Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Live security platinum infection


  • Please log in to reply
62 replies to this topic

#1 Chip12

Chip12

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 15 August 2012 - 07:22 AM

Hello



Really need some help! My PC has been infected with the live security platinum virus, thanks to a fake flash update. I followed the instructions to remove this using the Malwarebytes software in safe mode which removed some files. However when I restart my computer mcafee constantly reports that it has found a trojan, removed it and then reports it again. In the mcafee log it says it is the zeroaccess Trojan.

I am unable to activate mcafee, when I try to turn on the firewall it immediately turns off. Also, I cannot activate my windows firewall as it gives an error.

Any help would be gratefully received!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:13 PM

Posted 15 August 2012 - 07:23 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 15 August 2012 - 07:28 AM

Thank you for the quick reply, I will do that now and post the results.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:13 PM

Posted 15 August 2012 - 07:28 AM

:thumbup2:

#5 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 15 August 2012 - 12:59 PM

Hello


The scans have taken a long time, the first 2 are finished and I am just waiting for the ESET to complete.

I have a question - if the programs find threats should I go ahead and remove them?

#6 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 15 August 2012 - 02:17 PM

TDSS results. It found Virus.Win64.ZAccess.b, File C:\Windows\system32\services.exe. I haven't deleted the file yet.

14:13:40.0380 0312 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
14:13:40.0442 0312 ============================================================
14:13:40.0442 0312 Current date / time: 2012/08/15 14:13:40.0442
14:13:40.0442 0312 SystemInfo:
14:13:40.0442 0312
14:13:40.0442 0312 OS Version: 6.1.7601 ServicePack: 1.0
14:13:40.0442 0312 Product type: Workstation
14:13:40.0442 0312 ComputerName: DALE-PC
14:13:40.0442 0312 UserName: Dale
14:13:40.0442 0312 Windows directory: C:\Windows
14:13:40.0442 0312 System windows directory: C:\Windows
14:13:40.0442 0312 Running under WOW64
14:13:40.0442 0312 Processor architecture: Intel x64
14:13:40.0442 0312 Number of processors: 2
14:13:40.0442 0312 Page size: 0x1000
14:13:40.0442 0312 Boot type: Normal boot
14:13:40.0442 0312 ============================================================
14:13:48.0570 0312 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:13:48.0616 0312 Drive \Device\Harddisk5\DR5 - Size: 0x78600000 (1.88 Gb), SectorSize: 0x200, Cylinders: 0xF5, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:13:48.0616 0312 Drive \Device\Harddisk6\DR6 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:13:49.0069 0312 Drive \Device\Harddisk7\DR7 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:13:49.0084 0312 ============================================================
14:13:49.0084 0312 \Device\Harddisk0\DR0:
14:13:49.0116 0312 MBR partitions:
14:13:49.0116 0312 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23800, BlocksNum 0x123F000
14:13:49.0116 0312 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1262800, BlocksNum 0x495F5000
14:13:49.0116 0312 \Device\Harddisk5\DR5:
14:13:49.0116 0312 MBR partitions:
14:13:49.0116 0312 \Device\Harddisk5\DR5\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x3C1000
14:13:49.0116 0312 \Device\Harddisk6\DR6:
14:13:49.0116 0312 MBR partitions:
14:13:49.0116 0312 \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
14:13:49.0116 0312 \Device\Harddisk7\DR7:
14:13:49.0116 0312 MBR partitions:
14:13:49.0116 0312 \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
14:13:49.0116 0312 ============================================================
14:13:49.0225 0312 C: <-> \Device\Harddisk0\DR0\Partition2
14:13:49.0240 0312 J: <-> \Device\Harddisk6\DR6\Partition1
14:13:49.0272 0312 L: <-> \Device\Harddisk7\DR7\Partition1
14:13:49.0272 0312 ============================================================
14:13:49.0272 0312 Initialize success
14:13:49.0272 0312 ============================================================
14:14:17.0524 3316 ============================================================
14:14:17.0524 3316 Scan started
14:14:17.0524 3316 Mode: Manual; TDLFS;
14:14:17.0524 3316 ============================================================
14:14:20.0348 3316 ================ Scan services =============================
14:14:20.0582 3316 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:14:20.0613 3316 1394ohci - ok
14:14:20.0722 3316 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:14:20.0738 3316 ACPI - ok
14:14:20.0831 3316 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:14:20.0847 3316 AcpiPmi - ok
14:14:20.0940 3316 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:14:20.0956 3316 adp94xx - ok
14:14:21.0065 3316 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:14:21.0081 3316 adpahci - ok
14:14:21.0112 3316 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:14:21.0112 3316 adpu320 - ok
14:14:21.0159 3316 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:14:21.0159 3316 AeLookupSvc - ok
14:14:21.0221 3316 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:14:21.0237 3316 AFD - ok
14:14:21.0284 3316 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:14:21.0330 3316 agp440 - ok
14:14:21.0362 3316 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
14:14:21.0377 3316 ALG - ok
14:14:21.0408 3316 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:14:21.0408 3316 aliide - ok
14:14:21.0502 3316 [ 20c8a3e435a47f0408a1ea674afa6194 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:14:21.0502 3316 AMD External Events Utility - ok
14:14:21.0767 3316 AMD FUEL Service - ok
14:14:21.0861 3316 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
14:14:21.0892 3316 amdide - ok
14:14:21.0970 3316 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
14:14:21.0970 3316 amdiox64 - ok
14:14:22.0110 3316 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:14:22.0142 3316 AmdK8 - ok
14:14:24.0778 3316 [ 0b45c18b0f3ee996d25baa4e74884b83 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
14:14:24.0996 3316 amdkmdag - ok
14:14:25.0074 3316 [ 0e57258e5cc4cc7a9a9a877afdf0cec6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
14:14:25.0074 3316 amdkmdap - ok
14:14:25.0230 3316 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:14:25.0246 3316 AmdPPM - ok
14:14:25.0386 3316 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:14:25.0433 3316 amdsata - ok
14:14:25.0496 3316 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:14:25.0496 3316 amdsbs - ok
14:14:25.0527 3316 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:14:25.0527 3316 amdxata - ok
14:14:25.0620 3316 [ 5b25d1a753cc3a3edb909bb759ac1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
14:14:25.0620 3316 AODDriver4.1 - ok
14:14:25.0714 3316 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
14:14:25.0745 3316 AppID - ok
14:14:25.0808 3316 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:14:25.0839 3316 AppIDSvc - ok
14:14:26.0010 3316 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:14:26.0026 3316 Appinfo - ok
14:14:26.0229 3316 [ f401929ee0cc92bfe7f15161ca535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:14:26.0229 3316 Apple Mobile Device - ok
14:14:26.0260 3316 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
14:14:26.0260 3316 arc - ok
14:14:26.0291 3316 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:14:26.0291 3316 arcsas - ok
14:14:26.0322 3316 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:14:26.0322 3316 AsyncMac - ok
14:14:26.0385 3316 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
14:14:26.0385 3316 atapi - ok
14:14:26.0447 3316 [ 24464b908e143d2561e9e452fee97309 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
14:14:26.0447 3316 AtiHDAudioService - ok
14:14:26.0478 3316 [ 38467ff83c2b4265d51f418812a91e3c ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
14:14:26.0510 3316 AtiHdmiService - ok
14:14:27.0446 3316 [ 0b45c18b0f3ee996d25baa4e74884b83 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
14:14:27.0524 3316 atikmdag - ok
14:14:27.0617 3316 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:14:27.0633 3316 AudioEndpointBuilder - ok
14:14:27.0664 3316 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:14:27.0680 3316 AudioSrv - ok
14:14:27.0789 3316 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:14:27.0804 3316 AxInstSV - ok
14:14:27.0929 3316 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:14:27.0960 3316 b06bdrv - ok
14:14:28.0023 3316 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:14:28.0023 3316 b57nd60a - ok
14:14:28.0241 3316 [ 825f81a6f7dd073509db101f0ba6dc59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
14:14:28.0241 3316 BBSvc - ok
14:14:28.0272 3316 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:14:28.0272 3316 BDESVC - ok
14:14:28.0288 3316 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:14:28.0288 3316 Beep - ok
14:14:28.0350 3316 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:14:28.0382 3316 blbdrive - ok
14:14:28.0553 3316 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:14:28.0553 3316 Bonjour Service - ok
14:14:28.0616 3316 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:14:28.0647 3316 bowser - ok
14:14:28.0678 3316 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:14:28.0678 3316 BrFiltLo - ok
14:14:28.0740 3316 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:14:28.0756 3316 BrFiltUp - ok
14:14:28.0834 3316 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
14:14:28.0850 3316 Browser - ok
14:14:28.0896 3316 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:14:28.0896 3316 Brserid - ok
14:14:28.0943 3316 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:14:28.0943 3316 BrSerWdm - ok
14:14:28.0990 3316 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:14:28.0990 3316 BrUsbMdm - ok
14:14:29.0037 3316 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:14:29.0068 3316 BrUsbSer - ok
14:14:29.0130 3316 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:14:29.0146 3316 BTHMODEM - ok
14:14:29.0208 3316 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
14:14:29.0208 3316 bthserv - ok
14:14:29.0224 3316 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:14:29.0240 3316 cdfs - ok
14:14:29.0333 3316 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
14:14:29.0333 3316 cdrom - ok
14:14:29.0411 3316 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
14:14:29.0427 3316 CertPropSvc - ok
14:14:29.0474 3316 [ 274ce03459896006f7a5069266e0469e ] cfwids C:\Windows\system32\drivers\cfwids.sys
14:14:29.0505 3316 cfwids - ok
14:14:29.0520 3316 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:14:29.0536 3316 circlass - ok
14:14:29.0692 3316 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
14:14:29.0723 3316 CLFS - ok
14:14:29.0786 3316 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:14:29.0786 3316 clr_optimization_v2.0.50727_32 - ok
14:14:29.0848 3316 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:14:29.0848 3316 clr_optimization_v2.0.50727_64 - ok
14:14:29.0973 3316 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:14:30.0035 3316 clr_optimization_v4.0.30319_32 - ok
14:14:30.0129 3316 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:14:30.0144 3316 clr_optimization_v4.0.30319_64 - ok
14:14:30.0191 3316 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:14:30.0191 3316 CmBatt - ok
14:14:30.0269 3316 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:14:30.0300 3316 cmdide - ok
14:14:30.0347 3316 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
14:14:30.0363 3316 CNG - ok
14:14:30.0394 3316 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:14:30.0425 3316 Compbatt - ok
14:14:30.0488 3316 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:14:30.0503 3316 CompositeBus - ok
14:14:30.0534 3316 COMSysApp - ok
14:14:30.0628 3316 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:14:30.0644 3316 crcdisk - ok
14:14:30.0722 3316 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:14:30.0737 3316 CryptSvc - ok
14:14:30.0893 3316 [ 7af9dac504fbd047cbc3e64ae52c92bf ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
14:14:30.0909 3316 dc3d - ok
14:14:31.0112 3316 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:14:31.0127 3316 DcomLaunch - ok
14:14:31.0190 3316 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
14:14:31.0236 3316 defragsvc - ok
14:14:31.0268 3316 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:14:31.0268 3316 DfsC - ok
14:14:31.0361 3316 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
14:14:31.0377 3316 Dhcp - ok
14:14:31.0517 3316 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
14:14:31.0548 3316 discache - ok
14:14:31.0689 3316 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:14:31.0704 3316 Disk - ok
14:14:31.0767 3316 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:14:31.0782 3316 Dnscache - ok
14:14:31.0892 3316 [ 0840abbbdf438691ee65a20040635cbe ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
14:14:31.0892 3316 DockLoginService - ok
14:14:32.0001 3316 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:14:32.0048 3316 dot3svc - ok
14:14:32.0282 3316 [ b42ed0320c6e41102fde0005154849bb ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
14:14:32.0344 3316 Dot4 - ok
14:14:32.0438 3316 [ e9f5969233c5d89f3c35e3a66a52a361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
14:14:32.0438 3316 Dot4Print - ok
14:14:32.0469 3316 [ fd05a02b0370bc3000f402e543ca5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
14:14:32.0469 3316 dot4usb - ok
14:14:32.0594 3316 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
14:14:32.0609 3316 DPS - ok
14:14:32.0656 3316 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:14:32.0687 3316 drmkaud - ok
14:14:33.0030 3316 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:14:33.0046 3316 DXGKrnl - ok
14:14:33.0093 3316 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:14:33.0108 3316 EapHost - ok
14:14:33.0561 3316 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:14:33.0670 3316 ebdrv - ok
14:14:33.0732 3316 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
14:14:33.0748 3316 EFS - ok
14:14:33.0857 3316 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:14:33.0873 3316 ehRecvr - ok
14:14:33.0966 3316 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
14:14:33.0982 3316 ehSched - ok
14:14:34.0232 3316 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:14:34.0247 3316 elxstor - ok
14:14:34.0310 3316 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:14:34.0325 3316 ErrDev - ok
14:14:34.0388 3316 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
14:14:34.0388 3316 EventSystem - ok
14:14:34.0434 3316 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
14:14:34.0434 3316 exfat - ok
14:14:34.0481 3316 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:14:34.0497 3316 fastfat - ok
14:14:34.0668 3316 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
14:14:34.0684 3316 Fax - ok
14:14:34.0731 3316 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:14:34.0778 3316 fdc - ok
14:14:34.0887 3316 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:14:34.0902 3316 fdPHost - ok
14:14:34.0934 3316 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:14:34.0934 3316 FDResPub - ok
14:14:34.0949 3316 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:14:34.0949 3316 FileInfo - ok
14:14:34.0980 3316 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:14:34.0980 3316 Filetrace - ok
14:14:34.0996 3316 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:14:34.0996 3316 flpydisk - ok
14:14:35.0058 3316 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:14:35.0074 3316 FltMgr - ok
14:14:35.0448 3316 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
14:14:35.0464 3316 FontCache - ok
14:14:35.0558 3316 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:14:35.0573 3316 FontCache3.0.0.0 - ok
14:14:35.0589 3316 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:14:35.0589 3316 FsDepends - ok
14:14:35.0651 3316 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:14:35.0651 3316 Fs_Rec - ok
14:14:35.0745 3316 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:14:35.0745 3316 fvevol - ok
14:14:35.0885 3316 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:14:35.0948 3316 gagp30kx - ok
14:14:36.0104 3316 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:14:36.0104 3316 GEARAspiWDM - ok
14:14:36.0197 3316 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
14:14:36.0244 3316 gpsvc - ok
14:14:36.0462 3316 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:14:36.0478 3316 gupdate - ok
14:14:36.0728 3316 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:14:36.0728 3316 gupdatem - ok
14:14:36.0759 3316 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:14:36.0774 3316 hcw85cir - ok
14:14:36.0868 3316 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:14:36.0884 3316 HdAudAddService - ok
14:14:36.0899 3316 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:14:36.0915 3316 HDAudBus - ok
14:14:36.0977 3316 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:14:37.0024 3316 HidBatt - ok
14:14:37.0086 3316 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:14:37.0102 3316 HidBth - ok
14:14:37.0133 3316 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:14:37.0180 3316 HidIr - ok
14:14:37.0289 3316 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
14:14:37.0320 3316 hidserv - ok
14:14:37.0430 3316 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:14:37.0430 3316 HidUsb - ok
14:14:37.0508 3316 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:14:37.0508 3316 hkmsvc - ok
14:14:37.0586 3316 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:14:37.0601 3316 HomeGroupListener - ok
14:14:37.0726 3316 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:14:37.0773 3316 HomeGroupProvider - ok
14:14:38.0116 3316 [ 5da42d24712e00728cea2342a65009b2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
14:14:38.0116 3316 hpqcxs08 - ok
14:14:38.0194 3316 [ d86a39bf100069444d026d22d9a6e555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
14:14:38.0210 3316 hpqddsvc - ok
14:14:38.0303 3316 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:14:38.0334 3316 HpSAMD - ok
14:14:38.0600 3316 [ d4f91cf4de215d6f14a06087d46725e4 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
14:14:38.0631 3316 HPSLPSVC - ok
14:14:38.0834 3316 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:14:38.0849 3316 HTTP - ok
14:14:38.0896 3316 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:14:38.0896 3316 hwpolicy - ok
14:14:39.0036 3316 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:14:39.0083 3316 i8042prt - ok
14:14:39.0208 3316 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:14:39.0208 3316 iaStorV - ok
14:14:39.0395 3316 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:14:39.0411 3316 idsvc - ok
14:14:39.0426 3316 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:14:39.0426 3316 iirsp - ok
14:14:39.0629 3316 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
14:14:39.0645 3316 IKEEXT - ok
14:14:39.0738 3316 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
14:14:39.0816 3316 intelide - ok
14:14:39.0879 3316 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:14:39.0894 3316 intelppm - ok
14:14:39.0941 3316 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:14:39.0957 3316 IPBusEnum - ok
14:14:40.0035 3316 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:14:40.0050 3316 IpFilterDriver - ok
14:14:40.0097 3316 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:14:40.0128 3316 IPMIDRV - ok
14:14:40.0160 3316 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:14:40.0175 3316 IPNAT - ok
14:14:40.0253 3316 [ a9ab99ee7d39725eafec82732d2b3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:14:40.0269 3316 iPod Service - ok
14:14:40.0331 3316 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:14:40.0331 3316 IRENUM - ok
14:14:40.0362 3316 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:14:40.0362 3316 isapnp - ok
14:14:40.0487 3316 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:14:40.0503 3316 iScsiPrt - ok
14:14:40.0565 3316 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:14:40.0565 3316 kbdclass - ok
14:14:40.0612 3316 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:14:40.0643 3316 kbdhid - ok
14:14:40.0674 3316 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
14:14:40.0674 3316 KeyIso - ok
14:14:40.0784 3316 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:14:40.0784 3316 KSecDD - ok
14:14:40.0830 3316 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:14:40.0830 3316 KSecPkg - ok
14:14:40.0846 3316 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:14:40.0846 3316 ksthunk - ok
14:14:40.0877 3316 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
14:14:40.0893 3316 KtmRm - ok
14:14:40.0971 3316 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:14:40.0971 3316 LanmanServer - ok
14:14:41.0018 3316 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:14:41.0033 3316 LanmanWorkstation - ok
14:14:41.0610 3316 [ bd1e59ffeb8d84dc592a92497d823322 ] Lavasoft Ad-Aware Service C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
14:14:41.0610 3316 Lavasoft Ad-Aware Service - ok
14:14:41.0782 3316 [ ad134c8802355be1b24606fca8a4a50d ] Lavasoft Kernexplorer C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys
14:14:41.0782 3316 Lavasoft Kernexplorer - ok
14:14:41.0891 3316 [ 3c46290f7a5d45ba6ef32c248e22aa69 ] Lbd C:\Windows\system32\DRIVERS\Lbd.sys
14:14:41.0891 3316 Lbd - ok
14:14:41.0954 3316 [ 285954c6c6ef43b78ab84034750fac6a ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
14:14:41.0985 3316 libusb0 - ok
14:14:42.0094 3316 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:14:42.0125 3316 lltdio - ok
14:14:42.0172 3316 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:14:42.0172 3316 lltdsvc - ok
14:14:42.0203 3316 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:14:42.0203 3316 lmhosts - ok
14:14:42.0297 3316 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:14:42.0328 3316 LSI_FC - ok
14:14:42.0359 3316 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:14:42.0375 3316 LSI_SAS - ok
14:14:42.0406 3316 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:14:42.0406 3316 LSI_SAS2 - ok
14:14:42.0437 3316 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:14:42.0437 3316 LSI_SCSI - ok
14:14:42.0453 3316 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
14:14:42.0468 3316 luafv - ok
14:14:42.0656 3316 [ acb01bf1a905356ab7f978c7fe852209 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:14:42.0656 3316 McAfee SiteAdvisor Service - ok
14:14:42.0780 3316 [ f48571922079bbab289c57bafefe88f3 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
14:14:42.0796 3316 McAWFwk - ok
14:14:42.0843 3316 [ acb01bf1a905356ab7f978c7fe852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:14:42.0843 3316 McMPFSvc - ok
14:14:42.0921 3316 [ acb01bf1a905356ab7f978c7fe852209 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:14:42.0921 3316 mcmscsvc - ok
14:14:42.0936 3316 [ acb01bf1a905356ab7f978c7fe852209 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:14:42.0936 3316 McNaiAnn - ok
14:14:42.0983 3316 [ acb01bf1a905356ab7f978c7fe852209 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:14:42.0983 3316 McNASvc - ok
14:14:43.0124 3316 [ dd2321925274f2902929d76ce2b0eb45 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
14:14:43.0139 3316 McODS - ok
14:14:43.0139 3316 [ acb01bf1a905356ab7f978c7fe852209 ] McOobeSv C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:14:43.0155 3316 McOobeSv - ok
14:14:43.0170 3316 [ acb01bf1a905356ab7f978c7fe852209 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:14:43.0170 3316 McProxy - ok
14:14:43.0248 3316 [ e998e3b12101288d716558466cbf6ae1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
14:14:43.0248 3316 McShield - ok
14:14:43.0295 3316 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:14:43.0295 3316 Mcx2Svc - ok
14:14:43.0342 3316 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:14:43.0342 3316 megasas - ok
14:14:43.0373 3316 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:14:43.0373 3316 MegaSR - ok
14:14:43.0404 3316 [ 01884cb7655c8908b43ff5e364fe6fd2 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
14:14:43.0404 3316 mfeapfk - ok
14:14:43.0498 3316 [ dab9a9cdfb04e4d68924492aa043019d ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
14:14:43.0498 3316 mfeavfk - ok
14:14:43.0592 3316 mfeavfk01 - ok
14:14:43.0638 3316 [ b26782c3d6045b4464017d7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
14:14:43.0638 3316 mfefire - ok
14:14:43.0716 3316 [ ce9a3680675c0907ade16404ca967b49 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
14:14:43.0716 3316 mfefirek - ok
14:14:43.0748 3316 [ 60cf67458dd29cd17e77f2327b1a9a54 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
14:14:43.0763 3316 mfehidk - ok
14:14:43.0826 3316 [ a8129cfb919347f8533c934b365e9202 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
14:14:43.0826 3316 mfenlfk - ok
14:14:43.0841 3316 [ 5041fa2bd2b3a2693b015771bfbf6dca ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
14:14:43.0841 3316 mferkdet - ok
14:14:43.0982 3316 [ 723a5eb6cef7f408c3d0f15a82a6bff8 ] mfevtp C:\Windows\system32\mfevtps.exe
14:14:43.0982 3316 mfevtp - ok
14:14:44.0075 3316 [ 919c56db14a0e1e2ab6da5d2821dc26e ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
14:14:44.0075 3316 mfewfpk - ok
14:14:44.0153 3316 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
14:14:44.0184 3316 MMCSS - ok
14:14:44.0216 3316 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:14:44.0216 3316 Modem - ok
14:14:44.0262 3316 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:14:44.0262 3316 monitor - ok
14:14:44.0340 3316 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:14:44.0340 3316 mouclass - ok
14:14:44.0403 3316 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:14:44.0403 3316 mouhid - ok
14:14:44.0450 3316 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:14:44.0450 3316 mountmgr - ok
14:14:44.0481 3316 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:14:44.0496 3316 mpio - ok
14:14:44.0528 3316 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:14:44.0543 3316 mpsdrv - ok
14:14:44.0637 3316 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:14:44.0637 3316 MRxDAV - ok
14:14:44.0668 3316 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:14:44.0668 3316 mrxsmb - ok
14:14:44.0730 3316 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:14:44.0746 3316 mrxsmb10 - ok
14:14:44.0824 3316 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:14:44.0824 3316 mrxsmb20 - ok
14:14:44.0840 3316 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:14:44.0840 3316 msahci - ok
14:14:44.0918 3316 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:14:44.0949 3316 msdsm - ok
14:14:44.0996 3316 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
14:14:45.0027 3316 MSDTC - ok
14:14:45.0074 3316 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:14:45.0105 3316 Msfs - ok
14:14:45.0152 3316 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:14:45.0167 3316 mshidkmdf - ok
14:14:45.0198 3316 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:14:45.0198 3316 msisadrv - ok
14:14:45.0230 3316 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:14:45.0245 3316 MSiSCSI - ok
14:14:45.0261 3316 msiserver - ok
14:14:45.0292 3316 [ acb01bf1a905356ab7f978c7fe852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:14:45.0292 3316 MSK80Service - ok
14:14:45.0308 3316 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:14:45.0308 3316 MSKSSRV - ok
14:14:45.0354 3316 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:14:45.0386 3316 MSPCLOCK - ok
14:14:45.0417 3316 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:14:45.0417 3316 MSPQM - ok
14:14:45.0495 3316 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:14:45.0510 3316 MsRPC - ok
14:14:45.0604 3316 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:14:45.0604 3316 mssmbios - ok
14:14:45.0604 3316 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:14:45.0604 3316 MSTEE - ok
14:14:45.0635 3316 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:14:45.0651 3316 MTConfig - ok
14:14:45.0666 3316 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:14:45.0666 3316 Mup - ok
14:14:45.0760 3316 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
14:14:45.0776 3316 napagent - ok
14:14:45.0807 3316 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:14:45.0838 3316 NativeWifiP - ok
14:14:45.0947 3316 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers\ndis.sys
14:14:45.0963 3316 NDIS - ok
14:14:45.0994 3316 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:14:45.0994 3316 NdisCap - ok
14:14:46.0025 3316 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:14:46.0025 3316 NdisTapi - ok
14:14:46.0088 3316 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:14:46.0088 3316 Ndisuio - ok
14:14:46.0166 3316 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:14:46.0166 3316 NdisWan - ok
14:14:46.0228 3316 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:14:46.0259 3316 NDProxy - ok
14:14:46.0337 3316 [ d4f51e88c71bf8f06ea1be320b0bb75b ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
14:14:46.0353 3316 Net Driver HPZ12 - ok
14:14:46.0431 3316 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:14:46.0462 3316 NetBIOS - ok
14:14:46.0587 3316 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:14:46.0634 3316 NetBT - ok
14:14:46.0665 3316 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
14:14:46.0680 3316 Netlogon - ok
14:14:47.0242 3316 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
14:14:47.0289 3316 Netman - ok
14:14:47.0398 3316 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
14:14:47.0882 3316 netprofm - ok
14:14:47.0928 3316 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:14:47.0944 3316 NetTcpPortSharing - ok
14:14:48.0006 3316 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:14:48.0038 3316 nfrd960 - ok
14:14:48.0131 3316 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:14:48.0147 3316 NlaSvc - ok
14:14:48.0225 3316 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:14:48.0256 3316 Npfs - ok
14:14:48.0303 3316 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:14:48.0303 3316 nsi - ok
14:14:48.0350 3316 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:14:48.0350 3316 nsiproxy - ok
14:14:48.0630 3316 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:14:48.0693 3316 Ntfs - ok
14:14:48.0802 3316 [ 317020d31f1696334679b9d0416eb62e ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
14:14:48.0802 3316 NuidFltr - ok
14:14:48.0849 3316 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
14:14:48.0864 3316 Null - ok
14:14:48.0974 3316 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:14:48.0989 3316 nvraid - ok
14:14:49.0161 3316 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:14:49.0192 3316 nvstor - ok
14:14:49.0254 3316 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:14:49.0286 3316 nv_agp - ok
14:14:49.0426 3316 [ 9172dba9b81f4537366ddfaf92c783f4 ] Off-Helper C:\Program Files (x86)\Hobbyist Software\Off-Helper\Off-Helper Service.exe
14:14:49.0426 3316 Off-Helper - ok
14:14:49.0504 3316 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:14:49.0598 3316 ohci1394 - ok
14:14:49.0691 3316 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:14:49.0707 3316 p2pimsvc - ok
14:14:49.0832 3316 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:14:49.0847 3316 p2psvc - ok
14:14:49.0878 3316 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:14:49.0910 3316 Parport - ok
14:14:49.0972 3316 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:14:49.0988 3316 partmgr - ok
14:14:50.0050 3316 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:14:50.0066 3316 PcaSvc - ok
14:14:50.0175 3316 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
14:14:50.0175 3316 pci - ok
14:14:50.0222 3316 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
14:14:50.0222 3316 pciide - ok
14:14:50.0284 3316 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:14:50.0300 3316 pcmcia - ok
14:14:50.0346 3316 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:14:50.0346 3316 pcw - ok
14:14:50.0487 3316 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:14:50.0502 3316 PEAUTH - ok
14:14:50.0580 3316 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:14:50.0612 3316 PerfHost - ok
14:14:51.0064 3316 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
14:14:51.0095 3316 pla - ok
14:14:51.0298 3316 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:14:51.0345 3316 PlugPlay - ok
14:14:51.0672 3316 [ 9a80707d8b6c1806531bfd7399b3cc76 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
14:14:51.0719 3316 Pml Driver HPZ12 - ok
14:14:51.0766 3316 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:14:51.0782 3316 PNRPAutoReg - ok
14:14:51.0875 3316 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:14:51.0891 3316 PNRPsvc - ok
14:14:51.0984 3316 [ 4f0878fd62d5f7444c5f1c4c66d9d293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
14:14:52.0000 3316 Point64 - ok
14:14:52.0203 3316 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:14:52.0234 3316 PolicyAgent - ok
14:14:52.0281 3316 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
14:14:52.0296 3316 Power - ok
14:14:52.0406 3316 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:14:52.0437 3316 PptpMiniport - ok
14:14:52.0484 3316 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:14:52.0484 3316 Processor - ok
14:14:52.0562 3316 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
14:14:52.0608 3316 ProfSvc - ok
14:14:52.0624 3316 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:14:52.0624 3316 ProtectedStorage - ok
14:14:52.0827 3316 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:14:52.0827 3316 Psched - ok
14:14:52.0905 3316 [ 4712cc14e720ecccc0aa16949d18aaf1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
14:14:52.0905 3316 PxHlpa64 - ok
14:14:53.0232 3316 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:14:53.0295 3316 ql2300 - ok
14:14:53.0357 3316 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:14:53.0451 3316 ql40xx - ok
14:14:53.0576 3316 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
14:14:53.0607 3316 QWAVE - ok
14:14:53.0638 3316 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:14:53.0654 3316 QWAVEdrv - ok
14:14:53.0700 3316 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:14:53.0700 3316 RasAcd - ok
14:14:53.0763 3316 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:14:53.0778 3316 RasAgileVpn - ok
14:14:53.0794 3316 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
14:14:53.0794 3316 RasAuto - ok
14:14:53.0919 3316 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:14:53.0950 3316 Rasl2tp - ok
14:14:54.0028 3316 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
14:14:54.0044 3316 RasMan - ok
14:14:54.0106 3316 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:14:54.0137 3316 RasPppoe - ok
14:14:54.0231 3316 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:14:54.0246 3316 RasSstp - ok
14:14:54.0309 3316 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:14:54.0324 3316 rdbss - ok
14:14:54.0387 3316 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:14:54.0402 3316 rdpbus - ok
14:14:54.0418 3316 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:14:54.0434 3316 RDPCDD - ok
14:14:54.0449 3316 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:14:54.0496 3316 RDPENCDD - ok
14:14:54.0527 3316 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:14:54.0621 3316 RDPREFMP - ok
14:14:54.0746 3316 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:14:54.0761 3316 RDPWD - ok
14:14:54.0855 3316 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:14:54.0870 3316 rdyboost - ok
14:14:54.0964 3316 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:14:54.0964 3316 RemoteAccess - ok
14:14:55.0073 3316 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:14:55.0089 3316 RemoteRegistry - ok
14:14:55.0167 3316 [ 7b04c9843921ab1f695fb395422c5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
14:14:55.0182 3316 RimUsb - ok
14:14:55.0229 3316 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:14:55.0276 3316 RpcEptMapper - ok
14:14:55.0370 3316 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
14:14:55.0432 3316 RpcLocator - ok
14:14:55.0650 3316 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
14:14:55.0650 3316 RpcSs - ok
14:14:55.0697 3316 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:14:55.0713 3316 rspndr - ok
14:14:55.0947 3316 [ ee082e06a82ff630351d1e0ebbd3d8d0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
14:14:55.0947 3316 RTL8167 - ok
14:14:55.0994 3316 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
14:14:55.0994 3316 SamSs - ok
14:14:56.0056 3316 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:14:56.0087 3316 sbp2port - ok
14:14:56.0134 3316 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:14:56.0134 3316 SCardSvr - ok
14:14:56.0181 3316 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:14:56.0196 3316 scfilter - ok
14:14:56.0555 3316 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
14:14:56.0602 3316 Schedule - ok
14:14:56.0680 3316 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
14:14:56.0680 3316 SCPolicySvc - ok
14:14:56.0727 3316 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:14:56.0742 3316 SDRSVC - ok
14:14:56.0898 3316 [ cc781378e7eda615d2cdca3b17829fa4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
14:14:56.0898 3316 SeaPort - ok
14:14:56.0976 3316 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:14:57.0008 3316 secdrv - ok
14:14:57.0086 3316 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
14:14:57.0148 3316 seclogon - ok
14:14:57.0210 3316 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
14:14:57.0273 3316 SENS - ok
14:14:57.0366 3316 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:14:57.0413 3316 SensrSvc - ok
14:14:57.0460 3316 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:14:57.0476 3316 Serenum - ok
14:14:57.0538 3316 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:14:57.0538 3316 Serial - ok
14:14:57.0554 3316 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:14:57.0554 3316 sermouse - ok
14:14:57.0694 3316 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:14:57.0741 3316 SessionEnv - ok
14:14:57.0850 3316 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:14:57.0897 3316 sffdisk - ok
14:14:57.0944 3316 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:14:57.0959 3316 sffp_mmc - ok
14:14:57.0975 3316 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:14:57.0991 3316 sffp_sd - ok
14:14:58.0054 3316 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:14:58.0116 3316 sfloppy - ok
14:14:58.0194 3316 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:14:58.0225 3316 ShellHWDetection - ok
14:14:58.0288 3316 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:14:58.0319 3316 SiSRaid2 - ok
14:14:58.0366 3316 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:14:58.0397 3316 SiSRaid4 - ok
14:14:58.0459 3316 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:14:58.0522 3316 Smb - ok
14:14:58.0662 3316 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:14:58.0693 3316 SNMPTRAP - ok
14:14:59.0148 3316 [ df240bd2726b49df9e41d0e319293517 ] SplashtopRemoteService C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
14:14:59.0148 3316 SplashtopRemoteService - ok
14:14:59.0226 3316 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:14:59.0226 3316 spldr - ok
14:14:59.0491 3316 [ 85daa09a98c9286d4ea2ba8d0e644377 ] Spooler C:\Windows\System32\spoolsv.exe
14:14:59.0491 3316 Spooler - ok
14:15:00.0459 3316 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
14:15:00.0475 3316 sppsvc - ok
14:15:00.0631 3316 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:15:00.0631 3316 sppuinotify - ok
14:15:01.0069 3316 [ d630b6f2e8379b6f10dc16e82a426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
14:15:01.0069 3316 sprtsvc_DellSupportCenter - ok
14:15:01.0240 3316 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
14:15:01.0256 3316 srv - ok
14:15:01.0474 3316 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:15:01.0490 3316 srv2 - ok
14:15:01.0630 3316 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:15:01.0661 3316 srvnet - ok
14:15:01.0817 3316 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:15:01.0833 3316 SSDPSRV - ok
14:15:01.0880 3316 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:15:01.0911 3316 SstpSvc - ok
14:15:02.0255 3316 [ 1cfa4a1f3c7bb4c8f299e00428eb8677 ] SSUService C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
14:15:02.0255 3316 SSUService - ok
14:15:02.0333 3316 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:15:02.0380 3316 stexstor - ok
14:15:02.0520 3316 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
14:15:02.0583 3316 stisvc - ok
14:15:02.0645 3316 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:15:02.0645 3316 swenum - ok
14:15:02.0848 3316 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
14:15:02.0848 3316 swprv - ok
14:15:03.0066 3316 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
14:15:03.0129 3316 SysMain - ok
14:15:03.0207 3316 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:15:03.0254 3316 TabletInputService - ok
14:15:03.0394 3316 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:15:03.0410 3316 TapiSrv - ok
14:15:03.0441 3316 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
14:15:03.0456 3316 TBS - ok
14:15:03.0737 3316 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:15:03.0753 3316 Tcpip - ok
14:15:04.0034 3316 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:15:04.0065 3316 TCPIP6 - ok
14:15:04.0127 3316 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:15:04.0143 3316 tcpipreg - ok
14:15:04.0236 3316 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:15:04.0236 3316 TDPIPE - ok
14:15:04.0346 3316 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:15:04.0361 3316 TDTCP - ok
14:15:04.0439 3316 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:15:04.0486 3316 tdx - ok
14:15:04.0533 3316 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:15:04.0548 3316 TermDD - ok
14:15:04.0658 3316 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
14:15:04.0689 3316 TermService - ok
14:15:04.0736 3316 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
14:15:04.0767 3316 Themes - ok
14:15:04.0782 3316 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
14:15:04.0782 3316 THREADORDER - ok
14:15:04.0938 3316 [ fbd16717fd68b206c4ce3bb3c9ee5cb3 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
14:15:04.0954 3316 TomTomHOMEService - ok
14:15:04.0970 3316 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
14:15:04.0985 3316 TrkWks - ok
14:15:05.0094 3316 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:15:05.0110 3316 TrustedInstaller - ok
14:15:05.0188 3316 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:15:05.0219 3316 tssecsrv - ok
14:15:05.0313 3316 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:15:05.0328 3316 TsUsbFlt - ok
14:15:05.0469 3316 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:15:05.0484 3316 tunnel - ok
14:15:05.0531 3316 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:15:05.0547 3316 uagp35 - ok
14:15:05.0656 3316 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:15:05.0687 3316 udfs - ok
14:15:05.0734 3316 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:15:05.0781 3316 UI0Detect - ok
14:15:05.0796 3316 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:15:05.0828 3316 uliagpkx - ok
14:15:05.0937 3316 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
14:15:05.0952 3316 umbus - ok
14:15:05.0984 3316 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:15:05.0999 3316 UmPass - ok
14:15:06.0093 3316 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
14:15:06.0124 3316 upnphost - ok
14:15:06.0186 3316 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:15:06.0186 3316 USBAAPL64 - ok
14:15:06.0311 3316 [ 82e8f44688e6fac57b5b7c6fc7adbc2a ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
14:15:06.0327 3316 usbaudio - ok
14:15:06.0342 3316 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:15:06.0358 3316 usbccgp - ok
14:15:06.0452 3316 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:15:06.0452 3316 usbcir - ok
14:15:06.0545 3316 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:15:06.0654 3316 usbehci - ok
14:15:06.0810 3316 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:15:06.0810 3316 usbhub - ok
14:15:06.0873 3316 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
14:15:06.0904 3316 usbohci - ok
14:15:06.0966 3316 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:15:06.0982 3316 usbprint - ok
14:15:07.0107 3316 [ aaa2513c8aed8b54b189fd0c6b1634c0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:15:07.0138 3316 usbscan - ok
14:15:07.0232 3316 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:15:07.0247 3316 USBSTOR - ok
14:15:07.0325 3316 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:15:07.0341 3316 usbuhci - ok
14:15:07.0419 3316 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
14:15:07.0419 3316 UxSms - ok
14:15:07.0450 3316 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
14:15:07.0450 3316 VaultSvc - ok
14:15:07.0481 3316 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:15:07.0481 3316 vdrvroot - ok
14:15:07.0653 3316 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
14:15:07.0668 3316 vds - ok
14:15:07.0700 3316 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:15:07.0700 3316 vga - ok
14:15:07.0731 3316 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
14:15:07.0731 3316 VgaSave - ok
14:15:07.0824 3316 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:15:07.0887 3316 vhdmp - ok
14:15:08.0121 3316 [ b5572441293f126ec6251910daada6fc ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
14:15:08.0152 3316 VIAHdAudAddService - ok
14:15:08.0230 3316 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:15:08.0246 3316 viaide - ok
14:15:08.0308 3316 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:15:08.0339 3316 volmgr - ok
14:15:08.0448 3316 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:15:08.0448 3316 volmgrx - ok
14:15:08.0620 3316 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:15:08.0636 3316 volsnap - ok
14:15:08.0714 3316 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:15:08.0760 3316 vsmraid - ok
14:15:08.0994 3316 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
14:15:09.0041 3316 VSS - ok
14:15:09.0057 3316 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
14:15:09.0072 3316 vwifibus - ok
14:15:09.0135 3316 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
14:15:09.0182 3316 W32Time - ok
14:15:09.0260 3316 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:15:09.0291 3316 WacomPen - ok
14:15:09.0400 3316 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:15:09.0400 3316 WANARP - ok
14:15:09.0416 3316 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:15:09.0416 3316 Wanarpv6 - ok
14:15:09.0728 3316 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:15:09.0743 3316 WatAdminSvc - ok
14:15:10.0024 3316 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
14:15:10.0055 3316 wbengine - ok
14:15:10.0071 3316 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:15:10.0086 3316 WbioSrvc - ok
14:15:10.0180 3316 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:15:10.0196 3316 wcncsvc - ok
14:15:10.0211 3316 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:15:10.0211 3316 WcsPlugInService - ok
14:15:10.0274 3316 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:15:10.0274 3316 Wd - ok
14:15:10.0305 3316 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:15:10.0320 3316 Wdf01000 - ok
14:15:10.0336 3316 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:15:10.0352 3316 WdiServiceHost - ok
14:15:10.0352 3316 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:15:10.0352 3316 WdiSystemHost - ok
14:15:10.0414 3316 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:15:10.0430 3316 WebClient - ok
14:15:10.0523 3316 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:15:10.0554 3316 Wecsvc - ok
14:15:10.0601 3316 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:15:10.0601 3316 wercplsupport - ok
14:15:10.0664 3316 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:15:10.0679 3316 WerSvc - ok
14:15:10.0695 3316 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:15:10.0695 3316 WfpLwf - ok
14:15:10.0757 3316 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:15:10.0773 3316 WIMMount - ok
14:15:10.0773 3316 WinHttpAutoProxySvc - ok
14:15:10.0976 3316 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:15:10.0976 3316 Winmgmt - ok
14:15:11.0163 3316 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
14:15:11.0225 3316 WinRM - ok
14:15:11.0334 3316 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:15:11.0366 3316 WinUsb - ok
14:15:11.0444 3316 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
14:15:11.0475 3316 Wlansvc - ok
14:15:11.0709 3316 [ 2bacd71123f42cea603f4e205e1ae337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:15:11.0724 3316 wlidsvc - ok
14:15:11.0787 3316 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:15:11.0818 3316 WmiAcpi - ok
14:15:11.0958 3316 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:15:11.0990 3316 wmiApSrv - ok
14:15:12.0021 3316 WMPNetworkSvc - ok
14:15:12.0052 3316 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:15:12.0052 3316 WPCSvc - ok
14:15:12.0114 3316 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:15:12.0114 3316 WPDBusEnum - ok
14:15:12.0161 3316 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:15:12.0161 3316 ws2ifsl - ok
14:15:12.0161 3316 WSearch - ok
14:15:12.0224 3316 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:15:12.0224 3316 WudfPf - ok
14:15:12.0255 3316 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:15:12.0255 3316 WUDFRd - ok
14:15:12.0317 3316 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:15:12.0317 3316 wudfsvc - ok
14:15:12.0348 3316 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
14:15:12.0364 3316 WwanSvc - ok
14:15:12.0395 3316 ================ Scan global ===============================
14:15:12.0411 3316 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
14:15:12.0458 3316 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
14:15:12.0489 3316 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
14:15:12.0567 3316 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
14:15:12.0614 3316 (014a9cb92514e27c0107614df764bc06) C:\Windows\system32\services.exe
14:15:12.0614 3316 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
14:15:12.0614 3316 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
14:15:12.0629 3316 ================ Scan MBR ==================================
14:15:12.0676 3316 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:15:13.0175 3316 \Device\Harddisk0\DR0 - ok
14:15:13.0175 3316 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk5\DR5
14:15:13.0503 3316 \Device\Harddisk5\DR5 - ok
14:15:13.0971 3316 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk6\DR6
14:15:14.0220 3316 \Device\Harddisk6\DR6 - ok
14:15:14.0236 3316 MBR (0x1B8) (8ff255184f078c9c04e6a2ce66117c5c) \Device\Harddisk7\DR7
14:15:14.0423 3316 \Device\Harddisk7\DR7 - ok
14:15:14.0423 3316 ================ Scan VBR ==================================
14:15:14.0454 3316 Boot (0x1200) (954d05c8f98d209b82c44dcd68a03ec8) \Device\Harddisk0\DR0\Partition1
14:15:14.0454 3316 \Device\Harddisk0\DR0\Partition1 - ok
14:15:14.0470 3316 Boot (0x1200) (c163067acab5504c8d3b1687d74ee4ba) \Device\Harddisk0\DR0\Partition2
14:15:14.0470 3316 \Device\Harddisk0\DR0\Partition2 - ok
14:15:14.0486 3316 Boot (0x1200) (a7b3e5b1a7c6ea0249228a8f154df1df) \Device\Harddisk5\DR5\Partition1
14:15:14.0486 3316 \Device\Harddisk5\DR5\Partition1 - ok
14:15:14.0501 3316 Boot (0x1200) (06762ac4ebc3dc1d889081560a8fa030) \Device\Harddisk6\DR6\Partition1
14:15:14.0501 3316 \Device\Harddisk6\DR6\Partition1 - ok
14:15:14.0501 3316 Boot (0x1200) (20f0cc334733f09d760c6f36b8ab1629) \Device\Harddisk7\DR7\Partition1
14:15:14.0501 3316 \Device\Harddisk7\DR7\Partition1 - ok
14:15:14.0517 3316 ============================================================
14:15:14.0517 3316 Scan finished
14:15:14.0517 3316 ============================================================
14:15:14.0532 2084 Detected object count: 1
14:15:14.0532 2084 Actual detected object count: 1

#7 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 15 August 2012 - 02:20 PM

aswMBR results;

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-15 14:16:37
-----------------------------
14:16:37.760 OS Version: Windows x64 6.1.7601 Service Pack 1
14:16:37.760 Number of processors: 2 586 0x203
14:16:37.760 ComputerName: DALE-PC UserName: Dale
14:16:43.613 Initialize success
14:16:56.786 AVAST engine defs: 12081501
14:17:03.135 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
14:17:03.135 Disk 0 Vendor: WDC_WD6400AAKS-75A7B2 01.03B01 Size: 610480MB BusType: 3
14:17:03.151 Disk 5 \Device\Harddisk5\DR5 -> \Device\0000007e
14:17:03.151 Disk 5 Vendor: Size: 610480MB BusType: 0
14:17:03.151 Disk 6 \Device\Harddisk6\DR6 -> \Device\0000007f
14:17:03.151 Disk 6 Vendor: Size: 610480MB BusType: 0
14:17:03.151 Disk 7 \Device\Harddisk7\DR7 -> \Device\00000087
14:17:03.151 Disk 7 Vendor: Size: 610480MB BusType: 0
14:17:03.167 Disk 0 MBR read successfully
14:17:03.167 Disk 0 MBR scan
14:17:03.182 Disk 0 Windows 7 default MBR code
14:17:03.182 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 70 MB offset 63
14:17:03.213 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 9342 MB offset 145408
14:17:03.479 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 601066 MB offset 19277824
14:17:03.510 Disk 0 scanning C:\Windows\system32\drivers
14:17:23.540 Service scanning
14:17:51.684 Modules scanning
14:17:51.684 Disk 0 trace - called modules:
14:17:51.699 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
14:17:51.715 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800341d790]
14:17:51.715 3 CLASSPNP.SYS[fffff8800165143f] -> nt!IofCallDriver -> [0xfffffa800259d520]
14:17:51.731 5 ACPI.sys[fffff88000fa77a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80025a7060]
14:17:55.365 AVAST engine scan C:\Windows
14:18:04.959 AVAST engine scan C:\Windows\system32
14:25:02.298 AVAST engine scan C:\Windows\system32\drivers
14:25:18.163 AVAST engine scan C:\Users\Dale
16:18:47.981 AVAST engine scan C:\ProgramData
16:40:51.187 Scan finished successfully
16:45:14.600 Disk 0 MBR has been saved successfully to "C:\Users\Dale\Desktop\MBR.dat"
16:45:14.647 The log file has been saved successfully to "C:\Users\Dale\Desktop\aswMBR.txt"

#8 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 15 August 2012 - 02:22 PM

ESET results, found multiple threats :(

C:\Users\Dale\AppData\Local\Temp\2vs2.exe Win32/TrojanDownloader.Vespula.AY trojan
C:\Users\Dale\AppData\Local\Temp\jar_cache4163513043453904017.tmp Java/Exploit.CVE-2012-0507.AQ trojan
C:\Users\Dale\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\3552015a-48020630 Win32/TrojanDownloader.Vespula.AY trojan
C:\Users\Dale\AppData\Roaming\apiaf.dll a variant of Win32/Medfos.CN trojan
C:\Users\Dale\AppData\Roaming\rietdl.dll a variant of Win32/Medfos.CO trojan
Operating memory multiple threats

I have not erased any files.

Help!

#9 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 15 August 2012 - 04:36 PM

I have had to power down my pc so I am re-running the software.

Updated TDSSkiller (seems to have removed the file it found); I'll run the other software again and post the results.

One question - should I click 'fixMBR' when the aswMBR has finished?

TDSSkiller:

22:06:26.0392 5028 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
22:06:26.0407 5028 ============================================================
22:06:26.0407 5028 Current date / time: 2012/08/15 22:06:26.0407
22:06:26.0407 5028 SystemInfo:
22:06:26.0407 5028
22:06:26.0407 5028 OS Version: 6.1.7601 ServicePack: 1.0
22:06:26.0407 5028 Product type: Workstation
22:06:26.0407 5028 ComputerName: DALE-PC
22:06:26.0407 5028 UserName: Dale
22:06:26.0407 5028 Windows directory: C:\Windows
22:06:26.0407 5028 System windows directory: C:\Windows
22:06:26.0407 5028 Running under WOW64
22:06:26.0407 5028 Processor architecture: Intel x64
22:06:26.0407 5028 Number of processors: 2
22:06:26.0407 5028 Page size: 0x1000
22:06:26.0407 5028 Boot type: Normal boot
22:06:26.0407 5028 ============================================================
22:06:27.0858 5028 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:06:27.0874 5028 Drive \Device\Harddisk5\DR5 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:06:28.0357 5028 Drive \Device\Harddisk6\DR6 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:06:28.0373 5028 ============================================================
22:06:28.0373 5028 \Device\Harddisk0\DR0:
22:06:28.0420 5028 MBR partitions:
22:06:28.0420 5028 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23800, BlocksNum 0x123F000
22:06:28.0420 5028 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1262800, BlocksNum 0x495F5000
22:06:28.0420 5028 \Device\Harddisk5\DR5:
22:06:28.0420 5028 MBR partitions:
22:06:28.0420 5028 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
22:06:28.0420 5028 \Device\Harddisk6\DR6:
22:06:28.0435 5028 MBR partitions:
22:06:28.0435 5028 \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
22:06:28.0435 5028 ============================================================
22:06:28.0466 5028 C: <-> \Device\Harddisk0\DR0\Partition2
22:06:28.0498 5028 J: <-> \Device\Harddisk5\DR5\Partition1
22:06:28.0513 5028 L: <-> \Device\Harddisk6\DR6\Partition1
22:06:28.0513 5028 ============================================================
22:06:28.0513 5028 Initialize success
22:06:28.0513 5028 ============================================================
22:06:34.0254 2296 ============================================================
22:06:34.0254 2296 Scan started
22:06:34.0254 2296 Mode: Manual; TDLFS;
22:06:34.0254 2296 ============================================================
22:06:40.0229 2296 ================ Scan services =============================
22:06:40.0619 2296 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:06:40.0681 2296 1394ohci - ok
22:06:40.0790 2296 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:06:40.0806 2296 ACPI - ok
22:06:40.0853 2296 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:06:40.0868 2296 AcpiPmi - ok
22:06:40.0931 2296 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:06:40.0946 2296 adp94xx - ok
22:06:40.0962 2296 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:06:40.0978 2296 adpahci - ok
22:06:41.0009 2296 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:06:41.0009 2296 adpu320 - ok
22:06:41.0087 2296 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:06:41.0087 2296 AeLookupSvc - ok
22:06:41.0414 2296 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:06:41.0414 2296 AFD - ok
22:06:41.0477 2296 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:06:41.0492 2296 agp440 - ok
22:06:41.0508 2296 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
22:06:41.0524 2296 ALG - ok
22:06:41.0539 2296 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:06:41.0539 2296 aliide - ok
22:06:41.0617 2296 [ 20c8a3e435a47f0408a1ea674afa6194 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:06:41.0633 2296 AMD External Events Utility - ok
22:06:41.0836 2296 AMD FUEL Service - ok
22:06:41.0898 2296 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
22:06:41.0945 2296 amdide - ok
22:06:42.0007 2296 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
22:06:42.0007 2296 amdiox64 - ok
22:06:42.0101 2296 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:06:42.0101 2296 AmdK8 - ok
22:06:43.0255 2296 [ 0b45c18b0f3ee996d25baa4e74884b83 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:06:43.0442 2296 amdkmdag - ok
22:06:43.0489 2296 [ 0e57258e5cc4cc7a9a9a877afdf0cec6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
22:06:43.0489 2296 amdkmdap - ok
22:06:43.0583 2296 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:06:43.0583 2296 AmdPPM - ok
22:06:43.0770 2296 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:06:43.0786 2296 amdsata - ok
22:06:43.0926 2296 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:06:43.0942 2296 amdsbs - ok
22:06:43.0973 2296 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:06:43.0973 2296 amdxata - ok
22:06:44.0035 2296 [ 5b25d1a753cc3a3edb909bb759ac1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
22:06:44.0035 2296 AODDriver4.1 - ok
22:06:44.0129 2296 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
22:06:44.0129 2296 AppID - ok
22:06:44.0207 2296 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:06:44.0207 2296 AppIDSvc - ok
22:06:44.0378 2296 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:06:44.0410 2296 Appinfo - ok
22:06:44.0753 2296 [ f401929ee0cc92bfe7f15161ca535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:06:44.0815 2296 Apple Mobile Device - ok
22:06:44.0956 2296 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
22:06:44.0987 2296 arc - ok
22:06:45.0018 2296 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:06:45.0034 2296 arcsas - ok
22:06:45.0049 2296 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:06:45.0065 2296 AsyncMac - ok
22:06:45.0112 2296 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
22:06:45.0112 2296 atapi - ok
22:06:45.0190 2296 [ 24464b908e143d2561e9e452fee97309 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
22:06:45.0190 2296 AtiHDAudioService - ok
22:06:45.0236 2296 [ 38467ff83c2b4265d51f418812a91e3c ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
22:06:45.0252 2296 AtiHdmiService - ok
22:06:46.0485 2296 [ 0b45c18b0f3ee996d25baa4e74884b83 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:06:46.0563 2296 atikmdag - ok
22:06:46.0860 2296 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:06:46.0875 2296 AudioEndpointBuilder - ok
22:06:46.0939 2296 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:06:46.0939 2296 AudioSrv - ok
22:06:47.0064 2296 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:06:47.0064 2296 AxInstSV - ok
22:06:47.0167 2296 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:06:47.0177 2296 b06bdrv - ok
22:06:47.0332 2296 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:06:47.0332 2296 b57nd60a - ok
22:06:47.0550 2296 [ 825f81a6f7dd073509db101f0ba6dc59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
22:06:47.0550 2296 BBSvc - ok
22:06:47.0582 2296 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:06:47.0582 2296 BDESVC - ok
22:06:47.0644 2296 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:06:47.0660 2296 Beep - ok
22:06:47.0691 2296 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:06:47.0691 2296 blbdrive - ok
22:06:47.0784 2296 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:06:47.0784 2296 Bonjour Service - ok
22:06:47.0862 2296 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:06:47.0894 2296 bowser - ok
22:06:47.0909 2296 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:06:47.0925 2296 BrFiltLo - ok
22:06:47.0925 2296 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:06:47.0925 2296 BrFiltUp - ok
22:06:47.0987 2296 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
22:06:48.0003 2296 Browser - ok
22:06:48.0018 2296 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:06:48.0018 2296 Brserid - ok
22:06:48.0050 2296 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:06:48.0050 2296 BrSerWdm - ok
22:06:48.0065 2296 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:06:48.0065 2296 BrUsbMdm - ok
22:06:48.0081 2296 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:06:48.0081 2296 BrUsbSer - ok
22:06:48.0096 2296 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:06:48.0096 2296 BTHMODEM - ok
22:06:48.0190 2296 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
22:06:48.0206 2296 bthserv - ok
22:06:48.0237 2296 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:06:48.0252 2296 cdfs - ok
22:06:48.0346 2296 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
22:06:48.0362 2296 cdrom - ok
22:06:48.0455 2296 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
22:06:48.0471 2296 CertPropSvc - ok
22:06:48.0533 2296 [ 274ce03459896006f7a5069266e0469e ] cfwids C:\Windows\system32\drivers\cfwids.sys
22:06:48.0533 2296 cfwids - ok
22:06:48.0564 2296 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:06:48.0564 2296 circlass - ok
22:06:48.0596 2296 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
22:06:48.0611 2296 CLFS - ok
22:06:48.0752 2296 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:06:48.0767 2296 clr_optimization_v2.0.50727_32 - ok
22:06:48.0830 2296 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:06:48.0830 2296 clr_optimization_v2.0.50727_64 - ok
22:06:48.0954 2296 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:06:49.0032 2296 clr_optimization_v4.0.30319_32 - ok
22:06:49.0126 2296 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:06:49.0142 2296 clr_optimization_v4.0.30319_64 - ok
22:06:49.0188 2296 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:06:49.0188 2296 CmBatt - ok
22:06:49.0220 2296 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:06:49.0220 2296 cmdide - ok
22:06:49.0313 2296 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
22:06:49.0344 2296 CNG - ok
22:06:49.0376 2296 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:06:49.0376 2296 Compbatt - ok
22:06:49.0422 2296 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:06:49.0422 2296 CompositeBus - ok
22:06:49.0454 2296 COMSysApp - ok
22:06:49.0500 2296 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:06:49.0500 2296 crcdisk - ok
22:06:49.0625 2296 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:06:49.0625 2296 CryptSvc - ok
22:06:49.0688 2296 [ 7af9dac504fbd047cbc3e64ae52c92bf ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
22:06:49.0688 2296 dc3d - ok
22:06:49.0719 2296 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:06:49.0734 2296 DcomLaunch - ok
22:06:49.0766 2296 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
22:06:49.0766 2296 defragsvc - ok
22:06:49.0828 2296 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:06:49.0828 2296 DfsC - ok
22:06:49.0890 2296 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
22:06:49.0922 2296 Dhcp - ok
22:06:49.0937 2296 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
22:06:49.0937 2296 discache - ok
22:06:50.0015 2296 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:06:50.0015 2296 Disk - ok
22:06:50.0062 2296 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:06:50.0062 2296 Dnscache - ok
22:06:50.0249 2296 [ 0840abbbdf438691ee65a20040635cbe ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
22:06:50.0280 2296 DockLoginService - ok
22:06:50.0374 2296 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:06:50.0374 2296 dot3svc - ok
22:06:50.0468 2296 [ b42ed0320c6e41102fde0005154849bb ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
22:06:50.0483 2296 Dot4 - ok
22:06:50.0577 2296 [ e9f5969233c5d89f3c35e3a66a52a361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
22:06:50.0592 2296 Dot4Print - ok
22:06:50.0608 2296 [ fd05a02b0370bc3000f402e543ca5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
22:06:50.0608 2296 dot4usb - ok
22:06:50.0670 2296 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
22:06:50.0702 2296 DPS - ok
22:06:50.0748 2296 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:06:50.0748 2296 drmkaud - ok
22:06:51.0045 2296 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:06:51.0060 2296 DXGKrnl - ok
22:06:51.0154 2296 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:06:51.0185 2296 EapHost - ok
22:06:51.0279 2296 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:06:51.0372 2296 ebdrv - ok
22:06:51.0404 2296 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
22:06:51.0404 2296 EFS - ok
22:06:51.0653 2296 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:06:51.0669 2296 ehRecvr - ok
22:06:51.0731 2296 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
22:06:51.0731 2296 ehSched - ok
22:06:51.0778 2296 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:06:51.0794 2296 elxstor - ok
22:06:51.0872 2296 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:06:51.0872 2296 ErrDev - ok
22:06:51.0903 2296 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
22:06:51.0903 2296 EventSystem - ok
22:06:51.0918 2296 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
22:06:51.0918 2296 exfat - ok
22:06:52.0012 2296 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:06:52.0028 2296 fastfat - ok
22:06:52.0324 2296 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
22:06:52.0355 2296 Fax - ok
22:06:52.0386 2296 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:06:52.0386 2296 fdc - ok
22:06:52.0418 2296 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:06:52.0433 2296 fdPHost - ok
22:06:52.0511 2296 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:06:52.0527 2296 FDResPub - ok
22:06:52.0605 2296 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:06:52.0620 2296 FileInfo - ok
22:06:52.0652 2296 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:06:52.0652 2296 Filetrace - ok
22:06:52.0667 2296 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:06:52.0667 2296 flpydisk - ok
22:06:52.0792 2296 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:06:52.0792 2296 FltMgr - ok
22:06:52.0886 2296 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
22:06:52.0917 2296 FontCache - ok
22:06:52.0995 2296 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:06:53.0010 2296 FontCache3.0.0.0 - ok
22:06:53.0042 2296 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:06:53.0042 2296 FsDepends - ok
22:06:53.0104 2296 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:06:53.0104 2296 Fs_Rec - ok
22:06:53.0213 2296 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:06:53.0213 2296 fvevol - ok
22:06:53.0244 2296 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:06:53.0307 2296 gagp30kx - ok
22:06:53.0354 2296 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:06:53.0354 2296 GEARAspiWDM - ok
22:06:53.0432 2296 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
22:06:53.0447 2296 gpsvc - ok
22:06:53.0790 2296 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:06:53.0837 2296 gupdate - ok
22:06:53.0900 2296 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:06:53.0915 2296 gupdatem - ok
22:06:53.0978 2296 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:06:53.0993 2296 hcw85cir - ok
22:06:54.0118 2296 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:06:54.0134 2296 HdAudAddService - ok
22:06:54.0196 2296 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:06:54.0227 2296 HDAudBus - ok
22:06:54.0274 2296 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:06:54.0321 2296 HidBatt - ok
22:06:54.0368 2296 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:06:54.0383 2296 HidBth - ok
22:06:54.0414 2296 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:06:54.0430 2296 HidIr - ok
22:06:54.0492 2296 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
22:06:54.0492 2296 hidserv - ok
22:06:54.0602 2296 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:06:54.0602 2296 HidUsb - ok
22:06:54.0664 2296 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:06:54.0680 2296 hkmsvc - ok
22:06:54.0836 2296 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:06:54.0851 2296 HomeGroupListener - ok
22:06:54.0976 2296 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:06:54.0992 2296 HomeGroupProvider - ok
22:06:55.0194 2296 [ 5da42d24712e00728cea2342a65009b2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:06:55.0194 2296 hpqcxs08 - ok
22:06:55.0241 2296 [ d86a39bf100069444d026d22d9a6e555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
22:06:55.0241 2296 hpqddsvc - ok
22:06:55.0304 2296 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:06:55.0319 2296 HpSAMD - ok
22:06:55.0366 2296 [ d4f91cf4de215d6f14a06087d46725e4 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
22:06:55.0413 2296 HPSLPSVC - ok
22:06:55.0569 2296 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:06:55.0584 2296 HTTP - ok
22:06:55.0647 2296 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:06:55.0647 2296 hwpolicy - ok
22:06:55.0725 2296 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:06:55.0740 2296 i8042prt - ok
22:06:55.0803 2296 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:06:55.0818 2296 iaStorV - ok
22:06:55.0896 2296 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:06:55.0959 2296 idsvc - ok
22:06:55.0990 2296 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:06:55.0990 2296 iirsp - ok
22:06:56.0052 2296 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
22:06:56.0084 2296 IKEEXT - ok
22:06:56.0193 2296 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
22:06:56.0208 2296 intelide - ok
22:06:56.0255 2296 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:06:56.0271 2296 intelppm - ok
22:06:56.0333 2296 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:06:56.0380 2296 IPBusEnum - ok
22:06:56.0427 2296 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:06:56.0427 2296 IpFilterDriver - ok
22:06:56.0489 2296 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:06:56.0489 2296 IPMIDRV - ok
22:06:56.0505 2296 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:06:56.0520 2296 IPNAT - ok
22:06:56.0614 2296 [ a9ab99ee7d39725eafec82732d2b3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:06:56.0630 2296 iPod Service - ok
22:06:56.0661 2296 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:06:56.0661 2296 IRENUM - ok
22:06:56.0692 2296 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:06:56.0708 2296 isapnp - ok
22:06:56.0801 2296 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:06:56.0817 2296 iScsiPrt - ok
22:06:56.0895 2296 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:06:56.0895 2296 kbdclass - ok
22:06:56.0942 2296 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:06:56.0957 2296 kbdhid - ok
22:06:56.0973 2296 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
22:06:56.0973 2296 KeyIso - ok
22:06:57.0020 2296 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:06:57.0020 2296 KSecDD - ok
22:06:57.0066 2296 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:06:57.0066 2296 KSecPkg - ok
22:06:57.0098 2296 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:06:57.0098 2296 ksthunk - ok
22:06:57.0207 2296 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
22:06:57.0222 2296 KtmRm - ok
22:06:57.0363 2296 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:06:57.0378 2296 LanmanServer - ok
22:06:57.0456 2296 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:06:57.0456 2296 LanmanWorkstation - ok
22:06:58.0190 2296 [ bd1e59ffeb8d84dc592a92497d823322 ] Lavasoft Ad-Aware Service C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
22:06:58.0205 2296 Lavasoft Ad-Aware Service - ok
22:06:58.0283 2296 [ ad134c8802355be1b24606fca8a4a50d ] Lavasoft Kernexplorer C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys
22:06:58.0299 2296 Lavasoft Kernexplorer - ok
22:06:58.0408 2296 [ 3c46290f7a5d45ba6ef32c248e22aa69 ] Lbd C:\Windows\system32\DRIVERS\Lbd.sys
22:06:58.0408 2296 Lbd - ok
22:06:58.0486 2296 [ 285954c6c6ef43b78ab84034750fac6a ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
22:06:58.0502 2296 libusb0 - ok
22:06:58.0580 2296 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:06:58.0580 2296 lltdio - ok
22:06:58.0611 2296 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:06:58.0626 2296 lltdsvc - ok
22:06:58.0658 2296 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:06:58.0658 2296 lmhosts - ok
22:06:58.0751 2296 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:06:58.0782 2296 LSI_FC - ok
22:06:58.0814 2296 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:06:58.0814 2296 LSI_SAS - ok
22:06:58.0845 2296 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:06:58.0860 2296 LSI_SAS2 - ok
22:06:58.0907 2296 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:06:58.0923 2296 LSI_SCSI - ok
22:06:58.0970 2296 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
22:06:58.0970 2296 luafv - ok
22:06:59.0079 2296 [ acb01bf1a905356ab7f978c7fe852209 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:06:59.0079 2296 McAfee SiteAdvisor Service - ok
22:06:59.0219 2296 [ f48571922079bbab289c57bafefe88f3 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
22:06:59.0219 2296 McAWFwk - ok
22:06:59.0235 2296 [ acb01bf1a905356ab7f978c7fe852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:06:59.0235 2296 McMPFSvc - ok
22:06:59.0266 2296 [ acb01bf1a905356ab7f978c7fe852209 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:06:59.0266 2296 mcmscsvc - ok
22:06:59.0297 2296 [ acb01bf1a905356ab7f978c7fe852209 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:06:59.0297 2296 McNaiAnn - ok
22:06:59.0328 2296 [ acb01bf1a905356ab7f978c7fe852209 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:06:59.0344 2296 McNASvc - ok
22:06:59.0406 2296 [ dd2321925274f2902929d76ce2b0eb45 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
22:06:59.0422 2296 McODS - ok
22:06:59.0453 2296 [ acb01bf1a905356ab7f978c7fe852209 ] McOobeSv C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:06:59.0453 2296 McOobeSv - ok
22:06:59.0484 2296 [ acb01bf1a905356ab7f978c7fe852209 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:06:59.0484 2296 McProxy - ok
22:06:59.0594 2296 [ e998e3b12101288d716558466cbf6ae1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
22:06:59.0594 2296 McShield - ok
22:06:59.0656 2296 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:06:59.0672 2296 Mcx2Svc - ok
22:06:59.0734 2296 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:06:59.0750 2296 megasas - ok
22:06:59.0796 2296 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:06:59.0796 2296 MegaSR - ok
22:06:59.0843 2296 [ 01884cb7655c8908b43ff5e364fe6fd2 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
22:06:59.0843 2296 mfeapfk - ok
22:06:59.0890 2296 [ dab9a9cdfb04e4d68924492aa043019d ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
22:06:59.0890 2296 mfeavfk - ok
22:06:59.0906 2296 mfeavfk01 - ok
22:06:59.0937 2296 [ b26782c3d6045b4464017d7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:06:59.0937 2296 mfefire - ok
22:06:59.0999 2296 [ ce9a3680675c0907ade16404ca967b49 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
22:07:00.0015 2296 mfefirek - ok
22:07:00.0140 2296 [ 60cf67458dd29cd17e77f2327b1a9a54 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
22:07:00.0155 2296 mfehidk - ok
22:07:00.0186 2296 [ a8129cfb919347f8533c934b365e9202 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
22:07:00.0186 2296 mfenlfk - ok
22:07:00.0218 2296 [ 5041fa2bd2b3a2693b015771bfbf6dca ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
22:07:00.0233 2296 mferkdet - ok
22:07:00.0280 2296 [ 723a5eb6cef7f408c3d0f15a82a6bff8 ] mfevtp C:\Windows\system32\mfevtps.exe
22:07:00.0280 2296 mfevtp - ok
22:07:00.0311 2296 [ 919c56db14a0e1e2ab6da5d2821dc26e ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
22:07:00.0311 2296 mfewfpk - ok
22:07:00.0342 2296 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
22:07:00.0342 2296 MMCSS - ok
22:07:00.0358 2296 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:07:00.0358 2296 Modem - ok
22:07:00.0420 2296 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:07:00.0420 2296 monitor - ok
22:07:00.0592 2296 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:07:00.0592 2296 mouclass - ok
22:07:00.0639 2296 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:07:00.0654 2296 mouhid - ok
22:07:00.0701 2296 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:07:00.0701 2296 mountmgr - ok
22:07:00.0732 2296 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:07:00.0748 2296 mpio - ok
22:07:00.0779 2296 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:07:00.0795 2296 mpsdrv - ok
22:07:00.0826 2296 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:07:00.0826 2296 MRxDAV - ok
22:07:00.0888 2296 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:07:00.0904 2296 mrxsmb - ok
22:07:00.0966 2296 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:07:00.0982 2296 mrxsmb10 - ok
22:07:01.0029 2296 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:07:01.0029 2296 mrxsmb20 - ok
22:07:01.0044 2296 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:07:01.0044 2296 msahci - ok
22:07:01.0107 2296 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:07:01.0107 2296 msdsm - ok
22:07:01.0169 2296 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
22:07:01.0169 2296 MSDTC - ok
22:07:01.0216 2296 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:07:01.0232 2296 Msfs - ok
22:07:01.0263 2296 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:07:01.0263 2296 mshidkmdf - ok
22:07:01.0310 2296 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:07:01.0310 2296 msisadrv - ok
22:07:01.0403 2296 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:07:01.0419 2296 MSiSCSI - ok
22:07:01.0419 2296 msiserver - ok
22:07:01.0481 2296 [ acb01bf1a905356ab7f978c7fe852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:07:01.0481 2296 MSK80Service - ok
22:07:01.0497 2296 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:07:01.0497 2296 MSKSSRV - ok
22:07:01.0512 2296 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:07:01.0512 2296 MSPCLOCK - ok
22:07:01.0528 2296 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:07:01.0528 2296 MSPQM - ok
22:07:01.0590 2296 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:07:01.0590 2296 MsRPC - ok
22:07:01.0668 2296 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:07:01.0668 2296 mssmbios - ok
22:07:01.0668 2296 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:07:01.0684 2296 MSTEE - ok
22:07:01.0700 2296 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:07:01.0700 2296 MTConfig - ok
22:07:01.0731 2296 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:07:01.0731 2296 Mup - ok
22:07:01.0824 2296 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
22:07:01.0840 2296 napagent - ok
22:07:01.0871 2296 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:07:01.0887 2296 NativeWifiP - ok
22:07:02.0012 2296 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers\ndis.sys
22:07:02.0027 2296 NDIS - ok
22:07:02.0058 2296 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:07:02.0058 2296 NdisCap - ok
22:07:02.0090 2296 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:07:02.0090 2296 NdisTapi - ok
22:07:02.0136 2296 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:07:02.0152 2296 Ndisuio - ok
22:07:02.0183 2296 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:07:02.0199 2296 NdisWan - ok
22:07:02.0261 2296 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:07:02.0292 2296 NDProxy - ok
22:07:02.0370 2296 [ d4f51e88c71bf8f06ea1be320b0bb75b ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:07:02.0402 2296 Net Driver HPZ12 - ok
22:07:02.0417 2296 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:07:02.0417 2296 NetBIOS - ok
22:07:02.0480 2296 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:07:02.0511 2296 NetBT - ok
22:07:02.0526 2296 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
22:07:02.0526 2296 Netlogon - ok
22:07:02.0620 2296 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
22:07:02.0636 2296 Netman - ok
22:07:02.0792 2296 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
22:07:02.0792 2296 netprofm - ok
22:07:02.0823 2296 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:07:02.0838 2296 NetTcpPortSharing - ok
22:07:02.0870 2296 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:07:02.0870 2296 nfrd960 - ok
22:07:02.0916 2296 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:07:02.0932 2296 NlaSvc - ok
22:07:02.0979 2296 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:07:02.0979 2296 Npfs - ok
22:07:02.0994 2296 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:07:02.0994 2296 nsi - ok
22:07:03.0010 2296 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:07:03.0010 2296 nsiproxy - ok
22:07:03.0275 2296 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:07:03.0369 2296 Ntfs - ok
22:07:03.0431 2296 [ 317020d31f1696334679b9d0416eb62e ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
22:07:03.0447 2296 NuidFltr - ok
22:07:03.0462 2296 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
22:07:03.0462 2296 Null - ok
22:07:03.0494 2296 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:07:03.0509 2296 nvraid - ok
22:07:03.0650 2296 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:07:03.0665 2296 nvstor - ok
22:07:03.0712 2296 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:07:03.0712 2296 nv_agp - ok
22:07:03.0821 2296 [ 9172dba9b81f4537366ddfaf92c783f4 ] Off-Helper C:\Program Files (x86)\Hobbyist Software\Off-Helper\Off-Helper Service.exe
22:07:03.0821 2296 Off-Helper - ok
22:07:03.0868 2296 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:07:03.0899 2296 ohci1394 - ok
22:07:03.0962 2296 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:07:03.0977 2296 p2pimsvc - ok
22:07:04.0164 2296 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:07:04.0164 2296 p2psvc - ok
22:07:04.0180 2296 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:07:04.0196 2296 Parport - ok
22:07:04.0258 2296 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:07:04.0274 2296 partmgr - ok
22:07:04.0305 2296 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:07:04.0320 2296 PcaSvc - ok
22:07:04.0367 2296 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
22:07:04.0367 2296 pci - ok
22:07:04.0383 2296 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
22:07:04.0383 2296 pciide - ok
22:07:04.0398 2296 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:07:04.0430 2296 pcmcia - ok
22:07:04.0461 2296 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:07:04.0461 2296 pcw - ok
22:07:04.0492 2296 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:07:04.0508 2296 PEAUTH - ok
22:07:04.0757 2296 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:07:04.0757 2296 PerfHost - ok
22:07:04.0866 2296 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
22:07:04.0898 2296 pla - ok
22:07:05.0100 2296 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:07:05.0100 2296 PlugPlay - ok
22:07:05.0194 2296 [ 9a80707d8b6c1806531bfd7399b3cc76 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:07:05.0210 2296 Pml Driver HPZ12 - ok
22:07:05.0241 2296 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:07:05.0241 2296 PNRPAutoReg - ok
22:07:05.0334 2296 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:07:05.0334 2296 PNRPsvc - ok
22:07:05.0490 2296 [ 4f0878fd62d5f7444c5f1c4c66d9d293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
22:07:05.0522 2296 Point64 - ok
22:07:05.0568 2296 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:07:05.0584 2296 PolicyAgent - ok
22:07:05.0646 2296 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
22:07:05.0646 2296 Power - ok
22:07:05.0709 2296 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:07:05.0709 2296 PptpMiniport - ok
22:07:05.0724 2296 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:07:05.0724 2296 Processor - ok
22:07:05.0802 2296 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:07:05.0818 2296 ProfSvc - ok
22:07:05.0849 2296 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:07:05.0849 2296 ProtectedStorage - ok
22:07:05.0912 2296 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:07:05.0912 2296 Psched - ok
22:07:05.0958 2296 [ 4712cc14e720ecccc0aa16949d18aaf1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
22:07:05.0958 2296 PxHlpa64 - ok
22:07:06.0458 2296 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:07:06.0489 2296 ql2300 - ok
22:07:06.0551 2296 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:07:06.0551 2296 ql40xx - ok
22:07:06.0723 2296 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
22:07:06.0754 2296 QWAVE - ok
22:07:06.0770 2296 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:07:06.0785 2296 QWAVEdrv - ok
22:07:06.0785 2296 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:07:06.0785 2296 RasAcd - ok
22:07:06.0816 2296 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:07:06.0816 2296 RasAgileVpn - ok
22:07:06.0832 2296 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
22:07:06.0832 2296 RasAuto - ok
22:07:06.0910 2296 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:07:06.0941 2296 Rasl2tp - ok
22:07:07.0050 2296 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
22:07:07.0082 2296 RasMan - ok
22:07:07.0113 2296 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:07:07.0113 2296 RasPppoe - ok
22:07:07.0128 2296 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:07:07.0144 2296 RasSstp - ok
22:07:07.0284 2296 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:07:07.0316 2296 rdbss - ok
22:07:07.0347 2296 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:07:07.0347 2296 rdpbus - ok
22:07:07.0362 2296 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:07:07.0362 2296 RDPCDD - ok
22:07:07.0425 2296 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:07:07.0425 2296 RDPENCDD - ok
22:07:07.0440 2296 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:07:07.0440 2296 RDPREFMP - ok
22:07:07.0503 2296 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:07:07.0503 2296 RDPWD - ok
22:07:07.0581 2296 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:07:07.0581 2296 rdyboost - ok
22:07:07.0612 2296 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:07:07.0612 2296 RemoteAccess - ok
22:07:07.0768 2296 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:07:07.0799 2296 RemoteRegistry - ok
22:07:07.0862 2296 [ 7b04c9843921ab1f695fb395422c5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
22:07:07.0893 2296 RimUsb - ok
22:07:07.0908 2296 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:07:07.0908 2296 RpcEptMapper - ok
22:07:07.0940 2296 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
22:07:07.0940 2296 RpcLocator - ok
22:07:08.0002 2296 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
22:07:08.0002 2296 RpcSs - ok
22:07:08.0096 2296 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:07:08.0096 2296 rspndr - ok
22:07:08.0174 2296 [ ee082e06a82ff630351d1e0ebbd3d8d0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:07:08.0174 2296 RTL8167 - ok
22:07:08.0205 2296 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
22:07:08.0205 2296 SamSs - ok
22:07:08.0267 2296 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:07:08.0298 2296 sbp2port - ok
22:07:08.0345 2296 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:07:08.0345 2296 SCardSvr - ok
22:07:08.0392 2296 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:07:08.0392 2296 scfilter - ok
22:07:08.0564 2296 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
22:07:08.0626 2296 Schedule - ok
22:07:08.0688 2296 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
22:07:08.0688 2296 SCPolicySvc - ok
22:07:08.0813 2296 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:07:08.0829 2296 SDRSVC - ok
22:07:08.0985 2296 [ cc781378e7eda615d2cdca3b17829fa4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
22:07:08.0985 2296 SeaPort - ok
22:07:09.0047 2296 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:07:09.0047 2296 secdrv - ok
22:07:09.0094 2296 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
22:07:09.0110 2296 seclogon - ok
22:07:09.0141 2296 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
22:07:09.0141 2296 SENS - ok
22:07:09.0156 2296 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:07:09.0172 2296 SensrSvc - ok
22:07:09.0188 2296 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:07:09.0188 2296 Serenum - ok
22:07:09.0219 2296 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:07:09.0219 2296 Serial - ok
22:07:09.0234 2296 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:07:09.0234 2296 sermouse - ok
22:07:09.0297 2296 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:07:09.0297 2296 SessionEnv - ok
22:07:09.0344 2296 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:07:09.0359 2296 sffdisk - ok
22:07:09.0406 2296 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:07:09.0406 2296 sffp_mmc - ok
22:07:09.0406 2296 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:07:09.0406 2296 sffp_sd - ok
22:07:09.0422 2296 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:07:09.0422 2296 sfloppy - ok
22:07:09.0484 2296 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:07:09.0500 2296 ShellHWDetection - ok
22:07:09.0515 2296 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:07:09.0515 2296 SiSRaid2 - ok
22:07:09.0578 2296 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:07:09.0578 2296 SiSRaid4 - ok
22:07:09.0593 2296 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:07:09.0609 2296 Smb - ok
22:07:09.0640 2296 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:07:09.0656 2296 SNMPTRAP - ok
22:07:09.0780 2296 [ df240bd2726b49df9e41d0e319293517 ] SplashtopRemoteService C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
22:07:09.0780 2296 SplashtopRemoteService - ok
22:07:09.0827 2296 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:07:09.0827 2296 spldr - ok
22:07:10.0061 2296 [ 85daa09a98c9286d4ea2ba8d0e644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:07:10.0077 2296 Spooler - ok
22:07:10.0607 2296 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
22:07:10.0701 2296 sppsvc - ok
22:07:10.0732 2296 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:07:10.0763 2296 sppuinotify - ok
22:07:10.0841 2296 [ d630b6f2e8379b6f10dc16e82a426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
22:07:10.0841 2296 sprtsvc_DellSupportCenter - ok
22:07:11.0028 2296 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
22:07:11.0044 2296 srv - ok
22:07:11.0231 2296 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:07:11.0247 2296 srv2 - ok
22:07:11.0294 2296 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:07:11.0294 2296 srvnet - ok
22:07:11.0356 2296 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:07:11.0356 2296 SSDPSRV - ok
22:07:11.0372 2296 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:07:11.0372 2296 SstpSvc - ok
22:07:11.0512 2296 [ 1cfa4a1f3c7bb4c8f299e00428eb8677 ] SSUService C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
22:07:11.0512 2296 SSUService - ok
22:07:11.0606 2296 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:07:11.0621 2296 stexstor - ok
22:07:11.0715 2296 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
22:07:11.0730 2296 stisvc - ok
22:07:11.0793 2296 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:07:11.0793 2296 swenum - ok
22:07:11.0824 2296 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
22:07:11.0871 2296 swprv - ok
22:07:12.0105 2296 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
22:07:12.0167 2296 SysMain - ok
22:07:12.0230 2296 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:07:12.0230 2296 TabletInputService - ok
22:07:12.0354 2296 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:07:12.0386 2296 TapiSrv - ok
22:07:12.0432 2296 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
22:07:12.0448 2296 TBS - ok
22:07:12.0713 2296 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:07:12.0760 2296 Tcpip - ok
22:07:12.0854 2296 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:07:12.0885 2296 TCPIP6 - ok
22:07:12.0932 2296 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:07:12.0932 2296 tcpipreg - ok
22:07:13.0056 2296 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:07:13.0088 2296 TDPIPE - ok
22:07:13.0119 2296 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:07:13.0119 2296 TDTCP - ok
22:07:13.0181 2296 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:07:13.0181 2296 tdx - ok
22:07:13.0228 2296 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:07:13.0244 2296 TermDD - ok
22:07:13.0368 2296 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
22:07:13.0384 2296 TermService - ok
22:07:13.0415 2296 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
22:07:13.0431 2296 Themes - ok
22:07:13.0431 2296 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
22:07:13.0446 2296 THREADORDER - ok
22:07:13.0587 2296 [ fbd16717fd68b206c4ce3bb3c9ee5cb3 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
22:07:13.0587 2296 TomTomHOMEService - ok
22:07:13.0602 2296 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
22:07:13.0618 2296 TrkWks - ok
22:07:13.0774 2296 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:07:13.0821 2296 TrustedInstaller - ok
22:07:13.0868 2296 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:07:13.0868 2296 tssecsrv - ok
22:07:13.0946 2296 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:07:13.0946 2296 TsUsbFlt - ok
22:07:14.0008 2296 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:07:14.0039 2296 tunnel - ok
22:07:14.0086 2296 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:07:14.0086 2296 uagp35 - ok
22:07:14.0195 2296 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:07:14.0211 2296 udfs - ok
22:07:14.0258 2296 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:07:14.0258 2296 UI0Detect - ok
22:07:14.0289 2296 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:07:14.0289 2296 uliagpkx - ok
22:07:14.0367 2296 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
22:07:14.0382 2296 umbus - ok
22:07:14.0398 2296 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:07:14.0414 2296 UmPass - ok
22:07:14.0429 2296 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
22:07:14.0445 2296 upnphost - ok
22:07:14.0492 2296 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:07:14.0507 2296 USBAAPL64 - ok
22:07:14.0570 2296 [ 82e8f44688e6fac57b5b7c6fc7adbc2a ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:07:14.0570 2296 usbaudio - ok
22:07:14.0585 2296 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:07:14.0585 2296 usbccgp - ok
22:07:14.0616 2296 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:07:14.0616 2296 usbcir - ok
22:07:14.0679 2296 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:07:14.0694 2296 usbehci - ok
22:07:14.0726 2296 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:07:14.0726 2296 usbhub - ok
22:07:14.0741 2296 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:07:14.0741 2296 usbohci - ok
22:07:14.0772 2296 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:07:14.0772 2296 usbprint - ok
22:07:14.0882 2296 [ aaa2513c8aed8b54b189fd0c6b1634c0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:07:14.0897 2296 usbscan - ok
22:07:14.0928 2296 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:07:14.0944 2296 USBSTOR - ok
22:07:14.0960 2296 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:07:14.0960 2296 usbuhci - ok
22:07:14.0975 2296 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
22:07:14.0975 2296 UxSms - ok
22:07:15.0022 2296 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
22:07:15.0022 2296 VaultSvc - ok
22:07:15.0084 2296 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:07:15.0084 2296 vdrvroot - ok
22:07:15.0194 2296 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
22:07:15.0209 2296 vds - ok
22:07:15.0225 2296 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:07:15.0225 2296 vga - ok
22:07:15.0225 2296 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
22:07:15.0240 2296 VgaSave - ok
22:07:15.0287 2296 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:07:15.0303 2296 vhdmp - ok
22:07:15.0381 2296 [ b5572441293f126ec6251910daada6fc ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
22:07:15.0428 2296 VIAHdAudAddService - ok
22:07:15.0474 2296 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:07:15.0506 2296 viaide - ok
22:07:15.0537 2296 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:07:15.0568 2296 volmgr - ok
22:07:15.0630 2296 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:07:15.0662 2296 volmgrx - ok
22:07:15.0693 2296 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:07:15.0693 2296 volsnap - ok
22:07:15.0740 2296 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:07:15.0771 2296 vsmraid - ok
22:07:16.0067 2296 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
22:07:16.0130 2296 VSS - ok
22:07:16.0161 2296 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:07:16.0161 2296 vwifibus - ok
22:07:16.0332 2296 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
22:07:16.0364 2296 W32Time - ok
22:07:16.0379 2296 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:07:16.0395 2296 WacomPen - ok
22:07:16.0488 2296 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:07:16.0504 2296 WANARP - ok
22:07:16.0551 2296 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:07:16.0551 2296 Wanarpv6 - ok
22:07:16.0956 2296 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:07:17.0019 2296 WatAdminSvc - ok
22:07:17.0253 2296 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
22:07:17.0315 2296 wbengine - ok
22:07:17.0378 2296 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:07:17.0409 2296 WbioSrvc - ok
22:07:17.0502 2296 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:07:17.0534 2296 wcncsvc - ok
22:07:17.0627 2296 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:07:17.0643 2296 WcsPlugInService - ok
22:07:17.0690 2296 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:07:17.0705 2296 Wd - ok
22:07:17.0736 2296 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:07:17.0752 2296 Wdf01000 - ok
22:07:17.0783 2296 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:07:17.0799 2296 WdiServiceHost - ok
22:07:17.0830 2296 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:07:17.0830 2296 WdiSystemHost - ok
22:07:17.0877 2296 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:07:17.0892 2296 WebClient - ok
22:07:17.0955 2296 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:07:17.0986 2296 Wecsvc - ok
22:07:18.0002 2296 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:07:18.0033 2296 wercplsupport - ok
22:07:18.0204 2296 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:07:18.0220 2296 WerSvc - ok
22:07:18.0267 2296 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:07:18.0267 2296 WfpLwf - ok
22:07:18.0282 2296 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:07:18.0282 2296 WIMMount - ok
22:07:18.0282 2296 WinHttpAutoProxySvc - ok
22:07:18.0360 2296 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:07:18.0376 2296 Winmgmt - ok
22:07:18.0610 2296 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
22:07:18.0657 2296 WinRM - ok
22:07:18.0766 2296 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:07:18.0766 2296 WinUsb - ok
22:07:19.0000 2296 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
22:07:19.0016 2296 Wlansvc - ok
22:07:19.0577 2296 [ 2bacd71123f42cea603f4e205e1ae337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:07:19.0577 2296 wlidsvc - ok
22:07:19.0686 2296 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:07:19.0686 2296 WmiAcpi - ok
22:07:19.0718 2296 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:07:19.0718 2296 wmiApSrv - ok
22:07:19.0780 2296 WMPNetworkSvc - ok
22:07:19.0842 2296 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:07:19.0858 2296 WPCSvc - ok
22:07:20.0014 2296 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:07:20.0076 2296 WPDBusEnum - ok
22:07:20.0139 2296 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:07:20.0154 2296 ws2ifsl - ok
22:07:20.0154 2296 WSearch - ok
22:07:20.0201 2296 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:07:20.0201 2296 WudfPf - ok
22:07:20.0232 2296 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:07:20.0248 2296 WUDFRd - ok
22:07:20.0295 2296 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:07:20.0295 2296 wudfsvc - ok
22:07:20.0326 2296 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
22:07:20.0342 2296 WwanSvc - ok
22:07:20.0357 2296 ================ Scan global ===============================
22:07:20.0373 2296 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
22:07:20.0451 2296 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
22:07:20.0451 2296 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
22:07:20.0498 2296 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
22:07:20.0669 2296 (24acb7e5be595468e3b9aa488b9b4fcb) C:\Windows\system32\services.exe
22:07:20.0685 2296 [Global] - ok
22:07:20.0685 2296 ================ Scan MBR ==================================
22:07:20.0732 2296 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
22:07:22.0307 2296 \Device\Harddisk0\DR0 - ok
22:07:22.0338 2296 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk5\DR5
22:07:22.0588 2296 \Device\Harddisk5\DR5 - ok
22:07:22.0588 2296 MBR (0x1B8) (8ff255184f078c9c04e6a2ce66117c5c) \Device\Harddisk6\DR6
22:07:22.0791 2296 \Device\Harddisk6\DR6 - ok
22:07:22.0791 2296 ================ Scan VBR ==================================
22:07:22.0822 2296 Boot (0x1200) (954d05c8f98d209b82c44dcd68a03ec8) \Device\Harddisk0\DR0\Partition1
22:07:22.0869 2296 \Device\Harddisk0\DR0\Partition1 - ok
22:07:22.0916 2296 Boot (0x1200) (c163067acab5504c8d3b1687d74ee4ba) \Device\Harddisk0\DR0\Partition2
22:07:22.0947 2296 \Device\Harddisk0\DR0\Partition2 - ok
22:07:22.0962 2296 Boot (0x1200) (06762ac4ebc3dc1d889081560a8fa030) \Device\Harddisk5\DR5\Partition1
22:07:22.0962 2296 \Device\Harddisk5\DR5\Partition1 - ok
22:07:22.0962 2296 Boot (0x1200) (20f0cc334733f09d760c6f36b8ab1629) \Device\Harddisk6\DR6\Partition1
22:07:22.0978 2296 \Device\Harddisk6\DR6\Partition1 - ok
22:07:22.0978 2296 ============================================================
22:07:22.0978 2296 Scan finished
22:07:22.0978 2296 ============================================================
22:07:22.0994 3332 Detected object count: 0
22:07:22.0994 3332 Actual detected object count: 0
22:07:32.0884 3076 Deinitialize success

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:13 PM

Posted 15 August 2012 - 07:43 PM

I have not erased any files.


Remove them,run ESET scanner again and post the new log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Post the log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#11 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 16 August 2012 - 04:33 AM

Many thanks, I will download the new programs now. Really appreciate all the help! :lol:

On the aswMBR I have an option to 'fixMBR' - should I click this or just exit the program?

Updated aswMBR (without pressing 'fixMBR');


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-15 22:09:57
-----------------------------
22:09:57.603 OS Version: Windows x64 6.1.7601 Service Pack 1
22:09:57.603 Number of processors: 2 586 0x203
22:09:57.603 ComputerName: DALE-PC UserName: Dale
22:09:59.771 Initialize success
22:10:10.007 AVAST engine defs: 12081501
22:10:55.658 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
22:10:55.658 Disk 0 Vendor: WDC_WD6400AAKS-75A7B2 01.03B01 Size: 610480MB BusType: 3
22:10:55.704 Disk 0 MBR read successfully
22:10:55.720 Disk 0 MBR scan
22:10:55.736 Disk 0 Windows 7 default MBR code
22:10:55.751 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 70 MB offset 63
22:10:55.767 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 9342 MB offset 145408
22:10:55.767 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 601066 MB offset 19277824
22:10:55.924 Disk 0 scanning C:\Windows\system32\drivers
22:11:20.403 Service scanning
22:11:48.709 Modules scanning
22:11:48.709 Disk 0 trace - called modules:
22:11:48.740 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
22:11:49.239 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800343c480]
22:11:49.239 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa800259d520]
22:11:49.239 5 ACPI.sys[fffff88000eca7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80025a7060]
22:11:51.267 AVAST engine scan C:\Windows
22:12:00.190 AVAST engine scan C:\Windows\system32
22:16:17.820 AVAST engine scan C:\Windows\system32\drivers
22:16:34.711 AVAST engine scan C:\Users\Dale
23:54:08.642 AVAST engine scan C:\ProgramData
00:16:31.837 Scan finished successfully
10:24:25.110 Disk 0 MBR has been saved successfully to "I:\New Folder\MBR.dat"
10:24:25.344 The log file has been saved successfully to "I:\New Folder\aswMBR.txt"

#12 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 16 August 2012 - 04:35 AM

Updated ESET results;

C:\Users\Dale\AppData\Local\Temp\2vs2.exe Win32/TrojanDownloader.Vespula.AY trojan cleaned by deleting - quarantined
C:\Users\Dale\AppData\Local\Temp\jar_cache4163513043453904017.tmp Java/Exploit.CVE-2012-0507.AQ trojan cleaned by deleting - quarantined
C:\Users\Dale\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\3552015a-48020630 Win32/TrojanDownloader.Vespula.AY trojan cleaned by deleting - quarantined
C:\Users\Dale\AppData\Roaming\apiaf.dll a variant of Win32/Medfos.CN trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Dale\AppData\Roaming\rietdl.dll a variant of Win32/Medfos.CO trojan cleaned by deleting (after the next restart) - quarantined

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:13 PM

Posted 16 August 2012 - 05:46 AM

On the aswMBR I have an option to 'fixMBR' - should I click this or just exit the program?


Exit the program.Continue with other instructions

#14 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 16 August 2012 - 06:04 AM

On the aswMBR I have an option to 'fixMBR' - should I click this or just exit the program?


Exit the program.Continue with other instructions


Thanks!

It's currently running the Malwarebytes scan, will post the results as soon as it's done. :)

#15 Chip12

Chip12
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 16 August 2012 - 09:16 AM

Hi,


I've just finished the Malwarebytes scan. When I finished it the PC was running slow and the fan was going at full speed.

I restarted the PC and on startup I have an error box. It says "There was a problem starting C:\Users\Dale\AppData\Roaming\rietdl.dll. The specified module could not be found."

The only option in the box is "ok". There is a lot of PC activity and the fan is running at full.

Can you help? Should I proceed with the other tests or does this need to be sorted first?


Thanks

Edited by Chip12, 16 August 2012 - 09:21 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users