenum - ok
17:36:39.0309 5044 [ a8e9e76cc2f342f205273702969c84c9 ] swmx00 C:\Windows\system32\DRIVERS\swmx00.sys
17:36:39.0324 5044 swmx00 - ok
17:36:39.0387 5044 [ b053610bb36d9bd1bff7102727427600 ] SWNC5E00 C:\Windows\system32\DRIVERS\SWNC5E00.sys
17:36:39.0402 5044 SWNC5E00 - ok
17:36:39.0449 5044 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
17:36:39.0480 5044 swprv - ok
17:36:39.0605 5044 [ c447977ed2a4ae9346fe3a0579a34d7c ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:36:39.0621 5044 SynTP - ok
17:36:39.0745 5044 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
17:36:39.0761 5044 SysMain - ok
17:36:39.0823 5044 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:36:39.0839 5044 TabletInputService - ok
17:36:39.0870 5044 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:36:39.0917 5044 TapiSrv - ok
17:36:39.0933 5044 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
17:36:39.0964 5044 TBS - ok
17:36:40.0104 5044 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:36:40.0120 5044 Tcpip - ok
17:36:40.0229 5044 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:36:40.0245 5044 TCPIP6 - ok
17:36:40.0291 5044 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:36:40.0307 5044 tcpipreg - ok
17:36:40.0338 5044 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:36:40.0338 5044 TDPIPE - ok
17:36:40.0369 5044 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:36:40.0369 5044 TDTCP - ok
17:36:40.0401 5044 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:36:40.0401 5044 tdx - ok
17:36:40.0447 5044 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:36:40.0447 5044 TermDD - ok
17:36:40.0479 5044 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
17:36:40.0494 5044 TermService - ok
17:36:40.0510 5044 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
17:36:40.0525 5044 Themes - ok
17:36:40.0557 5044 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
17:36:40.0557 5044 THREADORDER - ok
17:36:40.0588 5044 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
17:36:40.0588 5044 TrkWks - ok
17:36:40.0697 5044 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:36:40.0713 5044 TrustedInstaller - ok
17:36:40.0775 5044 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:36:40.0775 5044 tssecsrv - ok
17:36:40.0853 5044 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:36:40.0853 5044 TsUsbFlt - ok
17:36:40.0884 5044 [ 9cc2ccae8a84820eaecb886d477cbcb8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:36:40.0884 5044 TsUsbGD - ok
17:36:40.0931 5044 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:36:40.0931 5044 tunnel - ok
17:36:40.0978 5044 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:36:40.0993 5044 uagp35 - ok
17:36:41.0025 5044 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:36:41.0040 5044 udfs - ok
17:36:41.0087 5044 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:36:41.0103 5044 UI0Detect - ok
17:36:41.0149 5044 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:36:41.0149 5044 uliagpkx - ok
17:36:41.0243 5044 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:36:41.0243 5044 umbus - ok
17:36:41.0274 5044 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\drivers\umpass.sys
17:36:41.0274 5044 UmPass - ok
17:36:41.0337 5044 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
17:36:41.0337 5044 upnphost - ok
17:36:41.0399 5044 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:36:41.0399 5044 USBAAPL64 - ok
17:36:41.0446 5044 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:36:41.0446 5044 usbccgp - ok
17:36:41.0493 5044 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:36:41.0493 5044 usbcir - ok
17:36:41.0539 5044 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:36:41.0555 5044 usbehci - ok
17:36:41.0586 5044 [ 76e2ffad301490ba27b947c6507752fb ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
17:36:41.0586 5044 usbfilter - ok
17:36:41.0649 5044 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:36:41.0680 5044 usbhub - ok
17:36:41.0742 5044 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:36:41.0758 5044 usbohci - ok
17:36:41.0805 5044 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:36:41.0805 5044 usbprint - ok
17:36:41.0867 5044 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:36:41.0898 5044 USBSTOR - ok
17:36:41.0929 5044 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:36:41.0929 5044 usbuhci - ok
17:36:41.0992 5044 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:36:41.0992 5044 usbvideo - ok
17:36:42.0039 5044 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
17:36:42.0039 5044 UxSms - ok
17:36:42.0070 5044 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
17:36:42.0070 5044 VaultSvc - ok
17:36:42.0101 5044 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:36:42.0117 5044 vdrvroot - ok
17:36:42.0148 5044 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
17:36:42.0163 5044 vds - ok
17:36:42.0226 5044 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:36:42.0226 5044 vga - ok
17:36:42.0257 5044 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
17:36:42.0257 5044 VgaSave - ok
17:36:42.0288 5044 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:36:42.0288 5044 vhdmp - ok
17:36:42.0351 5044 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:36:42.0366 5044 viaide - ok
17:36:42.0413 5044 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:36:42.0429 5044 volmgr - ok
17:36:42.0475 5044 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:36:42.0475 5044 volmgrx - ok
17:36:42.0507 5044 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:36:42.0507 5044 volsnap - ok
17:36:42.0585 5044 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:36:42.0585 5044 vsmraid - ok
17:36:42.0678 5044 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
17:36:42.0741 5044 VSS - ok
17:36:42.0772 5044 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:36:42.0772 5044 vwifibus - ok
17:36:42.0819 5044 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:36:42.0819 5044 vwififlt - ok
17:36:42.0912 5044 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:36:42.0912 5044 vwifimp - ok
17:36:42.0943 5044 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
17:36:42.0975 5044 W32Time - ok
17:36:43.0021 5044 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:36:43.0021 5044 WacomPen - ok
17:36:43.0115 5044 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:36:43.0115 5044 WANARP - ok
17:36:43.0146 5044 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:36:43.0146 5044 Wanarpv6 - ok
17:36:43.0287 5044 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:36:43.0318 5044 WatAdminSvc - ok
17:36:43.0427 5044 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
17:36:43.0474 5044 wbengine - ok
17:36:43.0521 5044 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:36:43.0521 5044 WbioSrvc - ok
17:36:43.0552 5044 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:36:43.0567 5044 wcncsvc - ok
17:36:43.0599 5044 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:36:43.0599 5044 WcsPlugInService - ok
17:36:43.0645 5044 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\drivers\wd.sys
17:36:43.0661 5044 Wd - ok
17:36:43.0708 5044 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:36:43.0723 5044 Wdf01000 - ok
17:36:43.0770 5044 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:36:43.0786 5044 WdiServiceHost - ok
17:36:43.0801 5044 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:36:43.0801 5044 WdiSystemHost - ok
17:36:43.0864 5044 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:36:43.0895 5044 WebClient - ok
17:36:43.0926 5044 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:36:43.0926 5044 Wecsvc - ok
17:36:43.0957 5044 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:36:43.0973 5044 wercplsupport - ok
17:36:44.0035 5044 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:36:44.0051 5044 WerSvc - ok
17:36:44.0113 5044 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:36:44.0129 5044 WfpLwf - ok
17:36:44.0145 5044 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:36:44.0145 5044 WIMMount - ok
17:36:44.0191 5044 WinHttpAutoProxySvc - ok
17:36:44.0285 5044 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:36:44.0301 5044 Winmgmt - ok
17:36:44.0394 5044 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
17:36:44.0457 5044 WinRM - ok
17:36:44.0550 5044 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:36:44.0566 5044 WinUsb - ok
17:36:44.0628 5044 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
17:36:44.0644 5044 Wlansvc - ok
17:36:44.0706 5044 [ 06c8fa1cf39de6a735b54d906ba791c6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:36:44.0706 5044 wlcrasvc - ok
17:36:44.0815 5044 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:36:44.0847 5044 wlidsvc - ok
17:36:44.0893 5044 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:36:44.0893 5044 WmiAcpi - ok
17:36:44.0971 5044 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:36:44.0987 5044 wmiApSrv - ok
17:36:45.0065 5044 WMPNetworkSvc - ok
17:36:45.0127 5044 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:36:45.0143 5044 WPCSvc - ok
17:36:45.0174 5044 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:36:45.0190 5044 WPDBusEnum - ok
17:36:45.0221 5044 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:36:45.0221 5044 ws2ifsl - ok
17:36:45.0237 5044 WSearch - ok
17:36:45.0283 5044 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:36:45.0283 5044 WudfPf - ok
17:36:45.0330 5044 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:36:45.0330 5044 WUDFRd - ok
17:36:45.0377 5044 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:36:45.0393 5044 wudfsvc - ok
17:36:45.0455 5044 [ ce8cf9de9cbfdaa318bd04d8be3fcada ] WwanSvc C:\Windows\System32\wwansvc.dll
17:36:45.0471 5044 WwanSvc - ok
17:36:45.0595 5044 ================ Scan global ===============================
17:36:45.0642 5044 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
17:36:45.0705 5044 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
17:36:45.0720 5044 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
17:36:45.0767 5044 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
17:36:45.0798 5044 (24acb7e5be595468e3b9aa488b9b4fcb) C:\Windows\system32\services.exe
17:36:45.0798 5044 [Global] - ok
17:36:45.0798 5044 ================ Scan MBR ==================================
17:36:45.0814 5044 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:36:47.0483 5044 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:36:47.0483 5044 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:36:47.0483 5044 ================ Scan VBR ==================================
17:36:47.0514 5044 Boot (0x1200) (92b12c65148456aed864bb75d6608529) \Device\Harddisk0\DR0\Partition1
17:36:47.0514 5044 \Device\Harddisk0\DR0\Partition1 - ok
17:36:47.0545 5044 Boot (0x1200) (3c7c11a7f13a8e18ca414bb298be28b1) \Device\Harddisk0\DR0\Partition2
17:36:47.0545 5044 \Device\Harddisk0\DR0\Partition2 - ok
17:36:47.0577 5044 Boot (0x1200) (cc1442ac1d842a238b02b1290063fb2d) \Device\Harddisk0\DR0\Partition3
17:36:47.0592 5044 \Device\Harddisk0\DR0\Partition3 - ok
17:36:47.0639 5044 Boot (0x1200) (599da6ad964222c097c722493594e6c9) \Device\Harddisk0\DR0\Partition4
17:36:47.0686 5044 \Device\Harddisk0\DR0\Partition4 - ok
17:36:47.0686 5044 ============================================================
17:36:47.0686 5044 Scan finished
17:36:47.0686 5044 ============================================================
17:36:47.0733 4692 Detected object count: 1
17:36:47.0733 4692 Actual detected object count: 1
17:37:09.0462 4692 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
17:37:09.0462 4692 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:29 AM

Posted 18 August 2012 - 05:52 AM

Click on startmenu and type

cmd

Right click-run as administrator and run these commands,press ENTER for each command

cd C:\Windows\assembly\GAC_32
takeown /a /f Desktop.ini
Echo y | icacls desktop.ini /q /grant everyone:f
attrib -s -h -r desktop.ini
del /a /f desktop.ini


Let me know if you receive access denied errors

Edited by narenxp, 18 August 2012 - 05:52 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users