Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help with Trojan.Agent in svchost.exe


  • Please log in to reply
8 replies to this topic

#1 WolfyAD

WolfyAD

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 16 August 2012 - 10:05 AM

I have tried to get rid of the problem through Malware Bytes, howeveer every time I attempt to remove it, during the rebooting process, it shows that it is still there.
It is showing up twice in the Malware Bytes report:

C://Windows/svchost.exe

My computer's browsing speed has significantly decreased, any help would be greatly appreciated.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:38 PM

Posted 16 August 2012 - 10:10 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 WolfyAD

WolfyAD
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 16 August 2012 - 10:32 AM

TDSS Log Report:

10:12:33.0306 1040 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
10:12:33.0763 1040 ============================================================
10:12:33.0763 1040 Current date / time: 2012/08/16 10:12:33.0763
10:12:33.0763 1040 SystemInfo:
10:12:33.0763 1040
10:12:33.0763 1040 OS Version: 6.1.7601 ServicePack: 1.0
10:12:33.0763 1040 Product type: Workstation
10:12:33.0763 1040 ComputerName: RAULMARTINEZ-PC
10:12:33.0764 1040 UserName: Raul.Martinez
10:12:33.0764 1040 Windows directory: C:\Windows
10:12:33.0764 1040 System windows directory: C:\Windows
10:12:33.0764 1040 Running under WOW64
10:12:33.0764 1040 Processor architecture: Intel x64
10:12:33.0764 1040 Number of processors: 1
10:12:33.0764 1040 Page size: 0x1000
10:12:33.0764 1040 Boot type: Normal boot
10:12:33.0764 1040 ============================================================
10:12:35.0524 1040 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:12:35.0551 1040 ============================================================
10:12:35.0551 1040 \Device\Harddisk0\DR0:
10:12:35.0552 1040 MBR partitions:
10:12:35.0552 1040 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
10:12:35.0552 1040 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x1B4DE800
10:12:35.0552 1040 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1B542800, BlocksNum 0x1C4F000
10:12:35.0552 1040 ============================================================
10:12:35.0589 1040 C: <-> \Device\Harddisk0\DR0\Partition2
10:12:35.0623 1040 D: <-> \Device\Harddisk0\DR0\Partition3
10:12:35.0665 1040 ============================================================
10:12:35.0665 1040 Initialize success
10:12:35.0665 1040 ============================================================
10:13:15.0635 5020 ============================================================
10:13:15.0635 5020 Scan started
10:13:15.0635 5020 Mode: Manual; TDLFS;
10:13:15.0635 5020 ============================================================
10:13:16.0580 5020 ================ Scan services =============================
10:13:16.0992 5020 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:13:16.0999 5020 1394ohci - ok
10:13:17.0040 5020 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:13:17.0056 5020 ACPI - ok
10:13:17.0109 5020 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:13:17.0112 5020 AcpiPmi - ok
10:13:17.0249 5020 [ d19c4ee2ac7c47b8f5f84fff1a789d8a ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:13:17.0252 5020 AdobeARMservice - ok
10:13:17.0433 5020 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:13:17.0446 5020 AdobeFlashPlayerUpdateSvc - ok
10:13:17.0499 5020 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:13:17.0516 5020 adp94xx - ok
10:13:17.0574 5020 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:13:17.0591 5020 adpahci - ok
10:13:17.0629 5020 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:13:17.0635 5020 adpu320 - ok
10:13:17.0684 5020 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:13:17.0687 5020 AeLookupSvc - ok
10:13:17.0783 5020 [ a6fb9db8f1a86861d955fd6975977ae0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
10:13:17.0787 5020 AESTFilters - ok
10:13:17.0860 5020 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:13:17.0878 5020 AFD - ok
10:13:17.0952 5020 [ b65f8dba54f251906bbe8611b5a0e7ab ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
10:13:17.0954 5020 AgereModemAudio - ok
10:13:18.0018 5020 [ af4748ef93416159459769a24a0053af ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
10:13:18.0046 5020 AgereSoftModem - ok
10:13:18.0096 5020 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:13:18.0098 5020 agp440 - ok
10:13:18.0138 5020 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
10:13:18.0143 5020 ALG - ok
10:13:18.0185 5020 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:13:18.0190 5020 aliide - ok
10:13:18.0259 5020 [ bcc32bf5ebb5dfd4380fa053d3651949 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:13:18.0265 5020 AMD External Events Utility - ok
10:13:18.0295 5020 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
10:13:18.0297 5020 amdide - ok
10:13:18.0337 5020 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:13:18.0341 5020 AmdK8 - ok
10:13:18.0373 5020 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:13:18.0376 5020 AmdPPM - ok
10:13:18.0430 5020 [ 6ec6d772eae38dc17c14aed9b178d24b ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:13:18.0433 5020 amdsata - ok
10:13:18.0478 5020 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:13:18.0482 5020 amdsbs - ok
10:13:18.0507 5020 [ 1142a21db581a84ea5597b03a26ebaa0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:13:18.0509 5020 amdxata - ok
10:13:18.0569 5020 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
10:13:18.0572 5020 AppID - ok
10:13:18.0604 5020 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:13:18.0609 5020 AppIDSvc - ok
10:13:18.0675 5020 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:13:18.0678 5020 Appinfo - ok
10:13:18.0769 5020 [ 5aa788d5a2c6737bb9c45933985bc1b8 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:13:18.0774 5020 Apple Mobile Device - ok
10:13:18.0819 5020 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
10:13:18.0825 5020 arc - ok
10:13:18.0861 5020 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:13:18.0864 5020 arcsas - ok
10:13:18.0974 5020 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:13:18.0984 5020 aspnet_state - ok
10:13:19.0023 5020 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:13:19.0026 5020 AsyncMac - ok
10:13:19.0063 5020 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
10:13:19.0063 5020 atapi - ok
10:13:19.0142 5020 [ f8633cdd09647a64ee8db550630427ff ] athr C:\Windows\system32\DRIVERS\athrx.sys
10:13:19.0207 5020 athr - ok
10:13:19.0382 5020 [ a29087680a1c3b049e3c05438e8ff2b8 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:13:19.0514 5020 atikmdag - ok
10:13:19.0572 5020 [ 7c5d273e29dcc5505469b299c6f29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
10:13:19.0574 5020 AtiPcie - ok
10:13:19.0676 5020 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:13:19.0691 5020 AudioEndpointBuilder - ok
10:13:19.0707 5020 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:13:19.0713 5020 AudioSrv - ok
10:13:19.0758 5020 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:13:19.0763 5020 AxInstSV - ok
10:13:19.0804 5020 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:13:19.0811 5020 b06bdrv - ok
10:13:19.0845 5020 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:13:19.0851 5020 b57nd60a - ok
10:13:19.0915 5020 [ 825f81a6f7dd073509db101f0ba6dc59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
10:13:19.0919 5020 BBSvc - ok
10:13:19.0943 5020 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:13:19.0946 5020 BDESVC - ok
10:13:19.0964 5020 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:13:19.0966 5020 Beep - ok
10:13:20.0044 5020 [ 82974d6a2fd19445cc5171fc378668a4 ] BFE C:\Windows\System32\bfe.dll
10:13:20.0071 5020 BFE - ok
10:13:20.0209 5020 [ 95da658498248d5832aa240850706150 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20100810.004\BHDrvx64.sys
10:13:20.0253 5020 BHDrvx64 - ok
10:13:20.0336 5020 [ 1ea7969e3271cbc59e1730697dc74682 ] BITS C:\Windows\System32\qmgr.dll
10:13:20.0362 5020 BITS - ok
10:13:20.0404 5020 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:13:20.0406 5020 blbdrive - ok
10:13:20.0573 5020 [ f832f1505ad8b83474bd9a5b1b985e01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
10:13:20.0589 5020 Bonjour Service - ok
10:13:20.0623 5020 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:13:20.0627 5020 bowser - ok
10:13:20.0668 5020 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:13:20.0671 5020 BrFiltLo - ok
10:13:20.0703 5020 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:13:20.0706 5020 BrFiltUp - ok
10:13:20.0765 5020 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
10:13:20.0770 5020 Browser - ok
10:13:20.0841 5020 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:13:20.0846 5020 Brserid - ok
10:13:20.0914 5020 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:13:20.0917 5020 BrSerWdm - ok
10:13:21.0000 5020 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:13:21.0003 5020 BrUsbMdm - ok
10:13:21.0038 5020 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:13:21.0040 5020 BrUsbSer - ok
10:13:21.0119 5020 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:13:21.0123 5020 BTHMODEM - ok
10:13:21.0172 5020 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
10:13:21.0177 5020 bthserv - ok
10:13:21.0361 5020 [ 37f1baec39b505b3b51893a35c8337ea ] ccHP C:\Windows\system32\drivers\NISx64\1109000.00C\ccHPx64.sys
10:13:21.0388 5020 ccHP - ok
10:13:21.0405 5020 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:13:21.0407 5020 cdfs - ok
10:13:21.0500 5020 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
10:13:21.0505 5020 cdrom - ok
10:13:21.0561 5020 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
10:13:21.0563 5020 CertPropSvc - ok
10:13:21.0624 5020 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:13:21.0625 5020 circlass - ok
10:13:21.0670 5020 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
10:13:21.0676 5020 CLFS - ok
10:13:22.0137 5020 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:13:22.0141 5020 clr_optimization_v2.0.50727_32 - ok
10:13:22.0273 5020 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:13:22.0313 5020 clr_optimization_v2.0.50727_64 - ok
10:13:22.0474 5020 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:13:22.0477 5020 clr_optimization_v4.0.30319_32 - ok
10:13:22.0499 5020 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:13:22.0551 5020 clr_optimization_v4.0.30319_64 - ok
10:13:22.0613 5020 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:13:22.0614 5020 CmBatt - ok
10:13:22.0654 5020 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:13:23.0180 5020 cmdide - ok
10:13:23.0249 5020 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
10:13:23.0256 5020 CNG - ok
10:13:23.0318 5020 [ c7a0e61d5714ac20de52d4f66ec773b8 ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
10:13:23.0320 5020 Com4QLBEx - ok
10:13:23.0345 5020 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:13:23.0347 5020 Compbatt - ok
10:13:23.0390 5020 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:13:23.0392 5020 CompositeBus - ok
10:13:23.0413 5020 COMSysApp - ok
10:13:23.0444 5020 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:13:23.0446 5020 crcdisk - ok
10:13:23.0492 5020 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:13:23.0496 5020 CryptSvc - ok
10:13:23.0553 5020 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:13:23.0583 5020 DcomLaunch - ok
10:13:23.0626 5020 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
10:13:23.0631 5020 defragsvc - ok
10:13:23.0761 5020 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:13:23.0766 5020 DfsC - ok
10:13:23.0819 5020 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
10:13:23.0828 5020 Dhcp - ok
10:13:23.0877 5020 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
10:13:23.0880 5020 discache - ok
10:13:23.0944 5020 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:13:23.0948 5020 Disk - ok
10:13:24.0018 5020 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:13:24.0031 5020 Dnscache - ok
10:13:24.0122 5020 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:13:24.0126 5020 dot3svc - ok
10:13:24.0221 5020 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
10:13:24.0227 5020 DPS - ok
10:13:24.0289 5020 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:13:24.0352 5020 drmkaud - ok
10:13:24.0482 5020 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:13:24.0521 5020 DXGKrnl - ok
10:13:24.0588 5020 EagleX64 - ok
10:13:24.0688 5020 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:13:24.0693 5020 EapHost - ok
10:13:25.0013 5020 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:13:25.0081 5020 ebdrv - ok
10:13:25.0153 5020 [ 066108ae4c35835081598827a1a7d08d ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
10:13:25.0171 5020 eeCtrl - ok
10:13:25.0231 5020 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
10:13:25.0235 5020 EFS - ok
10:13:25.0377 5020 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:13:25.0408 5020 ehRecvr - ok
10:13:25.0481 5020 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
10:13:25.0484 5020 ehSched - ok
10:13:25.0532 5020 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:13:25.0547 5020 elxstor - ok
10:13:25.0577 5020 [ 12866876e3851f1e5d462b2a83e25578 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
10:13:25.0581 5020 EraserUtilRebootDrv - ok
10:13:25.0636 5020 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:13:25.0637 5020 ErrDev - ok
10:13:25.0756 5020 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
10:13:25.0765 5020 EventSystem - ok
10:13:25.0817 5020 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
10:13:25.0822 5020 exfat - ok
10:13:25.0881 5020 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:13:25.0884 5020 fastfat - ok
10:13:25.0956 5020 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
10:13:25.0981 5020 Fax - ok
10:13:26.0036 5020 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:13:26.0038 5020 fdc - ok
10:13:26.0072 5020 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:13:26.0075 5020 fdPHost - ok
10:13:26.0120 5020 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:13:26.0124 5020 FDResPub - ok
10:13:26.0156 5020 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:13:26.0158 5020 FileInfo - ok
10:13:26.0190 5020 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:13:26.0191 5020 Filetrace - ok
10:13:26.0215 5020 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:13:26.0217 5020 flpydisk - ok
10:13:26.0309 5020 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:13:26.0317 5020 FltMgr - ok
10:13:26.0387 5020 [ b4447f606bb19fd8ad0bafb59b90f5d9 ] FontCache C:\Windows\system32\FntCache.dll
10:13:26.0413 5020 FontCache - ok
10:13:26.0490 5020 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:13:26.0492 5020 FontCache3.0.0.0 - ok
10:13:26.0541 5020 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:13:26.0545 5020 FsDepends - ok
10:13:26.0625 5020 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:13:26.0628 5020 Fs_Rec - ok
10:13:26.0734 5020 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:13:26.0737 5020 fvevol - ok
10:13:26.0826 5020 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:13:26.0830 5020 gagp30kx - ok
10:13:26.0982 5020 [ c1bbce4b30b45410178ee674c818d10c ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
10:13:26.0989 5020 GameConsoleService - ok
10:13:27.0039 5020 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
10:13:27.0056 5020 gpsvc - ok
10:13:27.0504 5020 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:13:27.0508 5020 gupdate - ok
10:13:27.0645 5020 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:13:27.0648 5020 gupdatem - ok
10:13:27.0727 5020 [ 1e6438d4ea6e1174a3b3b1edc4de660b ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
10:13:27.0730 5020 hamachi - ok
10:13:27.0765 5020 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:13:27.0771 5020 hcw85cir - ok
10:13:27.0893 5020 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:13:27.0908 5020 HdAudAddService - ok
10:13:27.0955 5020 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:13:27.0959 5020 HDAudBus - ok
10:13:27.0999 5020 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:13:28.0002 5020 HidBatt - ok
10:13:28.0055 5020 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:13:28.0059 5020 HidBth - ok
10:13:28.0106 5020 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:13:28.0108 5020 HidIr - ok
10:13:28.0147 5020 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
10:13:28.0149 5020 hidserv - ok
10:13:28.0228 5020 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:13:28.0231 5020 HidUsb - ok
10:13:28.0299 5020 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:13:28.0305 5020 hkmsvc - ok
10:13:28.0385 5020 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:13:28.0393 5020 HomeGroupListener - ok
10:13:28.0449 5020 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:13:28.0458 5020 HomeGroupProvider - ok
10:13:28.0592 5020 [ 13bb1114451c63bfb41ba7daa4d70a29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
10:13:28.0595 5020 HP Support Assistant Service - ok
10:13:28.0725 5020 [ bcc4a8b2e2e902f52e7f2e7d8e125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
10:13:28.0727 5020 HPDrvMntSvc.exe - ok
10:13:28.0853 5020 [ 9af482d058be59cc28bce52e7c4b747c ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
10:13:28.0857 5020 HpqKbFiltr - ok
10:13:28.0956 5020 [ ec9739a46f1f83c6e52a7a4697f44a65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
10:13:29.0001 5020 hpqwmiex - ok
10:13:29.0054 5020 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:13:29.0059 5020 HpSAMD - ok
10:13:29.0129 5020 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:13:29.0146 5020 HTTP - ok
10:13:29.0185 5020 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:13:29.0186 5020 hwpolicy - ok
10:13:29.0282 5020 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
10:13:29.0287 5020 i8042prt - ok
10:13:29.0336 5020 [ 3df4395a7cf8b7a72a5f4606366b8c2d ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:13:29.0351 5020 iaStorV - ok
10:13:29.0442 5020 [ daf66902f08796f9c694901660e5a64a ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
10:13:29.0445 5020 IDriverT - ok
10:13:29.0624 5020 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:13:29.0661 5020 idsvc - ok
10:13:29.0898 5020 [ c3292140bf458b46cf8abbfd7e177bbe ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100818.002\IDSvia64.sys
10:13:29.0936 5020 IDSVia64 - ok
10:13:30.0124 5020 [ a87261ef1546325b559374f5689cf5bc ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:13:30.0281 5020 igfx - ok
10:13:30.0313 5020 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:13:30.0315 5020 iirsp - ok
10:13:30.0393 5020 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
10:13:30.0426 5020 IKEEXT - ok
10:13:30.0459 5020 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
10:13:30.0462 5020 intelide - ok
10:13:30.0573 5020 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:13:30.0577 5020 intelppm - ok
10:13:30.0617 5020 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:13:30.0622 5020 IPBusEnum - ok
10:13:30.0713 5020 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:13:30.0717 5020 IpFilterDriver - ok
10:13:30.0778 5020 [ a34a587fffd45fa649fba6d03784d257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:13:30.0813 5020 iphlpsvc - ok
10:13:30.0881 5020 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:13:30.0885 5020 IPMIDRV - ok
10:13:30.0929 5020 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:13:30.0932 5020 IPNAT - ok
10:13:31.0059 5020 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:13:31.0063 5020 IRENUM - ok
10:13:31.0099 5020 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:13:31.0102 5020 isapnp - ok
10:13:31.0144 5020 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:13:31.0149 5020 iScsiPrt - ok
10:13:31.0331 5020 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
10:13:31.0334 5020 kbdclass - ok
10:13:31.0412 5020 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:13:31.0416 5020 kbdhid - ok
10:13:31.0596 5020 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
10:13:31.0600 5020 KeyIso - ok
10:13:31.0644 5020 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:13:31.0649 5020 KSecDD - ok
10:13:31.0725 5020 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:13:31.0732 5020 KSecPkg - ok
10:13:31.0813 5020 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:13:31.0815 5020 ksthunk - ok
10:13:31.0894 5020 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
10:13:31.0929 5020 KtmRm - ok
10:13:32.0019 5020 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:13:32.0037 5020 LanmanServer - ok
10:13:32.0112 5020 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:13:32.0119 5020 LanmanWorkstation - ok
10:13:32.0250 5020 [ 07b1888209c54b675ffccbde9f06d2c6 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
10:13:32.0253 5020 LightScribeService - ok
10:13:32.0390 5020 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:13:32.0393 5020 lltdio - ok
10:13:32.0587 5020 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:13:32.0615 5020 lltdsvc - ok
10:13:32.0652 5020 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:13:32.0676 5020 lmhosts - ok
10:13:32.0742 5020 LMIInfo - ok
10:13:32.0838 5020 [ 413ecdcfad9a82804d3674c8d7eec24e ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
10:13:32.0849 5020 lmimirr - ok
10:13:32.0881 5020 LMIRfsClientNP - ok
10:13:33.0004 5020 [ c57d3faa50e6f395759ffb7c709bd944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
10:13:33.0008 5020 LMIRfsDriver - ok
10:13:33.0102 5020 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:13:33.0105 5020 LSI_FC - ok
10:13:33.0144 5020 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:13:33.0162 5020 LSI_SAS - ok
10:13:33.0196 5020 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:13:33.0198 5020 LSI_SAS2 - ok
10:13:33.0326 5020 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:13:33.0329 5020 LSI_SCSI - ok
10:13:33.0365 5020 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
10:13:33.0368 5020 luafv - ok
10:13:33.0517 5020 [ dc8490812a3b72811ae534f423b4c206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:13:33.0521 5020 MBAMProtector - ok
10:13:33.0634 5020 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:13:33.0677 5020 MBAMService - ok
10:13:33.0724 5020 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:13:33.0729 5020 Mcx2Svc - ok
10:13:33.0788 5020 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:13:33.0790 5020 megasas - ok
10:13:33.0817 5020 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:13:33.0823 5020 MegaSR - ok
10:13:33.0900 5020 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
10:13:33.0903 5020 MMCSS - ok
10:13:33.0995 5020 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:13:33.0998 5020 Modem - ok
10:13:34.0050 5020 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:13:34.0053 5020 monitor - ok
10:13:34.0108 5020 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
10:13:34.0111 5020 mouclass - ok
10:13:34.0239 5020 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:13:34.0242 5020 mouhid - ok
10:13:34.0283 5020 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:13:34.0286 5020 mountmgr - ok
10:13:34.0448 5020 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:13:34.0464 5020 mpio - ok
10:13:34.0507 5020 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:13:34.0509 5020 mpsdrv - ok
10:13:34.0648 5020 [ 54ffc9c8898113ace189d4aa7199d2c1 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:13:34.0684 5020 MpsSvc - ok
10:13:34.0742 5020 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:13:34.0745 5020 MRxDAV - ok
10:13:34.0809 5020 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:13:34.0813 5020 mrxsmb - ok
10:13:34.0904 5020 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:13:34.0911 5020 mrxsmb10 - ok
10:13:34.0943 5020 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:13:34.0946 5020 mrxsmb20 - ok
10:13:34.0994 5020 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:13:34.0997 5020 msahci - ok
10:13:35.0032 5020 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:13:35.0035 5020 msdsm - ok
10:13:35.0076 5020 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
10:13:35.0080 5020 MSDTC - ok
10:13:35.0133 5020 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:13:35.0136 5020 Msfs - ok
10:13:35.0213 5020 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:13:35.0214 5020 mshidkmdf - ok
10:13:35.0304 5020 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:13:35.0306 5020 msisadrv - ok
10:13:35.0352 5020 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:13:35.0356 5020 MSiSCSI - ok
10:13:35.0370 5020 msiserver - ok
10:13:35.0418 5020 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:13:35.0420 5020 MSKSSRV - ok
10:13:35.0503 5020 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:13:35.0504 5020 MSPCLOCK - ok
10:13:35.0607 5020 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:13:35.0610 5020 MSPQM - ok
10:13:35.0702 5020 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:13:35.0720 5020 MsRPC - ok
10:13:35.0817 5020 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:13:35.0820 5020 mssmbios - ok
10:13:35.0929 5020 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:13:35.0931 5020 MSTEE - ok
10:13:35.0983 5020 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:13:35.0985 5020 MTConfig - ok
10:13:36.0017 5020 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:13:36.0020 5020 Mup - ok
10:13:36.0085 5020 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
10:13:36.0100 5020 napagent - ok
10:13:36.0177 5020 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:13:36.0213 5020 NativeWifiP - ok
10:13:36.0300 5020 NAVENG - ok
10:13:36.0319 5020 NAVEX15 - ok
10:13:36.0382 5020 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers\ndis.sys
10:13:36.0408 5020 NDIS - ok
10:13:36.0479 5020 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:13:36.0482 5020 NdisCap - ok
10:13:36.0572 5020 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:13:36.0575 5020 NdisTapi - ok
10:13:36.0718 5020 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:13:36.0721 5020 Ndisuio - ok
10:13:36.0768 5020 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:13:36.0771 5020 NdisWan - ok
10:13:36.0818 5020 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:13:36.0819 5020 NDProxy - ok
10:13:36.0882 5020 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:13:36.0899 5020 NetBIOS - ok
10:13:37.0012 5020 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:13:37.0029 5020 NetBT - ok
10:13:37.0062 5020 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
10:13:37.0068 5020 Netlogon - ok
10:13:37.0113 5020 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
10:13:37.0123 5020 Netman - ok
10:13:37.0320 5020 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:13:37.0324 5020 NetMsmqActivator - ok
10:13:37.0408 5020 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:13:37.0409 5020 NetPipeActivator - ok
10:13:37.0455 5020 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
10:13:37.0469 5020 netprofm - ok
10:13:37.0566 5020 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:13:37.0568 5020 NetTcpActivator - ok
10:13:37.0579 5020 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:13:37.0580 5020 NetTcpPortSharing - ok
10:13:38.0230 5020 [ 64428dfdaf6e88366cb51f45a79c5f69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
10:13:38.0351 5020 netw5v64 - ok
10:13:38.0377 5020 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:13:38.0379 5020 nfrd960 - ok
10:13:38.0609 5020 [ b4187346f54e362daffe647b25a58d50 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\17.9.0.12\ccSvcHst.exe
10:13:38.0613 5020 NIS - ok
10:13:38.0672 5020 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:13:38.0687 5020 NlaSvc - ok
10:13:38.0736 5020 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:13:38.0738 5020 Npfs - ok
10:13:38.0784 5020 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:13:38.0787 5020 nsi - ok
10:13:38.0835 5020 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:13:38.0837 5020 nsiproxy - ok
10:13:39.0026 5020 [ 05d78aa5cb5f3f5c31160bdb955d0b7c ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:13:39.0106 5020 Ntfs - ok
10:13:39.0131 5020 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
10:13:39.0133 5020 Null - ok
10:13:39.0199 5020 [ 5d9fd91f3d38dc9da01e3cb5fa89cd48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:13:39.0202 5020 nvraid - ok
10:13:39.0253 5020 [ f7cd50fe7139f07e77da8ac8033d1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:13:39.0256 5020 nvstor - ok
10:13:39.0287 5020 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:13:39.0290 5020 nv_agp - ok
10:13:39.0426 5020 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:13:39.0438 5020 odserv - ok
10:13:39.0471 5020 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:13:39.0475 5020 ohci1394 - ok
10:13:39.0525 5020 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:13:39.0528 5020 ose - ok
10:13:39.0605 5020 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:13:39.0623 5020 p2pimsvc - ok
10:13:39.0716 5020 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:13:39.0751 5020 p2psvc - ok
10:13:39.0884 5020 [ 20bd38241edd66d8fdc9e3496a1762a3 ] PanService C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
10:13:39.0896 5020 PanService - ok
10:13:39.0966 5020 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:13:39.0968 5020 Parport - ok
10:13:40.0004 5020 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:13:40.0006 5020 partmgr - ok
10:13:40.0093 5020 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:13:40.0098 5020 PcaSvc - ok
10:13:40.0178 5020 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
10:13:40.0181 5020 pci - ok
10:13:40.0203 5020 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
10:13:40.0205 5020 pciide - ok
10:13:40.0271 5020 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:13:40.0275 5020 pcmcia - ok
10:13:40.0329 5020 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:13:40.0330 5020 pcw - ok
10:13:40.0394 5020 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:13:40.0439 5020 PEAUTH - ok
10:13:40.0546 5020 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:13:40.0550 5020 PerfHost - ok
10:13:40.0648 5020 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
10:13:40.0694 5020 pla - ok
10:13:40.0806 5020 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:13:40.0851 5020 PlugPlay - ok
10:13:40.0893 5020 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:13:40.0900 5020 PNRPAutoReg - ok
10:13:40.0936 5020 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:13:40.0946 5020 PNRPsvc - ok
10:13:40.0993 5020 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:13:41.0024 5020 PolicyAgent - ok
10:13:41.0071 5020 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
10:13:41.0075 5020 Power - ok
10:13:41.0283 5020 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:13:41.0301 5020 PptpMiniport - ok
10:13:41.0355 5020 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:13:41.0358 5020 Processor - ok
10:13:41.0515 5020 [ 5c78838b4d166d1a27db3a8a820c799a ] ProfSvc C:\Windows\system32\profsvc.dll
10:13:41.0565 5020 ProfSvc - ok
10:13:41.0606 5020 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:13:41.0608 5020 ProtectedStorage - ok
10:13:41.0715 5020 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:13:41.0720 5020 Psched - ok
10:13:41.0805 5020 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:13:41.0869 5020 ql2300 - ok
10:13:41.0885 5020 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:13:41.0889 5020 ql40xx - ok
10:13:41.0932 5020 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
10:13:41.0937 5020 QWAVE - ok
10:13:42.0014 5020 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:13:42.0018 5020 QWAVEdrv - ok
10:13:42.0044 5020 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:13:42.0049 5020 RasAcd - ok
10:13:42.0100 5020 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:13:42.0102 5020 RasAgileVpn - ok
10:13:42.0149 5020 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
10:13:42.0152 5020 RasAuto - ok
10:13:42.0233 5020 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:13:42.0238 5020 Rasl2tp - ok
10:13:42.0285 5020 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
10:13:42.0301 5020 RasMan - ok
10:13:42.0319 5020 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:13:42.0332 5020 RasPppoe - ok
10:13:42.0366 5020 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:13:42.0368 5020 RasSstp - ok
10:13:42.0412 5020 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:13:42.0417 5020 rdbss - ok
10:13:42.0434 5020 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:13:42.0436 5020 rdpbus - ok
10:13:42.0456 5020 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:13:42.0458 5020 RDPCDD - ok
10:13:42.0684 5020 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:13:42.0687 5020 RDPENCDD - ok
10:13:42.0741 5020 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:13:42.0744 5020 RDPREFMP - ok
10:13:42.0820 5020 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:13:42.0825 5020 RDPWD - ok
10:13:42.0915 5020 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:13:42.0919 5020 rdyboost - ok
10:13:42.0965 5020 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:13:42.0968 5020 RemoteAccess - ok
10:13:43.0023 5020 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:13:43.0027 5020 RemoteRegistry - ok
10:13:43.0235 5020 [ 498eb62a160674e793fa40fd65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
10:13:43.0240 5020 RichVideo - ok
10:13:43.0369 5020 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:13:43.0375 5020 RpcEptMapper - ok
10:13:43.0409 5020 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
10:13:43.0411 5020 RpcLocator - ok
10:13:43.0460 5020 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
10:13:43.0468 5020 RpcSs - ok
10:13:43.0529 5020 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:13:43.0531 5020 rspndr - ok
10:13:43.0680 5020 [ a5df2f732a6c95554e548fcb6932bd31 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
10:13:43.0687 5020 RSUSBSTOR - ok
10:13:43.0730 5020 [ b49dc435ae3695bac5623dd94b05732d ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:13:43.0734 5020 RTL8167 - ok
10:13:43.0809 5020 RtsUIR - ok
10:13:43.0852 5020 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
10:13:43.0855 5020 SamSs - ok
10:13:43.0898 5020 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:13:43.0901 5020 sbp2port - ok
10:13:43.0955 5020 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:13:43.0960 5020 SCardSvr - ok
10:13:44.0045 5020 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:13:44.0048 5020 scfilter - ok
10:13:44.0137 5020 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
10:13:44.0193 5020 Schedule - ok
10:13:44.0234 5020 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
10:13:44.0235 5020 SCPolicySvc - ok
10:13:44.0326 5020 [ 111e0ebc0ad79cb0fa014b907b231cf0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
10:13:44.0330 5020 sdbus - ok
10:13:44.0380 5020 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:13:44.0385 5020 SDRSVC - ok
10:13:44.0607 5020 [ cc781378e7eda615d2cdca3b17829fa4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
10:13:44.0612 5020 SeaPort - ok
10:13:44.0652 5020 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:13:44.0653 5020 secdrv - ok
10:13:44.0711 5020 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
10:13:44.0713 5020 seclogon - ok
10:13:44.0743 5020 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
10:13:44.0745 5020 SENS - ok
10:13:44.0817 5020 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:13:44.0820 5020 SensrSvc - ok
10:13:44.0842 5020 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:13:44.0847 5020 Serenum - ok
10:13:44.0885 5020 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:13:44.0887 5020 Serial - ok
10:13:44.0926 5020 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:13:44.0928 5020 sermouse - ok
10:13:44.0977 5020 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:13:44.0980 5020 SessionEnv - ok
10:13:45.0017 5020 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:13:45.0019 5020 sffdisk - ok
10:13:45.0070 5020 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:13:45.0072 5020 sffp_mmc - ok
10:13:45.0098 5020 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:13:45.0100 5020 sffp_sd - ok
10:13:45.0125 5020 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:13:45.0126 5020 sfloppy - ok
10:13:45.0236 5020 [ b95f6501a2f8b2e78c697fec401970ce ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:13:45.0253 5020 SharedAccess - ok
10:13:45.0341 5020 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:13:45.0370 5020 ShellHWDetection - ok
10:13:45.0397 5020 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:13:45.0399 5020 SiSRaid2 - ok
10:13:45.0424 5020 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:13:45.0428 5020 SiSRaid4 - ok
10:13:45.0571 5020 [ 0f97e7a47a52f4a36969f0fc319654c2 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:13:45.0714 5020 Skype C2C Service - ok
10:13:45.0810 5020 [ ddaa5f4a6b958fc313ebd02dd925752f ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:13:45.0815 5020 SkypeUpdate - ok
10:13:45.0850 5020 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:13:45.0853 5020 Smb - ok
10:13:45.0913 5020 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:13:45.0916 5020 SNMPTRAP - ok
10:13:45.0947 5020 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:13:45.0950 5020 spldr - ok
10:13:46.0040 5020 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\Windows\System32\spoolsv.exe
10:13:46.0054 5020 Spooler - ok
10:13:46.0153 5020 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
10:13:46.0258 5020 sppsvc - ok
10:13:46.0287 5020 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:13:46.0290 5020 sppuinotify - ok
10:13:46.0409 5020 [ 96babc4906ecdb1c69d1176f8647ad8e ] SRTSP C:\Windows\System32\Drivers\NISx64\1109000.00C\SRTSP64.SYS
10:13:46.0424 5020 SRTSP - ok
10:13:46.0460 5020 [ c7f491a290e0e4222f5cdcd50eeb8167 ] SRTSPX C:\Windows\system32\drivers\NISx64\1109000.00C\SRTSPX64.SYS
10:13:46.0463 5020 SRTSPX - ok
10:13:46.0537 5020 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
10:13:46.0555 5020 srv - ok
10:13:46.0646 5020 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:13:46.0663 5020 srv2 - ok
10:13:46.0717 5020 [ 0c4540311e11664b245a263e1154cef8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
10:13:46.0758 5020 SrvHsfHDA - ok
10:13:46.0804 5020 [ 02071d207a9858fbe3a48cbfd59c4a04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
10:13:46.0848 5020 SrvHsfV92 - ok
10:13:46.0883 5020 [ 18e40c245dbfaf36fd0134a7ef2df396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
10:13:46.0900 5020 SrvHsfWinac - ok
10:13:46.0931 5020 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:13:46.0935 5020 srvnet - ok
10:13:46.0964 5020 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:13:46.0968 5020 SSDPSRV - ok
10:13:46.0988 5020 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:13:46.0991 5020 SstpSvc - ok
10:13:47.0114 5020 [ 810199dcc3bdc38304d7d649992ea7bc ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
10:13:47.0120 5020 STacSV - ok
10:13:47.0154 5020 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:13:47.0156 5020 stexstor - ok
10:13:47.0288 5020 [ ed1722f43ce61409ef68340402d6267d ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
10:13:47.0307 5020 STHDA - ok
10:13:47.0375 5020 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
10:13:47.0389 5020 stisvc - ok
10:13:47.0427 5020 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:13:47.0428 5020 swenum - ok
10:13:47.0500 5020 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
10:13:47.0544 5020 swprv - ok
10:13:47.0622 5020 [ 659b227a72b76115975a6a9491b2fe1f ] SymDS C:\Windows\system32\drivers\NISx64\1109000.00C\SYMDS64.SYS
10:13:47.0640 5020 SymDS - ok
10:13:47.0753 5020 [ 9f5783a4a03d0091cdbdaa858b566926 ] SymEFA C:\Windows\system32\drivers\NISx64\1109000.00C\SYMEFA64.SYS
10:13:47.0783 5020 SymEFA - ok
10:13:47.0859 5020 [ 3f9d5fe52585e2653e59fdbfdf09a94c ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
10:13:47.0865 5020 SymEvent - ok
10:13:47.0902 5020 [ f57588546e738db1583981d8f44e9bc2 ] SymIRON C:\Windows\system32\drivers\NISx64\1109000.00C\Ironx64.SYS
10:13:47.0908 5020 SymIRON - ok
10:13:47.0950 5020 [ 3adfb72f0797ae3832509fe030755e21 ] SYMTDIv C:\Windows\System32\Drivers\NISx64\1109000.00C\SYMTDIV.SYS
10:13:47.0974 5020 SYMTDIv - ok
10:13:48.0063 5020 [ 3a706a967295e16511e40842b1a2761d ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:13:48.0070 5020 SynTP - ok
10:13:48.0167 5020 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
10:13:48.0262 5020 SysMain - ok
10:13:48.0311 5020 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:13:48.0315 5020 TabletInputService - ok
10:13:48.0467 5020 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:13:48.0491 5020 TapiSrv - ok
10:13:48.0622 5020 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
10:13:48.0629 5020 TBS - ok
10:13:48.0842 5020 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:13:48.0915 5020 Tcpip - ok
10:13:48.0969 5020 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:13:48.0987 5020 TCPIP6 - ok
10:13:49.0039 5020 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:13:49.0040 5020 tcpipreg - ok
10:13:49.0099 5020 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:13:49.0101 5020 TDPIPE - ok
10:13:49.0138 5020 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:13:49.0139 5020 TDTCP - ok
10:13:49.0322 5020 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:13:49.0327 5020 tdx - ok
10:13:49.0377 5020 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:13:49.0380 5020 TermDD - ok
10:13:49.0424 5020 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
10:13:49.0440 5020 TermService - ok
10:13:49.0472 5020 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
10:13:49.0474 5020 Themes - ok
10:13:49.0518 5020 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
10:13:49.0522 5020 THREADORDER - ok
10:13:49.0564 5020 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
10:13:49.0567 5020 TrkWks - ok
10:13:49.0735 5020 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:13:49.0740 5020 TrustedInstaller - ok
10:13:49.0813 5020 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:13:49.0815 5020 tssecsrv - ok
10:13:49.0907 5020 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:13:49.0910 5020 TsUsbFlt - ok
10:13:50.0029 5020 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:13:50.0035 5020 tunnel - ok
10:13:50.0076 5020 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:13:50.0078 5020 uagp35 - ok
10:13:50.0120 5020 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:13:50.0136 5020 udfs - ok
10:13:50.0198 5020 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:13:50.0201 5020 UI0Detect - ok
10:13:50.0223 5020 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:13:50.0225 5020 uliagpkx - ok
10:13:50.0287 5020 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
10:13:50.0289 5020 umbus - ok
10:13:50.0396 5020 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:13:50.0399 5020 UmPass - ok
10:13:50.0441 5020 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
10:13:50.0455 5020 upnphost - ok
10:13:50.0531 5020 [ f724b03c3dfaacf08d17d38bf3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:13:50.0533 5020 USBAAPL64 - ok
10:13:50.0553 5020 [ 481dff26b4dca8f4cbac1f7dce1d6829 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
10:13:50.0556 5020 usbccgp - ok
10:13:50.0630 5020 USBCCID - ok
10:13:50.0732 5020 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:13:50.0737 5020 usbcir - ok
10:13:50.0767 5020 [ 74ee782b1d9c241efe425565854c661c ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:13:50.0771 5020 usbehci - ok
10:13:50.0822 5020 [ 44d9c773febff10593b50ddfc2d6bc27 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
10:13:50.0825 5020 usbfilter - ok
10:13:50.0915 5020 [ dc96bd9ccb8403251bcf25047573558e ] usbhub C:\Windows\system32\drivers\usbhub.sys
10:13:50.0932 5020 usbhub - ok
10:13:50.0964 5020 [ 58e546bbaf87664fc57e0f6081e4f609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:13:50.0966 5020 usbohci - ok
10:13:51.0020 5020 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:13:51.0022 5020 usbprint - ok
10:13:51.0111 5020 [ d76510cfa0fc09023077f22c2f979d86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:13:51.0115 5020 USBSTOR - ok
10:13:51.0146 5020 [ 81fb2216d3a60d1284455d511797db3d ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:13:51.0148 5020 usbuhci - ok
10:13:51.0201 5020 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
10:13:51.0207 5020 usbvideo - ok
10:13:51.0296 5020 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
10:13:51.0301 5020 UxSms - ok
10:13:51.0323 5020 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
10:13:51.0328 5020 VaultSvc - ok
10:13:51.0369 5020 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:13:51.0371 5020 vdrvroot - ok
10:13:51.0453 5020 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
10:13:51.0486 5020 vds - ok
10:13:51.0544 5020 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:13:51.0546 5020 vga - ok
10:13:51.0561 5020 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
10:13:51.0563 5020 VgaSave - ok
10:13:51.0585 5020 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:13:51.0589 5020 vhdmp - ok
10:13:51.0642 5020 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:13:51.0643 5020 viaide - ok
10:13:51.0671 5020 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:13:51.0673 5020 volmgr - ok
10:13:51.0722 5020 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:13:51.0728 5020 volmgrx - ok
10:13:51.0755 5020 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:13:51.0761 5020 volsnap - ok
10:13:51.0819 5020 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:13:51.0825 5020 vsmraid - ok
10:13:51.0977 5020 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
10:13:52.0041 5020 VSS - ok
10:13:52.0100 5020 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:13:52.0102 5020 vwifibus - ok
10:13:52.0139 5020 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:13:52.0141 5020 vwififlt - ok
10:13:52.0214 5020 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
10:13:52.0217 5020 vwifimp - ok
10:13:52.0300 5020 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
10:13:52.0334 5020 W32Time - ok
10:13:52.0389 5020 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:13:52.0391 5020 WacomPen - ok
10:13:52.0451 5020 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:13:52.0453 5020 WANARP - ok
10:13:52.0465 5020 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:13:52.0466 5020 Wanarpv6 - ok
10:13:52.0552 5020 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:13:52.0603 5020 WatAdminSvc - ok
10:13:52.0757 5020 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
10:13:52.0826 5020 wbengine - ok
10:13:52.0904 5020 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:13:52.0909 5020 WbioSrvc - ok
10:13:52.0956 5020 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:13:52.0963 5020 wcncsvc - ok
10:13:52.0988 5020 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:13:52.0991 5020 WcsPlugInService - ok
10:13:53.0022 5020 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:13:53.0024 5020 Wd - ok
10:13:53.0057 5020 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:13:53.0073 5020 Wdf01000 - ok
10:13:53.0090 5020 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:13:53.0093 5020 WdiServiceHost - ok
10:13:53.0103 5020 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:13:53.0106 5020 WdiSystemHost - ok
10:13:53.0157 5020 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:13:53.0163 5020 WebClient - ok
10:13:53.0188 5020 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:13:53.0193 5020 Wecsvc - ok
10:13:53.0213 5020 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:13:53.0218 5020 wercplsupport - ok
10:13:53.0257 5020 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:13:53.0260 5020 WerSvc - ok
10:13:53.0314 5020 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:13:53.0316 5020 WfpLwf - ok
10:13:53.0333 5020 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:13:53.0335 5020 WIMMount - ok
10:13:53.0358 5020 WinDefend - ok
10:13:53.0378 5020 WinHttpAutoProxySvc - ok
10:13:53.0458 5020 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:13:53.0462 5020 Winmgmt - ok
10:13:53.0572 5020 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
10:13:53.0654 5020 WinRM - ok
10:13:53.0902 5020 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:13:53.0905 5020 WinUsb - ok
10:13:53.0958 5020 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
10:13:53.0984 5020 Wlansvc - ok
10:13:54.0221 5020 [ 2bacd71123f42cea603f4e205e1ae337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:13:54.0243 5020 wlidsvc - ok
10:13:54.0268 5020 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:13:54.0270 5020 WmiAcpi - ok
10:13:54.0312 5020 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:13:54.0315 5020 wmiApSrv - ok
10:13:54.0408 5020 WMPNetworkSvc - ok
10:13:54.0445 5020 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:13:54.0448 5020 WPCSvc - ok
10:13:54.0501 5020 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:13:54.0505 5020 WPDBusEnum - ok
10:13:54.0542 5020 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:13:54.0544 5020 ws2ifsl - ok
10:13:54.0570 5020 [ e8b1fe6669397d1772d8196df0e57a9e ] wscsvc C:\Windows\System32\wscsvc.dll
10:13:54.0573 5020 wscsvc - ok
10:13:54.0583 5020 WSearch - ok
10:13:54.0723 5020 [ d9ef901dca379cfe914e9fa13b73b4c4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:13:54.0778 5020 wuauserv - ok
10:13:54.0797 5020 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:13:54.0800 5020 WudfPf - ok
10:13:54.0896 5020 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:13:54.0902 5020 WUDFRd - ok
10:13:54.0958 5020 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:13:54.0962 5020 wudfsvc - ok
10:13:54.0992 5020 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
10:13:54.0999 5020 WwanSvc - ok
10:13:55.0064 5020 [ 4a5ce13408945e525503b5f73d29b9c5 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
10:13:55.0084 5020 xnacc - ok
10:13:55.0142 5020 [ b3eeacf62445e24fbb2cd4b0fb4db026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
10:13:55.0156 5020 yukonw7 - ok
10:13:55.0191 5020 ================ Scan global ===============================
10:13:55.0242 5020 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
10:13:55.0299 5020 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
10:13:55.0323 5020 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
10:13:55.0372 5020 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
10:13:55.0446 5020 (24acb7e5be595468e3b9aa488b9b4fcb) C:\Windows\system32\services.exe
10:13:55.0452 5020 [Global] - ok
10:13:55.0456 5020 ================ Scan MBR ==================================
10:13:55.0470 5020 MBR (0x1B8) (9f5822da1e7acf7b2c6474793db932b7) \Device\Harddisk0\DR0
10:13:55.0471 5020 Suspicious mbr (Forged): \Device\Harddisk0\DR0
10:13:55.0576 5020 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
10:13:55.0576 5020 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
10:13:55.0753 5020 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
10:13:55.0753 5020 \Device\Harddisk0\DR0 - detected TDSS File System (1)
10:13:55.0757 5020 ================ Scan VBR ==================================
10:13:55.0761 5020 Boot (0x1200) (823355db5b5a8dac5c85b8b4d5a15fc1) \Device\Harddisk0\DR0\Partition1
10:13:55.0763 5020 \Device\Harddisk0\DR0\Partition1 - ok
10:13:55.0792 5020 Boot (0x1200) (6894e508505b05ad59c9410942a105db) \Device\Harddisk0\DR0\Partition2
10:13:55.0794 5020 \Device\Harddisk0\DR0\Partition2 - ok
10:13:55.0821 5020 Boot (0x1200) (106745c92588ef9370aec6d435df724b) \Device\Harddisk0\DR0\Partition3
10:13:55.0824 5020 \Device\Harddisk0\DR0\Partition3 - ok
10:13:55.0828 5020 ============================================================
10:13:55.0828 5020 Scan finished
10:13:55.0828 5020 ============================================================
10:13:55.0845 2872 Detected object count: 2
10:13:55.0845 2872 Actual detected object count: 2

#4 WolfyAD

WolfyAD
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 16 August 2012 - 10:44 AM

aswMBR log results:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-16 10:33:58
-----------------------------
10:33:58.560 OS Version: Windows x64 6.1.7601 Service Pack 1
10:33:58.561 Number of processors: 1 586 0x602
10:33:58.562 ComputerName: RAULMARTINEZ-PC UserName: Raul.Martinez
10:34:00.556 Initialize success
10:34:59.995 AVAST engine defs: 12081600
10:35:37.273 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
10:35:37.279 Disk 0 Vendor: WDC_WD2500BEKT-60V5T1 12.01A12 Size: 238475MB BusType: 11
10:35:37.285 Device \Driver\atapi -> MajorFunction fffffa80028b25e8
10:35:37.304 Disk 0 MBR read successfully
10:35:37.310 Disk 0 MBR scan
10:35:37.315 Disk 0 unknown MBR code
10:35:37.319 Disk 0 MBR hidden
10:35:37.333 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
10:35:37.349 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 223677 MB offset 409600
10:35:37.378 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 14494 MB offset 458500096
10:35:37.454 Disk 0 scanning C:\Windows\system32\drivers
10:35:49.279 Service scanning
10:36:20.526 Modules scanning
10:36:20.923 Disk 0 trace - called modules:
10:36:20.941 ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xfffffa80028b25e8]<<
10:36:20.955 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80024e4060]
10:36:20.963 3 CLASSPNP.SYS[fffff8800110443f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8001580060]
10:36:20.970 \Driver\atapi[0xfffffa800280d4b0] -> IRP_MJ_CREATE -> 0xfffffa80028b25e8
10:36:22.248 AVAST engine scan C:\Windows
10:36:24.549 AVAST engine scan C:\Windows\system32
10:40:15.042 AVAST engine scan C:\Windows\system32\drivers
10:40:34.827 AVAST engine scan C:\Users\Raul.Martinez
10:42:29.654 Disk 0 MBR has been saved successfully to "C:\Users\Raul.Martinez\Documents\MBR.dat"
10:42:29.666 The log file has been saved successfully to "C:\Users\Raul.Martinez\Documents\aswMBR.txt"

#5 WolfyAD

WolfyAD
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 16 August 2012 - 10:49 AM

It's saying my anti virus may conflict with the ESET online scanner.
Should I disable norton and windows defender?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:38 PM

Posted 16 August 2012 - 11:10 AM

10:13:55.0576 5020 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
10:13:55.0576 5020 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
10:13:55.0753 5020 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
10:13:55.0753 5020 \Device\Harddisk0\DR0 - detected TDSS File System (1)

You skipped both?

Make sure to select

Rootkit.boot.pihar-CURE
TDSS File System -DELETE

Restart the PC,run ASWMBR again and post the new log

It's saying my anti virus may conflict with the ESET online scanner.
Should I disable norton and windows defender?


Disable Norton and scan

Edited by narenxp, 16 August 2012 - 11:11 AM.


#7 WolfyAD

WolfyAD
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 16 August 2012 - 11:16 AM

my apologies, rebooting should've been common sense :/ doing it as we speak on the infected computer

#8 WolfyAD

WolfyAD
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 16 August 2012 - 11:26 AM

TDSS NEW results (said no threats found for this one):


11:19:32.0111 0244 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
11:19:32.0656 0244 ============================================================
11:19:32.0656 0244 Current date / time: 2012/08/16 11:19:32.0656
11:19:32.0656 0244 SystemInfo:
11:19:32.0656 0244
11:19:32.0656 0244 OS Version: 6.1.7601 ServicePack: 1.0
11:19:32.0656 0244 Product type: Workstation
11:19:32.0657 0244 ComputerName: RAULMARTINEZ-PC
11:19:32.0657 0244 UserName: Raul.Martinez
11:19:32.0657 0244 Windows directory: C:\Windows
11:19:32.0657 0244 System windows directory: C:\Windows
11:19:32.0657 0244 Running under WOW64
11:19:32.0660 0244 Processor architecture: Intel x64
11:19:32.0660 0244 Number of processors: 1
11:19:32.0660 0244 Page size: 0x1000
11:19:32.0660 0244 Boot type: Normal boot
11:19:32.0660 0244 ============================================================
11:19:43.0146 0244 BG loaded
11:19:44.0801 0244 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:19:44.0805 0244 ============================================================
11:19:44.0805 0244 \Device\Harddisk0\DR0:
11:19:44.0806 0244 MBR partitions:
11:19:44.0806 0244 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
11:19:44.0806 0244 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x1B4DE800
11:19:44.0806 0244 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1B542800, BlocksNum 0x1C4F000
11:19:44.0806 0244 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x1D191800, BlocksNum 0x33970
11:19:44.0806 0244 ============================================================
11:19:44.0868 0244 C: <-> \Device\Harddisk0\DR0\Partition2
11:19:45.0094 0244 D: <-> \Device\Harddisk0\DR0\Partition3
11:19:45.0102 0244 E: <-> \Device\Harddisk0\DR0\Partition4
11:19:45.0102 0244 ============================================================
11:19:45.0103 0244 Initialize success
11:19:45.0103 0244 ============================================================
11:22:41.0014 2888 ============================================================
11:22:41.0014 2888 Scan started
11:22:41.0014 2888 Mode: Manual;
11:22:41.0014 2888 ============================================================
11:22:42.0862 2888 ================ Scan services =============================
11:22:43.0076 2888 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:22:43.0082 2888 1394ohci - ok
11:22:43.0127 2888 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:22:43.0132 2888 ACPI - ok
11:22:43.0175 2888 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:22:43.0177 2888 AcpiPmi - ok
11:22:43.0299 2888 [ d19c4ee2ac7c47b8f5f84fff1a789d8a ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:22:43.0302 2888 AdobeARMservice - ok
11:22:43.0471 2888 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:22:43.0478 2888 AdobeFlashPlayerUpdateSvc - ok
11:22:43.0545 2888 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:22:43.0559 2888 adp94xx - ok
11:22:43.0622 2888 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:22:43.0627 2888 adpahci - ok
11:22:43.0653 2888 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:22:43.0657 2888 adpu320 - ok
11:22:43.0696 2888 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:22:43.0698 2888 AeLookupSvc - ok
11:22:43.0783 2888 [ a6fb9db8f1a86861d955fd6975977ae0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
11:22:43.0786 2888 AESTFilters - ok
11:22:43.0856 2888 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:22:43.0868 2888 AFD - ok
11:22:43.0935 2888 [ b65f8dba54f251906bbe8611b5a0e7ab ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
11:22:43.0938 2888 AgereModemAudio - ok
11:22:43.0993 2888 [ af4748ef93416159459769a24a0053af ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
11:22:44.0021 2888 AgereSoftModem - ok
11:22:44.0071 2888 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:22:44.0073 2888 agp440 - ok
11:22:44.0096 2888 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
11:22:44.0098 2888 ALG - ok
11:22:44.0127 2888 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:22:44.0128 2888 aliide - ok
11:22:44.0182 2888 [ bcc32bf5ebb5dfd4380fa053d3651949 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:22:44.0186 2888 AMD External Events Utility - ok
11:22:44.0204 2888 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
11:22:44.0206 2888 amdide - ok
11:22:44.0245 2888 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:22:44.0247 2888 AmdK8 - ok
11:22:44.0273 2888 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:22:44.0274 2888 AmdPPM - ok
11:22:44.0397 2888 [ 6ec6d772eae38dc17c14aed9b178d24b ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:22:44.0402 2888 amdsata - ok
11:22:44.0444 2888 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:22:44.0448 2888 amdsbs - ok
11:22:44.0473 2888 [ 1142a21db581a84ea5597b03a26ebaa0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:22:44.0475 2888 amdxata - ok
11:22:44.0551 2888 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
11:22:44.0553 2888 AppID - ok
11:22:44.0589 2888 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:22:44.0590 2888 AppIDSvc - ok
11:22:44.0674 2888 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
11:22:44.0675 2888 Appinfo - ok
11:22:44.0885 2888 [ 5aa788d5a2c6737bb9c45933985bc1b8 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:22:44.0887 2888 Apple Mobile Device - ok
11:22:44.0968 2888 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
11:22:44.0971 2888 arc - ok
11:22:45.0027 2888 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:22:45.0032 2888 arcsas - ok
11:22:45.0207 2888 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:22:45.0297 2888 aspnet_state - ok
11:22:45.0364 2888 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:22:45.0365 2888 AsyncMac - ok
11:22:45.0412 2888 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
11:22:45.0413 2888 atapi - ok
11:22:45.0517 2888 [ f8633cdd09647a64ee8db550630427ff ] athr C:\Windows\system32\DRIVERS\athrx.sys
11:22:45.0568 2888 athr - ok
11:22:45.0842 2888 [ a29087680a1c3b049e3c05438e8ff2b8 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:22:45.0993 2888 atikmdag - ok
11:22:46.0038 2888 [ 7c5d273e29dcc5505469b299c6f29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
11:22:46.0039 2888 AtiPcie - ok
11:22:46.0158 2888 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:22:46.0172 2888 AudioEndpointBuilder - ok
11:22:46.0189 2888 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:22:46.0195 2888 AudioSrv - ok
11:22:46.0265 2888 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:22:46.0268 2888 AxInstSV - ok
11:22:46.0403 2888 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:22:46.0410 2888 b06bdrv - ok
11:22:46.0445 2888 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:22:46.0450 2888 b57nd60a - ok
11:22:46.0546 2888 [ 825f81a6f7dd073509db101f0ba6dc59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
11:22:46.0550 2888 BBSvc - ok
11:22:46.0583 2888 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:22:46.0585 2888 BDESVC - ok
11:22:46.0613 2888 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:22:46.0614 2888 Beep - ok
11:22:46.0703 2888 [ 82974d6a2fd19445cc5171fc378668a4 ] BFE C:\Windows\System32\bfe.dll
11:22:46.0718 2888 BFE - ok
11:22:46.0881 2888 [ 95da658498248d5832aa240850706150 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20100810.004\BHDrvx64.sys
11:22:46.0918 2888 BHDrvx64 - ok
11:22:46.0960 2888 [ 1ea7969e3271cbc59e1730697dc74682 ] BITS C:\Windows\System32\qmgr.dll
11:22:46.0986 2888 BITS - ok
11:22:47.0028 2888 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:22:47.0030 2888 blbdrive - ok
11:22:47.0114 2888 [ f832f1505ad8b83474bd9a5b1b985e01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
11:22:47.0131 2888 Bonjour Service - ok
11:22:47.0179 2888 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:22:47.0181 2888 bowser - ok
11:22:47.0259 2888 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:22:47.0261 2888 BrFiltLo - ok
11:22:47.0277 2888 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:22:47.0278 2888 BrFiltUp - ok
11:22:47.0321 2888 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
11:22:47.0323 2888 Browser - ok
11:22:47.0355 2888 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:22:47.0361 2888 Brserid - ok
11:22:47.0404 2888 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:22:47.0406 2888 BrSerWdm - ok
11:22:47.0502 2888 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:22:47.0503 2888 BrUsbMdm - ok
11:22:47.0529 2888 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:22:47.0531 2888 BrUsbSer - ok
11:22:47.0559 2888 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:22:47.0561 2888 BTHMODEM - ok
11:22:47.0596 2888 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
11:22:47.0599 2888 bthserv - ok
11:22:47.0835 2888 [ 37f1baec39b505b3b51893a35c8337ea ] ccHP C:\Windows\system32\drivers\NISx64\1109000.00C\ccHPx64.sys
11:22:47.0849 2888 ccHP - ok
11:22:47.0870 2888 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:22:47.0872 2888 cdfs - ok
11:22:47.0955 2888 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
11:22:47.0958 2888 cdrom - ok
11:22:48.0017 2888 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
11:22:48.0020 2888 CertPropSvc - ok
11:22:48.0114 2888 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:22:48.0143 2888 circlass - ok
11:22:48.0259 2888 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
11:22:48.0269 2888 CLFS - ok
11:22:48.0343 2888 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:22:48.0349 2888 clr_optimization_v2.0.50727_32 - ok
11:22:48.0413 2888 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:22:48.0429 2888 clr_optimization_v2.0.50727_64 - ok
11:22:48.0515 2888 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:22:48.0672 2888 clr_optimization_v4.0.30319_32 - ok
11:22:48.0706 2888 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:22:48.0808 2888 clr_optimization_v4.0.30319_64 - ok
11:22:48.0851 2888 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:22:48.0854 2888 CmBatt - ok
11:22:48.0894 2888 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:22:48.0895 2888 cmdide - ok
11:22:48.0940 2888 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
11:22:48.0946 2888 CNG - ok
11:22:49.0017 2888 [ c7a0e61d5714ac20de52d4f66ec773b8 ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
11:22:49.0020 2888 Com4QLBEx - ok
11:22:49.0045 2888 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:22:49.0046 2888 Compbatt - ok
11:22:49.0090 2888 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:22:49.0091 2888 CompositeBus - ok
11:22:49.0112 2888 COMSysApp - ok
11:22:49.0138 2888 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:22:49.0139 2888 crcdisk - ok
11:22:49.0191 2888 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:22:49.0195 2888 CryptSvc - ok
11:22:49.0251 2888 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:22:49.0279 2888 DcomLaunch - ok
11:22:49.0318 2888 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
11:22:49.0322 2888 defragsvc - ok
11:22:49.0377 2888 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:22:49.0379 2888 DfsC - ok
11:22:49.0433 2888 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
11:22:49.0438 2888 Dhcp - ok
11:22:49.0451 2888 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
11:22:49.0453 2888 discache - ok
11:22:49.0481 2888 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:22:49.0483 2888 Disk - ok
11:22:49.0509 2888 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:22:49.0513 2888 Dnscache - ok
11:22:49.0556 2888 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:22:49.0560 2888 dot3svc - ok
11:22:49.0603 2888 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
11:22:49.0606 2888 DPS - ok
11:22:49.0638 2888 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:22:49.0639 2888 drmkaud - ok
11:22:49.0696 2888 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:22:49.0722 2888 DXGKrnl - ok
11:22:49.0782 2888 EagleX64 - ok
11:22:49.0804 2888 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:22:49.0807 2888 EapHost - ok
11:22:49.0910 2888 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:22:49.0973 2888 ebdrv - ok
11:22:50.0017 2888 [ 066108ae4c35835081598827a1a7d08d ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
11:22:50.0029 2888 eeCtrl - ok
11:22:50.0065 2888 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
11:22:50.0067 2888 EFS - ok
11:22:50.0128 2888 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:22:50.0154 2888 ehRecvr - ok
11:22:50.0198 2888 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
11:22:50.0201 2888 ehSched - ok
11:22:50.0240 2888 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:22:50.0253 2888 elxstor - ok
11:22:50.0278 2888 [ 12866876e3851f1e5d462b2a83e25578 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
11:22:50.0280 2888 EraserUtilRebootDrv - ok
11:22:50.0320 2888 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:22:50.0321 2888 ErrDev - ok
11:22:50.0381 2888 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
11:22:50.0387 2888 EventSystem - ok
11:22:50.0418 2888 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
11:22:50.0421 2888 exfat - ok
11:22:50.0452 2888 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:22:50.0457 2888 fastfat - ok
11:22:50.0516 2888 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
11:22:50.0533 2888 Fax - ok
11:22:50.0588 2888 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:22:50.0589 2888 fdc - ok
11:22:50.0632 2888 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:22:50.0633 2888 fdPHost - ok
11:22:50.0654 2888 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:22:50.0656 2888 FDResPub - ok
11:22:50.0675 2888 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:22:50.0676 2888 FileInfo - ok
11:22:50.0700 2888 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:22:50.0701 2888 Filetrace - ok
11:22:50.0725 2888 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:22:50.0726 2888 flpydisk - ok
11:22:50.0783 2888 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:22:50.0787 2888 FltMgr - ok
11:22:50.0856 2888 [ b4447f606bb19fd8ad0bafb59b90f5d9 ] FontCache C:\Windows\system32\FntCache.dll
11:22:50.0890 2888 FontCache - ok
11:22:50.0950 2888 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:22:50.0951 2888 FontCache3.0.0.0 - ok
11:22:50.0967 2888 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:22:50.0969 2888 FsDepends - ok
11:22:51.0010 2888 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:22:51.0011 2888 Fs_Rec - ok
11:22:51.0060 2888 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:22:51.0064 2888 fvevol - ok
11:22:51.0094 2888 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:22:51.0096 2888 gagp30kx - ok
11:22:51.0148 2888 [ c1bbce4b30b45410178ee674c818d10c ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
11:22:51.0152 2888 GameConsoleService - ok
11:22:51.0183 2888 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
11:22:51.0201 2888 gpsvc - ok
11:22:51.0323 2888 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:22:51.0327 2888 gupdate - ok
11:22:51.0390 2888 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:22:51.0393 2888 gupdatem - ok
11:22:51.0455 2888 [ 1e6438d4ea6e1174a3b3b1edc4de660b ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
11:22:51.0458 2888 hamachi - ok
11:22:51.0488 2888 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:22:51.0490 2888 hcw85cir - ok
11:22:51.0543 2888 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:22:51.0548 2888 HdAudAddService - ok
11:22:51.0572 2888 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:22:51.0574 2888 HDAudBus - ok
11:22:51.0594 2888 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:22:51.0595 2888 HidBatt - ok
11:22:51.0628 2888 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:22:51.0630 2888 HidBth - ok
11:22:51.0651 2888 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:22:51.0653 2888 HidIr - ok
11:22:51.0683 2888 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
11:22:51.0685 2888 hidserv - ok
11:22:51.0714 2888 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:22:51.0716 2888 HidUsb - ok
11:22:51.0760 2888 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:22:51.0763 2888 hkmsvc - ok
11:22:51.0795 2888 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:22:51.0799 2888 HomeGroupListener - ok
11:22:51.0831 2888 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:22:51.0835 2888 HomeGroupProvider - ok
11:22:51.0888 2888 [ 13bb1114451c63bfb41ba7daa4d70a29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
11:22:51.0889 2888 HP Support Assistant Service - ok
11:22:51.0936 2888 [ bcc4a8b2e2e902f52e7f2e7d8e125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
11:22:51.0938 2888 HPDrvMntSvc.exe - ok
11:22:51.0973 2888 [ 9af482d058be59cc28bce52e7c4b747c ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
11:22:51.0974 2888 HpqKbFiltr - ok
11:22:52.0042 2888 [ ec9739a46f1f83c6e52a7a4697f44a65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
11:22:52.0065 2888 hpqwmiex - ok
11:22:52.0106 2888 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:22:52.0108 2888 HpSAMD - ok
11:22:52.0163 2888 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:22:52.0191 2888 HTTP - ok
11:22:52.0239 2888 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:22:52.0240 2888 hwpolicy - ok
11:22:52.0293 2888 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:22:52.0296 2888 i8042prt - ok
11:22:52.0322 2888 [ 3df4395a7cf8b7a72a5f4606366b8c2d ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:22:52.0327 2888 iaStorV - ok
11:22:52.0352 2888 [ daf66902f08796f9c694901660e5a64a ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
11:22:52.0355 2888 IDriverT - ok
11:22:52.0420 2888 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:22:52.0450 2888 idsvc - ok
11:22:52.0570 2888 [ c3292140bf458b46cf8abbfd7e177bbe ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100818.002\IDSvia64.sys
11:22:52.0587 2888 IDSVia64 - ok
11:22:52.0771 2888 [ a87261ef1546325b559374f5689cf5bc ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:22:52.0901 2888 igfx - ok
11:22:52.0934 2888 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:22:52.0936 2888 iirsp - ok
11:22:52.0988 2888 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
11:22:53.0016 2888 IKEEXT - ok
11:22:53.0038 2888 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
11:22:53.0040 2888 intelide - ok
11:22:53.0069 2888 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:22:53.0071 2888 intelppm - ok
11:22:53.0096 2888 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:22:53.0099 2888 IPBusEnum - ok
11:22:53.0141 2888 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:22:53.0145 2888 IpFilterDriver - ok
11:22:53.0203 2888 [ a34a587fffd45fa649fba6d03784d257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:22:53.0218 2888 iphlpsvc - ok
11:22:53.0263 2888 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:22:53.0266 2888 IPMIDRV - ok
11:22:53.0276 2888 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:22:53.0279 2888 IPNAT - ok
11:22:53.0314 2888 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:22:53.0316 2888 IRENUM - ok
11:22:53.0337 2888 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:22:53.0338 2888 isapnp - ok
11:22:53.0374 2888 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:22:53.0379 2888 iScsiPrt - ok
11:22:53.0402 2888 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:22:53.0404 2888 kbdclass - ok
11:22:53.0426 2888 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:22:53.0427 2888 kbdhid - ok
11:22:53.0451 2888 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
11:22:53.0452 2888 KeyIso - ok
11:22:53.0490 2888 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:22:53.0492 2888 KSecDD - ok
11:22:53.0538 2888 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:22:53.0541 2888 KSecPkg - ok
11:22:53.0560 2888 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:22:53.0562 2888 ksthunk - ok
11:22:53.0597 2888 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
11:22:53.0603 2888 KtmRm - ok
11:22:53.0631 2888 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:22:53.0637 2888 LanmanServer - ok
11:22:53.0675 2888 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:22:53.0679 2888 LanmanWorkstation - ok
11:22:53.0788 2888 [ 07b1888209c54b675ffccbde9f06d2c6 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
11:22:53.0789 2888 LightScribeService - ok
11:22:53.0821 2888 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:22:53.0822 2888 lltdio - ok
11:22:53.0851 2888 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:22:53.0856 2888 lltdsvc - ok
11:22:53.0875 2888 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:22:53.0877 2888 lmhosts - ok
11:22:53.0918 2888 LMIInfo - ok
11:22:53.0953 2888 [ 413ecdcfad9a82804d3674c8d7eec24e ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
11:22:53.0954 2888 lmimirr - ok
11:22:53.0974 2888 LMIRfsClientNP - ok
11:22:54.0018 2888 [ c57d3faa50e6f395759ffb7c709bd944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
11:22:54.0021 2888 LMIRfsDriver - ok
11:22:54.0067 2888 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:22:54.0070 2888 LSI_FC - ok
11:22:54.0101 2888 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:22:54.0104 2888 LSI_SAS - ok
11:22:54.0119 2888 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:22:54.0121 2888 LSI_SAS2 - ok
11:22:54.0157 2888 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:22:54.0160 2888 LSI_SCSI - ok
11:22:54.0189 2888 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
11:22:54.0191 2888 luafv - ok
11:22:54.0241 2888 [ dc8490812a3b72811ae534f423b4c206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:22:54.0242 2888 MBAMProtector - ok
11:22:54.0292 2888 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:22:54.0316 2888 MBAMService - ok
11:22:54.0347 2888 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:22:54.0350 2888 Mcx2Svc - ok
11:22:54.0371 2888 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:22:54.0372 2888 megasas - ok
11:22:54.0391 2888 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:22:54.0396 2888 MegaSR - ok
11:22:54.0433 2888 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
11:22:54.0436 2888 MMCSS - ok
11:22:54.0477 2888 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:22:54.0478 2888 Modem - ok
11:22:54.0499 2888 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:22:54.0499 2888 monitor - ok
11:22:54.0531 2888 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
11:22:54.0533 2888 mouclass - ok
11:22:54.0571 2888 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:22:54.0573 2888 mouhid - ok
11:22:54.0607 2888 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:22:54.0609 2888 mountmgr - ok
11:22:54.0645 2888 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:22:54.0649 2888 mpio - ok
11:22:54.0665 2888 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:22:54.0667 2888 mpsdrv - ok
11:22:54.0725 2888 [ 54ffc9c8898113ace189d4aa7199d2c1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:22:54.0741 2888 MpsSvc - ok
11:22:54.0783 2888 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:22:54.0787 2888 MRxDAV - ok
11:22:54.0832 2888 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:22:54.0835 2888 mrxsmb - ok
11:22:54.0879 2888 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:22:54.0883 2888 mrxsmb10 - ok
11:22:54.0900 2888 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:22:54.0903 2888 mrxsmb20 - ok
11:22:54.0945 2888 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:22:54.0948 2888 msahci - ok
11:22:54.0973 2888 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:22:54.0976 2888 msdsm - ok
11:22:55.0000 2888 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
11:22:55.0003 2888 MSDTC - ok
11:22:55.0034 2888 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:22:55.0035 2888 Msfs - ok
11:22:55.0063 2888 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:22:55.0064 2888 mshidkmdf - ok
11:22:55.0105 2888 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:22:55.0107 2888 msisadrv - ok
11:22:55.0135 2888 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:22:55.0139 2888 MSiSCSI - ok
11:22:55.0149 2888 msiserver - ok
11:22:55.0177 2888 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:22:55.0179 2888 MSKSSRV - ok
11:22:55.0212 2888 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:22:55.0213 2888 MSPCLOCK - ok
11:22:55.0232 2888 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:22:55.0234 2888 MSPQM - ok
11:22:55.0286 2888 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:22:55.0303 2888 MsRPC - ok
11:22:55.0339 2888 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:22:55.0340 2888 mssmbios - ok
11:22:55.0351 2888 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:22:55.0356 2888 MSTEE - ok
11:22:55.0384 2888 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:22:55.0386 2888 MTConfig - ok
11:22:55.0410 2888 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:22:55.0411 2888 Mup - ok
11:22:55.0452 2888 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
11:22:55.0458 2888 napagent - ok
11:22:55.0492 2888 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:22:55.0497 2888 NativeWifiP - ok
11:22:55.0534 2888 NAVENG - ok
11:22:55.0544 2888 NAVEX15 - ok
11:22:55.0583 2888 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers\ndis.sys
11:22:55.0609 2888 NDIS - ok
11:22:55.0638 2888 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:22:55.0641 2888 NdisCap - ok
11:22:55.0670 2888 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:22:55.0672 2888 NdisTapi - ok
11:22:55.0711 2888 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:22:55.0713 2888 Ndisuio - ok
11:22:55.0753 2888 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:22:55.0756 2888 NdisWan - ok
11:22:55.0794 2888 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:22:55.0796 2888 NDProxy - ok
11:22:55.0816 2888 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:22:55.0818 2888 NetBIOS - ok
11:22:55.0874 2888 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:22:55.0886 2888 NetBT - ok
11:22:55.0905 2888 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
11:22:55.0908 2888 Netlogon - ok
11:22:55.0948 2888 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
11:22:55.0954 2888 Netman - ok
11:22:56.0014 2888 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:22:56.0048 2888 NetMsmqActivator - ok
11:22:56.0082 2888 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:22:56.0084 2888 NetPipeActivator - ok
11:22:56.0116 2888 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
11:22:56.0130 2888 netprofm - ok
11:22:56.0161 2888 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:22:56.0162 2888 NetTcpActivator - ok
11:22:56.0172 2888 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:22:56.0175 2888 NetTcpPortSharing - ok
11:22:56.0310 2888 [ 64428dfdaf6e88366cb51f45a79c5f69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
11:22:56.0435 2888 netw5v64 - ok
11:22:56.0455 2888 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:22:56.0457 2888 nfrd960 - ok
11:22:56.0554 2888 [ b4187346f54e362daffe647b25a58d50 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\17.9.0.12\ccSvcHst.exe
11:22:56.0557 2888 NIS - ok
11:22:56.0625 2888 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:22:56.0645 2888 NlaSvc - ok
11:22:56.0664 2888 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:22:56.0665 2888 Npfs - ok
11:22:56.0688 2888 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:22:56.0690 2888 nsi - ok
11:22:56.0705 2888 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:22:56.0706 2888 nsiproxy - ok
11:22:56.0797 2888 [ 05d78aa5cb5f3f5c31160bdb955d0b7c ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:22:56.0834 2888 Ntfs - ok
11:22:56.0851 2888 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
11:22:56.0852 2888 Null - ok
11:22:56.0895 2888 [ 5d9fd91f3d38dc9da01e3cb5fa89cd48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:22:56.0898 2888 nvraid - ok
11:22:56.0922 2888 [ f7cd50fe7139f07e77da8ac8033d1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:22:56.0925 2888 nvstor - ok
11:22:56.0965 2888 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:22:56.0968 2888 nv_agp - ok
11:22:57.0048 2888 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:22:57.0067 2888 odserv - ok
11:22:57.0108 2888 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:22:57.0110 2888 ohci1394 - ok
11:22:57.0136 2888 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:22:57.0139 2888 ose - ok
11:22:57.0164 2888 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:22:57.0169 2888 p2pimsvc - ok
11:22:57.0199 2888 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:22:57.0206 2888 p2psvc - ok
11:22:57.0283 2888 [ 20bd38241edd66d8fdc9e3496a1762a3 ] PanService C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
11:22:57.0295 2888 PanService - ok
11:22:57.0319 2888 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:22:57.0321 2888 Parport - ok
11:22:57.0357 2888 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:22:57.0359 2888 partmgr - ok
11:22:57.0380 2888 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:22:57.0384 2888 PcaSvc - ok
11:22:57.0430 2888 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
11:22:57.0432 2888 pci - ok
11:22:57.0449 2888 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
11:22:57.0450 2888 pciide - ok
11:22:57.0483 2888 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
11:22:57.0487 2888 pcmcia - ok
11:22:57.0507 2888 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:22:57.0509 2888 pcw - ok
11:22:57.0535 2888 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:22:57.0550 2888 PEAUTH - ok
11:22:57.0634 2888 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:22:57.0638 2888 PerfHost - ok
11:22:57.0734 2888 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
11:22:57.0769 2888 pla - ok
11:22:57.0830 2888 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:22:57.0854 2888 PlugPlay - ok
11:22:57.0889 2888 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:22:57.0891 2888 PNRPAutoReg - ok
11:22:57.0914 2888 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:22:57.0918 2888 PNRPsvc - ok
11:22:57.0942 2888 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:22:57.0955 2888 PolicyAgent - ok
11:22:57.0983 2888 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
11:22:57.0987 2888 Power - ok
11:22:58.0035 2888 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:22:58.0039 2888 PptpMiniport - ok
11:22:58.0085 2888 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
11:22:58.0087 2888 Processor - ok
11:22:58.0118 2888 [ 5c78838b4d166d1a27db3a8a820c799a ] ProfSvc C:\Windows\system32\profsvc.dll
11:22:58.0122 2888 ProfSvc - ok
11:22:58.0136 2888 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:22:58.0137 2888 ProtectedStorage - ok
11:22:58.0187 2888 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:22:58.0199 2888 Psched - ok
11:22:58.0266 2888 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
11:22:58.0301 2888 ql2300 - ok
11:22:58.0313 2888 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
11:22:58.0316 2888 ql40xx - ok
11:22:58.0337 2888 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
11:22:58.0342 2888 QWAVE - ok
11:22:58.0369 2888 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:22:58.0371 2888 QWAVEdrv - ok
11:22:58.0392 2888 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:22:58.0393 2888 RasAcd - ok
11:22:58.0431 2888 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:22:58.0434 2888 RasAgileVpn - ok
11:22:58.0463 2888 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
11:22:58.0467 2888 RasAuto - ok
11:22:58.0539 2888 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:22:58.0544 2888 Rasl2tp - ok
11:22:58.0609 2888 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
11:22:58.0626 2888 RasMan - ok
11:22:58.0658 2888 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:22:58.0660 2888 RasPppoe - ok
11:22:58.0688 2888 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:22:58.0690 2888 RasSstp - ok
11:22:58.0718 2888 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:22:58.0723 2888 rdbss - ok
11:22:58.0740 2888 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:22:58.0742 2888 rdpbus - ok
11:22:58.0762 2888 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:22:58.0764 2888 RDPCDD - ok
11:22:58.0799 2888 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:22:58.0801 2888 RDPENCDD - ok
11:22:58.0816 2888 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:22:58.0818 2888 RDPREFMP - ok
11:22:58.0859 2888 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:22:58.0862 2888 RDPWD - ok
11:22:58.0897 2888 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:22:58.0901 2888 rdyboost - ok
11:22:58.0930 2888 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:22:58.0933 2888 RemoteAccess - ok
11:22:58.0955 2888 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:22:58.0958 2888 RemoteRegistry - ok
11:22:59.0020 2888 [ 498eb62a160674e793fa40fd65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
11:22:59.0024 2888 RichVideo - ok
11:22:59.0050 2888 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:22:59.0054 2888 RpcEptMapper - ok
11:22:59.0083 2888 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
11:22:59.0086 2888 RpcLocator - ok
11:22:59.0132 2888 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
11:22:59.0137 2888 RpcSs - ok
11:22:59.0153 2888 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:22:59.0155 2888 rspndr - ok
11:22:59.0219 2888 [ a5df2f732a6c95554e548fcb6932bd31 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
11:22:59.0223 2888 RSUSBSTOR - ok
11:22:59.0271 2888 [ b49dc435ae3695bac5623dd94b05732d ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
11:22:59.0275 2888 RTL8167 - ok
11:22:59.0301 2888 RtsUIR - ok
11:22:59.0318 2888 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
11:22:59.0320 2888 SamSs - ok
11:22:59.0355 2888 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:22:59.0357 2888 sbp2port - ok
11:22:59.0387 2888 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:22:59.0392 2888 SCardSvr - ok
11:22:59.0436 2888 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:22:59.0437 2888 scfilter - ok
11:22:59.0529 2888 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
11:22:59.0556 2888 Schedule - ok
11:22:59.0592 2888 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
11:22:59.0593 2888 SCPolicySvc - ok
11:22:59.0650 2888 [ 111e0ebc0ad79cb0fa014b907b231cf0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
11:22:59.0652 2888 sdbus - ok
11:22:59.0705 2888 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:22:59.0708 2888 SDRSVC - ok
11:22:59.0797 2888 [ cc781378e7eda615d2cdca3b17829fa4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
11:22:59.0800 2888 SeaPort - ok
11:22:59.0843 2888 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:22:59.0844 2888 secdrv - ok
11:22:59.0885 2888 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
11:22:59.0888 2888 seclogon - ok
11:22:59.0900 2888 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
11:22:59.0903 2888 SENS - ok
11:22:59.0933 2888 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:22:59.0936 2888 SensrSvc - ok
11:22:59.0957 2888 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:22:59.0959 2888 Serenum - ok
11:22:59.0976 2888 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:22:59.0978 2888 Serial - ok
11:23:00.0017 2888 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:23:00.0019 2888 sermouse - ok
11:23:00.0068 2888 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
11:23:00.0072 2888 SessionEnv - ok
11:23:00.0100 2888 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:23:00.0102 2888 sffdisk - ok
11:23:00.0120 2888 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:23:00.0123 2888 sffp_mmc - ok
11:23:00.0141 2888 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:23:00.0142 2888 sffp_sd - ok
11:23:00.0158 2888 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:23:00.0159 2888 sfloppy - ok
11:23:00.0200 2888 [ b95f6501a2f8b2e78c697fec401970ce ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:23:00.0206 2888 SharedAccess - ok
11:23:00.0251 2888 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:23:00.0260 2888 ShellHWDetection - ok
11:23:00.0281 2888 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:23:00.0283 2888 SiSRaid2 - ok
11:23:00.0307 2888 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:23:00.0309 2888 SiSRaid4 - ok
11:23:00.0431 2888 [ 0f97e7a47a52f4a36969f0fc319654c2 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
11:23:00.0493 2888 Skype C2C Service - ok
11:23:00.0567 2888 [ ddaa5f4a6b958fc313ebd02dd925752f ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:23:00.0569 2888 SkypeUpdate - ok
11:23:00.0601 2888 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:23:00.0603 2888 Smb - ok
11:23:00.0647 2888 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:23:00.0649 2888 SNMPTRAP - ok
11:23:00.0664 2888 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:23:00.0665 2888 spldr - ok
11:23:00.0715 2888 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\Windows\System32\spoolsv.exe
11:23:00.0729 2888 Spooler - ok
11:23:00.0857 2888 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
11:23:00.0883 2888 sppsvc - ok
11:23:00.0904 2888 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:23:00.0908 2888 sppuinotify - ok
11:23:01.0004 2888 [ 96babc4906ecdb1c69d1176f8647ad8e ] SRTSP C:\Windows\System32\Drivers\NISx64\1109000.00C\SRTSP64.SYS
11:23:01.0030 2888 SRTSP - ok
11:23:01.0052 2888 [ c7f491a290e0e4222f5cdcd50eeb8167 ] SRTSPX C:\Windows\system32\drivers\NISx64\1109000.00C\SRTSPX64.SYS
11:23:01.0053 2888 SRTSPX - ok
11:23:01.0108 2888 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
11:23:01.0124 2888 srv - ok
11:23:01.0185 2888 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:23:01.0202 2888 srv2 - ok
11:23:01.0247 2888 [ 0c4540311e11664b245a263e1154cef8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
11:23:01.0252 2888 SrvHsfHDA - ok
11:23:01.0296 2888 [ 02071d207a9858fbe3a48cbfd59c4a04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
11:23:01.0331 2888 SrvHsfV92 - ok
11:23:01.0360 2888 [ 18e40c245dbfaf36fd0134a7ef2df396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
11:23:01.0375 2888 SrvHsfWinac - ok
11:23:01.0398 2888 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:23:01.0401 2888 srvnet - ok
11:23:01.0431 2888 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:23:01.0435 2888 SSDPSRV - ok
11:23:01.0455 2888 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:23:01.0459 2888 SstpSvc - ok
11:23:01.0564 2888 [ 810199dcc3bdc38304d7d649992ea7bc ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
11:23:01.0570 2888 STacSV - ok
11:23:01.0613 2888 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:23:01.0614 2888 stexstor - ok
11:23:01.0652 2888 [ ed1722f43ce61409ef68340402d6267d ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
11:23:01.0659 2888 STHDA - ok
11:23:01.0709 2888 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
11:23:01.0723 2888 stisvc - ok
11:23:01.0770 2888 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
11:23:01.0771 2888 swenum - ok
11:23:01.0797 2888 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
11:23:01.0812 2888 swprv - ok
11:23:01.0861 2888 [ 659b227a72b76115975a6a9491b2fe1f ] SymDS C:\Windows\system32\drivers\NISx64\1109000.00C\SYMDS64.SYS
11:23:01.0874 2888 SymDS - ok
11:23:01.0915 2888 [ 9f5783a4a03d0091cdbdaa858b566926 ] SymEFA C:\Windows\system32\drivers\NISx64\1109000.00C\SYMEFA64.SYS
11:23:01.0919 2888 SymEFA - ok
11:23:01.0950 2888 [ 3f9d5fe52585e2653e59fdbfdf09a94c ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
11:23:01.0953 2888 SymEvent - ok
11:23:01.0977 2888 [ f57588546e738db1583981d8f44e9bc2 ] SymIRON C:\Windows\system32\drivers\NISx64\1109000.00C\Ironx64.SYS
11:23:01.0980 2888 SymIRON - ok
11:23:02.0000 2888 [ 3adfb72f0797ae3832509fe030755e21 ] SYMTDIv C:\Windows\System32\Drivers\NISx64\1109000.00C\SYMTDIV.SYS
11:23:02.0006 2888 SYMTDIv - ok
11:23:02.0064 2888 [ 3a706a967295e16511e40842b1a2761d ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:23:02.0069 2888 SynTP - ok
11:23:02.0152 2888 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
11:23:02.0204 2888 SysMain - ok
11:23:02.0238 2888 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:23:02.0241 2888 TabletInputService - ok
11:23:02.0302 2888 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:23:02.0308 2888 TapiSrv - ok
11:23:02.0340 2888 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
11:23:02.0343 2888 TBS - ok
11:23:02.0444 2888 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:23:02.0488 2888 Tcpip - ok
11:23:02.0559 2888 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:23:02.0572 2888 TCPIP6 - ok
11:23:02.0616 2888 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:23:02.0619 2888 tcpipreg - ok
11:23:02.0668 2888 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:23:02.0670 2888 TDPIPE - ok
11:23:02.0707 2888 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:23:02.0708 2888 TDTCP - ok
11:23:02.0764 2888 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:23:02.0766 2888 tdx - ok
11:23:02.0803 2888 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
11:23:02.0805 2888 TermDD - ok
11:23:02.0859 2888 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
11:23:02.0874 2888 TermService - ok
11:23:02.0885 2888 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
11:23:02.0888 2888 Themes - ok
11:23:02.0920 2888 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
11:23:02.0922 2888 THREADORDER - ok
11:23:02.0941 2888 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
11:23:02.0944 2888 TrkWks - ok
11:23:03.0004 2888 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:23:03.0008 2888 TrustedInstaller - ok
11:23:03.0074 2888 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:23:03.0075 2888 tssecsrv - ok
11:23:03.0125 2888 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:23:03.0131 2888 TsUsbFlt - ok
11:23:03.0182 2888 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:23:03.0185 2888 tunnel - ok
11:23:03.0212 2888 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:23:03.0214 2888 uagp35 - ok
11:23:03.0255 2888 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:23:03.0260 2888 udfs - ok
11:23:03.0293 2888 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:23:03.0295 2888 UI0Detect - ok
11:23:03.0316 2888 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:23:03.0318 2888 uliagpkx - ok
11:23:03.0356 2888 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
11:23:03.0358 2888 umbus - ok
11:23:03.0383 2888 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:23:03.0384 2888 UmPass - ok
11:23:03.0410 2888 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
11:23:03.0425 2888 upnphost - ok
11:23:03.0468 2888 [ f724b03c3dfaacf08d17d38bf3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
11:23:03.0470 2888 USBAAPL64 - ok
11:23:03.0506 2888 [ 481dff26b4dca8f4cbac1f7dce1d6829 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
11:23:03.0508 2888 usbccgp - ok
11:23:03.0519 2888 USBCCID - ok
11:23:03.0559 2888 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:23:03.0565 2888 usbcir - ok
11:23:03.0586 2888 [ 74ee782b1d9c241efe425565854c661c ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:23:03.0588 2888 usbehci - ok
11:23:03.0616 2888 [ 44d9c773febff10593b50ddfc2d6bc27 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
11:23:03.0617 2888 usbfilter - ok
11:23:03.0641 2888 [ dc96bd9ccb8403251bcf25047573558e ] usbhub C:\Windows\system32\drivers\usbhub.sys
11:23:03.0646 2888 usbhub - ok
11:23:03.0668 2888 [ 58e546bbaf87664fc57e0f6081e4f609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:23:03.0669 2888 usbohci - ok
11:23:03.0691 2888 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:23:03.0692 2888 usbprint - ok
11:23:03.0738 2888 [ d76510cfa0fc09023077f22c2f979d86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:23:03.0742 2888 USBSTOR - ok
11:23:03.0782 2888 [ 81fb2216d3a60d1284455d511797db3d ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:23:03.0784 2888 usbuhci - ok
11:23:03.0828 2888 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:23:03.0832 2888 usbvideo - ok
11:23:03.0857 2888 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
11:23:03.0859 2888 UxSms - ok
11:23:03.0877 2888 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
11:23:03.0878 2888 VaultSvc - ok
11:23:03.0923 2888 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:23:03.0924 2888 vdrvroot - ok
11:23:03.0979 2888 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
11:23:04.0005 2888 vds - ok
11:23:04.0039 2888 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:23:04.0041 2888 vga - ok
11:23:04.0065 2888 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
11:23:04.0067 2888 VgaSave - ok
11:23:04.0097 2888 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:23:04.0101 2888 vhdmp - ok
11:23:04.0133 2888 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
11:23:04.0135 2888 viaide - ok
11:23:04.0175 2888 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:23:04.0177 2888 volmgr - ok
11:23:04.0226 2888 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:23:04.0231 2888 volmgrx - ok
11:23:04.0258 2888 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:23:04.0262 2888 volsnap - ok
11:23:04.0289 2888 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:23:04.0293 2888 vsmraid - ok
11:23:04.0360 2888 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
11:23:04.0395 2888 VSS - ok
11:23:04.0421 2888 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:23:04.0423 2888 vwifibus - ok
11:23:04.0452 2888 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:23:04.0453 2888 vwififlt - ok
11:23:04.0485 2888 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
11:23:04.0486 2888 vwifimp - ok
11:23:04.0518 2888 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
11:23:04.0533 2888 W32Time - ok
11:23:04.0568 2888 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:23:04.0570 2888 WacomPen - ok
11:23:04.0605 2888 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:23:04.0607 2888 WANARP - ok
11:23:04.0616 2888 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:23:04.0618 2888 Wanarpv6 - ok
11:23:04.0690 2888 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:23:04.0752 2888 WatAdminSvc - ok
11:23:04.0833 2888 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
11:23:04.0868 2888 wbengine - ok
11:23:04.0892 2888 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:23:04.0897 2888 WbioSrvc - ok
11:23:04.0944 2888 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:23:04.0950 2888 wcncsvc - ok
11:23:04.0976 2888 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:23:04.0978 2888 WcsPlugInService - ok
11:23:05.0002 2888 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:23:05.0004 2888 Wd - ok
11:23:05.0036 2888 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:23:05.0052 2888 Wdf01000 - ok
11:23:05.0070 2888 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:23:05.0073 2888 WdiServiceHost - ok
11:23:05.0082 2888 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:23:05.0084 2888 WdiSystemHost - ok
11:23:05.0128 2888 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
11:23:05.0133 2888 WebClient - ok
11:23:05.0168 2888 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:23:05.0173 2888 Wecsvc - ok
11:23:05.0193 2888 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:23:05.0195 2888 wercplsupport - ok
11:23:05.0220 2888 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:23:05.0224 2888 WerSvc - ok
11:23:05.0252 2888 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:23:05.0254 2888 WfpLwf - ok
11:23:05.0271 2888 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:23:05.0273 2888 WIMMount - ok
11:23:05.0288 2888 WinDefend - ok
11:23:05.0307 2888 WinHttpAutoProxySvc - ok
11:23:05.0346 2888 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:23:05.0350 2888 Winmgmt - ok
11:23:05.0419 2888 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
11:23:05.0463 2888 WinRM - ok
11:23:05.0540 2888 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:23:05.0541 2888 WinUsb - ok
11:23:05.0572 2888 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
11:23:05.0598 2888 Wlansvc - ok
11:23:05.0744 2888 [ 2bacd71123f42cea603f4e205e1ae337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:23:05.0809 2888 wlidsvc - ok
11:23:05.0831 2888 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:23:05.0832 2888 WmiAcpi - ok
11:23:05.0867 2888 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:23:05.0874 2888 wmiApSrv - ok
11:23:05.0906 2888 WMPNetworkSvc - ok
11:23:05.0925 2888 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:23:05.0928 2888 WPCSvc - ok
11:23:05.0965 2888 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:23:05.0968 2888 WPDBusEnum - ok
11:23:05.0989 2888 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:23:05.0991 2888 ws2ifsl - ok
11:23:06.0016 2888 [ e8b1fe6669397d1772d8196df0e57a9e ] wscsvc C:\Windows\System32\wscsvc.dll
11:23:06.0018 2888 wscsvc - ok
11:23:06.0029 2888 WSearch - ok
11:23:06.0133 2888 [ d9ef901dca379cfe914e9fa13b73b4c4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:23:06.0151 2888 wuauserv - ok
11:23:06.0169 2888 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:23:06.0172 2888 WudfPf - ok
11:23:06.0225 2888 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:23:06.0228 2888 WUDFRd - ok
11:23:06.0271 2888 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:23:06.0275 2888 wudfsvc - ok
11:23:06.0297 2888 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
11:23:06.0302 2888 WwanSvc - ok
11:23:06.0353 2888 [ 4a5ce13408945e525503b5f73d29b9c5 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
11:23:06.0367 2888 xnacc - ok
11:23:06.0404 2888 [ b3eeacf62445e24fbb2cd4b0fb4db026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
11:23:06.0410 2888 yukonw7 - ok
11:23:06.0443 2888 ================ Scan global ===============================
11:23:06.0473 2888 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
11:23:06.0512 2888 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
11:23:06.0529 2888 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
11:23:06.0586 2888 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
11:23:06.0630 2888 (24acb7e5be595468e3b9aa488b9b4fcb) C:\Windows\system32\services.exe
11:23:06.0647 2888 [Global] - ok
11:23:06.0654 2888 ================ Scan MBR ==================================
11:23:06.0676 2888 MBR (0x1B8) (9f5822da1e7acf7b2c6474793db932b7) \Device\Harddisk0\DR0
11:23:06.0959 2888 \Device\Harddisk0\DR0 - ok
11:23:06.0962 2888 ================ Scan VBR ==================================
11:23:06.0966 2888 Boot (0x1200) (823355db5b5a8dac5c85b8b4d5a15fc1) \Device\Harddisk0\DR0\Partition1
11:23:06.0968 2888 \Device\Harddisk0\DR0\Partition1 - ok
11:23:06.0981 2888 Boot (0x1200) (6894e508505b05ad59c9410942a105db) \Device\Harddisk0\DR0\Partition2
11:23:06.0983 2888 \Device\Harddisk0\DR0\Partition2 - ok
11:23:07.0011 2888 Boot (0x1200) (106745c92588ef9370aec6d435df724b) \Device\Harddisk0\DR0\Partition3
11:23:07.0013 2888 \Device\Harddisk0\DR0\Partition3 - ok
11:23:07.0030 2888 Boot (0x1200) (41554bfa611c303a1836f9acce1ba088) \Device\Harddisk0\DR0\Partition4
11:23:07.0031 2888 \Device\Harddisk0\DR0\Partition4 - ok
11:23:07.0035 2888 ============================================================
11:23:07.0035 2888 Scan finished
11:23:07.0035 2888 ============================================================
11:23:07.0052 1264 Detected object count: 0
11:23:07.0052 1264 Actual detected object count: 0

#9 WolfyAD

WolfyAD
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 16 August 2012 - 11:36 AM

Nothing in the red for this one either:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-16 10:33:58
-----------------------------
10:33:58.560 OS Version: Windows x64 6.1.7601 Service Pack 1
10:33:58.561 Number of processors: 1 586 0x602
10:33:58.562 ComputerName: RAULMARTINEZ-PC UserName: Raul.Martinez
10:34:00.556 Initialize success
10:34:59.995 AVAST engine defs: 12081600
10:35:37.273 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
10:35:37.279 Disk 0 Vendor: WDC_WD2500BEKT-60V5T1 12.01A12 Size: 238475MB BusType: 11
10:35:37.285 Device \Driver\atapi -> MajorFunction fffffa80028b25e8
10:35:37.304 Disk 0 MBR read successfully
10:35:37.310 Disk 0 MBR scan
10:35:37.315 Disk 0 unknown MBR code
10:35:37.319 Disk 0 MBR hidden
10:35:37.333 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
10:35:37.349 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 223677 MB offset 409600
10:35:37.378 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 14494 MB offset 458500096
10:35:37.454 Disk 0 scanning C:\Windows\system32\drivers
10:35:49.279 Service scanning
10:36:20.526 Modules scanning
10:36:20.923 Disk 0 trace - called modules:
10:36:20.941 ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xfffffa80028b25e8]<<
10:36:20.955 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80024e4060]
10:36:20.963 3 CLASSPNP.SYS[fffff8800110443f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8001580060]
10:36:20.970 \Driver\atapi[0xfffffa800280d4b0] -> IRP_MJ_CREATE -> 0xfffffa80028b25e8
10:36:22.248 AVAST engine scan C:\Windows
10:36:24.549 AVAST engine scan C:\Windows\system32
10:40:15.042 AVAST engine scan C:\Windows\system32\drivers
10:40:34.827 AVAST engine scan C:\Users\Raul.Martinez
10:42:29.654 Disk 0 MBR has been saved successfully to "C:\Users\Raul.Martinez\Documents\MBR.dat"
10:42:29.666 The log file has been saved successfully to "C:\Users\Raul.Martinez\Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-16 11:27:15
-----------------------------
11:27:15.650 OS Version: Windows x64 6.1.7601 Service Pack 1
11:27:15.650 Number of processors: 1 586 0x602
11:27:15.651 ComputerName: RAULMARTINEZ-PC UserName: Raul.Martinez
11:27:19.254 Initialize success
11:27:32.656 AVAST engine defs: 12081600
11:27:36.898 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
11:27:36.903 Disk 0 Vendor: WDC_WD2500BEKT-60V5T1 12.01A12 Size: 238475MB BusType: 11
11:27:36.939 Disk 0 MBR read successfully
11:27:36.942 Disk 0 MBR scan
11:27:36.947 Disk 0 unknown MBR code
11:27:36.958 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
11:27:36.966 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 223677 MB offset 409600
11:27:36.995 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 14494 MB offset 458500096
11:27:37.015 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 488183808
11:27:37.071 Disk 0 scanning C:\Windows\system32\drivers
11:27:53.312 Service scanning
11:28:23.884 Modules scanning
11:28:23.907 Disk 0 trace - called modules:
11:28:24.332 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
11:28:24.337 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80024d9060]
11:28:24.344 3 CLASSPNP.SYS[fffff8800106f43f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002492060]
11:28:26.076 AVAST engine scan C:\Windows
11:28:28.287 AVAST engine scan C:\Windows\system32
11:32:08.262 AVAST engine scan C:\Windows\system32\drivers
11:32:30.603 AVAST engine scan C:\Users\Raul.Martinez
11:34:48.387 Disk 0 MBR has been saved successfully to "C:\Users\Raul.Martinez\Documents\MBR.dat"
11:34:48.434 The log file has been saved successfully to "C:\Users\Raul.Martinez\Documents\aswMBR.txt"




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users