Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

MSE isn't monitoring and won't run


  • Please log in to reply
3 replies to this topic

#1 rickatontu

rickatontu

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:11:27 AM

Posted 23 August 2012 - 09:40 AM

Hey there,

This is my first post though I have been a lurker for a while.

I run Microsoft Security Essentials (MSE) as my anti-virus software. Today, it randomly stopped running and gave an alert to restart. I did restart and it turns off in about 5 seconds. This made me suspicious. It suggests I restart but I am hesitant as I am concerned that will embed something malicious.

I downloaded Rkill and ran it. It didn't detect any malware services. Rkill did terminate 3 processes, below:


* C:\windows\System32\atwtusb.exe (PID: 2228) [WD-HEUR]
* C:\Windows\SysWOW64\tblmouse.exe (PID: 4904) [WD-HEUR]
* C:\windows\system32\atwtusb.exe (PID: 2720) [WD-HEUR]

I restarted MSE and same issue.

Appreciate any help.

Best,

Rick

*Moderator Edit: Moved topic from Windows 7 to Am I Infected? Since malware can cause issues as described we need to find out if the system is infected. ~ Queen-Evie*

Edited by Queen-Evie, 23 August 2012 - 10:09 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:27 AM

Posted 23 August 2012 - 10:36 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 rickatontu

rickatontu
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:11:27 AM

Posted 23 August 2012 - 11:50 AM

narenxp,

Thanks for the help. Below is the information you requested:

First, from TDSSKiller

11:44:06.0140 8688 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
11:44:06.0622 8688 ============================================================
11:44:06.0622 8688 Current date / time: 2012/08/23 11:44:06.0622
11:44:06.0622 8688 SystemInfo:
11:44:06.0622 8688
11:44:06.0623 8688 OS Version: 6.1.7601 ServicePack: 1.0
11:44:06.0623 8688 Product type: Workstation
11:44:06.0623 8688 ComputerName: RICK-PC
11:44:06.0623 8688 UserName: Rick
11:44:06.0623 8688 Windows directory: C:\windows
11:44:06.0623 8688 System windows directory: C:\windows
11:44:06.0623 8688 Running under WOW64
11:44:06.0623 8688 Processor architecture: Intel x64
11:44:06.0623 8688 Number of processors: 4
11:44:06.0623 8688 Page size: 0x1000
11:44:06.0623 8688 Boot type: Normal boot
11:44:06.0623 8688 ============================================================
11:44:07.0051 8688 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:44:07.0058 8688 ============================================================
11:44:07.0058 8688 \Device\Harddisk0\DR0:
11:44:07.0058 8688 MBR partitions:
11:44:07.0058 8688 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
11:44:07.0058 8688 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x34BA1000
11:44:07.0080 8688 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x34C06000, BlocksNum 0x39FD800
11:44:07.0080 8688 ============================================================
11:44:07.0136 8688 C: <-> \Device\Harddisk0\DR0\Partition2
11:44:07.0184 8688 D: <-> \Device\Harddisk0\DR0\Partition3
11:44:07.0184 8688 ============================================================
11:44:07.0184 8688 Initialize success
11:44:07.0184 8688 ============================================================
11:44:59.0096 2988 ============================================================
11:44:59.0097 2988 Scan started
11:44:59.0097 2988 Mode: Manual; TDLFS;
11:44:59.0097 2988 ============================================================
11:44:59.0667 2988 ================ Scan system memory ========================
11:44:59.0668 2988 System memory - ok
11:44:59.0669 2988 ================ Scan services =============================
11:44:59.0830 2988 0088181345670672mcinstcleanup - ok
11:45:00.0007 2988 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
11:45:00.0013 2988 1394ohci - ok
11:45:00.0049 2988 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
11:45:00.0055 2988 ACPI - ok
11:45:00.0086 2988 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
11:45:00.0088 2988 AcpiPmi - ok
11:45:00.0138 2988 [ 5BBFF8B826EC38D32C26334E079C7EFC ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys
11:45:00.0139 2988 ACPIVPC - ok
11:45:00.0228 2988 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:45:00.0230 2988 AdobeARMservice - ok
11:45:00.0350 2988 [ 76D5A3D2A50402A0B9B6ED13C4371E79 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:45:00.0355 2988 AdobeFlashPlayerUpdateSvc - ok
11:45:00.0410 2988 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
11:45:00.0419 2988 adp94xx - ok
11:45:00.0449 2988 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
11:45:00.0455 2988 adpahci - ok
11:45:00.0497 2988 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
11:45:00.0501 2988 adpu320 - ok
11:45:00.0530 2988 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
11:45:00.0532 2988 AeLookupSvc - ok
11:45:00.0581 2988 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
11:45:00.0586 2988 AFD - ok
11:45:00.0619 2988 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
11:45:00.0620 2988 agp440 - ok
11:45:00.0655 2988 [ C74E17A274E4DF797D743B500582906A ] aiptektp C:\windows\system32\DRIVERS\aiptektp.sys
11:45:00.0657 2988 aiptektp - ok
11:45:00.0689 2988 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
11:45:00.0692 2988 ALG - ok
11:45:00.0725 2988 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
11:45:00.0726 2988 aliide - ok
11:45:00.0731 2988 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
11:45:00.0733 2988 amdide - ok
11:45:00.0766 2988 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
11:45:00.0768 2988 AmdK8 - ok
11:45:00.0789 2988 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
11:45:00.0791 2988 AmdPPM - ok
11:45:00.0815 2988 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
11:45:00.0818 2988 amdsata - ok
11:45:00.0831 2988 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
11:45:00.0835 2988 amdsbs - ok
11:45:00.0848 2988 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
11:45:00.0850 2988 amdxata - ok
11:45:00.0916 2988 [ F41E453A90EF19217CEE1675F5256EE7 ] Apache2.2 c:\xampp\apache\bin\httpd.exe
11:45:00.0918 2988 Apache2.2 - ok
11:45:00.0962 2988 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
11:45:00.0964 2988 AppID - ok
11:45:00.0993 2988 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
11:45:00.0995 2988 AppIDSvc - ok
11:45:01.0006 2988 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
11:45:01.0009 2988 Appinfo - ok
11:45:01.0063 2988 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:45:01.0066 2988 Apple Mobile Device - ok
11:45:01.0098 2988 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
11:45:01.0101 2988 arc - ok
11:45:01.0138 2988 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
11:45:01.0141 2988 arcsas - ok
11:45:01.0160 2988 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
11:45:01.0160 2988 AsyncMac - ok
11:45:01.0187 2988 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
11:45:01.0187 2988 atapi - ok
11:45:01.0241 2988 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
11:45:01.0257 2988 AudioEndpointBuilder - ok
11:45:01.0276 2988 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
11:45:01.0283 2988 AudioSrv - ok
11:45:01.0316 2988 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
11:45:01.0319 2988 AxInstSV - ok
11:45:01.0351 2988 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
11:45:01.0358 2988 b06bdrv - ok
11:45:01.0393 2988 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
11:45:01.0398 2988 b57nd60a - ok
11:45:01.0504 2988 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
11:45:01.0509 2988 BBSvc - ok
11:45:01.0543 2988 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
11:45:01.0549 2988 BBUpdate - ok
11:45:01.0696 2988 [ B5D54119CE0BB77872C33A717CB76386 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
11:45:01.0815 2988 BCM43XX - ok
11:45:01.0906 2988 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
11:45:01.0910 2988 BDESVC - ok
11:45:01.0982 2988 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
11:45:01.0983 2988 Beep - ok
11:45:02.0051 2988 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
11:45:02.0082 2988 BFE - ok
11:45:02.0140 2988 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
11:45:02.0156 2988 BITS - ok
11:45:02.0189 2988 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
11:45:02.0191 2988 blbdrive - ok
11:45:02.0270 2988 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:45:02.0281 2988 Bonjour Service - ok
11:45:02.0342 2988 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
11:45:02.0345 2988 bowser - ok
11:45:02.0377 2988 [ AAA4F992F879977A000FE8B8C730CD2C ] BPntDrv C:\windows\system32\drivers\BPntDrv.sys
11:45:02.0379 2988 BPntDrv - ok
11:45:02.0424 2988 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
11:45:02.0426 2988 BrFiltLo - ok
11:45:02.0444 2988 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
11:45:02.0446 2988 BrFiltUp - ok
11:45:02.0478 2988 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\windows\System32\browser.dll
11:45:02.0479 2988 Browser - ok
11:45:02.0496 2988 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
11:45:02.0501 2988 Brserid - ok
11:45:02.0527 2988 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
11:45:02.0528 2988 BrSerWdm - ok
11:45:02.0531 2988 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
11:45:02.0533 2988 BrUsbMdm - ok
11:45:02.0536 2988 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
11:45:02.0537 2988 BrUsbSer - ok
11:45:02.0588 2988 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
11:45:02.0590 2988 BthEnum - ok
11:45:02.0598 2988 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
11:45:02.0600 2988 BTHMODEM - ok
11:45:02.0613 2988 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
11:45:02.0615 2988 BthPan - ok
11:45:02.0654 2988 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
11:45:02.0658 2988 BTHPORT - ok
11:45:02.0684 2988 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
11:45:02.0686 2988 bthserv - ok
11:45:02.0714 2988 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
11:45:02.0716 2988 BTHUSB - ok
11:45:02.0783 2988 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
11:45:02.0784 2988 cdfs - ok
11:45:02.0832 2988 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
11:45:02.0833 2988 cdrom - ok
11:45:02.0874 2988 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
11:45:02.0876 2988 CertPropSvc - ok
11:45:02.0895 2988 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
11:45:02.0897 2988 circlass - ok
11:45:02.0921 2988 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
11:45:02.0926 2988 CLFS - ok
11:45:03.0002 2988 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:45:03.0005 2988 clr_optimization_v2.0.50727_32 - ok
11:45:03.0057 2988 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:45:03.0061 2988 clr_optimization_v2.0.50727_64 - ok
11:45:03.0140 2988 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:45:03.0144 2988 clr_optimization_v4.0.30319_32 - ok
11:45:03.0181 2988 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:45:03.0186 2988 clr_optimization_v4.0.30319_64 - ok
11:45:03.0253 2988 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
11:45:03.0255 2988 clwvd - ok
11:45:03.0304 2988 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
11:45:03.0306 2988 CmBatt - ok
11:45:03.0317 2988 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
11:45:03.0319 2988 cmdide - ok
11:45:03.0379 2988 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
11:45:03.0389 2988 CNG - ok
11:45:03.0483 2988 [ 99B1B888B793DE320C5479B3C953781F ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
11:45:03.0552 2988 CnxtHdAudService - ok
11:45:03.0618 2988 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
11:45:03.0619 2988 Compbatt - ok
11:45:03.0638 2988 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
11:45:03.0639 2988 CompositeBus - ok
11:45:03.0652 2988 COMSysApp - ok
11:45:03.0666 2988 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
11:45:03.0667 2988 crcdisk - ok
11:45:03.0706 2988 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
11:45:03.0708 2988 CryptSvc - ok
11:45:03.0826 2988 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
11:45:03.0837 2988 cvhsvc - ok
11:45:03.0878 2988 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
11:45:03.0883 2988 DcomLaunch - ok
11:45:03.0919 2988 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
11:45:03.0924 2988 defragsvc - ok
11:45:03.0954 2988 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
11:45:03.0956 2988 DfsC - ok
11:45:03.0979 2988 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
11:45:03.0984 2988 Dhcp - ok
11:45:04.0013 2988 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
11:45:04.0014 2988 discache - ok
11:45:04.0043 2988 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
11:45:04.0044 2988 Disk - ok
11:45:04.0064 2988 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
11:45:04.0067 2988 Dnscache - ok
11:45:04.0083 2988 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
11:45:04.0087 2988 dot3svc - ok
11:45:04.0122 2988 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
11:45:04.0125 2988 DPS - ok
11:45:04.0151 2988 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
11:45:04.0152 2988 drmkaud - ok
11:45:04.0180 2988 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
11:45:04.0195 2988 DXGKrnl - ok
11:45:04.0236 2988 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
11:45:04.0239 2988 EapHost - ok
11:45:04.0322 2988 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
11:45:04.0398 2988 ebdrv - ok
11:45:04.0422 2988 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
11:45:04.0423 2988 EFS - ok
11:45:04.0497 2988 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
11:45:04.0518 2988 ehRecvr - ok
11:45:04.0550 2988 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
11:45:04.0553 2988 ehSched - ok
11:45:04.0589 2988 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
11:45:04.0597 2988 elxstor - ok
11:45:04.0623 2988 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
11:45:04.0624 2988 ErrDev - ok
11:45:04.0676 2988 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
11:45:04.0681 2988 EventSystem - ok
11:45:04.0708 2988 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
11:45:04.0712 2988 exfat - ok
11:45:04.0747 2988 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
11:45:04.0749 2988 fastfat - ok
11:45:04.0774 2988 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
11:45:04.0785 2988 Fax - ok
11:45:04.0832 2988 [ 3191ACA33088EE2481044FC0DB736442 ] fbfmon C:\windows\system32\drivers\fbfmon.sys
11:45:04.0835 2988 fbfmon - ok
11:45:04.0870 2988 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
11:45:04.0872 2988 fdc - ok
11:45:04.0898 2988 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
11:45:04.0900 2988 fdPHost - ok
11:45:04.0932 2988 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
11:45:04.0934 2988 FDResPub - ok
11:45:04.0956 2988 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
11:45:04.0958 2988 FileInfo - ok
11:45:04.0972 2988 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
11:45:04.0974 2988 Filetrace - ok
11:45:05.0034 2988 [ C623057D3905323F760A8B3C8523C072 ] FileZilla Server C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
11:45:05.0043 2988 FileZilla Server - ok
11:45:05.0090 2988 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
11:45:05.0091 2988 flpydisk - ok
11:45:05.0114 2988 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
11:45:05.0117 2988 FltMgr - ok
11:45:05.0154 2988 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
11:45:05.0168 2988 FontCache - ok
11:45:05.0209 2988 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:45:05.0211 2988 FontCache3.0.0.0 - ok
11:45:05.0278 2988 [ 72B73ACD5F7F3A368A80FEC70D5B0D8C ] FreeOTFE C:\Windows\System32\FreeOTFE.sys
11:45:05.0282 2988 FreeOTFE - ok
11:45:05.0311 2988 [ 63B156E752252742F291C15E46575A28 ] FreeOTFECypherAES_ltc C:\Windows\System32\FreeOTFECypherAES_ltc.sys
11:45:05.0315 2988 FreeOTFECypherAES_ltc - ok
11:45:05.0335 2988 [ 7E3D01E3B16ED8AAD2DFE75FA01EFAB2 ] FreeOTFECypherBlowfish C:\Windows\System32\FreeOTFECypherBlowfish.sys
11:45:05.0338 2988 FreeOTFECypherBlowfish - ok
11:45:05.0348 2988 [ C3984A51BBD900DD745DDFD520A44CE4 ] FreeOTFECypherCAST5 C:\Windows\System32\FreeOTFECypherCAST5.sys
11:45:05.0352 2988 FreeOTFECypherCAST5 - ok
11:45:05.0383 2988 [ 3859D1952FAB7CA303FB1E1DFB2C72E5 ] FreeOTFECypherCAST6_Gladman C:\Windows\System32\FreeOTFECypherCAST6_Gladman.sys
11:45:05.0385 2988 FreeOTFECypherCAST6_Gladman - ok
11:45:05.0402 2988 [ 9B560D25AD5B12E0C23C7AB0C6C6FE65 ] FreeOTFECypherDES C:\Windows\System32\FreeOTFECypherDES.sys
11:45:05.0404 2988 FreeOTFECypherDES - ok
11:45:05.0410 2988 [ 21FD0076ACBE45CF5F2F6ACE47F2911B ] FreeOTFECypherMARS_Gladman C:\Windows\System32\FreeOTFECypherMARS_Gladman.sys
11:45:05.0411 2988 FreeOTFECypherMARS_Gladman - ok
11:45:05.0415 2988 [ 2430E45EF1439AAB0E896437AAA1C685 ] FreeOTFECypherRC6_ltc C:\Windows\System32\FreeOTFECypherRC6_ltc.sys
11:45:05.0417 2988 FreeOTFECypherRC6_ltc - ok
11:45:05.0446 2988 [ ED7382FD681CA9EA81494595527DE21D ] FreeOTFECypherSerpent_Gladman C:\Windows\System32\FreeOTFECypherSerpent_Gladman.sys
11:45:05.0449 2988 FreeOTFECypherSerpent_Gladman - ok
11:45:05.0460 2988 [ 1B00B0D5CCD4E7270D145B53612584C3 ] FreeOTFECypherTwofish_ltc C:\Windows\System32\FreeOTFECypherTwofish_ltc.sys
11:45:05.0462 2988 FreeOTFECypherTwofish_ltc - ok
11:45:05.0480 2988 [ 6CE7F52FC992F747AB9D68611198AF1D ] FreeOTFEHashMD C:\Windows\System32\FreeOTFEHashMD.sys
11:45:05.0482 2988 FreeOTFEHashMD - ok
11:45:05.0500 2988 [ 4D5026914BB47A035FB552511B9CDA59 ] FreeOTFEHashRIPEMD C:\Windows\System32\FreeOTFEHashRIPEMD.sys
11:45:05.0502 2988 FreeOTFEHashRIPEMD - ok
11:45:05.0506 2988 [ E560A1733F4CF2D626F46DAE71522DF9 ] FreeOTFEHashSHA C:\Windows\System32\FreeOTFEHashSHA.sys
11:45:05.0508 2988 FreeOTFEHashSHA - ok
11:45:05.0524 2988 [ C28CCCC8556F5A675F186565946B27CA ] FreeOTFEHashTiger C:\Windows\System32\FreeOTFEHashTiger.sys
11:45:05.0526 2988 FreeOTFEHashTiger - ok
11:45:05.0530 2988 [ 590531108E8CC5AC5B23A1ACF0247A14 ] FreeOTFEHashWhirlpool C:\Windows\System32\FreeOTFEHashWhirlpool.sys
11:45:05.0531 2988 FreeOTFEHashWhirlpool - ok
11:45:05.0545 2988 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
11:45:05.0547 2988 FsDepends - ok
11:45:05.0575 2988 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
11:45:05.0576 2988 Fs_Rec - ok
11:45:05.0618 2988 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
11:45:05.0621 2988 fvevol - ok
11:45:05.0630 2988 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
11:45:05.0631 2988 gagp30kx - ok
11:45:05.0673 2988 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
11:45:05.0675 2988 GEARAspiWDM - ok
11:45:05.0724 2988 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
11:45:05.0755 2988 gpsvc - ok
11:45:05.0856 2988 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:45:05.0861 2988 gupdate - ok
11:45:05.0881 2988 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:45:05.0884 2988 gupdatem - ok
11:45:05.0904 2988 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
11:45:05.0907 2988 gusvc - ok
11:45:05.0958 2988 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
11:45:05.0960 2988 hcw85cir - ok
11:45:05.0986 2988 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
11:45:05.0991 2988 HdAudAddService - ok
11:45:06.0030 2988 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
11:45:06.0034 2988 HDAudBus - ok
11:45:06.0046 2988 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
11:45:06.0049 2988 HidBatt - ok
11:45:06.0067 2988 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
11:45:06.0069 2988 HidBth - ok
11:45:06.0081 2988 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
11:45:06.0082 2988 HidIr - ok
11:45:06.0105 2988 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
11:45:06.0107 2988 hidserv - ok
11:45:06.0123 2988 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
11:45:06.0124 2988 HidUsb - ok
11:45:06.0148 2988 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
11:45:06.0151 2988 hkmsvc - ok
11:45:06.0177 2988 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
11:45:06.0181 2988 HomeGroupListener - ok
11:45:06.0206 2988 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
11:45:06.0210 2988 HomeGroupProvider - ok
11:45:06.0229 2988 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
11:45:06.0230 2988 HpSAMD - ok
11:45:06.0254 2988 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
11:45:06.0259 2988 HTTP - ok
11:45:06.0272 2988 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
11:45:06.0273 2988 hwpolicy - ok
11:45:06.0297 2988 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
11:45:06.0298 2988 i8042prt - ok
11:45:06.0335 2988 [ 53CC5BF8B5A219119953C7ABB19A7705 ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
11:45:06.0337 2988 iaStor - ok
11:45:06.0401 2988 [ F5C0317AF600F8C0D7E4202EB04232B1 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
11:45:06.0402 2988 IAStorDataMgrSvc - ok
11:45:06.0438 2988 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
11:45:06.0446 2988 iaStorV - ok
11:45:06.0526 2988 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
11:45:06.0528 2988 IDriverT - ok
11:45:06.0588 2988 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:45:06.0617 2988 idsvc - ok
11:45:06.0920 2988 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
11:45:07.0213 2988 igfx - ok
11:45:07.0230 2988 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
11:45:07.0232 2988 iirsp - ok
11:45:07.0269 2988 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
11:45:07.0277 2988 IKEEXT - ok
11:45:07.0320 2988 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
11:45:07.0327 2988 IntcDAud - ok
11:45:07.0347 2988 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
11:45:07.0348 2988 intelide - ok
11:45:07.0380 2988 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
11:45:07.0381 2988 intelppm - ok
11:45:07.0393 2988 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
11:45:07.0396 2988 IPBusEnum - ok
11:45:07.0405 2988 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
11:45:07.0406 2988 IpFilterDriver - ok
11:45:07.0429 2988 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
11:45:07.0437 2988 iphlpsvc - ok
11:45:07.0455 2988 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
11:45:07.0457 2988 IPMIDRV - ok
11:45:07.0477 2988 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
11:45:07.0478 2988 IPNAT - ok
11:45:07.0527 2988 [ 46D249F9DB7844CC01050A9345F0F61B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:45:07.0541 2988 iPod Service - ok
11:45:07.0572 2988 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
11:45:07.0573 2988 IRENUM - ok
11:45:07.0580 2988 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
11:45:07.0580 2988 isapnp - ok
11:45:07.0602 2988 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
11:45:07.0606 2988 iScsiPrt - ok
11:45:07.0633 2988 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
11:45:07.0634 2988 kbdclass - ok
11:45:07.0656 2988 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
11:45:07.0658 2988 kbdhid - ok
11:45:07.0667 2988 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
11:45:07.0669 2988 KeyIso - ok
11:45:07.0706 2988 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
11:45:07.0708 2988 KSecDD - ok
11:45:07.0731 2988 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
11:45:07.0736 2988 KSecPkg - ok
11:45:07.0747 2988 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
11:45:07.0750 2988 ksthunk - ok
11:45:07.0790 2988 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
11:45:07.0796 2988 KtmRm - ok
11:45:07.0820 2988 [ 95CA93FC12BE372BB952669F37FFF9C5 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
11:45:07.0822 2988 L1C - ok
11:45:07.0861 2988 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
11:45:07.0866 2988 LanmanServer - ok
11:45:07.0894 2988 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
11:45:07.0898 2988 LanmanWorkstation - ok
11:45:07.0947 2988 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys
11:45:07.0950 2988 LHDmgr - ok
11:45:07.0995 2988 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
11:45:07.0998 2988 lltdio - ok
11:45:08.0041 2988 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
11:45:08.0051 2988 lltdsvc - ok
11:45:08.0067 2988 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
11:45:08.0069 2988 lmhosts - ok
11:45:08.0100 2988 [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:45:08.0105 2988 LMS - ok
11:45:08.0129 2988 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
11:45:08.0131 2988 LSI_FC - ok
11:45:08.0144 2988 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
11:45:08.0146 2988 LSI_SAS - ok
11:45:08.0159 2988 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
11:45:08.0161 2988 LSI_SAS2 - ok
11:45:08.0181 2988 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
11:45:08.0184 2988 LSI_SCSI - ok
11:45:08.0201 2988 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
11:45:08.0203 2988 luafv - ok
11:45:08.0270 2988 [ B891E3920F24FF1A3BEAD6CD2B42ED99 ] McAfee SiteAdvisor Service c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
11:45:08.0273 2988 McAfee SiteAdvisor Service - ok
11:45:08.0303 2988 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
11:45:08.0309 2988 Mcx2Svc - ok
11:45:08.0334 2988 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
11:45:08.0337 2988 megasas - ok
11:45:08.0360 2988 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
11:45:08.0365 2988 MegaSR - ok
11:45:08.0404 2988 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
11:45:08.0406 2988 MEIx64 - ok
11:45:08.0421 2988 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
11:45:08.0424 2988 MMCSS - ok
11:45:08.0429 2988 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
11:45:08.0430 2988 Modem - ok
11:45:08.0454 2988 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
11:45:08.0455 2988 monitor - ok
11:45:08.0473 2988 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
11:45:08.0474 2988 mouclass - ok
11:45:08.0517 2988 [ 21B7ACEA1BB49C3371DD5427BF309D6A ] moufiltr C:\windows\system32\DRIVERS\moufiltr.sys
11:45:08.0519 2988 moufiltr - ok
11:45:08.0542 2988 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
11:45:08.0543 2988 mouhid - ok
11:45:08.0571 2988 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
11:45:08.0572 2988 mountmgr - ok
11:45:08.0652 2988 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:45:08.0654 2988 MozillaMaintenance - ok
11:45:08.0725 2988 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
11:45:08.0730 2988 MpFilter - ok
11:45:08.0752 2988 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
11:45:08.0757 2988 mpio - ok
11:45:08.0777 2988 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
11:45:08.0779 2988 mpsdrv - ok
11:45:08.0835 2988 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
11:45:08.0871 2988 MpsSvc - ok
11:45:08.0916 2988 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
11:45:08.0918 2988 MRxDAV - ok
11:45:08.0937 2988 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
11:45:08.0939 2988 mrxsmb - ok
11:45:08.0971 2988 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
11:45:08.0976 2988 mrxsmb10 - ok
11:45:08.0990 2988 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
11:45:08.0993 2988 mrxsmb20 - ok
11:45:09.0007 2988 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
11:45:09.0009 2988 msahci - ok
11:45:09.0029 2988 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
11:45:09.0033 2988 msdsm - ok
11:45:09.0050 2988 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
11:45:09.0054 2988 MSDTC - ok
11:45:09.0071 2988 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
11:45:09.0071 2988 Msfs - ok
11:45:09.0097 2988 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
11:45:09.0098 2988 mshidkmdf - ok
11:45:09.0108 2988 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
11:45:09.0109 2988 msisadrv - ok
11:45:09.0134 2988 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
11:45:09.0137 2988 MSiSCSI - ok
11:45:09.0140 2988 msiserver - ok
11:45:09.0171 2988 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
11:45:09.0171 2988 MSKSSRV - ok
11:45:09.0217 2988 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
11:45:09.0218 2988 MsMpSvc - ok
11:45:09.0226 2988 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
11:45:09.0227 2988 MSPCLOCK - ok
11:45:09.0243 2988 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
11:45:09.0244 2988 MSPQM - ok
11:45:09.0264 2988 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
11:45:09.0271 2988 MsRPC - ok
11:45:09.0292 2988 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
11:45:09.0293 2988 mssmbios - ok
11:45:09.0299 2988 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
11:45:09.0300 2988 MSTEE - ok
11:45:09.0313 2988 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
11:45:09.0314 2988 MTConfig - ok
11:45:09.0332 2988 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
11:45:09.0333 2988 Mup - ok
11:45:09.0375 2988 mysql - ok
11:45:09.0405 2988 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
11:45:09.0412 2988 napagent - ok
11:45:09.0452 2988 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
11:45:09.0460 2988 NativeWifiP - ok
11:45:09.0502 2988 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\windows\system32\drivers\ndis.sys
11:45:09.0511 2988 NDIS - ok
11:45:09.0523 2988 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
11:45:09.0525 2988 NdisCap - ok
11:45:09.0548 2988 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
11:45:09.0549 2988 NdisTapi - ok
11:45:09.0567 2988 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
11:45:09.0569 2988 Ndisuio - ok
11:45:09.0583 2988 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
11:45:09.0585 2988 NdisWan - ok
11:45:09.0597 2988 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
11:45:09.0598 2988 NDProxy - ok
11:45:09.0617 2988 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
11:45:09.0618 2988 NetBIOS - ok
11:45:09.0640 2988 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
11:45:09.0642 2988 NetBT - ok
11:45:09.0667 2988 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
11:45:09.0668 2988 Netlogon - ok
11:45:09.0713 2988 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
11:45:09.0716 2988 Netman - ok
11:45:09.0741 2988 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
11:45:09.0753 2988 netprofm - ok
11:45:09.0779 2988 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:45:09.0781 2988 NetTcpPortSharing - ok
11:45:09.0811 2988 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
11:45:09.0813 2988 nfrd960 - ok
11:45:09.0851 2988 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
11:45:09.0852 2988 NisDrv - ok
11:45:09.0897 2988 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
11:45:09.0902 2988 NisSrv - ok
11:45:09.0946 2988 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
11:45:09.0953 2988 NlaSvc - ok
11:45:09.0963 2988 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
11:45:09.0964 2988 Npfs - ok
11:45:09.0980 2988 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
11:45:09.0982 2988 nsi - ok
11:45:09.0987 2988 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
11:45:09.0988 2988 nsiproxy - ok
11:45:10.0037 2988 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
11:45:10.0049 2988 Ntfs - ok
11:45:10.0057 2988 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
11:45:10.0058 2988 Null - ok
11:45:10.0078 2988 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
11:45:10.0081 2988 nvraid - ok
11:45:10.0094 2988 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
11:45:10.0098 2988 nvstor - ok
11:45:10.0118 2988 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
11:45:10.0120 2988 nv_agp - ok
11:45:10.0157 2988 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
11:45:10.0159 2988 ohci1394 - ok
11:45:10.0204 2988 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:45:10.0209 2988 ose - ok
11:45:10.0379 2988 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:45:10.0492 2988 osppsvc - ok
11:45:10.0533 2988 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
11:45:10.0538 2988 p2pimsvc - ok
11:45:10.0555 2988 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
11:45:10.0560 2988 p2psvc - ok
11:45:10.0588 2988 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
11:45:10.0589 2988 Parport - ok
11:45:10.0614 2988 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
11:45:10.0614 2988 partmgr - ok
11:45:10.0632 2988 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
11:45:10.0635 2988 PcaSvc - ok
11:45:10.0654 2988 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
11:45:10.0655 2988 pci - ok
11:45:10.0668 2988 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
11:45:10.0670 2988 pciide - ok
11:45:10.0683 2988 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
11:45:10.0685 2988 pcmcia - ok
11:45:10.0701 2988 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
11:45:10.0703 2988 pcw - ok
11:45:10.0722 2988 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
11:45:10.0729 2988 PEAUTH - ok
11:45:10.0858 2988 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
11:45:10.0862 2988 PerfHost - ok
11:45:10.0938 2988 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
11:45:10.0975 2988 pla - ok
11:45:11.0020 2988 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
11:45:11.0027 2988 PlugPlay - ok
11:45:11.0040 2988 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
11:45:11.0043 2988 PNRPAutoReg - ok
11:45:11.0068 2988 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
11:45:11.0072 2988 PNRPsvc - ok
11:45:11.0103 2988 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
11:45:11.0108 2988 PolicyAgent - ok
11:45:11.0133 2988 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
11:45:11.0136 2988 Power - ok
11:45:11.0167 2988 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
11:45:11.0168 2988 PptpMiniport - ok
11:45:11.0185 2988 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
11:45:11.0186 2988 Processor - ok
11:45:11.0222 2988 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
11:45:11.0226 2988 ProfSvc - ok
11:45:11.0233 2988 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
11:45:11.0235 2988 ProtectedStorage - ok
11:45:11.0250 2988 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
11:45:11.0252 2988 Psched - ok
11:45:11.0300 2988 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
11:45:11.0330 2988 ql2300 - ok
11:45:11.0363 2988 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
11:45:11.0365 2988 ql40xx - ok
11:45:11.0397 2988 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
11:45:11.0403 2988 QWAVE - ok
11:45:11.0418 2988 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
11:45:11.0420 2988 QWAVEdrv - ok
11:45:11.0433 2988 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
11:45:11.0433 2988 RasAcd - ok
11:45:11.0477 2988 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
11:45:11.0480 2988 RasAgileVpn - ok
11:45:11.0501 2988 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
11:45:11.0504 2988 RasAuto - ok
11:45:11.0523 2988 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
11:45:11.0524 2988 Rasl2tp - ok
11:45:11.0556 2988 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
11:45:11.0563 2988 RasMan - ok
11:45:11.0580 2988 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
11:45:11.0581 2988 RasPppoe - ok
11:45:11.0600 2988 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
11:45:11.0602 2988 RasSstp - ok
11:45:11.0625 2988 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
11:45:11.0627 2988 rdbss - ok
11:45:11.0637 2988 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
11:45:11.0639 2988 rdpbus - ok
11:45:11.0650 2988 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
11:45:11.0651 2988 RDPCDD - ok
11:45:11.0686 2988 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
11:45:11.0687 2988 RDPENCDD - ok
11:45:11.0696 2988 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
11:45:11.0697 2988 RDPREFMP - ok
11:45:11.0735 2988 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
11:45:11.0737 2988 RDPWD - ok
11:45:11.0764 2988 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
11:45:11.0768 2988 rdyboost - ok
11:45:11.0816 2988 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
11:45:11.0821 2988 RemoteAccess - ok
11:45:11.0854 2988 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
11:45:11.0858 2988 RemoteRegistry - ok
11:45:11.0891 2988 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
11:45:11.0895 2988 RFCOMM - ok
11:45:11.0918 2988 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
11:45:11.0920 2988 RpcEptMapper - ok
11:45:11.0939 2988 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
11:45:11.0941 2988 RpcLocator - ok
11:45:11.0956 2988 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
11:45:11.0960 2988 RpcSs - ok
11:45:11.0980 2988 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
11:45:11.0982 2988 rspndr - ok
11:45:12.0030 2988 [ 89DFB71B370D82DFE75183F677043CEE ] RSUSBVSTOR C:\windows\system32\Drivers\RtsUVStor.sys
11:45:12.0036 2988 RSUSBVSTOR - ok
11:45:12.0062 2988 [ BAEFEE35D27A5440D35092CE10267BEC ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
11:45:12.0067 2988 RTL8167 - ok
11:45:12.0089 2988 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
11:45:12.0090 2988 SamSs - ok
11:45:12.0105 2988 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
11:45:12.0108 2988 sbp2port - ok
11:45:12.0129 2988 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
11:45:12.0133 2988 SCardSvr - ok
11:45:12.0152 2988 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
11:45:12.0154 2988 scfilter - ok
11:45:12.0185 2988 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
11:45:12.0194 2988 Schedule - ok
11:45:12.0218 2988 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
11:45:12.0219 2988 SCPolicySvc - ok
11:45:12.0233 2988 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
11:45:12.0237 2988 SDRSVC - ok
11:45:12.0254 2988 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
11:45:12.0255 2988 secdrv - ok
11:45:12.0263 2988 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
11:45:12.0265 2988 seclogon - ok
11:45:12.0281 2988 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
11:45:12.0283 2988 SENS - ok
11:45:12.0299 2988 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
11:45:12.0301 2988 SensrSvc - ok
11:45:12.0330 2988 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
11:45:12.0331 2988 Serenum - ok
11:45:12.0365 2988 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
11:45:12.0366 2988 Serial - ok
11:45:12.0395 2988 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
11:45:12.0396 2988 sermouse - ok
11:45:12.0420 2988 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
11:45:12.0423 2988 SessionEnv - ok
11:45:12.0439 2988 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
11:45:12.0440 2988 sffdisk - ok
11:45:12.0442 2988 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
11:45:12.0443 2988 sffp_mmc - ok
11:45:12.0462 2988 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
11:45:12.0462 2988 sffp_sd - ok
11:45:12.0476 2988 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
11:45:12.0477 2988 sfloppy - ok
11:45:12.0525 2988 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
11:45:12.0533 2988 Sftfs - ok
11:45:12.0619 2988 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
11:45:12.0630 2988 sftlist - ok
11:45:12.0653 2988 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
11:45:12.0658 2988 Sftplay - ok
11:45:12.0668 2988 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
11:45:12.0670 2988 Sftredir - ok
11:45:12.0681 2988 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
11:45:12.0682 2988 Sftvol - ok
11:45:12.0702 2988 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
11:45:12.0705 2988 sftvsa - ok
11:45:12.0726 2988 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
11:45:12.0733 2988 SharedAccess - ok
11:45:12.0771 2988 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
11:45:12.0776 2988 ShellHWDetection - ok
11:45:12.0808 2988 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
11:45:12.0810 2988 SiSRaid2 - ok
11:45:12.0825 2988 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
11:45:12.0827 2988 SiSRaid4 - ok
11:45:12.0859 2988 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
11:45:12.0861 2988 Smb - ok
11:45:12.0883 2988 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
11:45:12.0888 2988 SNMPTRAP - ok
11:45:12.0902 2988 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
11:45:12.0903 2988 spldr - ok
11:45:12.0929 2988 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\windows\System32\spoolsv.exe
11:45:12.0933 2988 Spooler - ok
11:45:13.0021 2988 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
11:45:13.0141 2988 sppsvc - ok
11:45:13.0159 2988 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
11:45:13.0162 2988 sppuinotify - ok
11:45:13.0179 2988 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
11:45:13.0182 2988 srv - ok
11:45:13.0205 2988 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
11:45:13.0210 2988 srv2 - ok
11:45:13.0230 2988 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
11:45:13.0233 2988 srvnet - ok
11:45:13.0262 2988 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
11:45:13.0265 2988 SSDPSRV - ok
11:45:13.0284 2988 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
11:45:13.0286 2988 SstpSvc - ok
11:45:13.0307 2988 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
11:45:13.0308 2988 stexstor - ok
11:45:13.0341 2988 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
11:45:13.0346 2988 stisvc - ok
11:45:13.0372 2988 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
11:45:13.0373 2988 swenum - ok
11:45:13.0401 2988 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
11:45:13.0409 2988 swprv - ok
11:45:13.0458 2988 [ 9643991B5CFD7A9BA68626B7A005F7E6 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
11:45:13.0504 2988 SynTP - ok
11:45:13.0572 2988 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
11:45:13.0618 2988 SysMain - ok
11:45:13.0632 2988 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
11:45:13.0636 2988 TabletInputService - ok
11:45:13.0657 2988 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
11:45:13.0660 2988 TapiSrv - ok
11:45:13.0669 2988 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
11:45:13.0672 2988 TBS - ok
11:45:13.0733 2988 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\windows\system32\drivers\tcpip.sys
11:45:13.0743 2988 Tcpip - ok
11:45:13.0800 2988 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
11:45:13.0810 2988 TCPIP6 - ok
11:45:13.0841 2988 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
11:45:13.0843 2988 tcpipreg - ok
11:45:13.0860 2988 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
11:45:13.0861 2988 TDPIPE - ok
11:45:13.0900 2988 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
11:45:13.0900 2988 TDTCP - ok
11:45:13.0921 2988 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
11:45:13.0922 2988 tdx - ok
11:45:14.0046 2988 [ 3E85BDD019E3DB66D9471DAD7FD6A887 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
11:45:14.0129 2988 TeamViewer7 - ok
11:45:14.0148 2988 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
11:45:14.0149 2988 TermDD - ok
11:45:14.0185 2988 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
11:45:14.0190 2988 TermService - ok
11:45:14.0207 2988 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
11:45:14.0210 2988 Themes - ok
11:45:14.0220 2988 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
11:45:14.0222 2988 THREADORDER - ok
11:45:14.0232 2988 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
11:45:14.0235 2988 TrkWks - ok
11:45:14.0275 2988 [ 8DE922CD4FEA6F83B10805DF965B9A08 ] truecrypt C:\windows\system32\drivers\truecrypt.sys
11:45:14.0278 2988 truecrypt - ok
11:45:14.0325 2988 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
11:45:14.0328 2988 TrustedInstaller - ok
11:45:14.0341 2988 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
11:45:14.0342 2988 tssecsrv - ok
11:45:14.0371 2988 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
11:45:14.0373 2988 TsUsbFlt - ok
11:45:14.0380 2988 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
11:45:14.0381 2988 TsUsbGD - ok
11:45:14.0405 2988 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
11:45:14.0407 2988 tunnel - ok
11:45:14.0422 2988 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
11:45:14.0424 2988 uagp35 - ok
11:45:14.0441 2988 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
11:45:14.0443 2988 udfs - ok
11:45:14.0471 2988 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
11:45:14.0473 2988 UI0Detect - ok
11:45:14.0499 2988 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
11:45:14.0502 2988 uliagpkx - ok
11:45:14.0543 2988 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
11:45:14.0545 2988 umbus - ok
11:45:14.0553 2988 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
11:45:14.0555 2988 UmPass - ok
11:45:14.0668 2988 [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:45:14.0750 2988 UNS - ok
11:45:14.0790 2988 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
11:45:14.0794 2988 upnphost - ok
11:45:14.0833 2988 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
11:45:14.0835 2988 USBAAPL64 - ok
11:45:14.0879 2988 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\windows\system32\drivers\usbaudio.sys
11:45:14.0882 2988 usbaudio - ok
11:45:14.0903 2988 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
11:45:14.0905 2988 usbccgp - ok
11:45:14.0926 2988 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
11:45:14.0928 2988 usbcir - ok
11:45:14.0940 2988 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
11:45:14.0941 2988 usbehci - ok
11:45:14.0975 2988 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
11:45:14.0977 2988 usbhub - ok
11:45:14.0992 2988 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
11:45:14.0993 2988 usbohci - ok
11:45:15.0006 2988 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
11:45:15.0007 2988 usbprint - ok
11:45:15.0041 2988 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
11:45:15.0042 2988 usbscan - ok
11:45:15.0052 2988 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
11:45:15.0053 2988 USBSTOR - ok
11:45:15.0059 2988 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
11:45:15.0060 2988 usbuhci - ok
11:45:15.0080 2988 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
11:45:15.0084 2988 usbvideo - ok
11:45:15.0111 2988 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
11:45:15.0114 2988 UxSms - ok
11:45:15.0122 2988 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
11:45:15.0123 2988 VaultSvc - ok
11:45:15.0150 2988 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
11:45:15.0152 2988 vdrvroot - ok
11:45:15.0182 2988 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
11:45:15.0191 2988 vds - ok
11:45:15.0205 2988 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
11:45:15.0206 2988 vga - ok
11:45:15.0222 2988 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
11:45:15.0223 2988 VgaSave - ok
11:45:15.0242 2988 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
11:45:15.0246 2988 vhdmp - ok
11:45:15.0285 2988 [ 68F6A83C8848875AD027D038637A5BE0 ] vhidmini C:\windows\system32\DRIVERS\walvhid.sys
11:45:15.0286 2988 vhidmini - ok
11:45:15.0296 2988 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
11:45:15.0298 2988 viaide - ok
11:45:15.0349 2988 [ 5CB80AFA98111FC6ED6E8702A0D7AC5B ] vm2uvcflt C:\windows\system32\Drivers\vm2uvcflt.sys
11:45:15.0350 2988 vm2uvcflt - ok
11:45:15.0369 2988 [ FE75ED0244AEDFF9B278A2A09AC06CA9 ] vm332avs C:\windows\system32\Drivers\vm332avs.sys
11:45:15.0373 2988 vm332avs - ok
11:45:15.0380 2988 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
11:45:15.0382 2988 volmgr - ok
11:45:15.0405 2988 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
11:45:15.0410 2988 volmgrx - ok
11:45:15.0424 2988 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
11:45:15.0427 2988 volsnap - ok
11:45:15.0449 2988 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
11:45:15.0452 2988 vsmraid - ok
11:45:15.0501 2988 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
11:45:15.0558 2988 VSS - ok
11:45:15.0575 2988 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
11:45:15.0577 2988 vwifibus - ok
11:45:15.0612 2988 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
11:45:15.0614 2988 vwififlt - ok
11:45:15.0638 2988 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
11:45:15.0643 2988 W32Time - ok
11:45:15.0660 2988 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
11:45:15.0662 2988 WacomPen - ok
11:45:15.0692 2988 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
11:45:15.0693 2988 WANARP - ok
11:45:15.0698 2988 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
11:45:15.0699 2988 Wanarpv6 - ok
11:45:15.0782 2988 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
11:45:15.0829 2988 WatAdminSvc - ok
11:45:15.0870 2988 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
11:45:15.0928 2988 wbengine - ok
11:45:15.0941 2988 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
11:45:15.0947 2988 WbioSrvc - ok
11:45:15.0965 2988 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
11:45:15.0970 2988 wcncsvc - ok
11:45:15.0980 2988 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
11:45:15.0983 2988 WcsPlugInService - ok
11:45:16.0008 2988 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
11:45:16.0009 2988 Wd - ok
11:45:16.0032 2988 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
11:45:16.0038 2988 Wdf01000 - ok
11:45:16.0059 2988 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
11:45:16.0061 2988 WdiServiceHost - ok
11:45:16.0064 2988 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
11:45:16.0066 2988 WdiSystemHost - ok
11:45:16.0082 2988 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
11:45:16.0086 2988 WebClient - ok
11:45:16.0096 2988 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
11:45:16.0100 2988 Wecsvc - ok
11:45:16.0118 2988 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
11:45:16.0120 2988 wercplsupport - ok
11:45:16.0152 2988 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
11:45:16.0154 2988 WerSvc - ok
11:45:16.0169 2988 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
11:45:16.0170 2988 WfpLwf - ok
11:45:16.0180 2988 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
11:45:16.0181 2988 WIMMount - ok
11:45:16.0192 2988 WinDefend - ok
11:45:16.0197 2988 WinHttpAutoProxySvc - ok
11:45:16.0257 2988 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
11:45:16.0263 2988 Winmgmt - ok
11:45:16.0348 2988 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
11:45:16.0418 2988 WinRM - ok
11:45:16.0480 2988 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
11:45:16.0482 2988 WinUsb - ok
11:45:16.0524 2988 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
11:45:16.0552 2988 Wlansvc - ok
11:45:16.0625 2988 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:45:16.0629 2988 wlcrasvc - ok
11:45:16.0738 2988 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:45:16.0802 2988 wlidsvc - ok
11:45:16.0851 2988 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
11:45:16.0852 2988 WmiAcpi - ok
11:45:16.0880 2988 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
11:45:16.0883 2988 wmiApSrv - ok
11:45:16.0924 2988 WMPNetworkSvc - ok
11:45:16.0945 2988 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
11:45:16.0947 2988 WPCSvc - ok
11:45:16.0962 2988 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
11:45:16.0965 2988 WPDBusEnum - ok
11:45:16.0981 2988 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
11:45:16.0981 2988 ws2ifsl - ok
11:45:16.0999 2988 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
11:45:17.0002 2988 wscsvc - ok
11:45:17.0004 2988 WSearch - ok
11:45:17.0044 2988 [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd C:\windows\system32\DRIVERS\wsvd.sys
11:45:17.0048 2988 wsvd - ok
11:45:17.0067 2988 WTService - ok
11:45:17.0159 2988 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
11:45:17.0251 2988 wuauserv - ok
11:45:17.0268 2988 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
11:45:17.0271 2988 WudfPf - ok
11:45:17.0302 2988 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
11:45:17.0305 2988 WUDFRd - ok
11:45:17.0340 2988 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
11:45:17.0343 2988 wudfsvc - ok
11:45:17.0359 2988 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
11:45:17.0364 2988 WwanSvc - ok
11:45:17.0454 2988 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
11:45:17.0471 2988 YahooAUService - ok
11:45:17.0482 2988 ================ Scan global ===============================
11:45:17.0502 2988 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
11:45:17.0536 2988 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
11:45:17.0546 2988 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
11:45:17.0577 2988 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
11:45:17.0614 2988 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
11:45:17.0618 2988 [Global] - ok
11:45:17.0618 2988 ================ Scan MBR ==================================
11:45:17.0627 2988 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:45:17.0981 2988 \Device\Harddisk0\DR0 - ok
11:45:17.0982 2988 ================ Scan VBR ==================================
11:45:17.0987 2988 [ B4718096E5A6D261E668B7C5A50570E5 ] \Device\Harddisk0\DR0\Partition1
11:45:17.0990 2988 \Device\Harddisk0\DR0\Partition1 - ok
11:45:18.0022 2988 [ 2C7CC7E6CA78E63DCC12FF8C8915AB10 ] \Device\Harddisk0\DR0\Partition2
11:45:18.0026 2988 \Device\Harddisk0\DR0\Partition2 - ok
11:45:18.0064 2988 [ 52A19EFBA8677CB0F9D8C6296D2E77A8 ] \Device\Harddisk0\DR0\Partition3
11:45:18.0068 2988 \Device\Harddisk0\DR0\Partition3 - ok
11:45:18.0069 2988 ============================================================
11:45:18.0069 2988 Scan finished
11:45:18.0069 2988 ============================================================
11:45:18.0088 5132 Detected object count: 0
11:45:18.0088 5132 Actual detected object count: 0


Next from aswMBR - (Note: this seemed to hang and stated "Scanning" but allowed a log to be saved. It was scanning for about 20 mins with no update in status.



aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-23 11:48:54
-----------------------------
11:48:54.651 OS Version: Windows x64 6.1.7601 Service Pack 1
11:48:54.651 Number of processors: 4 586 0x2A07
11:48:54.652 ComputerName: RICK-PC UserName: Rick
11:48:55.683 Initialize success
11:51:02.573 AVAST engine defs: 12082300
11:53:21.721 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:53:21.727 Disk 0 Vendor: WDC_WD50 03.0 Size: 476940MB BusType: 3
11:53:21.745 Disk 0 MBR read successfully
11:53:21.751 Disk 0 MBR scan
11:53:21.763 Disk 0 Windows 7 default MBR code
11:53:21.769 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 200 MB offset 2048
11:53:21.784 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 431938 MB offset 411648
11:53:21.791 Disk 0 Partition - 00 0F Extended LBA 29692 MB offset 885020672
11:53:21.820 Disk 0 Partition 3 00 12 Compaq diag NTFS 15109 MB offset 945829888
11:53:21.848 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 29691 MB offset 885022720
11:53:21.893 Disk 0 scanning C:\windows\system32\drivers
11:53:30.292 Service scanning
11:53:54.787 Modules scanning
11:53:55.145 Disk 0 trace - called modules:
11:53:55.199 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
11:53:55.211 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8009671060]
11:53:55.223 3 CLASSPNP.SYS[fffff88001bb443f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800774d050]
11:53:56.372 AVAST engine scan C:\windows
11:53:58.628 AVAST engine scan C:\windows\system32
11:56:12.136 AVAST engine scan C:\windows\system32\drivers
11:56:26.537 AVAST engine scan C:\Users\Rick
12:05:56.982 Disk 0 MBR has been saved successfully to "C:\Users\Rick\Desktop\MBR.dat"
12:05:56.990 The log file has been saved successfully to "C:\Users\Rick\Desktop\aswMBR.txt"
12:15:41.808 AVAST engine scan C:\ProgramData
12:18:04.795 Scan finished successfully

ESET...no issues found and no file created. It wants to know if I will download a copy. It ran for about 30 minutes and found no issues.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:27 AM

Posted 23 August 2012 - 01:05 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users