Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

webhd help


  • Please log in to reply
12 replies to this topic

#1 pringles13

pringles13

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 01 September 2012 - 04:49 PM

Hey there. My laptop is infected with the webhp redirect virus/rootkit and have been getting the redirect links. My girlfriend says it's been going on for about 2 weeks. I was made aware of the problem about a week ago, and we haven't really been using the laptop much because of it. I've done some research online and tried some of the suggestions seen. One was to download Sophos Virus Removal and run it in safe mode, but I kept getting errors telling me I didn't have administrative rights to run it in safe mode. So that is out the window. I'll just uninstall that unless told otherwise by someone here. I have downloaded and run spybot which didn't find the webhp issue, but it did find smithfraud-c.generic and supposedly fixed it. I also use AVG for virus protection, and it doesn't show webhp as an issue either. I've used malwarebytes in the past on a previous PC but haven't downloaded it to either of my newer computers as of yet. I'm basically not going to do anything else until I hear from someone here since what we are doing isn't helping and we need help from someone who really knows what they are doing.

Thank you in advance for helping with this issue. We got a blue screen on the laptop, so I figured we need serious help. :o

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,534 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:13 PM

Posted 01 September 2012 - 10:05 PM

Hello, quote possibly it left a rootkit.

So we need to run some things.

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.

>>>>>
Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.


Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 pringles13

pringles13
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 02 September 2012 - 01:20 PM

TDSSKiller required a reboot.

13:53:23.0609 5148 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
13:53:23.0639 5148 ============================================================
13:53:23.0639 5148 Current date / time: 2012/09/02 13:53:23.0639
13:53:23.0639 5148 SystemInfo:
13:53:23.0639 5148
13:53:23.0639 5148 OS Version: 6.1.7601 ServicePack: 1.0
13:53:23.0639 5148 Product type: Workstation
13:53:23.0639 5148 ComputerName: AMANDA-PC
13:53:23.0639 5148 UserName: Amanda
13:53:23.0639 5148 Windows directory: C:\Windows
13:53:23.0639 5148 System windows directory: C:\Windows
13:53:23.0639 5148 Running under WOW64
13:53:23.0639 5148 Processor architecture: Intel x64
13:53:23.0639 5148 Number of processors: 4
13:53:23.0639 5148 Page size: 0x1000
13:53:23.0639 5148 Boot type: Normal boot
13:53:23.0639 5148 ============================================================
13:53:25.0365 5148 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:53:25.0385 5148 ============================================================
13:53:25.0385 5148 \Device\Harddisk0\DR0:
13:53:25.0385 5148 MBR partitions:
13:53:25.0385 5148 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:53:25.0385 5148 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
13:53:25.0385 5148 ============================================================
13:53:25.0415 5148 C: <-> \Device\Harddisk0\DR0\Partition2
13:53:25.0415 5148 ============================================================
13:53:25.0415 5148 Initialize success
13:53:25.0415 5148 ============================================================
13:53:41.0494 5552 ============================================================
13:53:41.0494 5552 Scan started
13:53:41.0494 5552 Mode: Manual; TDLFS;
13:53:41.0494 5552 ============================================================
13:53:42.0383 5552 ================ Scan system memory ========================
13:53:42.0383 5552 System memory - ok
13:53:42.0383 5552 ================ Scan services =============================
13:53:42.0617 5552 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:53:42.0617 5552 1394ohci - ok
13:53:42.0710 5552 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
13:53:42.0742 5552 ACDaemon - ok
13:53:42.0804 5552 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:53:42.0804 5552 ACPI - ok
13:53:42.0851 5552 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:53:42.0866 5552 AcpiPmi - ok
13:53:43.0054 5552 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:53:43.0054 5552 AdobeARMservice - ok
13:53:43.0210 5552 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:53:43.0350 5552 AdobeFlashPlayerUpdateSvc - ok
13:53:43.0428 5552 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:53:43.0459 5552 adp94xx - ok
13:53:43.0506 5552 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:53:43.0522 5552 adpahci - ok
13:53:43.0568 5552 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:53:43.0584 5552 adpu320 - ok
13:53:43.0646 5552 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:53:43.0662 5552 AeLookupSvc - ok
13:53:43.0756 5552 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:53:43.0818 5552 AFD - ok
13:53:43.0849 5552 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:53:43.0865 5552 agp440 - ok
13:53:43.0912 5552 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:53:43.0927 5552 ALG - ok
13:53:43.0958 5552 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:53:43.0974 5552 aliide - ok
13:53:43.0990 5552 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
13:53:44.0005 5552 amdide - ok
13:53:44.0052 5552 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:53:44.0083 5552 AmdK8 - ok
13:53:44.0099 5552 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:53:44.0114 5552 AmdPPM - ok
13:53:44.0161 5552 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:53:44.0177 5552 amdsata - ok
13:53:44.0208 5552 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:53:44.0239 5552 amdsbs - ok
13:53:44.0255 5552 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:53:44.0255 5552 amdxata - ok
13:53:44.0302 5552 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
13:53:44.0317 5552 AppID - ok
13:53:44.0333 5552 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:53:44.0348 5552 AppIDSvc - ok
13:53:44.0380 5552 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:53:44.0380 5552 Appinfo - ok
13:53:44.0442 5552 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:53:44.0442 5552 Apple Mobile Device - ok
13:53:44.0536 5552 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:53:44.0551 5552 arc - ok
13:53:44.0567 5552 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:53:44.0598 5552 arcsas - ok
13:53:44.0692 5552 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:53:44.0723 5552 aspnet_state - ok
13:53:44.0754 5552 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:53:44.0754 5552 AsyncMac - ok
13:53:44.0801 5552 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
13:53:44.0801 5552 atapi - ok
13:53:44.0926 5552 [ 08BAAA2432E81031A6C3B11AD5A67E2B ] athr C:\Windows\system32\DRIVERS\athrx.sys
13:53:45.0019 5552 athr - ok
13:53:45.0066 5552 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:53:45.0082 5552 AudioEndpointBuilder - ok
13:53:45.0113 5552 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:53:45.0113 5552 AudioSrv - ok
13:53:45.0300 5552 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
13:53:45.0425 5552 AVGIDSAgent - ok
13:53:45.0456 5552 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
13:53:45.0456 5552 AVGIDSDriver - ok
13:53:45.0487 5552 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
13:53:45.0487 5552 AVGIDSFilter - ok
13:53:45.0503 5552 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
13:53:45.0503 5552 AVGIDSHA - ok
13:53:45.0550 5552 [ 59955B4C288DD2A8B9FD2CD5158355C5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
13:53:45.0565 5552 Avgldx64 - ok
13:53:45.0581 5552 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
13:53:45.0596 5552 Avgmfx64 - ok
13:53:45.0629 5552 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
13:53:45.0629 5552 Avgrkx64 - ok
13:53:45.0675 5552 [ 1BEE674AD792B1C63BB0DAC5FA724B23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
13:53:45.0691 5552 Avgtdia - ok
13:53:45.0753 5552 [ E964EA70249DDE1343C8F694B52575EE ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
13:53:45.0769 5552 avgtp - ok
13:53:45.0800 5552 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
13:53:45.0800 5552 avgwd - ok
13:53:45.0847 5552 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:53:45.0863 5552 AxInstSV - ok
13:53:45.0909 5552 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:53:45.0941 5552 b06bdrv - ok
13:53:46.0034 5552 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:53:46.0050 5552 b57nd60a - ok
13:53:46.0097 5552 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:53:46.0112 5552 BDESVC - ok
13:53:46.0128 5552 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:53:46.0143 5552 Beep - ok
13:53:46.0409 5552 [ 5B1FE9D351C284701C8051DA2AA81DF6 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120531.001\BHDrvx64.sys
13:53:46.0424 5552 BHDrvx64 - ok
13:53:46.0440 5552 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:53:46.0455 5552 blbdrive - ok
13:53:46.0502 5552 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:53:46.0502 5552 bowser - ok
13:53:46.0533 5552 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:53:46.0549 5552 BrFiltLo - ok
13:53:46.0565 5552 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:53:46.0580 5552 BrFiltUp - ok
13:53:46.0628 5552 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
13:53:46.0628 5552 Browser - ok
13:53:46.0737 5552 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:53:46.0768 5552 Brserid - ok
13:53:46.0784 5552 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:53:46.0800 5552 BrSerWdm - ok
13:53:46.0815 5552 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:53:46.0831 5552 BrUsbMdm - ok
13:53:46.0831 5552 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:53:46.0846 5552 BrUsbSer - ok
13:53:46.0909 5552 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
13:53:46.0924 5552 BthEnum - ok
13:53:46.0956 5552 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:53:46.0971 5552 BTHMODEM - ok
13:53:47.0018 5552 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
13:53:47.0034 5552 BthPan - ok
13:53:47.0080 5552 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
13:53:47.0096 5552 BTHPORT - ok
13:53:47.0127 5552 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:53:47.0127 5552 bthserv - ok
13:53:47.0174 5552 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
13:53:47.0205 5552 BTHUSB - ok
13:53:47.0283 5552 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1308000.00E\ccSetx64.sys
13:53:47.0299 5552 ccSet_NIS - ok
13:53:47.0330 5552 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:53:47.0346 5552 cdfs - ok
13:53:47.0377 5552 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
13:53:47.0392 5552 cdrom - ok
13:53:47.0424 5552 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
13:53:47.0455 5552 CertPropSvc - ok
13:53:47.0486 5552 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:53:47.0502 5552 circlass - ok
13:53:47.0533 5552 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:53:47.0548 5552 CLFS - ok
13:53:47.0611 5552 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:53:47.0642 5552 clr_optimization_v2.0.50727_32 - ok
13:53:47.0689 5552 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:53:47.0704 5552 clr_optimization_v2.0.50727_64 - ok
13:53:47.0767 5552 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:53:47.0829 5552 clr_optimization_v4.0.30319_32 - ok
13:53:47.0845 5552 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:53:47.0845 5552 clr_optimization_v4.0.30319_64 - ok
13:53:47.0892 5552 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:53:47.0907 5552 CmBatt - ok
13:53:47.0938 5552 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:53:47.0954 5552 cmdide - ok
13:53:48.0001 5552 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
13:53:48.0016 5552 CNG - ok
13:53:48.0094 5552 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:53:48.0094 5552 Compbatt - ok
13:53:48.0110 5552 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:53:48.0126 5552 CompositeBus - ok
13:53:48.0141 5552 COMSysApp - ok
13:53:48.0172 5552 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:53:48.0188 5552 crcdisk - ok
13:53:48.0235 5552 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:53:48.0235 5552 CryptSvc - ok
13:53:48.0282 5552 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
13:53:48.0297 5552 dc3d - ok
13:53:48.0360 5552 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:53:48.0375 5552 DcomLaunch - ok
13:53:48.0391 5552 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:53:48.0422 5552 defragsvc - ok
13:53:48.0469 5552 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:53:48.0484 5552 DfsC - ok
13:53:48.0531 5552 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
13:53:48.0531 5552 Dhcp - ok
13:53:48.0562 5552 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:53:48.0578 5552 discache - ok
13:53:48.0625 5552 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:53:48.0625 5552 Disk - ok
13:53:48.0656 5552 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:53:48.0656 5552 Dnscache - ok
13:53:48.0718 5552 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:53:48.0734 5552 dot3svc - ok
13:53:48.0750 5552 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
13:53:48.0750 5552 DPS - ok
13:53:48.0781 5552 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:53:48.0796 5552 drmkaud - ok
13:53:48.0859 5552 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:53:48.0890 5552 DXGKrnl - ok
13:53:48.0952 5552 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:53:48.0952 5552 EapHost - ok
13:53:49.0046 5552 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:53:49.0171 5552 ebdrv - ok
13:53:49.0233 5552 [ BA6420C1F7070ED8F1BA372844F3E1EC ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
13:53:49.0296 5552 eeCtrl - ok
13:53:49.0311 5552 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
13:53:49.0311 5552 EFS - ok
13:53:49.0374 5552 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:53:49.0405 5552 ehRecvr - ok
13:53:49.0420 5552 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:53:49.0452 5552 ehSched - ok
13:53:49.0483 5552 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:53:49.0514 5552 elxstor - ok
13:53:49.0545 5552 [ 1343DF3451BC0C442DC69837C6FBA21B ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
13:53:49.0576 5552 EraserUtilRebootDrv - ok
13:53:49.0592 5552 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:53:49.0608 5552 ErrDev - ok
13:53:49.0701 5552 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:53:49.0701 5552 EventSystem - ok
13:53:49.0717 5552 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:53:49.0748 5552 exfat - ok
13:53:49.0779 5552 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:53:49.0795 5552 fastfat - ok
13:53:49.0857 5552 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
13:53:49.0873 5552 Fax - ok
13:53:49.0888 5552 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:53:49.0904 5552 fdc - ok
13:53:49.0966 5552 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:53:49.0966 5552 fdPHost - ok
13:53:49.0982 5552 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:53:49.0982 5552 FDResPub - ok
13:53:50.0029 5552 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:53:50.0029 5552 FileInfo - ok
13:53:50.0044 5552 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:53:50.0060 5552 Filetrace - ok
13:53:50.0107 5552 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:53:50.0122 5552 flpydisk - ok
13:53:50.0169 5552 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:53:50.0169 5552 FltMgr - ok
13:53:50.0247 5552 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
13:53:50.0263 5552 FontCache - ok
13:53:50.0341 5552 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:53:50.0372 5552 FontCache3.0.0.0 - ok
13:53:50.0403 5552 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:53:50.0419 5552 FsDepends - ok
13:53:50.0466 5552 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
13:53:50.0481 5552 fssfltr - ok
13:53:50.0590 5552 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
13:53:50.0746 5552 fsssvc - ok
13:53:50.0778 5552 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:53:50.0778 5552 Fs_Rec - ok
13:53:50.0809 5552 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:53:50.0809 5552 fvevol - ok
13:53:50.0840 5552 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:53:50.0871 5552 gagp30kx - ok
13:53:50.0887 5552 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:53:50.0918 5552 GEARAspiWDM - ok
13:53:50.0949 5552 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
13:53:50.0965 5552 gpsvc - ok
13:53:51.0090 5552 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:53:51.0090 5552 gupdate - ok
13:53:51.0183 5552 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:53:51.0183 5552 gupdatem - ok
13:53:51.0246 5552 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:53:51.0324 5552 gusvc - ok
13:53:51.0355 5552 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:53:51.0370 5552 hcw85cir - ok
13:53:51.0495 5552 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:53:51.0542 5552 HdAudAddService - ok
13:53:51.0604 5552 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
13:53:51.0604 5552 HDAudBus - ok
13:53:51.0620 5552 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:53:51.0636 5552 HidBatt - ok
13:53:51.0651 5552 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:53:51.0667 5552 HidBth - ok
13:53:51.0682 5552 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:53:51.0714 5552 HidIr - ok
13:53:51.0760 5552 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
13:53:51.0760 5552 hidserv - ok
13:53:51.0792 5552 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:53:51.0792 5552 HidUsb - ok
13:53:51.0823 5552 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:53:51.0854 5552 hkmsvc - ok
13:53:51.0870 5552 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:53:51.0885 5552 HomeGroupListener - ok
13:53:51.0916 5552 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:53:51.0916 5552 HomeGroupProvider - ok
13:53:51.0979 5552 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:53:52.0010 5552 HpSAMD - ok
13:53:52.0072 5552 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:53:52.0072 5552 HTTP - ok
13:53:52.0104 5552 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:53:52.0104 5552 hwpolicy - ok
13:53:52.0135 5552 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:53:52.0150 5552 i8042prt - ok
13:53:52.0213 5552 [ 073A606333B6F7BBF20AA856DF7F0997 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
13:53:52.0213 5552 iaStor - ok
13:53:52.0322 5552 [ CC800D2D9FD467542BAC7C186C4774AD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
13:53:52.0322 5552 IAStorDataMgrSvc - ok
13:53:52.0353 5552 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:53:52.0369 5552 iaStorV - ok
13:53:52.0447 5552 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:53:52.0509 5552 idsvc - ok
13:53:52.0603 5552 [ 4E9E0E5A3B0EFEB27491C26BE1D97FDA ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120607.001\IDSvia64.sys
13:53:52.0618 5552 IDSVia64 - ok
13:53:52.0634 5552 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:53:52.0650 5552 iirsp - ok
13:53:52.0759 5552 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
13:53:52.0790 5552 IKEEXT - ok
13:53:52.0821 5552 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
13:53:52.0837 5552 intelide - ok
13:53:52.0868 5552 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:53:52.0868 5552 intelppm - ok
13:53:52.0899 5552 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:53:52.0915 5552 IPBusEnum - ok
13:53:52.0977 5552 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:53:52.0993 5552 IpFilterDriver - ok
13:53:53.0024 5552 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:53:53.0040 5552 IPMIDRV - ok
13:53:53.0055 5552 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:53:53.0086 5552 IPNAT - ok
13:53:53.0180 5552 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:53:53.0258 5552 iPod Service - ok
13:53:53.0305 5552 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:53:53.0320 5552 IRENUM - ok
13:53:53.0352 5552 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:53:53.0367 5552 isapnp - ok
13:53:53.0398 5552 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:53:53.0414 5552 iScsiPrt - ok
13:53:53.0430 5552 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
13:53:53.0445 5552 kbdclass - ok
13:53:53.0492 5552 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
13:53:53.0508 5552 kbdhid - ok
13:53:53.0539 5552 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
13:53:53.0539 5552 KeyIso - ok
13:53:53.0554 5552 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:53:53.0554 5552 KSecDD - ok
13:53:53.0586 5552 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:53:53.0586 5552 KSecPkg - ok
13:53:53.0617 5552 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:53:53.0648 5552 ksthunk - ok
13:53:53.0679 5552 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:53:53.0695 5552 KtmRm - ok
13:53:53.0757 5552 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:53:53.0757 5552 LanmanServer - ok
13:53:53.0788 5552 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:53:53.0788 5552 LanmanWorkstation - ok
13:53:53.0820 5552 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:53:53.0820 5552 lltdio - ok
13:53:53.0882 5552 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:53:53.0898 5552 lltdsvc - ok
13:53:53.0913 5552 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:53:53.0913 5552 lmhosts - ok
13:53:53.0944 5552 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:53:53.0960 5552 LSI_FC - ok
13:53:53.0991 5552 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:53:54.0007 5552 LSI_SAS - ok
13:53:54.0022 5552 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:53:54.0054 5552 LSI_SAS2 - ok
13:53:54.0054 5552 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:53:54.0085 5552 LSI_SCSI - ok
13:53:54.0116 5552 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:53:54.0116 5552 luafv - ok
13:53:54.0147 5552 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:53:54.0163 5552 Mcx2Svc - ok
13:53:54.0178 5552 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:53:54.0194 5552 megasas - ok
13:53:54.0225 5552 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:53:54.0256 5552 MegaSR - ok
13:53:54.0288 5552 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:53:54.0288 5552 MMCSS - ok
13:53:54.0288 5552 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:53:54.0319 5552 Modem - ok
13:53:54.0334 5552 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:53:54.0334 5552 monitor - ok
13:53:54.0334 5552 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:53:54.0350 5552 mouclass - ok
13:53:54.0397 5552 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:53:54.0397 5552 mouhid - ok
13:53:54.0428 5552 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:53:54.0428 5552 mountmgr - ok
13:53:54.0475 5552 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:53:54.0522 5552 MozillaMaintenance - ok
13:53:54.0537 5552 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:53:54.0568 5552 mpio - ok
13:53:54.0600 5552 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:53:54.0631 5552 mpsdrv - ok
13:53:54.0662 5552 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:53:54.0678 5552 MRxDAV - ok
13:53:54.0693 5552 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:53:54.0709 5552 mrxsmb - ok
13:53:54.0740 5552 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:53:54.0740 5552 mrxsmb10 - ok
13:53:54.0756 5552 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:53:54.0771 5552 mrxsmb20 - ok
13:53:54.0771 5552 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:53:54.0771 5552 msahci - ok
13:53:54.0802 5552 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:53:54.0834 5552 msdsm - ok
13:53:54.0865 5552 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:53:54.0896 5552 MSDTC - ok
13:53:54.0927 5552 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:53:54.0943 5552 Msfs - ok
13:53:54.0943 5552 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:53:54.0974 5552 mshidkmdf - ok
13:53:54.0974 5552 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:53:54.0990 5552 msisadrv - ok
13:53:55.0005 5552 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:53:55.0021 5552 MSiSCSI - ok
13:53:55.0036 5552 msiserver - ok
13:53:55.0068 5552 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:53:55.0083 5552 MSKSSRV - ok
13:53:55.0114 5552 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:53:55.0130 5552 MSPCLOCK - ok
13:53:55.0130 5552 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:53:55.0146 5552 MSPQM - ok
13:53:55.0192 5552 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:53:55.0192 5552 MsRPC - ok
13:53:55.0239 5552 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:53:55.0239 5552 mssmbios - ok
13:53:55.0270 5552 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:53:55.0286 5552 MSTEE - ok
13:53:55.0317 5552 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:53:55.0333 5552 MTConfig - ok
13:53:55.0348 5552 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:53:55.0348 5552 Mup - ok
13:53:55.0380 5552 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
13:53:55.0411 5552 napagent - ok
13:53:55.0458 5552 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:53:55.0458 5552 NativeWifiP - ok
13:53:55.0551 5552 [ 8043D41F881D6ACE40B854AD6E32217F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120607.034\ENG64.SYS
13:53:55.0567 5552 NAVENG - ok
13:53:55.0645 5552 [ 9A9AB2FC45D701DAED465D14980F1305 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120607.034\EX64.SYS
13:53:55.0692 5552 NAVEX15 - ok
13:53:55.0770 5552 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
13:53:55.0785 5552 NDIS - ok
13:53:55.0816 5552 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:53:55.0832 5552 NdisCap - ok
13:53:55.0863 5552 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:53:55.0879 5552 NdisTapi - ok
13:53:55.0910 5552 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:53:55.0910 5552 Ndisuio - ok
13:53:55.0957 5552 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:53:55.0972 5552 NdisWan - ok
13:53:56.0004 5552 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:53:56.0019 5552 NDProxy - ok
13:53:56.0035 5552 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:53:56.0050 5552 NetBIOS - ok
13:53:56.0113 5552 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:53:56.0128 5552 NetBT - ok
13:53:56.0144 5552 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
13:53:56.0144 5552 Netlogon - ok
13:53:56.0206 5552 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:53:56.0206 5552 Netman - ok
13:53:56.0238 5552 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:53:56.0284 5552 NetMsmqActivator - ok
13:53:56.0284 5552 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:53:56.0300 5552 NetPipeActivator - ok
13:53:56.0347 5552 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:53:56.0347 5552 netprofm - ok
13:53:56.0362 5552 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:53:56.0362 5552 NetTcpActivator - ok
13:53:56.0362 5552 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:53:56.0362 5552 NetTcpPortSharing - ok
13:53:56.0409 5552 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:53:56.0440 5552 nfrd960 - ok
13:53:56.0518 5552 [ F2840DBFE9322F35557219AE82CC4597 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\19.8.0.14\ccSvcHst.exe
13:53:56.0518 5552 NIS - ok
13:53:56.0581 5552 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:53:56.0581 5552 NlaSvc - ok
13:53:56.0612 5552 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:53:56.0628 5552 Npfs - ok
13:53:56.0659 5552 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:53:56.0674 5552 nsi - ok
13:53:56.0674 5552 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:53:56.0690 5552 nsiproxy - ok
13:53:56.0784 5552 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:53:56.0799 5552 Ntfs - ok
13:53:56.0846 5552 [ 317020D31F1696334679B9D0416EB62E ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
13:53:56.0877 5552 NuidFltr - ok
13:53:56.0924 5552 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:53:56.0940 5552 Null - ok
13:53:56.0971 5552 [ CDDD4478757288DF4BB1494BFD084259 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
13:53:56.0986 5552 NVHDA - ok
13:53:57.0314 5552 [ DB2BEE926E7DFC59896A2D6800EB13F7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:53:57.0470 5552 nvlddmkm - ok
13:53:57.0501 5552 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:53:57.0548 5552 nvraid - ok
13:53:57.0579 5552 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:53:57.0610 5552 nvstor - ok
13:53:57.0657 5552 [ 24AB15D09A13D5A40567211A1AB9B479 ] nvsvc C:\Windows\system32\nvvsvc.exe
13:53:57.0657 5552 nvsvc - ok
13:53:57.0688 5552 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:53:57.0720 5552 nv_agp - ok
13:53:57.0735 5552 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:53:57.0751 5552 ohci1394 - ok
13:53:57.0813 5552 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:53:57.0844 5552 p2pimsvc - ok
13:53:57.0891 5552 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:53:57.0922 5552 p2psvc - ok
13:53:57.0969 5552 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:53:57.0985 5552 Parport - ok
13:53:58.0016 5552 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:53:58.0016 5552 partmgr - ok
13:53:58.0063 5552 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:53:58.0063 5552 PcaSvc - ok
13:53:58.0094 5552 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
13:53:58.0094 5552 pci - ok
13:53:58.0125 5552 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:53:58.0141 5552 pciide - ok
13:53:58.0188 5552 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:53:58.0219 5552 pcmcia - ok
13:53:58.0250 5552 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:53:58.0250 5552 pcw - ok
13:53:58.0281 5552 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:53:58.0281 5552 PEAUTH - ok
13:53:58.0375 5552 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:53:58.0390 5552 PerfHost - ok
13:53:58.0468 5552 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
13:53:58.0515 5552 pla - ok
13:53:58.0546 5552 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:53:58.0546 5552 PlugPlay - ok
13:53:58.0562 5552 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:53:58.0593 5552 PNRPAutoReg - ok
13:53:58.0624 5552 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:53:58.0624 5552 PNRPsvc - ok
13:53:58.0687 5552 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
13:53:58.0702 5552 Point64 - ok
13:53:58.0734 5552 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:53:58.0765 5552 PolicyAgent - ok
13:53:58.0796 5552 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:53:58.0796 5552 Power - ok
13:53:58.0843 5552 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:53:58.0858 5552 PptpMiniport - ok
13:53:58.0890 5552 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:53:58.0905 5552 Processor - ok
13:53:58.0968 5552 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:53:58.0968 5552 ProfSvc - ok
13:53:58.0983 5552 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:53:58.0983 5552 ProtectedStorage - ok
13:53:59.0046 5552 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:53:59.0061 5552 Psched - ok
13:53:59.0139 5552 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:53:59.0186 5552 ql2300 - ok
13:53:59.0202 5552 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:53:59.0233 5552 ql40xx - ok
13:53:59.0280 5552 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:53:59.0295 5552 QWAVE - ok
13:53:59.0326 5552 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:53:59.0342 5552 QWAVEdrv - ok
13:53:59.0358 5552 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:53:59.0373 5552 RasAcd - ok
13:53:59.0404 5552 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:53:59.0420 5552 RasAgileVpn - ok
13:53:59.0436 5552 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:53:59.0451 5552 RasAuto - ok
13:53:59.0482 5552 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:53:59.0514 5552 Rasl2tp - ok
13:53:59.0560 5552 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
13:53:59.0592 5552 RasMan - ok
13:53:59.0623 5552 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:53:59.0638 5552 RasPppoe - ok
13:53:59.0638 5552 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:53:59.0654 5552 RasSstp - ok
13:53:59.0670 5552 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:53:59.0701 5552 rdbss - ok
13:53:59.0716 5552 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:53:59.0732 5552 rdpbus - ok
13:53:59.0748 5552 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:53:59.0763 5552 RDPCDD - ok
13:53:59.0794 5552 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:53:59.0810 5552 RDPENCDD - ok
13:53:59.0841 5552 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:53:59.0857 5552 RDPREFMP - ok
13:53:59.0904 5552 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:53:59.0935 5552 RDPWD - ok
13:53:59.0950 5552 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:53:59.0966 5552 rdyboost - ok
13:53:59.0982 5552 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:53:59.0997 5552 RemoteAccess - ok
13:54:00.0044 5552 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:54:00.0060 5552 RemoteRegistry - ok
13:54:00.0122 5552 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:54:00.0153 5552 RFCOMM - ok
13:54:00.0216 5552 [ 5767961268AA43D9F3FA6D59EC8B7B12 ] rimspci C:\Windows\system32\DRIVERS\rimssne64.sys
13:54:00.0231 5552 rimspci - ok
13:54:00.0278 5552 [ DDF5F666C2A5B3729E8BEA01FB999CC0 ] risdsnpe C:\Windows\system32\DRIVERS\risdsne64.sys
13:54:00.0294 5552 risdsnpe - ok
13:54:00.0325 5552 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:54:00.0325 5552 RpcEptMapper - ok
13:54:00.0356 5552 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:54:00.0356 5552 RpcLocator - ok
13:54:00.0403 5552 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
13:54:00.0418 5552 RpcSs - ok
13:54:00.0450 5552 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:54:00.0450 5552 rspndr - ok
13:54:00.0465 5552 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
13:54:00.0465 5552 SamSs - ok
13:54:00.0496 5552 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:54:00.0528 5552 sbp2port - ok
13:54:00.0606 5552 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
13:54:01.0230 5552 SBSDWSCService - ok
13:54:01.0276 5552 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:54:01.0292 5552 SCardSvr - ok
13:54:01.0323 5552 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:54:01.0339 5552 scfilter - ok
13:54:01.0370 5552 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
13:54:01.0386 5552 Schedule - ok
13:54:01.0432 5552 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:54:01.0432 5552 SCPolicySvc - ok
13:54:01.0464 5552 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
13:54:01.0479 5552 sdbus - ok
13:54:01.0557 5552 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:54:01.0573 5552 SDRSVC - ok
13:54:01.0620 5552 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:54:01.0620 5552 secdrv - ok
13:54:01.0682 5552 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
13:54:01.0698 5552 seclogon - ok
13:54:01.0729 5552 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:54:01.0729 5552 SENS - ok
13:54:01.0791 5552 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:54:01.0807 5552 SensrSvc - ok
13:54:01.0854 5552 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:54:01.0869 5552 Serenum - ok
13:54:01.0885 5552 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:54:01.0900 5552 Serial - ok
13:54:01.0932 5552 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:54:01.0947 5552 sermouse - ok
13:54:01.0978 5552 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:54:01.0994 5552 SessionEnv - ok
13:54:02.0041 5552 [ 70F9C476B62DE4F2823E918A6C181ADE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
13:54:02.0056 5552 SFEP - ok
13:54:02.0088 5552 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:54:02.0119 5552 sffdisk - ok
13:54:02.0150 5552 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:54:02.0166 5552 sffp_mmc - ok
13:54:02.0181 5552 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:54:02.0197 5552 sffp_sd - ok
13:54:02.0228 5552 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:54:02.0244 5552 sfloppy - ok
13:54:02.0275 5552 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:54:02.0275 5552 ShellHWDetection - ok
13:54:02.0322 5552 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:54:02.0337 5552 SiSRaid2 - ok
13:54:02.0368 5552 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:54:02.0384 5552 SiSRaid4 - ok
13:54:02.0462 5552 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:54:02.0462 5552 SkypeUpdate - ok
13:54:02.0493 5552 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:54:02.0509 5552 Smb - ok
13:54:02.0540 5552 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:54:02.0556 5552 SNMPTRAP - ok
13:54:02.0587 5552 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:54:02.0587 5552 spldr - ok
13:54:02.0680 5552 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
13:54:02.0696 5552 Spooler - ok
13:54:02.0790 5552 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
13:54:02.0836 5552 sppsvc - ok
13:54:02.0852 5552 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:54:02.0883 5552 sppuinotify - ok
13:54:02.0977 5552 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\NISx64\1308000.00E\SRTSP64.SYS
13:54:03.0008 5552 SRTSP - ok
13:54:03.0039 5552 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\NISx64\1308000.00E\SRTSPX64.SYS
13:54:03.0055 5552 SRTSPX - ok
13:54:03.0086 5552 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
13:54:03.0086 5552 srv - ok
13:54:03.0117 5552 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:54:03.0117 5552 srv2 - ok
13:54:03.0133 5552 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:54:03.0133 5552 srvnet - ok
13:54:03.0164 5552 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:54:03.0164 5552 SSDPSRV - ok
13:54:03.0180 5552 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:54:03.0211 5552 SstpSvc - ok
13:54:03.0258 5552 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:54:03.0273 5552 stexstor - ok
13:54:03.0304 5552 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
13:54:03.0320 5552 stisvc - ok
13:54:03.0336 5552 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:54:03.0351 5552 swenum - ok
13:54:03.0382 5552 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:54:03.0414 5552 swprv - ok
13:54:03.0460 5552 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\NISx64\1308000.00E\SYMDS64.SYS
13:54:03.0460 5552 SymDS - ok
13:54:03.0570 5552 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\NISx64\1308000.00E\SYMEFA64.SYS
13:54:03.0585 5552 SymEFA - ok
13:54:03.0616 5552 [ 898BB48C797483420DF523B2BBC1ECDB ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
13:54:03.0648 5552 SymEvent - ok
13:54:03.0710 5552 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\NISx64\1308000.00E\Ironx64.SYS
13:54:03.0726 5552 SymIRON - ok
13:54:03.0757 5552 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\NISx64\1308000.00E\SYMNETS.SYS
13:54:03.0788 5552 SymNetS - ok
13:54:03.0882 5552 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
13:54:03.0913 5552 SysMain - ok
13:54:03.0960 5552 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:54:03.0975 5552 TabletInputService - ok
13:54:04.0006 5552 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:54:04.0038 5552 TapiSrv - ok
13:54:04.0053 5552 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:54:04.0069 5552 TBS - ok
13:54:04.0178 5552 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:54:04.0194 5552 Tcpip - ok
13:54:04.0287 5552 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:54:04.0303 5552 TCPIP6 - ok
13:54:04.0334 5552 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:54:04.0334 5552 tcpipreg - ok
13:54:04.0396 5552 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:54:04.0412 5552 TDPIPE - ok
13:54:04.0443 5552 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:54:04.0459 5552 TDTCP - ok
13:54:04.0490 5552 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:54:04.0521 5552 tdx - ok
13:54:04.0537 5552 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:54:04.0568 5552 TermDD - ok
13:54:04.0646 5552 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
13:54:04.0677 5552 TermService - ok
13:54:04.0724 5552 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:54:04.0724 5552 Themes - ok
13:54:04.0755 5552 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:54:04.0755 5552 THREADORDER - ok
13:54:04.0771 5552 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:54:04.0771 5552 TrkWks - ok
13:54:04.0818 5552 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:54:04.0849 5552 TrustedInstaller - ok
13:54:04.0880 5552 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:54:04.0927 5552 tssecsrv - ok
13:54:04.0974 5552 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:54:04.0989 5552 TsUsbFlt - ok
13:54:05.0036 5552 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:54:05.0052 5552 tunnel - ok
13:54:05.0083 5552 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:54:05.0098 5552 uagp35 - ok
13:54:05.0145 5552 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:54:05.0176 5552 udfs - ok
13:54:05.0208 5552 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:54:05.0223 5552 UI0Detect - ok
13:54:05.0286 5552 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:54:05.0301 5552 uliagpkx - ok
13:54:05.0332 5552 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:54:05.0348 5552 umbus - ok
13:54:05.0395 5552 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:54:05.0410 5552 UmPass - ok
13:54:05.0442 5552 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:54:05.0442 5552 upnphost - ok
13:54:05.0473 5552 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
13:54:05.0488 5552 USBAAPL64 - ok
13:54:05.0520 5552 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:54:05.0535 5552 usbccgp - ok
13:54:05.0566 5552 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:54:05.0582 5552 usbcir - ok
13:54:05.0598 5552 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:54:05.0613 5552 usbehci - ok
13:54:05.0629 5552 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:54:05.0660 5552 usbhub - ok
13:54:05.0676 5552 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:54:05.0691 5552 usbohci - ok
13:54:05.0722 5552 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:54:05.0738 5552 usbprint - ok
13:54:05.0754 5552 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:54:05.0800 5552 USBSTOR - ok
13:54:05.0863 5552 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:54:05.0894 5552 usbuhci - ok
13:54:05.0955 5552 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
13:54:05.0995 5552 usbvideo - ok
13:54:06.0025 5552 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:54:06.0035 5552 UxSms - ok
13:54:06.0115 5552 [ CB5B94EE1775FA4CD6B133F1745003C6 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
13:54:06.0115 5552 VAIO Event Service - ok
13:54:06.0175 5552 [ 1CF1A4DD7A58C966C9014B83C7229CF3 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
13:54:06.0285 5552 VAIO Power Management - ok
13:54:06.0305 5552 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:54:06.0305 5552 VaultSvc - ok
13:54:06.0335 5552 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:54:06.0335 5552 vdrvroot - ok
13:54:06.0375 5552 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:54:06.0395 5552 vds - ok
13:54:06.0435 5552 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:54:06.0455 5552 vga - ok
13:54:06.0495 5552 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:54:06.0515 5552 VgaSave - ok
13:54:06.0555 5552 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:54:06.0575 5552 vhdmp - ok
13:54:06.0605 5552 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:54:06.0615 5552 viaide - ok
13:54:06.0625 5552 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:54:06.0635 5552 volmgr - ok
13:54:06.0665 5552 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:54:06.0665 5552 volmgrx - ok
13:54:06.0695 5552 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:54:06.0695 5552 volsnap - ok
13:54:06.0755 5552 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:54:06.0775 5552 vsmraid - ok
13:54:06.0845 5552 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:54:06.0875 5552 VSS - ok
13:54:06.0956 5552 [ EF51747440486C23BD466311048BD924 ] vToolbarUpdater12.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe
13:54:06.0966 5552 vToolbarUpdater12.2.0 - ok
13:54:06.0986 5552 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:54:06.0996 5552 vwifibus - ok
13:54:07.0036 5552 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:54:07.0056 5552 vwififlt - ok
13:54:07.0116 5552 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
13:54:07.0116 5552 vwifimp - ok
13:54:07.0166 5552 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:54:07.0186 5552 W32Time - ok
13:54:07.0216 5552 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:54:07.0236 5552 WacomPen - ok
13:54:07.0276 5552 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:54:07.0296 5552 WANARP - ok
13:54:07.0326 5552 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:54:07.0326 5552 Wanarpv6 - ok
13:54:07.0396 5552 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:54:07.0676 5552 WatAdminSvc - ok
13:54:07.0736 5552 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:54:07.0786 5552 wbengine - ok
13:54:07.0836 5552 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:54:07.0876 5552 WbioSrvc - ok
13:54:07.0916 5552 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:54:07.0936 5552 wcncsvc - ok
13:54:07.0956 5552 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:54:07.0972 5552 WcsPlugInService - ok
13:54:07.0987 5552 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:54:08.0019 5552 Wd - ok
13:54:08.0034 5552 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:54:08.0050 5552 Wdf01000 - ok
13:54:08.0065 5552 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:54:08.0065 5552 WdiServiceHost - ok
13:54:08.0097 5552 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:54:08.0097 5552 WdiSystemHost - ok
13:54:08.0128 5552 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:54:08.0159 5552 WebClient - ok
13:54:08.0175 5552 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:54:08.0190 5552 Wecsvc - ok
13:54:08.0216 5552 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:54:08.0236 5552 wercplsupport - ok
13:54:08.0256 5552 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:54:08.0256 5552 WerSvc - ok
13:54:08.0296 5552 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:54:08.0316 5552 WfpLwf - ok
13:54:08.0326 5552 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:54:08.0356 5552 WIMMount - ok
13:54:08.0366 5552 WinHttpAutoProxySvc - ok
13:54:08.0436 5552 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:54:08.0446 5552 Winmgmt - ok
13:54:08.0506 5552 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:54:08.0566 5552 WinRM - ok
13:54:08.0636 5552 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:54:08.0656 5552 Wlansvc - ok
13:54:08.0696 5552 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:54:08.0716 5552 wlcrasvc - ok
13:54:08.0856 5552 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:54:08.0886 5552 wlidsvc - ok
13:54:08.0916 5552 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:54:08.0916 5552 WmiAcpi - ok
13:54:08.0956 5552 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:54:08.0976 5552 wmiApSrv - ok
13:54:09.0046 5552 WMPNetworkSvc - ok
13:54:09.0086 5552 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:54:09.0116 5552 WPCSvc - ok
13:54:09.0146 5552 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:54:09.0156 5552 WPDBusEnum - ok
13:54:09.0206 5552 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:54:09.0216 5552 ws2ifsl - ok
13:54:09.0226 5552 WSearch - ok
13:54:09.0266 5552 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:54:09.0266 5552 WudfPf - ok
13:54:09.0336 5552 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:54:09.0336 5552 WUDFRd - ok
13:54:09.0396 5552 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:54:09.0396 5552 wudfsvc - ok
13:54:09.0446 5552 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:54:09.0466 5552 WwanSvc - ok
13:54:09.0596 5552 X6va005 - ok
13:54:09.0616 5552 X6va008 - ok
13:54:09.0666 5552 [ 6AFFD75C6807B3DD3AB018E27B88EF95 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
13:54:09.0676 5552 yukonw7 - ok
13:54:09.0706 5552 ================ Scan global ===============================
13:54:09.0736 5552 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:54:09.0776 5552 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:54:09.0796 5552 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:54:09.0816 5552 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:54:09.0876 5552 [ 014A9CB92514E27C0107614DF764BC06 ] C:\Windows\system32\services.exe
13:54:09.0897 5552 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
13:54:09.0897 5552 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
13:54:09.0897 5552 ================ Scan MBR ==================================
13:54:09.0947 5552 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:54:09.0947 5552 Suspicious mbr (Forged): \Device\Harddisk0\DR0
13:54:10.0007 5552 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
13:54:10.0007 5552 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
13:54:10.0157 5552 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
13:54:10.0157 5552 \Device\Harddisk0\DR0 - detected TDSS File System (1)
13:54:10.0157 5552 ================ Scan VBR ==================================
13:54:10.0167 5552 [ 932B36718EEE2085D079439B26BD93C1 ] \Device\Harddisk0\DR0\Partition1
13:54:10.0177 5552 \Device\Harddisk0\DR0\Partition1 - ok
13:54:10.0207 5552 [ D3DB155F31E42DBE80FAC574467492AA ] \Device\Harddisk0\DR0\Partition2
13:54:10.0207 5552 \Device\Harddisk0\DR0\Partition2 - ok
13:54:10.0217 5552 ============================================================
13:54:10.0217 5552 Scan finished
13:54:10.0217 5552 ============================================================
13:54:10.0237 3160 Detected object count: 3
13:54:10.0237 3160 Actual detected object count: 3
13:54:47.0874 3160 C:\Windows\system32\services.exe - copied to quarantine
13:54:49.0934 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\@ - copied to quarantine
13:54:49.0949 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\L\00000004.@ - copied to quarantine
13:54:49.0949 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\L\201d3dde - copied to quarantine
13:54:49.0949 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\00000004.@ - copied to quarantine
13:54:49.0965 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\00000008.@ - copied to quarantine
13:54:49.0965 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\000000cb.@ - copied to quarantine
13:54:49.0965 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\80000000.@ - copied to quarantine
13:54:49.0965 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\80000032.@ - copied to quarantine
13:54:49.0965 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\80000064.@ - copied to quarantine
13:55:23.0627 3160 Backup copy found, using it..
13:55:23.0721 3160 C:\Windows\assembly\GAC_32\desktop.ini - will be deleted on reboot
13:55:23.0721 3160 C:\Windows\assembly\GAC_64\desktop.ini - will be deleted on reboot
13:55:23.0752 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\@ - will be deleted on reboot
13:55:23.0752 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\00000004.@ - will be deleted on reboot
13:55:23.0752 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\00000008.@ - will be deleted on reboot
13:55:23.0752 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\000000cb.@ - will be deleted on reboot
13:55:23.0752 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\80000000.@ - will be deleted on reboot
13:55:23.0752 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\80000032.@ - will be deleted on reboot
13:55:23.0752 3160 C:\Windows\installer\{515b1a33-2e89-7fd7-e976-32767535575e}\U\80000064.@ - will be deleted on reboot
13:55:23.0768 3160 C:\Windows\system32\services.exe - will be cured on reboot
13:55:23.0768 3160 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure
13:55:30.0679 3160 \Device\Harddisk0\DR0\# - copied to quarantine
13:55:30.0679 3160 \Device\Harddisk0\DR0 - copied to quarantine
13:55:30.0819 3160 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
13:55:30.0819 3160 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
13:55:30.0835 3160 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
13:55:30.0866 3160 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
13:55:30.0928 3160 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
13:55:30.0944 3160 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
13:55:30.0944 3160 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
13:55:30.0944 3160 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
13:55:30.0959 3160 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
13:55:30.0959 3160 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
13:55:30.0959 3160 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
13:55:30.0959 3160 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
13:55:30.0975 3160 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
13:55:30.0991 3160 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
13:55:31.0115 3160 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
13:55:31.0287 3160 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
13:55:31.0303 3160 \Device\Harddisk0\DR0 - ok
13:55:31.0303 3160 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
13:55:31.0303 3160 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
13:55:31.0303 3160 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
13:55:36.0716 5144 Deinitialize success

aswMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-02 13:59:57
-----------------------------
13:59:57.343 OS Version: Windows x64 6.1.7601 Service Pack 1
13:59:57.343 Number of processors: 4 586 0x2502
13:59:57.343 ComputerName: AMANDA-PC UserName: Amanda
13:59:59.075 Initialize success
14:00:39.710 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
14:00:39.710 Disk 0 Vendor: Hitachi_ PB4O Size: 476940MB BusType: 3
14:00:39.726 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000079
14:00:39.726 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0
14:00:39.742 Disk 0 MBR read successfully
14:00:39.757 Disk 0 MBR scan
14:00:39.757 Disk 0 Windows 7 default MBR code
14:00:39.773 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
14:00:39.788 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 476838 MB offset 206848
14:00:39.820 Disk 0 scanning C:\Windows\system32\drivers
14:00:46.481 Service scanning
14:01:13.312 Modules scanning
14:01:13.333 Disk 0 trace - called modules:
14:01:13.354 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
14:01:13.365 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006758060]
14:01:13.376 3 CLASSPNP.SYS[fffff88001d8643f] -> nt!IofCallDriver -> [0xfffffa80046f3260]
14:01:13.386 5 ACPI.sys[fffff88000f3a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800471a050]
14:01:13.396 Scan finished successfully
14:01:26.241 Disk 0 MBR has been saved successfully to "C:\Users\Amanda\Desktop\MBR.dat"
14:01:26.312 The log file has been saved successfully to "C:\Users\Amanda\Desktop\aswMBR.txt"


MBAM required a restart too. Here is the log file:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.02.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Amanda :: AMANDA-PC [administrator]

Protection: Enabled

9/2/2012 2:04:20 PM
mbam-log-2012-09-02 (14-04-20).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 196580
Time elapsed: 5 minute(s), 21 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 5
C:\Users\Amanda\Downloads\DownloadSetup (48).exe (Affiliate.Downloader) -> Quarantined and deleted successfully.
C:\Users\Amanda\Downloads\DownloadSetup (89).exe (Affiliate.Downloader) -> Quarantined and deleted successfully.
C:\Users\Amanda\Downloads\DownloadSetup.exe (Affiliate.Downloader) -> Quarantined and deleted successfully.
C:\Users\Amanda\Downloads\frostwire.exe (PUP.BundleInstaller.DMR) -> Quarantined and deleted successfully.
C:\Windows\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.

(end)

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,534 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:13 PM

Posted 02 September 2012 - 08:38 PM

Looks like a good removal on a dangerous root kit.

Recommend you rerun TDSS to be sure there is none left.
We need to look a bit further too.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
    *]List Devices
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


Let me know how it is running after this.....

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.

Edited by boopme, 06 September 2012 - 06:44 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 pringles13

pringles13
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 06 September 2012 - 06:37 PM

One thing I did notice after running the scans the first time is that I have no longer been getting the webhp redirect when using google.

Here are the new logs:

TDSSKiller:

19:32:21.0489 4496 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
19:32:21.0848 4496 ============================================================
19:32:21.0848 4496 Current date / time: 2012/09/06 19:32:21.0848
19:32:21.0848 4496 SystemInfo:
19:32:21.0848 4496
19:32:21.0848 4496 OS Version: 6.1.7601 ServicePack: 1.0
19:32:21.0848 4496 Product type: Workstation
19:32:21.0848 4496 ComputerName: AMANDA-PC
19:32:21.0848 4496 UserName: Amanda
19:32:21.0848 4496 Windows directory: C:\Windows
19:32:21.0848 4496 System windows directory: C:\Windows
19:32:21.0848 4496 Running under WOW64
19:32:21.0848 4496 Processor architecture: Intel x64
19:32:21.0848 4496 Number of processors: 4
19:32:21.0848 4496 Page size: 0x1000
19:32:21.0848 4496 Boot type: Normal boot
19:32:21.0848 4496 ============================================================
19:32:23.0361 4496 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:32:23.0376 4496 ============================================================
19:32:23.0376 4496 \Device\Harddisk0\DR0:
19:32:23.0376 4496 MBR partitions:
19:32:23.0376 4496 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:32:23.0376 4496 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
19:32:23.0376 4496 ============================================================
19:32:23.0408 4496 C: <-> \Device\Harddisk0\DR0\Partition2
19:32:23.0408 4496 ============================================================
19:32:23.0408 4496 Initialize success
19:32:23.0408 4496 ============================================================
19:33:36.0781 1560 ============================================================
19:33:36.0781 1560 Scan started
19:33:36.0781 1560 Mode: Manual;
19:33:36.0781 1560 ============================================================
19:33:37.0717 1560 ================ Scan system memory ========================
19:33:37.0717 1560 System memory - ok
19:33:37.0717 1560 ================ Scan services =============================
19:33:37.0904 1560 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:33:37.0920 1560 1394ohci - ok
19:33:37.0998 1560 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
19:33:37.0998 1560 ACDaemon - ok
19:33:38.0045 1560 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:33:38.0045 1560 ACPI - ok
19:33:38.0092 1560 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:33:38.0092 1560 AcpiPmi - ok
19:33:38.0201 1560 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:33:38.0201 1560 AdobeARMservice - ok
19:33:38.0310 1560 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:33:38.0310 1560 AdobeFlashPlayerUpdateSvc - ok
19:33:38.0372 1560 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:33:38.0388 1560 adp94xx - ok
19:33:38.0435 1560 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:33:38.0450 1560 adpahci - ok
19:33:38.0450 1560 Scan interrupted by user!
19:33:38.0450 1560 ================ Scan global ===============================
19:33:38.0450 1560 Scan interrupted by user!
19:33:38.0450 1560 ================ Scan MBR ==================================
19:33:38.0450 1560 Scan interrupted by user!
19:33:38.0450 1560 ================ Scan VBR ==================================
19:33:38.0450 1560 Scan interrupted by user!
19:33:38.0450 1560 ============================================================
19:33:38.0450 1560 Scan finished
19:33:38.0450 1560 ============================================================
19:33:38.0466 3644 Detected object count: 0
19:33:38.0466 3644 Actual detected object count: 0
19:33:43.0131 4804 ============================================================
19:33:43.0131 4804 Scan started
19:33:43.0131 4804 Mode: Manual; TDLFS;
19:33:43.0131 4804 ============================================================
19:33:43.0271 4804 ================ Scan system memory ========================
19:33:43.0271 4804 System memory - ok
19:33:43.0271 4804 ================ Scan services =============================
19:33:43.0396 4804 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:33:43.0411 4804 1394ohci - ok
19:33:43.0458 4804 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
19:33:43.0474 4804 ACDaemon - ok
19:33:43.0505 4804 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:33:43.0505 4804 ACPI - ok
19:33:43.0521 4804 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:33:43.0521 4804 AcpiPmi - ok
19:33:43.0583 4804 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:33:43.0583 4804 AdobeARMservice - ok
19:33:43.0692 4804 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:33:43.0708 4804 AdobeFlashPlayerUpdateSvc - ok
19:33:43.0739 4804 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:33:43.0739 4804 adp94xx - ok
19:33:43.0770 4804 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:33:43.0770 4804 adpahci - ok
19:33:43.0786 4804 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:33:43.0786 4804 adpu320 - ok
19:33:43.0833 4804 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:33:43.0833 4804 AeLookupSvc - ok
19:33:43.0864 4804 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:33:43.0879 4804 AFD - ok
19:33:43.0895 4804 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:33:43.0895 4804 agp440 - ok
19:33:43.0942 4804 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:33:43.0942 4804 ALG - ok
19:33:43.0973 4804 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:33:43.0989 4804 aliide - ok
19:33:43.0989 4804 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:33:43.0989 4804 amdide - ok
19:33:44.0035 4804 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:33:44.0035 4804 AmdK8 - ok
19:33:44.0035 4804 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:33:44.0051 4804 AmdPPM - ok
19:33:44.0082 4804 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:33:44.0082 4804 amdsata - ok
19:33:44.0113 4804 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:33:44.0113 4804 amdsbs - ok
19:33:44.0129 4804 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:33:44.0129 4804 amdxata - ok
19:33:44.0160 4804 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:33:44.0160 4804 AppID - ok
19:33:44.0191 4804 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:33:44.0191 4804 AppIDSvc - ok
19:33:44.0223 4804 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:33:44.0223 4804 Appinfo - ok
19:33:44.0285 4804 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:33:44.0285 4804 Apple Mobile Device - ok
19:33:44.0332 4804 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:33:44.0332 4804 arc - ok
19:33:44.0347 4804 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:33:44.0347 4804 arcsas - ok
19:33:44.0457 4804 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:33:44.0472 4804 aspnet_state - ok
19:33:44.0519 4804 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:33:44.0519 4804 AsyncMac - ok
19:33:44.0535 4804 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:33:44.0535 4804 atapi - ok
19:33:44.0613 4804 [ 08BAAA2432E81031A6C3B11AD5A67E2B ] athr C:\Windows\system32\DRIVERS\athrx.sys
19:33:44.0691 4804 athr - ok
19:33:44.0722 4804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:33:44.0737 4804 AudioEndpointBuilder - ok
19:33:44.0737 4804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:33:44.0753 4804 AudioSrv - ok
19:33:44.0909 4804 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
19:33:45.0034 4804 AVGIDSAgent - ok
19:33:45.0065 4804 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
19:33:45.0065 4804 AVGIDSDriver - ok
19:33:45.0096 4804 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
19:33:45.0096 4804 AVGIDSFilter - ok
19:33:45.0112 4804 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
19:33:45.0112 4804 AVGIDSHA - ok
19:33:45.0159 4804 [ 59955B4C288DD2A8B9FD2CD5158355C5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
19:33:45.0159 4804 Avgldx64 - ok
19:33:45.0174 4804 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
19:33:45.0174 4804 Avgmfx64 - ok
19:33:45.0221 4804 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
19:33:45.0237 4804 Avgrkx64 - ok
19:33:45.0268 4804 [ 1BEE674AD792B1C63BB0DAC5FA724B23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
19:33:45.0268 4804 Avgtdia - ok
19:33:45.0330 4804 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
19:33:45.0330 4804 avgtp - ok
19:33:45.0377 4804 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
19:33:45.0377 4804 avgwd - ok
19:33:45.0408 4804 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:33:45.0408 4804 AxInstSV - ok
19:33:45.0455 4804 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:33:45.0455 4804 b06bdrv - ok
19:33:45.0486 4804 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:33:45.0486 4804 b57nd60a - ok
19:33:45.0549 4804 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:33:45.0549 4804 BDESVC - ok
19:33:45.0564 4804 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:33:45.0564 4804 Beep - ok
19:33:45.0751 4804 [ 5B1FE9D351C284701C8051DA2AA81DF6 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120531.001\BHDrvx64.sys
19:33:45.0783 4804 BHDrvx64 - ok
19:33:45.0814 4804 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:33:45.0814 4804 blbdrive - ok
19:33:45.0861 4804 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:33:45.0861 4804 bowser - ok
19:33:45.0876 4804 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:33:45.0876 4804 BrFiltLo - ok
19:33:45.0892 4804 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:33:45.0892 4804 BrFiltUp - ok
19:33:45.0939 4804 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
19:33:45.0939 4804 Browser - ok
19:33:45.0970 4804 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:33:45.0970 4804 Brserid - ok
19:33:45.0985 4804 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:33:45.0985 4804 BrSerWdm - ok
19:33:45.0985 4804 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:33:46.0001 4804 BrUsbMdm - ok
19:33:46.0001 4804 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:33:46.0001 4804 BrUsbSer - ok
19:33:46.0048 4804 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
19:33:46.0048 4804 BthEnum - ok
19:33:46.0079 4804 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:33:46.0079 4804 BTHMODEM - ok
19:33:46.0126 4804 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:33:46.0126 4804 BthPan - ok
19:33:46.0157 4804 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
19:33:46.0173 4804 BTHPORT - ok
19:33:46.0204 4804 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:33:46.0204 4804 bthserv - ok
19:33:46.0235 4804 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
19:33:46.0235 4804 BTHUSB - ok
19:33:46.0313 4804 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1308000.00E\ccSetx64.sys
19:33:46.0313 4804 ccSet_NIS - ok
19:33:46.0344 4804 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:33:46.0344 4804 cdfs - ok
19:33:46.0391 4804 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
19:33:46.0391 4804 cdrom - ok
19:33:46.0422 4804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:33:46.0422 4804 CertPropSvc - ok
19:33:46.0453 4804 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:33:46.0453 4804 circlass - ok
19:33:46.0500 4804 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:33:46.0500 4804 CLFS - ok
19:33:46.0547 4804 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:33:46.0547 4804 clr_optimization_v2.0.50727_32 - ok
19:33:46.0578 4804 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:33:46.0594 4804 clr_optimization_v2.0.50727_64 - ok
19:33:46.0656 4804 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:33:46.0703 4804 clr_optimization_v4.0.30319_32 - ok
19:33:46.0719 4804 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:33:46.0734 4804 clr_optimization_v4.0.30319_64 - ok
19:33:46.0750 4804 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:33:46.0765 4804 CmBatt - ok
19:33:46.0765 4804 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:33:46.0781 4804 cmdide - ok
19:33:46.0812 4804 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:33:46.0812 4804 CNG - ok
19:33:46.0859 4804 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:33:46.0859 4804 Compbatt - ok
19:33:46.0875 4804 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:33:46.0875 4804 CompositeBus - ok
19:33:46.0890 4804 COMSysApp - ok
19:33:46.0921 4804 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:33:46.0921 4804 crcdisk - ok
19:33:46.0968 4804 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:33:46.0968 4804 CryptSvc - ok
19:33:47.0015 4804 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
19:33:47.0015 4804 dc3d - ok
19:33:47.0062 4804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:33:47.0077 4804 DcomLaunch - ok
19:33:47.0109 4804 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:33:47.0109 4804 defragsvc - ok
19:33:47.0140 4804 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:33:47.0140 4804 DfsC - ok
19:33:47.0187 4804 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:33:47.0202 4804 Dhcp - ok
19:33:47.0249 4804 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:33:47.0249 4804 discache - ok
19:33:47.0280 4804 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:33:47.0280 4804 Disk - ok
19:33:47.0327 4804 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:33:47.0327 4804 Dnscache - ok
19:33:47.0358 4804 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:33:47.0358 4804 dot3svc - ok
19:33:47.0374 4804 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:33:47.0389 4804 DPS - ok
19:33:47.0436 4804 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:33:47.0436 4804 drmkaud - ok
19:33:47.0483 4804 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:33:47.0499 4804 DXGKrnl - ok
19:33:47.0530 4804 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:33:47.0530 4804 EapHost - ok
19:33:47.0623 4804 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:33:47.0717 4804 ebdrv - ok
19:33:47.0764 4804 [ BA6420C1F7070ED8F1BA372844F3E1EC ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
19:33:47.0779 4804 eeCtrl - ok
19:33:47.0795 4804 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:33:47.0795 4804 EFS - ok
19:33:47.0857 4804 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:33:47.0873 4804 ehRecvr - ok
19:33:47.0904 4804 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:33:47.0904 4804 ehSched - ok
19:33:47.0935 4804 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:33:47.0951 4804 elxstor - ok
19:33:47.0982 4804 [ 1343DF3451BC0C442DC69837C6FBA21B ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
19:33:47.0982 4804 EraserUtilRebootDrv - ok
19:33:48.0013 4804 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:33:48.0013 4804 ErrDev - ok
19:33:48.0060 4804 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:33:48.0076 4804 EventSystem - ok
19:33:48.0091 4804 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:33:48.0107 4804 exfat - ok
19:33:48.0154 4804 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:33:48.0154 4804 fastfat - ok
19:33:48.0216 4804 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:33:48.0232 4804 Fax - ok
19:33:48.0247 4804 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:33:48.0247 4804 fdc - ok
19:33:48.0279 4804 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:33:48.0279 4804 fdPHost - ok
19:33:48.0294 4804 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:33:48.0294 4804 FDResPub - ok
19:33:48.0341 4804 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:33:48.0341 4804 FileInfo - ok
19:33:48.0357 4804 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:33:48.0357 4804 Filetrace - ok
19:33:48.0372 4804 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:33:48.0388 4804 flpydisk - ok
19:33:48.0419 4804 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:33:48.0419 4804 FltMgr - ok
19:33:48.0481 4804 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:33:48.0497 4804 FontCache - ok
19:33:48.0544 4804 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:33:48.0544 4804 FontCache3.0.0.0 - ok
19:33:48.0591 4804 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:33:48.0591 4804 FsDepends - ok
19:33:48.0622 4804 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
19:33:48.0653 4804 fssfltr - ok
19:33:48.0731 4804 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
19:33:48.0747 4804 fsssvc - ok
19:33:48.0793 4804 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:33:48.0793 4804 Fs_Rec - ok
19:33:48.0840 4804 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:33:48.0840 4804 fvevol - ok
19:33:48.0871 4804 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:33:48.0871 4804 gagp30kx - ok
19:33:48.0918 4804 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:33:48.0934 4804 GEARAspiWDM - ok
19:33:48.0981 4804 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:33:48.0981 4804 gpsvc - ok
19:33:49.0043 4804 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:33:49.0043 4804 gupdate - ok
19:33:49.0090 4804 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:33:49.0090 4804 gupdatem - ok
19:33:49.0121 4804 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:33:49.0137 4804 gusvc - ok
19:33:49.0168 4804 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:33:49.0168 4804 hcw85cir - ok
19:33:49.0199 4804 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:33:49.0199 4804 HdAudAddService - ok
19:33:49.0230 4804 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:33:49.0230 4804 HDAudBus - ok
19:33:49.0230 4804 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:33:49.0246 4804 HidBatt - ok
19:33:49.0246 4804 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:33:49.0246 4804 HidBth - ok
19:33:49.0277 4804 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:33:49.0277 4804 HidIr - ok
19:33:49.0308 4804 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:33:49.0308 4804 hidserv - ok
19:33:49.0339 4804 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:33:49.0339 4804 HidUsb - ok
19:33:49.0371 4804 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:33:49.0371 4804 hkmsvc - ok
19:33:49.0417 4804 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:33:49.0417 4804 HomeGroupListener - ok
19:33:49.0449 4804 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:33:49.0449 4804 HomeGroupProvider - ok
19:33:49.0480 4804 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:33:49.0480 4804 HpSAMD - ok
19:33:49.0527 4804 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:33:49.0542 4804 HTTP - ok
19:33:49.0558 4804 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:33:49.0558 4804 hwpolicy - ok
19:33:49.0605 4804 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:33:49.0605 4804 i8042prt - ok
19:33:49.0636 4804 [ 073A606333B6F7BBF20AA856DF7F0997 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
19:33:49.0636 4804 iaStor - ok
19:33:49.0729 4804 [ CC800D2D9FD467542BAC7C186C4774AD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:33:49.0729 4804 IAStorDataMgrSvc - ok
19:33:49.0761 4804 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:33:49.0761 4804 iaStorV - ok
19:33:49.0807 4804 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:33:49.0823 4804 idsvc - ok
19:33:49.0901 4804 [ 4E9E0E5A3B0EFEB27491C26BE1D97FDA ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120607.001\IDSvia64.sys
19:33:49.0917 4804 IDSVia64 - ok
19:33:49.0948 4804 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:33:49.0948 4804 iirsp - ok
19:33:50.0010 4804 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:33:50.0026 4804 IKEEXT - ok
19:33:50.0041 4804 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:33:50.0041 4804 intelide - ok
19:33:50.0088 4804 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:33:50.0088 4804 intelppm - ok
19:33:50.0119 4804 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:33:50.0119 4804 IPBusEnum - ok
19:33:50.0166 4804 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:33:50.0166 4804 IpFilterDriver - ok
19:33:50.0197 4804 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:33:50.0213 4804 IPMIDRV - ok
19:33:50.0244 4804 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:33:50.0244 4804 IPNAT - ok
19:33:50.0338 4804 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:33:50.0353 4804 iPod Service - ok
19:33:50.0447 4804 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:33:50.0463 4804 IRENUM - ok
19:33:50.0509 4804 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:33:50.0541 4804 isapnp - ok
19:33:50.0603 4804 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:33:50.0619 4804 iScsiPrt - ok
19:33:50.0681 4804 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:33:50.0697 4804 kbdclass - ok
19:33:50.0790 4804 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:33:50.0806 4804 kbdhid - ok
19:33:50.0837 4804 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:33:50.0837 4804 KeyIso - ok
19:33:50.0899 4804 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:33:50.0931 4804 KSecDD - ok
19:33:50.0993 4804 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:33:51.0009 4804 KSecPkg - ok
19:33:51.0102 4804 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:33:51.0133 4804 ksthunk - ok
19:33:51.0258 4804 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:33:51.0274 4804 KtmRm - ok
19:33:51.0399 4804 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:33:51.0414 4804 LanmanServer - ok
19:33:51.0477 4804 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:33:51.0492 4804 LanmanWorkstation - ok
19:33:51.0586 4804 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:33:51.0601 4804 lltdio - ok
19:33:51.0664 4804 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:33:51.0679 4804 lltdsvc - ok
19:33:51.0726 4804 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:33:51.0726 4804 lmhosts - ok
19:33:51.0773 4804 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:33:51.0773 4804 LSI_FC - ok
19:33:51.0789 4804 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:33:51.0804 4804 LSI_SAS - ok
19:33:51.0820 4804 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:33:51.0820 4804 LSI_SAS2 - ok
19:33:51.0835 4804 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:33:51.0835 4804 LSI_SCSI - ok
19:33:51.0867 4804 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:33:51.0882 4804 luafv - ok
19:33:51.0929 4804 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:33:51.0929 4804 MBAMProtector - ok
19:33:51.0991 4804 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:33:52.0007 4804 MBAMService - ok
19:33:52.0023 4804 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:33:52.0038 4804 Mcx2Svc - ok
19:33:52.0054 4804 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:33:52.0054 4804 megasas - ok
19:33:52.0085 4804 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:33:52.0101 4804 MegaSR - ok
19:33:52.0132 4804 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:33:52.0147 4804 MMCSS - ok
19:33:52.0147 4804 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:33:52.0147 4804 Modem - ok
19:33:52.0179 4804 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:33:52.0179 4804 monitor - ok
19:33:52.0210 4804 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:33:52.0210 4804 mouclass - ok
19:33:52.0241 4804 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:33:52.0257 4804 mouhid - ok
19:33:52.0288 4804 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:33:52.0288 4804 mountmgr - ok
19:33:52.0350 4804 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:33:52.0350 4804 MozillaMaintenance - ok
19:33:52.0381 4804 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:33:52.0381 4804 mpio - ok
19:33:52.0428 4804 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:33:52.0428 4804 mpsdrv - ok
19:33:52.0459 4804 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:33:52.0475 4804 MRxDAV - ok
19:33:52.0506 4804 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:33:52.0506 4804 mrxsmb - ok
19:33:52.0553 4804 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:33:52.0553 4804 mrxsmb10 - ok
19:33:52.0569 4804 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:33:52.0569 4804 mrxsmb20 - ok
19:33:52.0600 4804 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:33:52.0600 4804 msahci - ok
19:33:52.0631 4804 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:33:52.0631 4804 msdsm - ok
19:33:52.0647 4804 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:33:52.0662 4804 MSDTC - ok
19:33:52.0678 4804 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:33:52.0678 4804 Msfs - ok
19:33:52.0709 4804 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:33:52.0709 4804 mshidkmdf - ok
19:33:52.0709 4804 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:33:52.0709 4804 msisadrv - ok
19:33:52.0740 4804 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:33:52.0740 4804 MSiSCSI - ok
19:33:52.0740 4804 msiserver - ok
19:33:52.0771 4804 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:33:52.0771 4804 MSKSSRV - ok
19:33:52.0787 4804 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:33:52.0787 4804 MSPCLOCK - ok
19:33:52.0803 4804 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:33:52.0803 4804 MSPQM - ok
19:33:52.0834 4804 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:33:52.0834 4804 MsRPC - ok
19:33:52.0865 4804 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:33:52.0865 4804 mssmbios - ok
19:33:52.0912 4804 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:33:52.0912 4804 MSTEE - ok
19:33:52.0959 4804 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:33:52.0959 4804 MTConfig - ok
19:33:52.0990 4804 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:33:52.0990 4804 Mup - ok
19:33:53.0021 4804 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:33:53.0037 4804 napagent - ok
19:33:53.0083 4804 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:33:53.0083 4804 NativeWifiP - ok
19:33:53.0161 4804 [ 8043D41F881D6ACE40B854AD6E32217F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120607.034\ENG64.SYS
19:33:53.0161 4804 NAVENG - ok
19:33:53.0224 4804 [ 9A9AB2FC45D701DAED465D14980F1305 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120607.034\EX64.SYS
19:33:53.0255 4804 NAVEX15 - ok
19:33:53.0302 4804 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
19:33:53.0333 4804 NDIS - ok
19:33:53.0349 4804 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:33:53.0349 4804 NdisCap - ok
19:33:53.0380 4804 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:33:53.0380 4804 NdisTapi - ok
19:33:53.0411 4804 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:33:53.0411 4804 Ndisuio - ok
19:33:53.0442 4804 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:33:53.0442 4804 NdisWan - ok
19:33:53.0473 4804 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:33:53.0473 4804 NDProxy - ok
19:33:53.0473 4804 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:33:53.0489 4804 NetBIOS - ok
19:33:53.0520 4804 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:33:53.0520 4804 NetBT - ok
19:33:53.0536 4804 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:33:53.0536 4804 Netlogon - ok
19:33:53.0583 4804 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:33:53.0583 4804 Netman - ok
19:33:53.0614 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:33:53.0629 4804 NetMsmqActivator - ok
19:33:53.0645 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:33:53.0645 4804 NetPipeActivator - ok
19:33:53.0676 4804 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:33:53.0676 4804 netprofm - ok
19:33:53.0676 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:33:53.0676 4804 NetTcpActivator - ok
19:33:53.0692 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:33:53.0692 4804 NetTcpPortSharing - ok
19:33:53.0723 4804 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:33:53.0723 4804 nfrd960 - ok
19:33:53.0785 4804 [ F2840DBFE9322F35557219AE82CC4597 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\19.8.0.14\ccSvcHst.exe
19:33:53.0785 4804 NIS - ok
19:33:53.0832 4804 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:33:53.0848 4804 NlaSvc - ok
19:33:53.0879 4804 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:33:53.0879 4804 Npfs - ok
19:33:53.0910 4804 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:33:53.0910 4804 nsi - ok
19:33:53.0926 4804 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:33:53.0926 4804 nsiproxy - ok
19:33:53.0988 4804 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:33:54.0004 4804 Ntfs - ok
19:33:54.0035 4804 [ 317020D31F1696334679B9D0416EB62E ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
19:33:54.0035 4804 NuidFltr - ok
19:33:54.0066 4804 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:33:54.0066 4804 Null - ok
19:33:54.0113 4804 [ CDDD4478757288DF4BB1494BFD084259 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:33:54.0113 4804 NVHDA - ok
19:33:54.0363 4804 [ DB2BEE926E7DFC59896A2D6800EB13F7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:33:54.0597 4804 nvlddmkm - ok
19:33:54.0612 4804 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:33:54.0612 4804 nvraid - ok
19:33:54.0628 4804 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:33:54.0643 4804 nvstor - ok
19:33:54.0675 4804 [ 24AB15D09A13D5A40567211A1AB9B479 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:33:54.0675 4804 nvsvc - ok
19:33:54.0706 4804 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:33:54.0706 4804 nv_agp - ok
19:33:54.0721 4804 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:33:54.0721 4804 ohci1394 - ok
19:33:54.0753 4804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:33:54.0768 4804 p2pimsvc - ok
19:33:54.0784 4804 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:33:54.0784 4804 p2psvc - ok
19:33:54.0815 4804 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:33:54.0815 4804 Parport - ok
19:33:54.0846 4804 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:33:54.0846 4804 partmgr - ok
19:33:54.0877 4804 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:33:54.0877 4804 PcaSvc - ok
19:33:54.0924 4804 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:33:54.0940 4804 pci - ok
19:33:54.0955 4804 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:33:54.0955 4804 pciide - ok
19:33:54.0987 4804 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:33:54.0987 4804 pcmcia - ok
19:33:55.0002 4804 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:33:55.0018 4804 pcw - ok
19:33:55.0033 4804 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:33:55.0049 4804 PEAUTH - ok
19:33:55.0127 4804 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:33:55.0127 4804 PerfHost - ok
19:33:55.0189 4804 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:33:55.0205 4804 pla - ok
19:33:55.0252 4804 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:33:55.0267 4804 PlugPlay - ok
19:33:55.0283 4804 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:33:55.0283 4804 PNRPAutoReg - ok
19:33:55.0299 4804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:33:55.0314 4804 PNRPsvc - ok
19:33:55.0345 4804 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
19:33:55.0345 4804 Point64 - ok
19:33:55.0377 4804 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:33:55.0392 4804 PolicyAgent - ok
19:33:55.0423 4804 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:33:55.0423 4804 Power - ok
19:33:55.0455 4804 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:33:55.0455 4804 PptpMiniport - ok
19:33:55.0470 4804 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:33:55.0470 4804 Processor - ok
19:33:55.0501 4804 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:33:55.0501 4804 ProfSvc - ok
19:33:55.0517 4804 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:33:55.0517 4804 ProtectedStorage - ok
19:33:55.0564 4804 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:33:55.0564 4804 Psched - ok
19:33:55.0626 4804 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:33:55.0657 4804 ql2300 - ok
19:33:55.0673 4804 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:33:55.0673 4804 ql40xx - ok
19:33:55.0704 4804 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:33:55.0704 4804 QWAVE - ok
19:33:55.0720 4804 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:33:55.0720 4804 QWAVEdrv - ok
19:33:55.0751 4804 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:33:55.0751 4804 RasAcd - ok
19:33:55.0782 4804 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:33:55.0782 4804 RasAgileVpn - ok
19:33:55.0798 4804 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:33:55.0798 4804 RasAuto - ok
19:33:55.0813 4804 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:33:55.0829 4804 Rasl2tp - ok
19:33:55.0876 4804 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:33:55.0876 4804 RasMan - ok
19:33:55.0891 4804 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:33:55.0891 4804 RasPppoe - ok
19:33:55.0923 4804 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:33:55.0938 4804 RasSstp - ok
19:33:55.0969 4804 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:33:55.0969 4804 rdbss - ok
19:33:55.0985 4804 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:33:55.0985 4804 rdpbus - ok
19:33:56.0001 4804 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:33:56.0001 4804 RDPCDD - ok
19:33:56.0016 4804 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:33:56.0016 4804 RDPENCDD - ok
19:33:56.0032 4804 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:33:56.0032 4804 RDPREFMP - ok
19:33:56.0079 4804 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:33:56.0079 4804 RDPWD - ok
19:33:56.0094 4804 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:33:56.0110 4804 rdyboost - ok
19:33:56.0125 4804 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:33:56.0125 4804 RemoteAccess - ok
19:33:56.0172 4804 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:33:56.0172 4804 RemoteRegistry - ok
19:33:56.0203 4804 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:33:56.0203 4804 RFCOMM - ok
19:33:56.0250 4804 [ 5767961268AA43D9F3FA6D59EC8B7B12 ] rimspci C:\Windows\system32\DRIVERS\rimssne64.sys
19:33:56.0250 4804 rimspci - ok
19:33:56.0281 4804 [ DDF5F666C2A5B3729E8BEA01FB999CC0 ] risdsnpe C:\Windows\system32\DRIVERS\risdsne64.sys
19:33:56.0281 4804 risdsnpe - ok
19:33:56.0313 4804 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:33:56.0313 4804 RpcEptMapper - ok
19:33:56.0344 4804 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:33:56.0344 4804 RpcLocator - ok
19:33:56.0375 4804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:33:56.0375 4804 RpcSs - ok
19:33:56.0406 4804 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:33:56.0406 4804 rspndr - ok
19:33:56.0422 4804 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:33:56.0422 4804 SamSs - ok
19:33:56.0453 4804 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:33:56.0453 4804 sbp2port - ok
19:33:56.0531 4804 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
19:33:56.0547 4804 SBSDWSCService - ok
19:33:56.0562 4804 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:33:56.0578 4804 SCardSvr - ok
19:33:56.0593 4804 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:33:56.0593 4804 scfilter - ok
19:33:56.0640 4804 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:33:56.0656 4804 Schedule - ok
19:33:56.0687 4804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:33:56.0687 4804 SCPolicySvc - ok
19:33:56.0718 4804 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
19:33:56.0718 4804 sdbus - ok
19:33:56.0749 4804 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:33:56.0749 4804 SDRSVC - ok
19:33:56.0781 4804 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:33:56.0781 4804 secdrv - ok
19:33:56.0812 4804 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:33:56.0812 4804 seclogon - ok
19:33:56.0843 4804 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:33:56.0843 4804 SENS - ok
19:33:56.0859 4804 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:33:56.0859 4804 SensrSvc - ok
19:33:56.0890 4804 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:33:56.0890 4804 Serenum - ok
19:33:56.0937 4804 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:33:56.0937 4804 Serial - ok
19:33:56.0968 4804 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:33:56.0968 4804 sermouse - ok
19:33:56.0999 4804 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:33:56.0999 4804 SessionEnv - ok
19:33:57.0046 4804 [ 70F9C476B62DE4F2823E918A6C181ADE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
19:33:57.0046 4804 SFEP - ok
19:33:57.0061 4804 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:33:57.0061 4804 sffdisk - ok
19:33:57.0093 4804 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:33:57.0093 4804 sffp_mmc - ok
19:33:57.0093 4804 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:33:57.0093 4804 sffp_sd - ok
19:33:57.0124 4804 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:33:57.0124 4804 sfloppy - ok
19:33:57.0155 4804 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:33:57.0171 4804 ShellHWDetection - ok
19:33:57.0186 4804 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:33:57.0202 4804 SiSRaid2 - ok
19:33:57.0217 4804 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:33:57.0217 4804 SiSRaid4 - ok
19:33:57.0264 4804 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:33:57.0280 4804 SkypeUpdate - ok
19:33:57.0311 4804 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:33:57.0311 4804 Smb - ok
19:33:57.0342 4804 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:33:57.0342 4804 SNMPTRAP - ok
19:33:57.0373 4804 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:33:57.0373 4804 spldr - ok
19:33:57.0420 4804 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
19:33:57.0436 4804 Spooler - ok
19:33:57.0514 4804 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:33:57.0623 4804 sppsvc - ok
19:33:57.0639 4804 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:33:57.0654 4804 sppuinotify - ok
19:33:57.0732 4804 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\NISx64\1308000.00E\SRTSP64.SYS
19:33:57.0748 4804 SRTSP - ok
19:33:57.0779 4804 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\NISx64\1308000.00E\SRTSPX64.SYS
19:33:57.0779 4804 SRTSPX - ok
19:33:57.0810 4804 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:33:57.0826 4804 srv - ok
19:33:57.0841 4804 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:33:57.0857 4804 srv2 - ok
19:33:57.0857 4804 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:33:57.0873 4804 srvnet - ok
19:33:57.0904 4804 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:33:57.0904 4804 SSDPSRV - ok
19:33:57.0919 4804 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:33:57.0919 4804 SstpSvc - ok
19:33:57.0951 4804 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:33:57.0951 4804 stexstor - ok
19:33:57.0997 4804 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:33:57.0997 4804 stisvc - ok
19:33:58.0029 4804 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:33:58.0029 4804 swenum - ok
19:33:58.0060 4804 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:33:58.0075 4804 swprv - ok
19:33:58.0122 4804 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\NISx64\1308000.00E\SYMDS64.SYS
19:33:58.0138 4804 SymDS - ok
19:33:58.0185 4804 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\NISx64\1308000.00E\SYMEFA64.SYS
19:33:58.0185 4804 SymEFA - ok
19:33:58.0216 4804 [ 898BB48C797483420DF523B2BBC1ECDB ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
19:33:58.0231 4804 SymEvent - ok
19:33:58.0247 4804 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\NISx64\1308000.00E\Ironx64.SYS
19:33:58.0247 4804 SymIRON - ok
19:33:58.0278 4804 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\NISx64\1308000.00E\SYMNETS.SYS
19:33:58.0278 4804 SymNetS - ok
19:33:58.0341 4804 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:33:58.0356 4804 SysMain - ok
19:33:58.0387 4804 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:33:58.0387 4804 TabletInputService - ok
19:33:58.0419 4804 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:33:58.0419 4804 TapiSrv - ok
19:33:58.0434 4804 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:33:58.0434 4804 TBS - ok
19:33:58.0512 4804 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:33:58.0543 4804 Tcpip - ok
19:33:58.0606 4804 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:33:58.0621 4804 TCPIP6 - ok
19:33:58.0637 4804 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:33:58.0637 4804 tcpipreg - ok
19:33:58.0668 4804 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:33:58.0668 4804 TDPIPE - ok
19:33:58.0699 4804 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:33:58.0699 4804 TDTCP - ok
19:33:58.0731 4804 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:33:58.0731 4804 tdx - ok
19:33:58.0762 4804 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:33:58.0762 4804 TermDD - ok
19:33:58.0793 4804 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:33:58.0809 4804 TermService - ok
19:33:58.0840 4804 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:33:58.0840 4804 Themes - ok
19:33:58.0871 4804 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:33:58.0871 4804 THREADORDER - ok
19:33:58.0887 4804 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:33:58.0902 4804 TrkWks - ok
19:33:58.0980 4804 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:33:58.0980 4804 TrustedInstaller - ok
19:33:59.0011 4804 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:33:59.0011 4804 tssecsrv - ok
19:33:59.0043 4804 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:33:59.0043 4804 TsUsbFlt - ok
19:33:59.0074 4804 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:33:59.0089 4804 tunnel - ok
19:33:59.0105 4804 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:33:59.0105 4804 uagp35 - ok
19:33:59.0136 4804 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:33:59.0136 4804 udfs - ok
19:33:59.0167 4804 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:33:59.0167 4804 UI0Detect - ok
19:33:59.0199 4804 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:33:59.0199 4804 uliagpkx - ok
19:33:59.0230 4804 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:33:59.0230 4804 umbus - ok
19:33:59.0261 4804 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:33:59.0261 4804 UmPass - ok
19:33:59.0277 4804 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:33:59.0292 4804 upnphost - ok
19:33:59.0323 4804 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:33:59.0323 4804 USBAAPL64 - ok
19:33:59.0339 4804 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:33:59.0339 4804 usbccgp - ok
19:33:59.0370 4804 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:33:59.0370 4804 usbcir - ok
19:33:59.0386 4804 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:33:59.0386 4804 usbehci - ok
19:33:59.0417 4804 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:33:59.0417 4804 usbhub - ok
19:33:59.0448 4804 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:33:59.0448 4804 usbohci - ok
19:33:59.0479 4804 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:33:59.0479 4804 usbprint - ok
19:33:59.0495 4804 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:33:59.0495 4804 USBSTOR - ok
19:33:59.0526 4804 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:33:59.0526 4804 usbuhci - ok
19:33:59.0557 4804 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
19:33:59.0557 4804 usbvideo - ok
19:33:59.0589 4804 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:33:59.0589 4804 UxSms - ok
19:33:59.0667 4804 [ CB5B94EE1775FA4CD6B133F1745003C6 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
19:33:59.0667 4804 VAIO Event Service - ok
19:33:59.0729 4804 [ 1CF1A4DD7A58C966C9014B83C7229CF3 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
19:33:59.0729 4804 VAIO Power Management - ok
19:33:59.0760 4804 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:33:59.0760 4804 VaultSvc - ok
19:33:59.0776 4804 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:33:59.0776 4804 vdrvroot - ok
19:33:59.0807 4804 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:33:59.0823 4804 vds - ok
19:33:59.0838 4804 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:33:59.0854 4804 vga - ok
19:33:59.0854 4804 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:33:59.0854 4804 VgaSave - ok
19:33:59.0885 4804 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:33:59.0885 4804 vhdmp - ok
19:33:59.0916 4804 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:33:59.0916 4804 viaide - ok
19:33:59.0947 4804 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:33:59.0947 4804 volmgr - ok
19:33:59.0979 4804 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:33:59.0979 4804 volmgrx - ok
19:34:00.0010 4804 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:34:00.0010 4804 volsnap - ok
19:34:00.0057 4804 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:34:00.0057 4804 vsmraid - ok
19:34:00.0103 4804 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:34:00.0119 4804 VSS - ok
19:34:00.0228 4804 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
19:34:00.0228 4804 vToolbarUpdater12.2.6 - ok
19:34:00.0259 4804 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:34:00.0259 4804 vwifibus - ok
19:34:00.0291 4804 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:34:00.0306 4804 vwififlt - ok
19:34:00.0337 4804 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:34:00.0337 4804 vwifimp - ok
19:34:00.0384 4804 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:34:00.0400 4804 W32Time - ok
19:34:00.0415 4804 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:34:00.0431 4804 WacomPen - ok
19:34:00.0462 4804 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:34:00.0462 4804 WANARP - ok
19:34:00.0478 4804 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:34:00.0478 4804 Wanarpv6 - ok
19:34:00.0540 4804 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:34:00.0571 4804 WatAdminSvc - ok
19:34:00.0618 4804 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:34:00.0634 4804 wbengine - ok
19:34:00.0665 4804 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:34:00.0665 4804 WbioSrvc - ok
19:34:00.0696 4804 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:34:00.0712 4804 wcncsvc - ok
19:34:00.0712 4804 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:34:00.0727 4804 WcsPlugInService - ok
19:34:00.0743 4804 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:34:00.0743 4804 Wd - ok
19:34:00.0774 4804 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:34:00.0774 4804 Wdf01000 - ok
19:34:00.0805 4804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:34:00.0805 4804 WdiServiceHost - ok
19:34:00.0805 4804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:34:00.0805 4804 WdiSystemHost - ok
19:34:00.0837 4804 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:34:00.0852 4804 WebClient - ok
19:34:00.0868 4804 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:34:00.0868 4804 Wecsvc - ok
19:34:00.0899 4804 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:34:00.0899 4804 wercplsupport - ok
19:34:00.0930 4804 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:34:00.0930 4804 WerSvc - ok
19:34:00.0961 4804 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:34:00.0961 4804 WfpLwf - ok
19:34:00.0961 4804 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:34:00.0977 4804 WIMMount - ok
19:34:00.0977 4804 WinHttpAutoProxySvc - ok
19:34:01.0039 4804 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:34:01.0039 4804 Winmgmt - ok
19:34:01.0133 4804 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:34:01.0149 4804 WinRM - ok
19:34:01.0211 4804 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:34:01.0227 4804 Wlansvc - ok
19:34:01.0273 4804 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:34:01.0273 4804 wlcrasvc - ok
19:34:01.0367 4804 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:34:01.0398 4804 wlidsvc - ok
19:34:01.0414 4804 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:34:01.0429 4804 WmiAcpi - ok
19:34:01.0461 4804 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:34:01.0461 4804 wmiApSrv - ok
19:34:01.0476 4804 WMPNetworkSvc - ok
19:34:01.0507 4804 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:34:01.0523 4804 WPCSvc - ok
19:34:01.0539 4804 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:34:01.0539 4804 WPDBusEnum - ok
19:34:01.0570 4804 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:34:01.0570 4804 ws2ifsl - ok
19:34:01.0585 4804 WSearch - ok
19:34:01.0617 4804 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:34:01.0617 4804 WudfPf - ok
19:34:01.0648 4804 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:34:01.0648 4804 WUDFRd - ok
19:34:01.0679 4804 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:34:01.0679 4804 wudfsvc - ok
19:34:01.0710 4804 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:34:01.0710 4804 WwanSvc - ok
19:34:01.0804 4804 X6va005 - ok
19:34:01.0804 4804 X6va008 - ok
19:34:01.0866 4804 [ 6AFFD75C6807B3DD3AB018E27B88EF95 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
19:34:01.0866 4804 yukonw7 - ok
19:34:01.0897 4804 ================ Scan global ===============================
19:34:01.0913 4804 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:34:01.0944 4804 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:34:01.0960 4804 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:34:01.0991 4804 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:34:02.0022 4804 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:34:02.0022 4804 [Global] - ok
19:34:02.0022 4804 ================ Scan MBR ==================================
19:34:02.0038 4804 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:34:02.0365 4804 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:34:02.0365 4804 \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:34:02.0365 4804 ================ Scan VBR ==================================
19:34:02.0381 4804 [ 932B36718EEE2085D079439B26BD93C1 ] \Device\Harddisk0\DR0\Partition1
19:34:02.0381 4804 \Device\Harddisk0\DR0\Partition1 - ok
19:34:02.0412 4804 [ D3DB155F31E42DBE80FAC574467492AA ] \Device\Harddisk0\DR0\Partition2
19:34:02.0412 4804 \Device\Harddisk0\DR0\Partition2 - ok
19:34:02.0412 4804 ============================================================
19:34:02.0412 4804 Scan finished
19:34:02.0412 4804 ============================================================
19:34:02.0428 4956 Detected object count: 1
19:34:02.0428 4956 Actual detected object count: 1
19:34:06.0546 4956 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:34:06.0546 4956 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

MiniToolBox log:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Amanda (administrator) on 06-09-2012 at 17:53:13
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15255 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros AR9287 Wireless Network Adapter = Wireless Network Connection (Connected)
Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Local Area Connection" address=192.168.137.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Amanda-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 62-DD-08-E1-71-ED
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9287 Wireless Network Adapter
Physical Address. . . . . . . . . : 78-DD-08-E1-71-ED
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::4575:95f:6d9c:903f%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, September 06, 2012 5:55:04 PM
Lease Expires . . . . . . . . . . : Friday, September 07, 2012 5:55:08 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 377019656
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-0A-9E-05-54-42-49-61-E6-BC
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : F0-7B-CB-EF-FF-39
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller
Physical Address. . . . . . . . . : 54-42-49-61-E6-BC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2001:4860:800a::64
74.125.137.101
74.125.137.113
74.125.137.102
74.125.137.139
74.125.137.100
74.125.137.138


Pinging google.com [74.125.130.113] with 32 bytes of data:
Reply from 74.125.130.113: bytes=32 time=18ms TTL=46
Reply from 74.125.130.113: bytes=32 time=19ms TTL=46

Ping statistics for 74.125.130.113:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 19ms, Average = 18ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=65ms TTL=47
Reply from 98.138.253.109: bytes=32 time=66ms TTL=47

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 65ms, Maximum = 66ms, Average = 65ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...62 dd 08 e1 71 ed ......Microsoft Virtual WiFi Miniport Adapter
14...78 dd 08 e1 71 ed ......Atheros AR9287 Wireless Network Adapter
11...f0 7b cb ef ff 39 ......Bluetooth Device (Personal Area Network)
10...54 42 49 61 e6 bc ......Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller
1...........................Software Loopback Interface 1
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.7 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.7 281
192.168.1.7 255.255.255.255 On-link 192.168.1.7 281
192.168.1.255 255.255.255.255 On-link 192.168.1.7 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.7 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.7 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
14 281 fe80::/64 On-link
14 281 fe80::4575:95f:6d9c:903f/128
On-link
1 306 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog9 11 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/04/2012 00:56:14 AM) (Source: Application Error) (User: )
Description: Faulting application name: Fiesta.bin, version: 0.0.0.0, time stamp: 0x50372676
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000000c
Faulting process id: 0x14b4
Faulting application start time: 0xFiesta.bin0
Faulting application path: Fiesta.bin1
Faulting module path: Fiesta.bin2
Report Id: Fiesta.bin3

Error: (09/02/2012 04:15:34 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (09/02/2012 04:26:38 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000374
Fault offset: 0x000ce6c3
Faulting process id: 0x1894
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (09/02/2012 04:14:16 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000374
Fault offset: 0x000ce6c3
Faulting process id: 0xd94
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (09/01/2012 05:00:38 PM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000374
Fault offset: 0x000ce6c3
Faulting process id: 0x1124
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (08/30/2012 10:07:38 PM) (Source: Application Error) (User: )
Description: Faulting application name: Fiesta.bin, version: 0.0.0.0, time stamp: 0x50372676
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x4d8bfef0
Faulting process id: 0x20c
Faulting application start time: 0xFiesta.bin0
Faulting application path: Fiesta.bin1
Faulting module path: Fiesta.bin2
Report Id: Fiesta.bin3

Error: (08/30/2012 09:03:24 PM) (Source: Application Error) (User: )
Description: Faulting application name: Fiesta.bin, version: 0.0.0.0, time stamp: 0x50372676
Faulting module name: Fiesta.bin, version: 0.0.0.0, time stamp: 0x50372676
Exception code: 0xc0000005
Fault offset: 0x001624e2
Faulting process id: 0x11f4
Faulting application start time: 0xFiesta.bin0
Faulting application path: Fiesta.bin1
Faulting module path: Fiesta.bin2
Report Id: Fiesta.bin3

Error: (08/29/2012 03:59:06 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (08/29/2012 11:48:09 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: MSHTML.dll, version: 9.0.8112.16447, time stamp: 0x4fc9d776
Exception code: 0xc0000005
Fault offset: 0x00131580
Faulting process id: 0xa18
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (08/29/2012 11:11:55 AM) (Source: Application Hang) (User: )
Description: The program Fiesta.bin version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 2b0

Start Time: 01cd85f84618e007

Termination Time: 39

Application Path: C:\Program Files (x86)\Outspark\Fiesta\Fiesta.bin

Report Id: b3a1b537-f1eb-11e1-998c-f07bcbefff39


System errors:
=============
Error: (09/06/2012 05:55:11 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/06/2012 05:55:11 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/06/2012 05:55:00 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (09/06/2012 05:43:40 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/06/2012 05:43:40 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/06/2012 05:43:20 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (09/06/2012 05:43:16 PM) (Source: Service Control Manager) (User: )
Description: The SBSD Security Center Service service depends the following service: wscsvc. This service might not be installed.

Error: (09/06/2012 05:43:16 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (09/06/2012 05:43:16 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (09/06/2012 05:43:15 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126


Microsoft Office Sessions:
=========================
Error: (09/04/2012 00:56:14 AM) (Source: Application Error)(User: )
Description: Fiesta.bin0.0.0.050372676unknown0.0.0.000000000c00000050000000c14b401cd8a24614ca8b3C:\Program Files (x86)\Outspark\Fiesta\Fiesta.binunknownda463fa8-f64c-11e1-a173-f07bcbefff39

Error: (09/02/2012 04:15:34 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (09/02/2012 04:26:38 AM) (Source: Application Error)(User: )
Description: svchost.exe6.1.7600.163854a5bc3c5ntdll.dll6.1.7601.177254ec49b8fc0000374000ce6c3189401cd88e329140e92\\.\globalroot\systemroot\svchost.exeC:\Windows\SysWOW64\ntdll.dlle98ad8ca-f4d7-11e1-a0d2-f07bcbefff39

Error: (09/02/2012 04:14:16 AM) (Source: Application Error)(User: )
Description: svchost.exe6.1.7600.163854a5bc3c5ntdll.dll6.1.7601.177254ec49b8fc0000374000ce6c3d9401cd88d991a71ee0\\.\globalroot\systemroot\svchost.exeC:\Windows\SysWOW64\ntdll.dll2fbb7db5-f4d6-11e1-a0d2-f07bcbefff39

Error: (09/01/2012 05:00:38 PM) (Source: Application Error)(User: )
Description: svchost.exe6.1.7600.163854a5bc3c5ntdll.dll6.1.7601.177254ec49b8fc0000374000ce6c3112401cd88841aaf7eb7\\.\globalroot\systemroot\svchost.exeC:\Windows\SysWOW64\ntdll.dll14b2d49a-f478-11e1-8774-f07bcbefff39

Error: (08/30/2012 10:07:38 PM) (Source: Application Error)(User: )
Description: Fiesta.bin0.0.0.050372676unknown0.0.0.000000000c00000054d8bfef020c01cd8717c9b6fd12C:\Program Files (x86)\Outspark\Fiesta\Fiesta.binunknowna2c96f80-f310-11e1-b7c1-f07bcbefff39

Error: (08/30/2012 09:03:24 PM) (Source: Application Error)(User: )
Description: Fiesta.bin0.0.0.050372676Fiesta.bin0.0.0.050372676c0000005001624e211f401cd86eca203a5f9C:\Program Files (x86)\Outspark\Fiesta\Fiesta.binC:\Program Files (x86)\Outspark\Fiesta\Fiesta.bina97c349a-f307-11e1-b7c1-f07bcbefff39

Error: (08/29/2012 03:59:06 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (08/29/2012 11:48:09 AM) (Source: Application Error)(User: )
Description: svchost.exe6.1.7600.163854a5bc3c5MSHTML.dll9.0.8112.164474fc9d776c000000500131580a1801cd85f8236f391f\\.\globalroot\systemroot\svchost.exeC:\Windows\system32\MSHTML.dllede8a906-f1f0-11e1-998c-f07bcbefff39

Error: (08/29/2012 11:11:55 AM) (Source: Application Hang)(User: )
Description: Fiesta.bin0.0.0.02b001cd85f84618e00739C:\Program Files (x86)\Outspark\Fiesta\Fiesta.binb3a1b537-f1eb-11e1-998c-f07bcbefff39


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.4.402.265)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ArcSoft WebCam Companion 3 (Version: 3.0.21.390)
AVG 2012 (Version: 12.0.2197)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2197)
AVG PC Tuneup (Version: 10.0.0.27)
ComicRack v0.9.146 (Version: v0.9.146)
D3DX10 (Version: 15.4.2368.0902)
Fiesta (Version: 10.0.0387)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Rapid Storage Technology (Version: 9.5.4.1001)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MyTools (Version: 0.0.0.1)
Norton Internet Security (Version: 19.8.0.14)
NVIDIA Drivers (Version: 1.10.57.35)
Pando Media Booster (Version: 2.6.0.1)
PVSonyDll (Version: 1.00.0001)
QuickTime (Version: 7.71.80.42)
Setting Utility Series (Version: 5.2.0.14250)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.10 (Version: 5.10.116)
Sophos Virus Removal Tool (Version: 2.1)
Spybot - Search & Destroy (Version: 1.6.2)
swMSM (Version: 12.0.0.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VAIO Control Center (Version: 4.2.0.15020)
VAIO Event Service (Version: 5.2.0.15020)
VAIO Power Management (Version: 5.1.0.13200)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Windows Driver Package - Atheros Communications Inc. (athr) Net (02/12/2010 9.0.0.125) (Version: 02/12/2010 9.0.0.125)
Windows Driver Package - Ricoh Company (risdsnpe) hdc (12/25/2009 6.13.03.02) (Version: 12/25/2009 6.13.03.02)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live Family Safety (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinZip 16.0 (Version: 16.0.9715)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 30%
Total physical RAM: 4014.08 MB
Available physical RAM: 2774.43 MB
Total Pagefile: 8026.35 MB
Available Pagefile: 6464.49 MB
Total Virtual: 4095.88 MB
Available Virtual: 3976.09 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.66 GB) (Free:412.72 GB) NTFS

========================= Users: ========================================

User accounts for \\AMANDA-PC

Administrator Amanda Guest


**** End of log ****

and finally the ESET log:

C:\ProgramData\Spybot - Search & Destroy\Recovery\SmitfraudCgeneric.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\SmitfraudCgeneric1.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\SmitfraudCgeneric2.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.LA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\mbr0000\tdlfs0000\tsk0014.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\zasubsys0000\file0000\tsk0000.dta Win64/Patched.B.Gen trojan deleted - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\zasubsys0000\zafs0000\tsk0004.dta Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\zasubsys0000\zafs0000\tsk0005.dta Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\zasubsys0000\zafs0000\tsk0006.dta Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\zasubsys0000\zafs0000\tsk0007.dta a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.09.2012_13.53.23\zasubsys0000\zafs0000\tsk0008.dta Win64/Sirefef.AN trojan cleaned by deleting - quarantined
C:\Users\Amanda\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\120810010716243.rsc multiple threats deleted - quarantined
C:\Users\Amanda\AppData\Roaming\Mozilla\Firefox\Profiles\vuk5jklz.default\extensions\zihakyiqmh@zihakyiqmh.org.xpi JS/Redirector.NCA trojan deleted - quarantined
C:\Users\Amanda\Desktop\Downloads\frostwire-4.21.8.windows.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Amanda\Desktop\Downloads\frostwire-5.3.4.windows.exe Win32/OpenCandy application cleaned by deleting - quarantined

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,534 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:13 PM

Posted 06 September 2012 - 07:15 PM

Hello again,you had some of the ugliest infections on here.

Lets rerun TDSS and change the option on these to Cure or Delete...
19:34:06.0546 4956 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:34:06.0546 4956 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip


Now reset the Winsock.
Please Download this file, Click Me
Right-click on winsockfix.bat and click on Run as Administrator.


The Bagle infection is aquired by opening infected email attachments.
The other swill require yhat you change alll your passwords on here.

I see 2 Antuvirus applications AVG and Norton.. You can have only one active as they will interfere with each other.


How is it running now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 pringles13

pringles13
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 04 October 2012 - 12:32 PM

Sorry for such a delay. Between work and family health issues, it has been crazy here. I also just noticed last night the /webhd in my address bar on my desktop work computer (I work from home). Do I need to open a separate thread for that? I am going to work on the laptop and post my results shortly.

#8 pringles13

pringles13
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 04 October 2012 - 12:48 PM

Here is the final log:
13:40:33.0784 4308 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
13:40:34.0214 4308 ============================================================
13:40:34.0214 4308 Current date / time: 2012/10/04 13:40:34.0214
13:40:34.0214 4308 SystemInfo:
13:40:34.0214 4308
13:40:34.0215 4308 OS Version: 6.1.7601 ServicePack: 1.0
13:40:34.0215 4308 Product type: Workstation
13:40:34.0215 4308 ComputerName: AMANDA-PC
13:40:34.0215 4308 UserName: Amanda
13:40:34.0215 4308 Windows directory: C:\Windows
13:40:34.0215 4308 System windows directory: C:\Windows
13:40:34.0215 4308 Running under WOW64
13:40:34.0215 4308 Processor architecture: Intel x64
13:40:34.0215 4308 Number of processors: 4
13:40:34.0215 4308 Page size: 0x1000
13:40:34.0215 4308 Boot type: Normal boot
13:40:34.0215 4308 ============================================================
13:40:34.0660 4308 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:40:34.0686 4308 ============================================================
13:40:34.0686 4308 \Device\Harddisk0\DR0:
13:40:34.0686 4308 MBR partitions:
13:40:34.0686 4308 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:40:34.0686 4308 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
13:40:34.0686 4308 ============================================================
13:40:34.0710 4308 C: <-> \Device\Harddisk0\DR0\Partition2
13:40:34.0710 4308 ============================================================
13:40:34.0711 4308 Initialize success
13:40:34.0711 4308 ============================================================
13:40:59.0471 3844 ============================================================
13:40:59.0471 3844 Scan started
13:40:59.0471 3844 Mode: Manual;
13:40:59.0471 3844 ============================================================
13:40:59.0988 3844 ================ Scan system memory ========================
13:40:59.0988 3844 System memory - ok
13:40:59.0989 3844 ================ Scan services =============================
13:41:00.0212 3844 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:41:00.0217 3844 1394ohci - ok
13:41:00.0310 3844 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
13:41:00.0314 3844 ACDaemon - ok
13:41:00.0355 3844 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:41:00.0360 3844 ACPI - ok
13:41:00.0418 3844 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:41:00.0420 3844 AcpiPmi - ok
13:41:00.0533 3844 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:41:00.0566 3844 AdobeARMservice - ok
13:41:00.0702 3844 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:41:00.0706 3844 AdobeFlashPlayerUpdateSvc - ok
13:41:00.0776 3844 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:41:00.0787 3844 adp94xx - ok
13:41:00.0841 3844 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:41:00.0847 3844 adpahci - ok
13:41:00.0888 3844 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:41:00.0891 3844 adpu320 - ok
13:41:00.0929 3844 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:41:00.0930 3844 AeLookupSvc - ok
13:41:00.0969 3844 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:41:00.0976 3844 AFD - ok
13:41:01.0000 3844 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:41:01.0003 3844 agp440 - ok
13:41:01.0037 3844 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:41:01.0039 3844 ALG - ok
13:41:01.0080 3844 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:41:01.0081 3844 aliide - ok
13:41:01.0104 3844 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
13:41:01.0106 3844 amdide - ok
13:41:01.0139 3844 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:41:01.0141 3844 AmdK8 - ok
13:41:01.0196 3844 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:41:01.0199 3844 AmdPPM - ok
13:41:01.0242 3844 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:41:01.0245 3844 amdsata - ok
13:41:01.0272 3844 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:41:01.0276 3844 amdsbs - ok
13:41:01.0299 3844 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:41:01.0300 3844 amdxata - ok
13:41:01.0338 3844 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
13:41:01.0340 3844 AppID - ok
13:41:01.0370 3844 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:41:01.0371 3844 AppIDSvc - ok
13:41:01.0394 3844 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:41:01.0396 3844 Appinfo - ok
13:41:01.0466 3844 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:41:01.0469 3844 Apple Mobile Device - ok
13:41:01.0504 3844 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:41:01.0507 3844 arc - ok
13:41:01.0537 3844 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:41:01.0540 3844 arcsas - ok
13:41:01.0658 3844 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:41:01.0662 3844 aspnet_state - ok
13:41:01.0703 3844 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:41:01.0705 3844 AsyncMac - ok
13:41:01.0739 3844 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
13:41:01.0740 3844 atapi - ok
13:41:01.0812 3844 [ 08BAAA2432E81031A6C3B11AD5A67E2B ] athr C:\Windows\system32\DRIVERS\athrx.sys
13:41:01.0899 3844 athr - ok
13:41:01.0940 3844 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:41:01.0948 3844 AudioEndpointBuilder - ok
13:41:01.0960 3844 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:41:01.0965 3844 AudioSrv - ok
13:41:02.0168 3844 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
13:41:02.0196 3844 AVGIDSAgent - ok
13:41:02.0230 3844 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
13:41:02.0231 3844 AVGIDSDriver - ok
13:41:02.0272 3844 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
13:41:02.0273 3844 AVGIDSFilter - ok
13:41:02.0295 3844 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
13:41:02.0296 3844 AVGIDSHA - ok
13:41:02.0353 3844 [ 221FEBAB02D6C97C95558348CC354A85 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
13:41:02.0358 3844 Avgldx64 - ok
13:41:02.0379 3844 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
13:41:02.0380 3844 Avgmfx64 - ok
13:41:02.0428 3844 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
13:41:02.0429 3844 Avgrkx64 - ok
13:41:02.0445 3844 [ F8C3C7ED612A41B05C66358FC9786BFD ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
13:41:02.0462 3844 Avgtdia - ok
13:41:02.0497 3844 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
13:41:02.0499 3844 avgtp - ok
13:41:02.0542 3844 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
13:41:02.0544 3844 avgwd - ok
13:41:02.0579 3844 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:41:02.0582 3844 AxInstSV - ok
13:41:02.0618 3844 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:41:02.0628 3844 b06bdrv - ok
13:41:02.0675 3844 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:41:02.0681 3844 b57nd60a - ok
13:41:02.0731 3844 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:41:02.0733 3844 BDESVC - ok
13:41:02.0752 3844 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:41:02.0754 3844 Beep - ok
13:41:02.0768 3844 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:41:02.0770 3844 blbdrive - ok
13:41:02.0811 3844 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:41:02.0814 3844 bowser - ok
13:41:02.0838 3844 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:41:02.0840 3844 BrFiltLo - ok
13:41:02.0870 3844 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:41:02.0872 3844 BrFiltUp - ok
13:41:02.0914 3844 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
13:41:02.0917 3844 Browser - ok
13:41:02.0944 3844 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:41:02.0950 3844 Brserid - ok
13:41:02.0971 3844 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:41:02.0973 3844 BrSerWdm - ok
13:41:02.0982 3844 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:41:02.0984 3844 BrUsbMdm - ok
13:41:02.0990 3844 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:41:02.0992 3844 BrUsbSer - ok
13:41:03.0034 3844 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
13:41:03.0035 3844 BthEnum - ok
13:41:03.0064 3844 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:41:03.0066 3844 BTHMODEM - ok
13:41:03.0104 3844 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
13:41:03.0106 3844 BthPan - ok
13:41:03.0140 3844 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
13:41:03.0148 3844 BTHPORT - ok
13:41:03.0192 3844 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:41:03.0194 3844 bthserv - ok
13:41:03.0226 3844 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
13:41:03.0229 3844 BTHUSB - ok
13:41:03.0271 3844 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:41:03.0273 3844 cdfs - ok
13:41:03.0297 3844 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
13:41:03.0301 3844 cdrom - ok
13:41:03.0334 3844 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
13:41:03.0335 3844 CertPropSvc - ok
13:41:03.0347 3844 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:41:03.0349 3844 circlass - ok
13:41:03.0383 3844 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:41:03.0388 3844 CLFS - ok
13:41:03.0447 3844 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:41:03.0450 3844 clr_optimization_v2.0.50727_32 - ok
13:41:03.0487 3844 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:41:03.0491 3844 clr_optimization_v2.0.50727_64 - ok
13:41:03.0538 3844 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:41:03.0570 3844 clr_optimization_v4.0.30319_32 - ok
13:41:03.0594 3844 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:41:03.0597 3844 clr_optimization_v4.0.30319_64 - ok
13:41:03.0623 3844 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:41:03.0625 3844 CmBatt - ok
13:41:03.0640 3844 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:41:03.0642 3844 cmdide - ok
13:41:03.0675 3844 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
13:41:03.0681 3844 CNG - ok
13:41:03.0712 3844 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:41:03.0713 3844 Compbatt - ok
13:41:03.0733 3844 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:41:03.0735 3844 CompositeBus - ok
13:41:03.0751 3844 COMSysApp - ok
13:41:03.0763 3844 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:41:03.0765 3844 crcdisk - ok
13:41:03.0814 3844 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:41:03.0818 3844 CryptSvc - ok
13:41:03.0858 3844 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
13:41:03.0860 3844 dc3d - ok
13:41:03.0916 3844 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:41:03.0927 3844 DcomLaunch - ok
13:41:03.0957 3844 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:41:03.0962 3844 defragsvc - ok
13:41:03.0997 3844 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:41:04.0000 3844 DfsC - ok
13:41:04.0034 3844 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
13:41:04.0040 3844 Dhcp - ok
13:41:04.0061 3844 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:41:04.0063 3844 discache - ok
13:41:04.0095 3844 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:41:04.0097 3844 Disk - ok
13:41:04.0132 3844 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:41:04.0135 3844 Dnscache - ok
13:41:04.0168 3844 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:41:04.0173 3844 dot3svc - ok
13:41:04.0193 3844 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
13:41:04.0196 3844 DPS - ok
13:41:04.0230 3844 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:41:04.0231 3844 drmkaud - ok
13:41:04.0280 3844 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:41:04.0288 3844 DXGKrnl - ok
13:41:04.0324 3844 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:41:04.0327 3844 EapHost - ok
13:41:04.0423 3844 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:41:04.0508 3844 ebdrv - ok
13:41:04.0519 3844 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
13:41:04.0521 3844 EFS - ok
13:41:04.0594 3844 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:41:04.0605 3844 ehRecvr - ok
13:41:04.0634 3844 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:41:04.0638 3844 ehSched - ok
13:41:04.0664 3844 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:41:04.0672 3844 elxstor - ok
13:41:04.0697 3844 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:41:04.0699 3844 ErrDev - ok
13:41:04.0746 3844 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:41:04.0753 3844 EventSystem - ok
13:41:04.0776 3844 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:41:04.0781 3844 exfat - ok
13:41:04.0811 3844 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:41:04.0815 3844 fastfat - ok
13:41:04.0865 3844 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
13:41:04.0875 3844 Fax - ok
13:41:04.0893 3844 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:41:04.0895 3844 fdc - ok
13:41:04.0929 3844 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:41:04.0931 3844 fdPHost - ok
13:41:04.0938 3844 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:41:04.0940 3844 FDResPub - ok
13:41:04.0980 3844 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:41:04.0982 3844 FileInfo - ok
13:41:04.0995 3844 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:41:04.0997 3844 Filetrace - ok
13:41:05.0013 3844 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:41:05.0015 3844 flpydisk - ok
13:41:05.0055 3844 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:41:05.0060 3844 FltMgr - ok
13:41:05.0109 3844 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
13:41:05.0124 3844 FontCache - ok
13:41:05.0180 3844 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:41:05.0182 3844 FontCache3.0.0.0 - ok
13:41:05.0218 3844 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:41:05.0221 3844 FsDepends - ok
13:41:05.0271 3844 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
13:41:05.0273 3844 fssfltr - ok
13:41:05.0383 3844 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
13:41:05.0404 3844 fsssvc - ok
13:41:05.0426 3844 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:41:05.0427 3844 Fs_Rec - ok
13:41:05.0457 3844 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:41:05.0461 3844 fvevol - ok
13:41:05.0477 3844 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:41:05.0479 3844 gagp30kx - ok
13:41:05.0514 3844 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:41:05.0515 3844 GEARAspiWDM - ok
13:41:05.0551 3844 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
13:41:05.0560 3844 gpsvc - ok
13:41:05.0612 3844 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:41:05.0614 3844 gupdate - ok
13:41:05.0654 3844 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:41:05.0657 3844 gupdatem - ok
13:41:05.0692 3844 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:41:05.0695 3844 gusvc - ok
13:41:05.0717 3844 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:41:05.0719 3844 hcw85cir - ok
13:41:05.0763 3844 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:41:05.0769 3844 HdAudAddService - ok
13:41:05.0806 3844 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
13:41:05.0808 3844 HDAudBus - ok
13:41:05.0813 3844 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:41:05.0815 3844 HidBatt - ok
13:41:05.0826 3844 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:41:05.0829 3844 HidBth - ok
13:41:05.0854 3844 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:41:05.0856 3844 HidIr - ok
13:41:05.0884 3844 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
13:41:05.0887 3844 hidserv - ok
13:41:05.0917 3844 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:41:05.0919 3844 HidUsb - ok
13:41:05.0948 3844 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:41:05.0951 3844 hkmsvc - ok
13:41:05.0993 3844 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:41:05.0998 3844 HomeGroupListener - ok
13:41:06.0028 3844 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:41:06.0033 3844 HomeGroupProvider - ok
13:41:06.0058 3844 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:41:06.0061 3844 HpSAMD - ok
13:41:06.0113 3844 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:41:06.0126 3844 HTTP - ok
13:41:06.0150 3844 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:41:06.0151 3844 hwpolicy - ok
13:41:06.0194 3844 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:41:06.0198 3844 i8042prt - ok
13:41:06.0226 3844 [ 073A606333B6F7BBF20AA856DF7F0997 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
13:41:06.0231 3844 iaStor - ok
13:41:06.0306 3844 [ CC800D2D9FD467542BAC7C186C4774AD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
13:41:06.0307 3844 IAStorDataMgrSvc - ok
13:41:06.0333 3844 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:41:06.0341 3844 iaStorV - ok
13:41:06.0391 3844 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:41:06.0404 3844 idsvc - ok
13:41:06.0434 3844 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:41:06.0436 3844 iirsp - ok
13:41:06.0497 3844 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
13:41:06.0513 3844 IKEEXT - ok
13:41:06.0545 3844 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
13:41:06.0547 3844 intelide - ok
13:41:06.0583 3844 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:41:06.0584 3844 intelppm - ok
13:41:06.0632 3844 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:41:06.0635 3844 IPBusEnum - ok
13:41:06.0679 3844 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:41:06.0682 3844 IpFilterDriver - ok
13:41:06.0726 3844 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:41:06.0729 3844 IPMIDRV - ok
13:41:06.0760 3844 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:41:06.0763 3844 IPNAT - ok
13:41:06.0867 3844 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:41:06.0877 3844 iPod Service - ok
13:41:06.0915 3844 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:41:06.0917 3844 IRENUM - ok
13:41:06.0955 3844 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:41:06.0957 3844 isapnp - ok
13:41:06.0981 3844 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:41:06.0986 3844 iScsiPrt - ok
13:41:07.0010 3844 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
13:41:07.0011 3844 kbdclass - ok
13:41:07.0030 3844 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
13:41:07.0032 3844 kbdhid - ok
13:41:07.0053 3844 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
13:41:07.0054 3844 KeyIso - ok
13:41:07.0080 3844 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:41:07.0082 3844 KSecDD - ok
13:41:07.0109 3844 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:41:07.0112 3844 KSecPkg - ok
13:41:07.0127 3844 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:41:07.0128 3844 ksthunk - ok
13:41:07.0158 3844 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:41:07.0165 3844 KtmRm - ok
13:41:07.0217 3844 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:41:07.0224 3844 LanmanServer - ok
13:41:07.0252 3844 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:41:07.0255 3844 LanmanWorkstation - ok
13:41:07.0283 3844 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:41:07.0285 3844 lltdio - ok
13:41:07.0326 3844 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:41:07.0334 3844 lltdsvc - ok
13:41:07.0355 3844 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:41:07.0358 3844 lmhosts - ok
13:41:07.0389 3844 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:41:07.0392 3844 LSI_FC - ok
13:41:07.0407 3844 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:41:07.0410 3844 LSI_SAS - ok
13:41:07.0425 3844 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:41:07.0427 3844 LSI_SAS2 - ok
13:41:07.0436 3844 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:41:07.0440 3844 LSI_SCSI - ok
13:41:07.0452 3844 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:41:07.0455 3844 luafv - ok
13:41:07.0502 3844 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
13:41:07.0503 3844 MBAMProtector - ok
13:41:07.0567 3844 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:41:07.0579 3844 MBAMService - ok
13:41:07.0616 3844 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:41:07.0620 3844 Mcx2Svc - ok
13:41:07.0637 3844 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:41:07.0640 3844 megasas - ok
13:41:07.0670 3844 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:41:07.0675 3844 MegaSR - ok
13:41:07.0705 3844 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:41:07.0708 3844 MMCSS - ok
13:41:07.0713 3844 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:41:07.0715 3844 Modem - ok
13:41:07.0726 3844 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:41:07.0727 3844 monitor - ok
13:41:07.0736 3844 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:41:07.0738 3844 mouclass - ok
13:41:07.0770 3844 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:41:07.0771 3844 mouhid - ok
13:41:07.0798 3844 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:41:07.0800 3844 mountmgr - ok
13:41:07.0855 3844 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:41:07.0858 3844 MozillaMaintenance - ok
13:41:07.0886 3844 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:41:07.0889 3844 mpio - ok
13:41:07.0910 3844 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:41:07.0913 3844 mpsdrv - ok
13:41:07.0944 3844 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:41:07.0947 3844 MRxDAV - ok
13:41:07.0974 3844 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:41:07.0978 3844 mrxsmb - ok
13:41:08.0014 3844 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:41:08.0019 3844 mrxsmb10 - ok
13:41:08.0039 3844 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:41:08.0042 3844 mrxsmb20 - ok
13:41:08.0052 3844 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:41:08.0053 3844 msahci - ok
13:41:08.0084 3844 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:41:08.0087 3844 msdsm - ok
13:41:08.0108 3844 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:41:08.0112 3844 MSDTC - ok
13:41:08.0133 3844 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:41:08.0135 3844 Msfs - ok
13:41:08.0159 3844 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:41:08.0161 3844 mshidkmdf - ok
13:41:08.0168 3844 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:41:08.0170 3844 msisadrv - ok
13:41:08.0194 3844 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:41:08.0198 3844 MSiSCSI - ok
13:41:08.0203 3844 msiserver - ok
13:41:08.0227 3844 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:41:08.0229 3844 MSKSSRV - ok
13:41:08.0243 3844 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:41:08.0245 3844 MSPCLOCK - ok
13:41:08.0255 3844 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:41:08.0257 3844 MSPQM - ok
13:41:08.0286 3844 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:41:08.0292 3844 MsRPC - ok
13:41:08.0313 3844 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:41:08.0314 3844 mssmbios - ok
13:41:08.0338 3844 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:41:08.0340 3844 MSTEE - ok
13:41:08.0352 3844 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:41:08.0354 3844 MTConfig - ok
13:41:08.0373 3844 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:41:08.0375 3844 Mup - ok
13:41:08.0403 3844 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
13:41:08.0411 3844 napagent - ok
13:41:08.0461 3844 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:41:08.0467 3844 NativeWifiP - ok
13:41:08.0529 3844 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
13:41:08.0542 3844 NDIS - ok
13:41:08.0563 3844 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:41:08.0565 3844 NdisCap - ok
13:41:08.0596 3844 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:41:08.0597 3844 NdisTapi - ok
13:41:08.0634 3844 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:41:08.0636 3844 Ndisuio - ok
13:41:08.0679 3844 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:41:08.0683 3844 NdisWan - ok
13:41:08.0723 3844 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:41:08.0725 3844 NDProxy - ok
13:41:08.0735 3844 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:41:08.0737 3844 NetBIOS - ok
13:41:08.0762 3844 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:41:08.0767 3844 NetBT - ok
13:41:08.0775 3844 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
13:41:08.0777 3844 Netlogon - ok
13:41:08.0815 3844 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:41:08.0821 3844 Netman - ok
13:41:08.0859 3844 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:41:08.0864 3844 NetMsmqActivator - ok
13:41:08.0871 3844 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:41:08.0873 3844 NetPipeActivator - ok
13:41:08.0905 3844 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:41:08.0912 3844 netprofm - ok
13:41:08.0916 3844 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:41:08.0918 3844 NetTcpActivator - ok
13:41:08.0923 3844 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:41:08.0924 3844 NetTcpPortSharing - ok
13:41:08.0949 3844 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:41:08.0951 3844 nfrd960 - ok
13:41:08.0991 3844 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:41:08.0996 3844 NlaSvc - ok
13:41:09.0007 3844 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:41:09.0009 3844 Npfs - ok
13:41:09.0040 3844 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:41:09.0042 3844 nsi - ok
13:41:09.0055 3844 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:41:09.0056 3844 nsiproxy - ok
13:41:09.0113 3844 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:41:09.0132 3844 Ntfs - ok
13:41:09.0173 3844 [ 317020D31F1696334679B9D0416EB62E ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
13:41:09.0175 3844 NuidFltr - ok
13:41:09.0199 3844 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:41:09.0201 3844 Null - ok
13:41:09.0241 3844 [ CDDD4478757288DF4BB1494BFD084259 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
13:41:09.0243 3844 NVHDA - ok
13:41:09.0491 3844 [ DB2BEE926E7DFC59896A2D6800EB13F7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:41:09.0556 3844 nvlddmkm - ok
13:41:09.0671 3844 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:41:09.0676 3844 nvraid - ok
13:41:09.0702 3844 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:41:09.0707 3844 nvstor - ok
13:41:09.0740 3844 [ 24AB15D09A13D5A40567211A1AB9B479 ] nvsvc C:\Windows\system32\nvvsvc.exe
13:41:09.0746 3844 nvsvc - ok
13:41:09.0759 3844 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:41:09.0762 3844 nv_agp - ok
13:41:09.0778 3844 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:41:09.0780 3844 ohci1394 - ok
13:41:09.0815 3844 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:41:09.0821 3844 p2pimsvc - ok
13:41:09.0839 3844 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:41:09.0846 3844 p2psvc - ok
13:41:09.0869 3844 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:41:09.0872 3844 Parport - ok
13:41:09.0896 3844 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:41:09.0898 3844 partmgr - ok
13:41:09.0928 3844 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:41:09.0933 3844 PcaSvc - ok
13:41:09.0962 3844 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
13:41:09.0965 3844 pci - ok
13:41:09.0975 3844 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:41:09.0977 3844 pciide - ok
13:41:10.0010 3844 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:41:10.0015 3844 pcmcia - ok
13:41:10.0031 3844 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:41:10.0032 3844 pcw - ok
13:41:10.0063 3844 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:41:10.0072 3844 PEAUTH - ok
13:41:10.0150 3844 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:41:10.0153 3844 PerfHost - ok
13:41:10.0219 3844 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
13:41:10.0241 3844 pla - ok
13:41:10.0283 3844 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:41:10.0289 3844 PlugPlay - ok
13:41:10.0312 3844 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:41:10.0314 3844 PNRPAutoReg - ok
13:41:10.0336 3844 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:41:10.0340 3844 PNRPsvc - ok
13:41:10.0361 3844 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
13:41:10.0363 3844 Point64 - ok
13:41:10.0399 3844 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:41:10.0406 3844 PolicyAgent - ok
13:41:10.0438 3844 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:41:10.0441 3844 Power - ok
13:41:10.0471 3844 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:41:10.0474 3844 PptpMiniport - ok
13:41:10.0491 3844 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:41:10.0493 3844 Processor - ok
13:41:10.0549 3844 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:41:10.0555 3844 ProfSvc - ok
13:41:10.0575 3844 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:41:10.0577 3844 ProtectedStorage - ok
13:41:10.0615 3844 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:41:10.0619 3844 Psched - ok
13:41:10.0694 3844 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:41:10.0719 3844 ql2300 - ok
13:41:10.0737 3844 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:41:10.0740 3844 ql40xx - ok
13:41:10.0769 3844 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:41:10.0775 3844 QWAVE - ok
13:41:10.0788 3844 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:41:10.0790 3844 QWAVEdrv - ok
13:41:10.0815 3844 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:41:10.0817 3844 RasAcd - ok
13:41:10.0847 3844 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:41:10.0849 3844 RasAgileVpn - ok
13:41:10.0860 3844 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:41:10.0864 3844 RasAuto - ok
13:41:10.0886 3844 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:41:10.0890 3844 Rasl2tp - ok
13:41:10.0939 3844 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
13:41:10.0949 3844 RasMan - ok
13:41:10.0970 3844 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:41:10.0973 3844 RasPppoe - ok
13:41:11.0007 3844 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:41:11.0010 3844 RasSstp - ok
13:41:11.0041 3844 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:41:11.0047 3844 rdbss - ok
13:41:11.0056 3844 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:41:11.0058 3844 rdpbus - ok
13:41:11.0078 3844 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:41:11.0080 3844 RDPCDD - ok
13:41:11.0097 3844 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:41:11.0099 3844 RDPENCDD - ok
13:41:11.0111 3844 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:41:11.0112 3844 RDPREFMP - ok
13:41:11.0153 3844 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:41:11.0156 3844 RDPWD - ok
13:41:11.0176 3844 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:41:11.0180 3844 rdyboost - ok
13:41:11.0207 3844 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:41:11.0210 3844 RemoteAccess - ok
13:41:11.0245 3844 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:41:11.0250 3844 RemoteRegistry - ok
13:41:11.0285 3844 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:41:11.0288 3844 RFCOMM - ok
13:41:11.0328 3844 [ 5767961268AA43D9F3FA6D59EC8B7B12 ] rimspci C:\Windows\system32\DRIVERS\rimssne64.sys
13:41:11.0331 3844 rimspci - ok
13:41:11.0360 3844 [ DDF5F666C2A5B3729E8BEA01FB999CC0 ] risdsnpe C:\Windows\system32\DRIVERS\risdsne64.sys
13:41:11.0362 3844 risdsnpe - ok
13:41:11.0384 3844 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:41:11.0387 3844 RpcEptMapper - ok
13:41:11.0414 3844 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:41:11.0416 3844 RpcLocator - ok
13:41:11.0448 3844 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
13:41:11.0453 3844 RpcSs - ok
13:41:11.0478 3844 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:41:11.0481 3844 rspndr - ok
13:41:11.0497 3844 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
13:41:11.0498 3844 SamSs - ok
13:41:11.0527 3844 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:41:11.0530 3844 sbp2port - ok
13:41:11.0611 3844 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
13:41:11.0630 3844 SBSDWSCService - ok
13:41:11.0669 3844 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:41:11.0673 3844 SCardSvr - ok
13:41:11.0696 3844 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:41:11.0698 3844 scfilter - ok
13:41:11.0736 3844 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
13:41:11.0750 3844 Schedule - ok
13:41:11.0778 3844 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:41:11.0779 3844 SCPolicySvc - ok
13:41:11.0817 3844 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
13:41:11.0820 3844 sdbus - ok
13:41:11.0836 3844 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:41:11.0840 3844 SDRSVC - ok
13:41:11.0869 3844 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:41:11.0870 3844 secdrv - ok
13:41:11.0898 3844 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
13:41:11.0900 3844 seclogon - ok
13:41:11.0930 3844 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:41:11.0933 3844 SENS - ok
13:41:11.0948 3844 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:41:11.0951 3844 SensrSvc - ok
13:41:11.0961 3844 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:41:11.0962 3844 Serenum - ok
13:41:11.0977 3844 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:41:11.0980 3844 Serial - ok
13:41:12.0004 3844 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:41:12.0006 3844 sermouse - ok
13:41:12.0034 3844 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:41:12.0038 3844 SessionEnv - ok
13:41:12.0072 3844 [ 70F9C476B62DE4F2823E918A6C181ADE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
13:41:12.0074 3844 SFEP - ok
13:41:12.0100 3844 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:41:12.0102 3844 sffdisk - ok
13:41:12.0118 3844 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:41:12.0119 3844 sffp_mmc - ok
13:41:12.0129 3844 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:41:12.0131 3844 sffp_sd - ok
13:41:12.0157 3844 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:41:12.0159 3844 sfloppy - ok
13:41:12.0194 3844 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:41:12.0201 3844 ShellHWDetection - ok
13:41:12.0215 3844 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:41:12.0217 3844 SiSRaid2 - ok
13:41:12.0232 3844 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:41:12.0235 3844 SiSRaid4 - ok
13:41:12.0403 3844 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:41:12.0426 3844 Skype C2C Service - ok
13:41:12.0503 3844 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:41:12.0507 3844 SkypeUpdate - ok
13:41:12.0540 3844 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:41:12.0543 3844 Smb - ok
13:41:12.0599 3844 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:41:12.0601 3844 SNMPTRAP - ok
13:41:12.0628 3844 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:41:12.0629 3844 spldr - ok
13:41:12.0674 3844 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
13:41:12.0683 3844 Spooler - ok
13:41:12.0786 3844 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
13:41:12.0865 3844 sppsvc - ok
13:41:12.0890 3844 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:41:12.0893 3844 sppuinotify - ok
13:41:12.0922 3844 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
13:41:12.0929 3844 srv - ok
13:41:12.0954 3844 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:41:12.0959 3844 srv2 - ok
13:41:12.0974 3844 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:41:12.0977 3844 srvnet - ok
13:41:13.0013 3844 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:41:13.0018 3844 SSDPSRV - ok
13:41:13.0029 3844 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:41:13.0032 3844 SstpSvc - ok
13:41:13.0062 3844 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:41:13.0064 3844 stexstor - ok
13:41:13.0105 3844 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
13:41:13.0113 3844 stisvc - ok
13:41:13.0137 3844 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:41:13.0138 3844 swenum - ok
13:41:13.0172 3844 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:41:13.0180 3844 swprv - ok
13:41:13.0232 3844 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
13:41:13.0252 3844 SysMain - ok
13:41:13.0273 3844 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:41:13.0276 3844 TabletInputService - ok
13:41:13.0309 3844 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:41:13.0314 3844 TapiSrv - ok
13:41:13.0325 3844 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:41:13.0328 3844 TBS - ok
13:41:13.0422 3844 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:41:13.0448 3844 Tcpip - ok
13:41:13.0479 3844 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:41:13.0490 3844 TCPIP6 - ok
13:41:13.0515 3844 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:41:13.0517 3844 tcpipreg - ok
13:41:13.0549 3844 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:41:13.0551 3844 TDPIPE - ok
13:41:13.0581 3844 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:41:13.0583 3844 TDTCP - ok
13:41:13.0604 3844 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:41:13.0606 3844 tdx - ok
13:41:13.0630 3844 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:41:13.0632 3844 TermDD - ok
13:41:13.0667 3844 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
13:41:13.0675 3844 TermService - ok
13:41:13.0706 3844 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:41:13.0709 3844 Themes - ok
13:41:13.0716 3844 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:41:13.0718 3844 THREADORDER - ok
13:41:13.0726 3844 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:41:13.0729 3844 TrkWks - ok
13:41:13.0775 3844 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:41:13.0780 3844 TrustedInstaller - ok
13:41:13.0806 3844 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:41:13.0808 3844 tssecsrv - ok
13:41:13.0844 3844 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:41:13.0847 3844 TsUsbFlt - ok
13:41:13.0890 3844 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:41:13.0894 3844 tunnel - ok
13:41:13.0916 3844 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:41:13.0919 3844 uagp35 - ok
13:41:13.0946 3844 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:41:13.0952 3844 udfs - ok
13:41:13.0981 3844 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:41:13.0984 3844 UI0Detect - ok
13:41:14.0000 3844 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:41:14.0003 3844 uliagpkx - ok
13:41:14.0023 3844 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:41:14.0025 3844 umbus - ok
13:41:14.0059 3844 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:41:14.0061 3844 UmPass - ok
13:41:14.0080 3844 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:41:14.0087 3844 upnphost - ok
13:41:14.0123 3844 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
13:41:14.0137 3844 USBAAPL64 - ok
13:41:14.0160 3844 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:41:14.0163 3844 usbccgp - ok
13:41:14.0192 3844 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:41:14.0194 3844 usbcir - ok
13:41:14.0213 3844 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:41:14.0215 3844 usbehci - ok
13:41:14.0239 3844 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:41:14.0244 3844 usbhub - ok
13:41:14.0262 3844 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:41:14.0264 3844 usbohci - ok
13:41:14.0295 3844 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:41:14.0296 3844 usbprint - ok
13:41:14.0316 3844 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:41:14.0319 3844 USBSTOR - ok
13:41:14.0343 3844 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:41:14.0345 3844 usbuhci - ok
13:41:14.0373 3844 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
13:41:14.0377 3844 usbvideo - ok
13:41:14.0402 3844 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:41:14.0404 3844 UxSms - ok
13:41:14.0465 3844 [ CB5B94EE1775FA4CD6B133F1745003C6 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
13:41:14.0469 3844 VAIO Event Service - ok
13:41:14.0524 3844 [ 1CF1A4DD7A58C966C9014B83C7229CF3 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
13:41:14.0528 3844 VAIO Power Management - ok
13:41:14.0541 3844 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:41:14.0543 3844 VaultSvc - ok
13:41:14.0569 3844 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:41:14.0571 3844 vdrvroot - ok
13:41:14.0601 3844 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:41:14.0611 3844 vds - ok
13:41:14.0633 3844 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:41:14.0635 3844 vga - ok
13:41:14.0667 3844 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:41:14.0670 3844 VgaSave - ok
13:41:14.0690 3844 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:41:14.0694 3844 vhdmp - ok
13:41:14.0718 3844 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:41:14.0720 3844 viaide - ok
13:41:14.0746 3844 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:41:14.0748 3844 volmgr - ok
13:41:14.0768 3844 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:41:14.0773 3844 volmgrx - ok
13:41:14.0785 3844 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:41:14.0790 3844 volsnap - ok
13:41:14.0818 3844 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:41:14.0822 3844 vsmraid - ok
13:41:14.0872 3844 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:41:14.0899 3844 VSS - ok
13:41:14.0990 3844 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
13:41:14.0999 3844 vToolbarUpdater12.2.6 - ok
13:41:15.0024 3844 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:41:15.0026 3844 vwifibus - ok
13:41:15.0053 3844 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:41:15.0056 3844 vwififlt - ok
13:41:15.0095 3844 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
13:41:15.0097 3844 vwifimp - ok
13:41:15.0136 3844 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:41:15.0145 3844 W32Time - ok
13:41:15.0166 3844 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:41:15.0169 3844 WacomPen - ok
13:41:15.0204 3844 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:41:15.0206 3844 WANARP - ok
13:41:15.0210 3844 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:41:15.0211 3844 Wanarpv6 - ok
13:41:15.0285 3844 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:41:15.0307 3844 WatAdminSvc - ok
13:41:15.0355 3844 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:41:15.0374 3844 wbengine - ok
13:41:15.0411 3844 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:41:15.0416 3844 WbioSrvc - ok
13:41:15.0446 3844 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:41:15.0453 3844 wcncsvc - ok
13:41:15.0464 3844 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:41:15.0466 3844 WcsPlugInService - ok
13:41:15.0492 3844 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:41:15.0493 3844 Wd - ok
13:41:15.0514 3844 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:41:15.0522 3844 Wdf01000 - ok
13:41:15.0544 3844 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:41:15.0548 3844 WdiServiceHost - ok
13:41:15.0552 3844 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:41:15.0554 3844 WdiSystemHost - ok
13:41:15.0586 3844 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:41:15.0592 3844 WebClient - ok
13:41:15.0613 3844 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:41:15.0618 3844 Wecsvc - ok
13:41:15.0628 3844 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:41:15.0631 3844 wercplsupport - ok
13:41:15.0658 3844 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:41:15.0661 3844 WerSvc - ok
13:41:15.0687 3844 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:41:15.0689 3844 WfpLwf - ok
13:41:15.0701 3844 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:41:15.0703 3844 WIMMount - ok
13:41:15.0722 3844 WinHttpAutoProxySvc - ok
13:41:15.0777 3844 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:41:15.0782 3844 Winmgmt - ok
13:41:15.0841 3844 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:41:15.0869 3844 WinRM - ok
13:41:15.0929 3844 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:41:15.0940 3844 Wlansvc - ok
13:41:16.0012 3844 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:41:16.0015 3844 wlcrasvc - ok
13:41:16.0149 3844 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:41:16.0175 3844 wlidsvc - ok
13:41:16.0199 3844 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:41:16.0199 3844 WmiAcpi - ok
13:41:16.0233 3844 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:41:16.0238 3844 wmiApSrv - ok
13:41:16.0270 3844 WMPNetworkSvc - ok
13:41:16.0301 3844 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:41:16.0304 3844 WPCSvc - ok
13:41:16.0330 3844 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:41:16.0334 3844 WPDBusEnum - ok
13:41:16.0364 3844 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:41:16.0365 3844 ws2ifsl - ok
13:41:16.0369 3844 WSearch - ok
13:41:16.0404 3844 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:41:16.0407 3844 WudfPf - ok
13:41:16.0437 3844 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:41:16.0440 3844 WUDFRd - ok
13:41:16.0475 3844 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:41:16.0479 3844 wudfsvc - ok
13:41:16.0504 3844 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:41:16.0511 3844 WwanSvc - ok
13:41:16.0599 3844 X6va005 - ok
13:41:16.0609 3844 X6va008 - ok
13:41:16.0677 3844 X6va010 - ok
13:41:16.0716 3844 [ 6AFFD75C6807B3DD3AB018E27B88EF95 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
13:41:16.0722 3844 yukonw7 - ok
13:41:16.0737 3844 ================ Scan global ===============================
13:41:16.0762 3844 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:41:16.0792 3844 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:41:16.0800 3844 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:41:16.0819 3844 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:41:16.0849 3844 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:41:16.0853 3844 [Global] - ok
13:41:16.0853 3844 ================ Scan MBR ==================================
13:41:16.0861 3844 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:41:17.0350 3844 \Device\Harddisk0\DR0 - ok
13:41:17.0351 3844 ================ Scan VBR ==================================
13:41:17.0355 3844 [ 932B36718EEE2085D079439B26BD93C1 ] \Device\Harddisk0\DR0\Partition1
13:41:17.0358 3844 \Device\Harddisk0\DR0\Partition1 - ok
13:41:17.0370 3844 [ D3DB155F31E42DBE80FAC574467492AA ] \Device\Harddisk0\DR0\Partition2
13:41:17.0372 3844 \Device\Harddisk0\DR0\Partition2 - ok
13:41:17.0373 3844 ============================================================
13:41:17.0373 3844 Scan finished
13:41:17.0373 3844 ============================================================
13:41:17.0385 4792 Detected object count: 0
13:41:17.0385 4792 Actual detected object count: 0
13:42:10.0284 3820 ============================================================
13:42:10.0285 3820 Scan started
13:42:10.0285 3820 Mode: Manual;
13:42:10.0285 3820 ============================================================
13:42:10.0458 3820 ================ Scan system memory ========================
13:42:10.0458 3820 System memory - ok
13:42:10.0458 3820 ================ Scan services =============================
13:42:10.0636 3820 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:42:10.0640 3820 1394ohci - ok
13:42:10.0712 3820 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
13:42:10.0714 3820 ACDaemon - ok
13:42:10.0768 3820 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:42:10.0773 3820 ACPI - ok
13:42:10.0799 3820 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:42:10.0799 3820 AcpiPmi - ok
13:42:10.0869 3820 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:42:10.0870 3820 AdobeARMservice - ok
13:42:10.0993 3820 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:42:10.0997 3820 AdobeFlashPlayerUpdateSvc - ok
13:42:11.0034 3820 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:42:11.0040 3820 adp94xx - ok
13:42:11.0065 3820 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:42:11.0069 3820 adpahci - ok
13:42:11.0090 3820 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:42:11.0092 3820 adpu320 - ok
13:42:11.0120 3820 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:42:11.0121 3820 AeLookupSvc - ok
13:42:11.0160 3820 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:42:11.0164 3820 AFD - ok
13:42:11.0180 3820 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:42:11.0181 3820 agp440 - ok
13:42:11.0218 3820 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:42:11.0219 3820 ALG - ok
13:42:11.0238 3820 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:42:11.0238 3820 aliide - ok
13:42:11.0251 3820 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
13:42:11.0252 3820 amdide - ok
13:42:11.0285 3820 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:42:11.0286 3820 AmdK8 - ok
13:42:11.0300 3820 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:42:11.0301 3820 AmdPPM - ok
13:42:11.0334 3820 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:42:11.0335 3820 amdsata - ok
13:42:11.0336 3820 Scan interrupted by user!
13:42:11.0336 3820 ================ Scan global ===============================
13:42:11.0336 3820 Scan interrupted by user!
13:42:11.0336 3820 ================ Scan MBR ==================================
13:42:11.0336 3820 Scan interrupted by user!
13:42:11.0336 3820 ================ Scan VBR ==================================
13:42:11.0336 3820 Scan interrupted by user!
13:42:11.0336 3820 ============================================================
13:42:11.0336 3820 Scan finished
13:42:11.0336 3820 ============================================================
13:42:11.0344 4916 Detected object count: 0
13:42:11.0344 4916 Actual detected object count: 0
13:42:20.0041 4324 ============================================================
13:42:20.0041 4324 Scan started
13:42:20.0041 4324 Mode: Manual; TDLFS;
13:42:20.0041 4324 ============================================================
13:42:20.0169 4324 ================ Scan system memory ========================
13:42:20.0169 4324 System memory - ok
13:42:20.0172 4324 ================ Scan services =============================
13:42:20.0294 4324 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:42:20.0297 4324 1394ohci - ok
13:42:20.0357 4324 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
13:42:20.0359 4324 ACDaemon - ok
13:42:20.0391 4324 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:42:20.0395 4324 ACPI - ok
13:42:20.0410 4324 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:42:20.0411 4324 AcpiPmi - ok
13:42:20.0470 4324 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:42:20.0471 4324 AdobeARMservice - ok
13:42:20.0583 4324 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:42:20.0587 4324 AdobeFlashPlayerUpdateSvc - ok
13:42:20.0623 4324 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:42:20.0629 4324 adp94xx - ok
13:42:20.0654 4324 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:42:20.0657 4324 adpahci - ok
13:42:20.0668 4324 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:42:20.0670 4324 adpu320 - ok
13:42:20.0698 4324 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:42:20.0699 4324 AeLookupSvc - ok
13:42:20.0726 4324 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:42:20.0730 4324 AFD - ok
13:42:20.0748 4324 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:42:20.0748 4324 agp440 - ok
13:42:20.0774 4324 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:42:20.0775 4324 ALG - ok
13:42:20.0783 4324 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:42:20.0783 4324 aliide - ok
13:42:20.0796 4324 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
13:42:20.0797 4324 amdide - ok
13:42:20.0830 4324 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:42:20.0831 4324 AmdK8 - ok
13:42:20.0844 4324 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:42:20.0845 4324 AmdPPM - ok
13:42:20.0878 4324 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:42:20.0879 4324 amdsata - ok
13:42:20.0897 4324 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:42:20.0899 4324 amdsbs - ok
13:42:20.0913 4324 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:42:20.0913 4324 amdxata - ok
13:42:20.0941 4324 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
13:42:20.0941 4324 AppID - ok
13:42:20.0961 4324 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:42:20.0962 4324 AppIDSvc - ok
13:42:20.0985 4324 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:42:20.0986 4324 Appinfo - ok
13:42:21.0046 4324 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:42:21.0048 4324 Apple Mobile Device - ok
13:42:21.0073 4324 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:42:21.0074 4324 arc - ok
13:42:21.0095 4324 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:42:21.0098 4324 arcsas - ok
13:42:21.0193 4324 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:42:21.0194 4324 aspnet_state - ok
13:42:21.0227 4324 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:42:21.0228 4324 AsyncMac - ok
13:42:21.0252 4324 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
13:42:21.0253 4324 atapi - ok
13:42:21.0315 4324 [ 08BAAA2432E81031A6C3B11AD5A67E2B ] athr C:\Windows\system32\DRIVERS\athrx.sys
13:42:21.0333 4324 athr - ok
13:42:21.0364 4324 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:42:21.0368 4324 AudioEndpointBuilder - ok
13:42:21.0379 4324 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:42:21.0383 4324 AudioSrv - ok
13:42:21.0559 4324 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
13:42:21.0589 4324 AVGIDSAgent - ok
13:42:21.0610 4324 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
13:42:21.0611 4324 AVGIDSDriver - ok
13:42:21.0640 4324 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
13:42:21.0641 4324 AVGIDSFilter - ok
13:42:21.0664 4324 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
13:42:21.0664 4324 AVGIDSHA - ok
13:42:21.0710 4324 [ 221FEBAB02D6C97C95558348CC354A85 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
13:42:21.0715 4324 Avgldx64 - ok
13:42:21.0736 4324 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
13:42:21.0737 4324 Avgmfx64 - ok
13:42:21.0763 4324 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
13:42:21.0764 4324 Avgrkx64 - ok
13:42:21.0781 4324 [ F8C3C7ED612A41B05C66358FC9786BFD ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
13:42:21.0785 4324 Avgtdia - ok
13:42:21.0811 4324 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
13:42:21.0811 4324 avgtp - ok
13:42:21.0843 4324 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
13:42:21.0845 4324 avgwd - ok
13:42:21.0869 4324 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:42:21.0871 4324 AxInstSV - ok
13:42:21.0897 4324 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:42:21.0901 4324 b06bdrv - ok
13:42:21.0922 4324 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:42:21.0924 4324 b57nd60a - ok
13:42:21.0955 4324 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:42:21.0956 4324 BDESVC - ok
13:42:21.0976 4324 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:42:21.0977 4324 Beep - ok
13:42:21.0992 4324 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:42:21.0993 4324 blbdrive - ok
13:42:22.0024 4324 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:42:22.0025 4324 bowser - ok
13:42:22.0040 4324 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:42:22.0041 4324 BrFiltLo - ok
13:42:22.0072 4324 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:42:22.0073 4324 BrFiltUp - ok
13:42:22.0105 4324 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
13:42:22.0107 4324 Browser - ok
13:42:22.0124 4324 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:42:22.0127 4324 Brserid - ok
13:42:22.0140 4324 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:42:22.0141 4324 BrSerWdm - ok
13:42:22.0150 4324 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:42:22.0151 4324 BrUsbMdm - ok
13:42:22.0156 4324 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:42:22.0157 4324 BrUsbSer - ok
13:42:22.0180 4324 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
13:42:22.0181 4324 BthEnum - ok
13:42:22.0199 4324 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:42:22.0200 4324 BTHMODEM - ok
13:42:22.0228 4324 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
13:42:22.0230 4324 BthPan - ok
13:42:22.0253 4324 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
13:42:22.0258 4324 BTHPORT - ok
13:42:22.0283 4324 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:42:22.0284 4324 bthserv - ok
13:42:22.0306 4324 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
13:42:22.0307 4324 BTHUSB - ok
13:42:22.0339 4324 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:42:22.0341 4324 cdfs - ok
13:42:22.0355 4324 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
13:42:22.0357 4324 cdrom - ok
13:42:22.0380 4324 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
13:42:22.0382 4324 CertPropSvc - ok
13:42:22.0394 4324 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:42:22.0395 4324 circlass - ok
13:42:22.0429 4324 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:42:22.0432 4324 CLFS - ok
13:42:22.0483 4324 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:42:22.0484 4324 clr_optimization_v2.0.50727_32 - ok
13:42:22.0533 4324 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:42:22.0535 4324 clr_optimization_v2.0.50727_64 - ok
13:42:22.0584 4324 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:42:22.0587 4324 clr_optimization_v4.0.30319_32 - ok
13:42:22.0607 4324 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:42:22.0609 4324 clr_optimization_v4.0.30319_64 - ok
13:42:22.0636 4324 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:42:22.0637 4324 CmBatt - ok
13:42:22.0653 4324 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:42:22.0654 4324 cmdide - ok
13:42:22.0688 4324 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
13:42:22.0692 4324 CNG - ok
13:42:22.0703 4324 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:42:22.0704 4324 Compbatt - ok
13:42:22.0724 4324 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:42:22.0725 4324 CompositeBus - ok
13:42:22.0730 4324 COMSysApp - ok
13:42:22.0754 4324 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:42:22.0755 4324 crcdisk - ok
13:42:22.0793 4324 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:42:22.0796 4324 CryptSvc - ok
13:42:22.0815 4324 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
13:42:22.0816 4324 dc3d - ok
13:42:22.0851 4324 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:42:22.0857 4324 DcomLaunch - ok
13:42:22.0881 4324 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:42:22.0884 4324 defragsvc - ok
13:42:22.0911 4324 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:42:22.0912 4324 DfsC - ok
13:42:22.0948 4324 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
13:42:22.0951 4324 Dhcp - ok
13:42:22.0974 4324 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:42:22.0975 4324 discache - ok
13:42:22.0986 4324 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:42:22.0987 4324 Disk - ok
13:42:23.0023 4324 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:42:23.0025 4324 Dnscache - ok
13:42:23.0059 4324 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:42:23.0062 4324 dot3svc - ok
13:42:23.0084 4324 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
13:42:23.0086 4324 DPS - ok
13:42:23.0110 4324 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:42:23.0110 4324 drmkaud - ok
13:42:23.0160 4324 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:42:23.0168 4324 DXGKrnl - ok
13:42:23.0193 4324 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:42:23.0194 4324 EapHost - ok
13:42:23.0284 4324 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:42:23.0303 4324 ebdrv - ok
13:42:23.0321 4324 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
13:42:23.0323 4324 EFS - ok
13:42:23.0396 4324 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:42:23.0405 4324 ehRecvr - ok
13:42:23.0436 4324 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:42:23.0438 4324 ehSched - ok
13:42:23.0466 4324 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:42:23.0471 4324 elxstor - ok
13:42:23.0499 4324 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:42:23.0500 4324 ErrDev - ok
13:42:23.0537 4324 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:42:23.0540 4324 EventSystem - ok
13:42:23.0556 4324 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:42:23.0558 4324 exfat - ok
13:42:23.0590 4324 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:42:23.0593 4324 fastfat - ok
13:42:23.0622 4324 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
13:42:23.0629 4324 Fax - ok
13:42:23.0639 4324 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:42:23.0640 4324 fdc - ok
13:42:23.0664 4324 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:42:23.0665 4324 fdPHost - ok
13:42:23.0674 4324 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:42:23.0675 4324 FDResPub - ok
13:42:23.0693 4324 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:42:23.0694 4324 FileInfo - ok
13:42:23.0708 4324 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:42:23.0709 4324 Filetrace - ok
13:42:23.0715 4324 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:42:23.0716 4324 flpydisk - ok
13:42:23.0745 4324 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:42:23.0747 4324 FltMgr - ok
13:42:23.0787 4324 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
13:42:23.0793 4324 FontCache - ok
13:42:23.0849 4324 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:42:23.0849 4324 FontCache3.0.0.0 - ok
13:42:23.0876 4324 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:42:23.0877 4324 FsDepends - ok
13:42:23.0906 4324 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
13:42:23.0907 4324 fssfltr - ok
13:42:24.0008 4324 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
13:42:24.0024 4324 fsssvc - ok
13:42:24.0050 4324 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:42:24.0051 4324 Fs_Rec - ok
13:42:24.0082 4324 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:42:24.0083 4324 fvevol - ok
13:42:24.0101 4324 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:42:24.0102 4324 gagp30kx - ok
13:42:24.0127 4324 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:42:24.0128 4324 GEARAspiWDM - ok
13:42:24.0165 4324 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
13:42:24.0171 4324 gpsvc - ok
13:42:24.0226 4324 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:42:24.0228 4324 gupdate - ok
13:42:24.0235 4324 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:42:24.0238 4324 gupdatem - ok
13:42:24.0261 4324 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:42:24.0263 4324 gusvc - ok
13:42:24.0297 4324 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:42:24.0298 4324 hcw85cir - ok
13:42:24.0343 4324 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:42:24.0348 4324 HdAudAddService - ok
13:42:24.0363 4324 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
13:42:24.0365 4324 HDAudBus - ok
13:42:24.0372 4324 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:42:24.0373 4324 HidBatt - ok
13:42:24.0384 4324 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:42:24.0386 4324 HidBth - ok
13:42:24.0400 4324 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:42:24.0401 4324 HidIr - ok
13:42:24.0431 4324 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
13:42:24.0432 4324 hidserv - ok
13:42:24.0442 4324 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:42:24.0442 4324 HidUsb - ok
13:42:24.0461 4324 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:42:24.0463 4324 hkmsvc - ok
13:42:24.0484 4324 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:42:24.0486 4324 HomeGroupListener - ok
13:42:24.0530 4324 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:42:24.0532 4324 HomeGroupProvider - ok
13:42:24.0560 4324 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:42:24.0561 4324 HpSAMD - ok
13:42:24.0600 4324 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:42:24.0605 4324 HTTP - ok
13:42:24.0630 4324 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:42:24.0630 4324 hwpolicy - ok
13:42:24.0652 4324 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:42:24.0653 4324 i8042prt - ok
13:42:24.0683 4324 [ 073A606333B6F7BBF20AA856DF7F0997 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
13:42:24.0687 4324 iaStor - ok
13:42:24.0752 4324 [ CC800D2D9FD467542BAC7C186C4774AD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
13:42:24.0753 4324 IAStorDataMgrSvc - ok
13:42:24.0780 4324 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:42:24.0786 4324 iaStorV - ok
13:42:24.0838 4324 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:42:24.0847 4324 idsvc - ok
13:42:24.0870 4324 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:42:24.0871 4324 iirsp - ok
13:42:24.0920 4324 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
13:42:24.0931 4324 IKEEXT - ok
13:42:24.0958 4324 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
13:42:24.0959 4324 intelide - ok
13:42:24.0985 4324 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:42:24.0986 4324 intelppm - ok
13:42:25.0011 4324 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:42:25.0013 4324 IPBusEnum - ok
13:42:25.0048 4324 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:42:25.0049 4324 IpFilterDriver - ok
13:42:25.0072 4324 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:42:25.0074 4324 IPMIDRV - ok
13:42:25.0107 4324 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:42:25.0108 4324 IPNAT - ok
13:42:25.0179 4324 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:42:25.0189 4324 iPod Service - ok
13:42:25.0217 4324 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:42:25.0218 4324 IRENUM - ok
13:42:25.0246 4324 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:42:25.0247 4324 isapnp - ok
13:42:25.0272 4324 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:42:25.0276 4324 iScsiPrt - ok
13:42:25.0289 4324 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
13:42:25.0291 4324 kbdclass - ok
13:42:25.0309 4324 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
13:42:25.0310 4324 kbdhid - ok
13:42:25.0333 4324 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
13:42:25.0334 4324 KeyIso - ok
13:42:25.0360 4324 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:42:25.0361 4324 KSecDD - ok
13:42:25.0400 4324 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:42:25.0402 4324 KSecPkg - ok
13:42:25.0429 4324 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:42:25.0429 4324 ksthunk - ok
13:42:25.0460 4324 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:42:25.0464 4324 KtmRm - ok
13:42:25.0508 4324 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:42:25.0513 4324 LanmanServer - ok
13:42:25.0565 4324 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:42:25.0569 4324 LanmanWorkstation - ok
13:42:25.0607 4324 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:42:25.0609 4324 lltdio - ok
13:42:25.0640 4324 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:42:25.0643 4324 lltdsvc - ok
13:42:25.0657 4324 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:42:25.0659 4324 lmhosts - ok
13:42:25.0680 4324 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:42:25.0682 4324 LSI_FC - ok
13:42:25.0698 4324 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:42:25.0699 4324 LSI_SAS - ok
13:42:25.0716 4324 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:42:25.0717 4324 LSI_SAS2 - ok
13:42:25.0724 4324 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:42:25.0725 4324 LSI_SCSI - ok
13:42:25.0743 4324 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:42:25.0744 4324 luafv - ok
13:42:25.0770 4324 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
13:42:25.0771 4324 MBAMProtector - ok
13:42:25.0814 4324 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:42:25.0823 4324 MBAMService - ok
13:42:25.0852 4324 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:42:25.0853 4324 Mcx2Svc - ok
13:42:25.0873 4324 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:42:25.0874 4324 megasas - ok
13:42:25.0894 4324 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:42:25.0897 4324 MegaSR - ok
13:42:25.0930 4324 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:42:25.0932 4324 MMCSS - ok
13:42:25.0936 4324 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:42:25.0937 4324 Modem - ok
13:42:25.0950 4324 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:42:25.0951 4324 monitor - ok
13:42:25.0961 4324 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:42:25.0962 4324 mouclass - ok
13:42:25.0972 4324 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:42:25.0973 4324 mouhid - ok
13:42:26.0000 4324 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:42:26.0001 4324 mountmgr - ok
13:42:26.0035 4324 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:42:26.0036 4324 MozillaMaintenance - ok
13:42:26.0065 4324 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:42:26.0067 4324 mpio - ok
13:42:26.0090 4324 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:42:26.0091 4324 mpsdrv - ok
13:42:26.0112 4324 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:42:26.0114 4324 MRxDAV - ok
13:42:26.0143 4324 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:42:26.0145 4324 mrxsmb - ok
13:42:26.0183 4324 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:42:26.0185 4324 mrxsmb10 - ok
13:42:26.0196 4324 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:42:26.0198 4324 mrxsmb20 - ok
13:42:26.0209 4324 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:42:26.0210 4324 msahci - ok
13:42:26.0242 4324 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:42:26.0243 4324 msdsm - ok
13:42:26.0266 4324 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:42:26.0268 4324 MSDTC - ok
13:42:26.0291 4324 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:42:26.0292 4324 Msfs - ok
13:42:26.0306 4324 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:42:26.0306 4324 mshidkmdf - ok
13:42:26.0315 4324 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:42:26.0316 4324 msisadrv - ok
13:42:26.0341 4324 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:42:26.0343 4324 MSiSCSI - ok
13:42:26.0347 4324 msiserver - ok
13:42:26.0363 4324 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:42:26.0364 4324 MSKSSRV - ok
13:42:26.0379 4324 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:42:26.0380 4324 MSPCLOCK - ok
13:42:26.0390 4324 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:42:26.0391 4324 MSPQM - ok
13:42:26.0421 4324 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:42:26.0424 4324 MsRPC - ok
13:42:26.0449 4324 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:42:26.0449 4324 mssmbios - ok
13:42:26.0474 4324 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:42:26.0475 4324 MSTEE - ok
13:42:26.0488 4324 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:42:26.0489 4324 MTConfig - ok
13:42:26.0520 4324 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:42:26.0521 4324 Mup - ok
13:42:26.0562 4324 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
13:42:26.0570 4324 napagent - ok
13:42:26.0596 4324 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:42:26.0598 4324 NativeWifiP - ok
13:42:26.0641 4324 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
13:42:26.0648 4324 NDIS - ok
13:42:26.0665 4324 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:42:26.0666 4324 NdisCap - ok
13:42:26.0698 4324 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:42:26.0699 4324 NdisTapi - ok
13:42:26.0714 4324 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:42:26.0715 4324 Ndisuio - ok
13:42:26.0747 4324 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:42:26.0749 4324 NdisWan - ok
13:42:26.0769 4324 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:42:26.0770 4324 NDProxy - ok
13:42:26.0793 4324 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:42:26.0794 4324 NetBIOS - ok
13:42:26.0830 4324 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:42:26.0833 4324 NetBT - ok
13:42:26.0844 4324 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
13:42:26.0845 4324 Netlogon - ok
13:42:26.0872 4324 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:42:26.0876 4324 Netman - ok
13:42:26.0905 4324 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:42:26.0907 4324 NetMsmqActivator - ok
13:42:26.0911 4324 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:42:26.0913 4324 NetPipeActivator - ok
13:42:26.0940 4324 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:42:26.0944 4324 netprofm - ok
13:42:26.0949 4324 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:42:26.0950 4324 NetTcpActivator - ok
13:42:26.0955 4324 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:42:26.0957 4324 NetTcpPortSharing - ok
13:42:26.0985 4324 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:42:26.0986 4324 nfrd960 - ok
13:42:27.0015 4324 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:42:27.0018 4324 NlaSvc - ok
13:42:27.0031 4324 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:42:27.0032 4324 Npfs - ok
13:42:27.0065 4324 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:42:27.0066 4324 nsi - ok
13:42:27.0079 4324 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:42:27.0080 4324 nsiproxy - ok
13:42:27.0144 4324 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:42:27.0160 4324 Ntfs - ok
13:42:27.0186 4324 [ 317020D31F1696334679B9D0416EB62E ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
13:42:27.0187 4324 NuidFltr - ok
13:42:27.0201 4324 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:42:27.0202 4324 Null - ok
13:42:27.0232 4324 [ CDDD4478757288DF4BB1494BFD084259 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
13:42:27.0233 4324 NVHDA - ok
13:42:27.0458 4324 [ DB2BEE926E7DFC59896A2D6800EB13F7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:42:27.0518 4324 nvlddmkm - ok
13:42:27.0540 4324 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:42:27.0541 4324 nvraid - ok
13:42:27.0560 4324 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:42:27.0561 4324 nvstor - ok
13:42:27.0586 4324 [ 24AB15D09A13D5A40567211A1AB9B479 ] nvsvc C:\Windows\system32\nvvsvc.exe
13:42:27.0589 4324 nvsvc - ok
13:42:27.0605 4324 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:42:27.0606 4324 nv_agp - ok
13:42:27.0624 4324 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:42:27.0625 4324 ohci1394 - ok
13:42:27.0660 4324 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:42:27.0663 4324 p2pimsvc - ok
13:42:27.0685 4324 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:42:27.0689 4324 p2psvc - ok
13:42:27.0716 4324 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:42:27.0717 4324 Parport - ok
13:42:27.0742 4324 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:42:27.0743 4324 partmgr - ok
13:42:27.0763 4324 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:42:27.0766 4324 PcaSvc - ok
13:42:27.0786 4324 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
13:42:27.0787 4324 pci - ok
13:42:27.0800 4324 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:42:27.0800 4324 pciide - ok
13:42:27.0812 4324 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:42:27.0814 4324 pcmcia - ok
13:42:27.0822 4324 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:42:27.0823 4324 pcw - ok
13:42:27.0864 4324 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:42:27.0868 4324 PEAUTH - ok
13:42:27.0941 4324 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:42:27.0943 4324 PerfHost - ok
13:42:28.0009 4324 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
13:42:28.0027 4324 pla - ok
13:42:28.0052 4324 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:42:28.0055 4324 PlugPlay - ok
13:42:28.0069 4324 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:42:28.0071 4324 PNRPAutoReg - ok
13:42:28.0094 4324 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:42:28.0096 4324 PNRPsvc - ok
13:42:28.0119 4324 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
13:42:28.0119 4324 Point64 - ok
13:42:28.0156 4324 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:42:28.0159 4324 PolicyAgent - ok
13:42:28.0184 4324 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:42:28.0187 4324 Power - ok
13:42:28.0217 4324 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:42:28.0218 4324 PptpMiniport - ok
13:42:28.0226 4324 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:42:28.0227 4324 Processor - ok
13:42:28.0262 4324 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:42:28.0264 4324 ProfSvc - ok
13:42:28.0277 4324 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:42:28.0278 4324 ProtectedStorage - ok
13:42:28.0306 4324 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:42:28.0307 4324 Psched - ok
13:42:28.0355 4324 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:42:28.0364 4324 ql2300 - ok
13:42:28.0383 4324 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:42:28.0384 4324 ql40xx - ok
13:42:28.0416 4324 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:42:28.0418 4324 QWAVE - ok
13:42:28.0435 4324 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:42:28.0435 4324 QWAVEdrv - ok
13:42:28.0461 4324 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:42:28.0462 4324 RasAcd - ok
13:42:28.0482 4324 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:42:28.0483 4324 RasAgileVpn - ok
13:42:28.0507 4324 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:42:28.0509 4324 RasAuto - ok
13:42:28.0544 4324 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:42:28.0545 4324 Rasl2tp - ok
13:42:28.0574 4324 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
13:42:28.0577 4324 RasMan - ok
13:42:28.0594 4324 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:42:28.0595 4324 RasPppoe - ok
13:42:28.0608 4324 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:42:28.0609 4324 RasSstp - ok
13:42:28.0643 4324 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:42:28.0645 4324 rdbss - ok
13:42:28.0669 4324 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:42:28.0671 4324 rdpbus - ok
13:42:28.0680 4324 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:42:28.0681 4324 RDPCDD - ok
13:42:28.0699 4324 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:42:28.0700 4324 RDPENCDD - ok
13:42:28.0713 4324 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:42:28.0713 4324 RDPREFMP - ok
13:42:28.0755 4324 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:42:28.0758 4324 RDPWD - ok
13:42:28.0791 4324 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:42:28.0794 4324 rdyboost - ok
13:42:28.0810 4324 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:42:28.0812 4324 RemoteAccess - ok
13:42:28.0849 4324 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:42:28.0851 4324 RemoteRegistry - ok
13:42:28.0888 4324 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:42:28.0890 4324 RFCOMM - ok
13:42:28.0920 4324 [ 5767961268AA43D9F3FA6D59EC8B7B12 ] rimspci C:\Windows\system32\DRIVERS\rimssne64.sys
13:42:28.0922 4324 rimspci - ok
13:42:28.0940 4324 [ DDF5F666C2A5B3729E8BEA01FB999CC0 ] risdsnpe C:\Windows\system32\DRIVERS\risdsne64.sys
13:42:28.0942 4324 risdsnpe - ok
13:42:28.0954 4324 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:42:28.0956 4324 RpcEptMapper - ok
13:42:28.0984 4324 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:42:28.0985 4324 RpcLocator - ok
13:42:29.0018 4324 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
13:42:29.0024 4324 RpcSs - ok
13:42:29.0048 4324 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:42:29.0049 4324 rspndr - ok
13:42:29.0067 4324 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
13:42:29.0068 4324 SamSs - ok
13:42:29.0097 4324 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:42:29.0098 4324 sbp2port - ok
13:42:29.0169 4324 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
13:42:29.0181 4324 SBSDWSCService - ok
13:42:29.0217 4324 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:42:29.0219 4324 SCardSvr - ok
13:42:29.0244 4324 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:42:29.0244 4324 scfilter - ok
13:42:29.0283 4324 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
13:42:29.0291 4324 Schedule - ok
13:42:29.0314 4324 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:42:29.0315 4324 SCPolicySvc - ok
13:42:29.0342 4324 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
13:42:29.0343 4324 sdbus - ok
13:42:29.0362 4324 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:42:29.0364 4324 SDRSVC - ok
13:42:29.0383 4324 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:42:29.0384 4324 secdrv - ok
13:42:29.0412 4324 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
13:42:29.0414 4324 seclogon - ok
13:42:29.0444 4324 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:42:29.0446 4324 SENS - ok
13:42:29.0462 4324 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:42:29.0464 4324 SensrSvc - ok
13:42:29.0475 4324 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:42:29.0476 4324 Serenum - ok
13:42:29.0491 4324 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:42:29.0492 4324 Serial - ok
13:42:29.0518 4324 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:42:29.0519 4324 sermouse - ok
13:42:29.0548 4324 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:42:29.0551 4324 SessionEnv - ok
13:42:29.0575 4324 [ 70F9C476B62DE4F2823E918A6C181ADE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
13:42:29.0576 4324 SFEP - ok
13:42:29.0603 4324 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:42:29.0604 4324 sffdisk - ok
13:42:29.0610 4324 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:42:29.0611 4324 sffp_mmc - ok
13:42:29.0621 4324 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:42:29.0622 4324 sffp_sd - ok
13:42:29.0638 4324 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:42:29.0639 4324 sfloppy - ok
13:42:29.0675 4324 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:42:29.0678 4324 ShellHWDetection - ok
13:42:29.0696 4324 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:42:29.0697 4324 SiSRaid2 - ok
13:42:29.0713 4324 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:42:29.0714 4324 SiSRaid4 - ok
13:42:29.0857 4324 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:42:29.0874 4324 Skype C2C Service - ok
13:42:29.0951 4324 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:42:29.0954 4324 SkypeUpdate - ok
13:42:29.0965 4324 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:42:29.0967 4324 Smb - ok
13:42:30.0002 4324 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:42:30.0004 4324 SNMPTRAP - ok
13:42:30.0031 4324 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:42:30.0032 4324 spldr - ok
13:42:30.0075 4324 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
13:42:30.0081 4324 Spooler - ok
13:42:30.0176 4324 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
13:42:30.0201 4324 sppsvc - ok
13:42:30.0226 4324 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:42:30.0228 4324 sppuinotify - ok
13:42:30.0259 4324 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
13:42:30.0261 4324 srv - ok
13:42:30.0279 4324 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:42:30.0282 4324 srv2 - ok
13:42:30.0299 4324 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:42:30.0301 4324 srvnet - ok
13:42:30.0327 4324 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:42:30.0329 4324 SSDPSRV - ok
13:42:30.0343 4324 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:42:30.0345 4324 SstpSvc - ok
13:42:30.0376 4324 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:42:30.0377 4324 stexstor - ok
13:42:30.0408 4324 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
13:42:30.0412 4324 stisvc - ok
13:42:30.0429 4324 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:42:30.0430 4324 swenum - ok
13:42:30.0464 4324 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:42:30.0469 4324 swprv - ok
13:42:30.0532 4324 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
13:42:30.0550 4324 SysMain - ok
13:42:30.0576 4324 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:42:30.0578 4324 TabletInputService - ok
13:42:30.0613 4324 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:42:30.0619 4324 TapiSrv - ok
13:42:30.0639 4324 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:42:30.0642 4324 TBS - ok
13:42:30.0711 4324 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:42:30.0727 4324 Tcpip - ok
13:42:30.0752 4324 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:42:30.0763 4324 TCPIP6 - ok
13:42:30.0785 4324 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:42:30.0785 4324 tcpipreg - ok
13:42:30.0819 4324 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:42:30.0820 4324 TDPIPE - ok
13:42:30.0851 4324 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:42:30.0852 4324 TDTCP - ok
13:42:30.0885 4324 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:42:30.0886 4324 tdx - ok
13:42:30.0900 4324 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:42:30.0901 4324 TermDD - ok
13:42:30.0951 4324 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
13:42:30.0962 4324 TermService - ok
13:42:30.0998 4324 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:42:31.0001 4324 Themes - ok
13:42:31.0019 4324 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:42:31.0021 4324 THREADORDER - ok
13:42:31.0041 4324 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:42:31.0044 4324 TrkWks - ok
13:42:31.0089 4324 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:42:31.0093 4324 TrustedInstaller - ok
13:42:31.0120 4324 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:42:31.0121 4324 tssecsrv - ok
13:42:31.0147 4324 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:42:31.0148 4324 TsUsbFlt - ok
13:42:31.0171 4324 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:42:31.0173 4324 tunnel - ok
13:42:31.0197 4324 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:42:31.0198 4324 uagp35 - ok
13:42:31.0227 4324 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:42:31.0230 4324 udfs - ok
13:42:31.0262 4324 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:42:31.0264 4324 UI0Detect - ok
13:42:31.0281 4324 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:42:31.0283 4324 uliagpkx - ok
13:42:31.0304 4324 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:42:31.0305 4324 umbus - ok
13:42:31.0318 4324 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:42:31.0319 4324 UmPass - ok
13:42:31.0339 4324 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:42:31.0344 4324 upnphost - ok
13:42:31.0371 4324 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
13:42:31.0372 4324 USBAAPL64 - ok
13:42:31.0385 4324 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:42:31.0386 4324 usbccgp - ok
13:42:31.0417 4324 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:42:31.0419 4324 usbcir - ok
13:42:31.0438 4324 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:42:31.0439 4324 usbehci - ok
13:42:31.0465 4324 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:42:31.0468 4324 usbhub - ok
13:42:31.0488 4324 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:42:31.0489 4324 usbohci - ok
13:42:31.0520 4324 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:42:31.0521 4324 usbprint - ok
13:42:31.0542 4324 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:42:31.0543 4324 USBSTOR - ok
13:42:31.0568 4324 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:42:31.0569 4324 usbuhci - ok
13:42:31.0588 4324 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
13:42:31.0590 4324 usbvideo - ok
13:42:31.0617 4324 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:42:31.0619 4324 UxSms - ok
13:42:31.0668 4324 [ CB5B94EE1775FA4CD6B133F1745003C6 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
13:42:31.0672 4324 VAIO Event Service - ok
13:42:31.0728 4324 [ 1CF1A4DD7A58C966C9014B83C7229CF3 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
13:42:31.0735 4324 VAIO Power Management - ok
13:42:31.0756 4324 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:42:31.0758 4324 VaultSvc - ok
13:42:31.0783 4324 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:42:31.0784 4324 vdrvroot - ok
13:42:31.0816 4324 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:42:31.0822 4324 vds - ok
13:42:31.0836 4324 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:42:31.0837 4324 vga - ok
13:42:31.0848 4324 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:42:31.0849 4324 VgaSave - ok
13:42:31.0871 4324 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:42:31.0873 4324 vhdmp - ok
13:42:31.0899 4324 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:42:31.0899 4324 viaide - ok
13:42:31.0915 4324 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:42:31.0917 4324 volmgr - ok
13:42:31.0937 4324 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:42:31.0940 4324 volmgrx - ok
13:42:31.0955 4324 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:42:31.0958 4324 volsnap - ok
13:42:31.0988 4324 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:42:31.0990 4324 vsmraid - ok
13:42:32.0036 4324 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:42:32.0049 4324 VSS - ok
13:42:32.0148 4324 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
13:42:32.0157 4324 vToolbarUpdater12.2.6 - ok
13:42:32.0172 4324 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:42:32.0173 4324 vwifibus - ok
13:42:32.0201 4324 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:42:32.0202 4324 vwififlt - ok
13:42:32.0209 4324 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
13:42:32.0210 4324 vwifimp - ok
13:42:32.0249 4324 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:42:32.0253 4324 W32Time - ok
13:42:32.0269 4324 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:42:32.0270 4324 WacomPen - ok
13:42:32.0296 4324 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:42:32.0297 4324 WANARP - ok
13:42:32.0301 4324 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:42:32.0302 4324 Wanarpv6 - ok
13:42:32.0366 4324 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:42:32.0379 4324 WatAdminSvc - ok
13:42:32.0435 4324 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:42:32.0444 4324 wbengine - ok
13:42:32.0480 4324 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:42:32.0483 4324 WbioSrvc - ok
13:42:32.0516 4324 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:42:32.0519 4324 wcncsvc - ok
13:42:32.0544 4324 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:42:32.0546 4324 WcsPlugInService - ok
13:42:32.0561 4324 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:42:32.0562 4324 Wd - ok
13:42:32.0584 4324 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:42:32.0588 4324 Wdf01000 - ok
13:42:32.0614 4324 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:42:32.0616 4324 WdiServiceHost - ok
13:42:32.0620 4324 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:42:32.0622 4324 WdiSystemHost - ok
13:42:32.0656 4324 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:42:32.0659 4324 WebClient - ok
13:42:32.0671 4324 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:42:32.0674 4324 Wecsvc - ok
13:42:32.0686 4324 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:42:32.0688 4324 wercplsupport - ok
13:42:32.0706 4324 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:42:32.0708 4324 WerSvc - ok
13:42:32.0735 4324 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:42:32.0735 4324 WfpLwf - ok
13:42:32.0749 4324 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:42:32.0749 4324 WIMMount - ok
13:42:32.0757 4324 WinHttpAutoProxySvc - ok
13:42:32.0814 4324 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:42:32.0817 4324 Winmgmt - ok
13:42:32.0879 4324 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:42:32.0896 4324 WinRM - ok
13:42:32.0943 4324 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:42:32.0949 4324 Wlansvc - ok
13:42:32.0993 4324 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:42:32.0993 4324 wlcrasvc - ok
13:42:33.0096 4324 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:42:33.0110 4324 wlidsvc - ok
13:42:33.0135 4324 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:42:33.0136 4324 WmiAcpi - ok
13:42:33.0170 4324 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:42:33.0172 4324 wmiApSrv - ok
13:42:33.0196 4324 WMPNetworkSvc - ok
13:42:33.0215 4324 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:42:33.0217 4324 WPCSvc - ok
13:42:33.0244 4324 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:42:33.0247 4324 WPDBusEnum - ok
13:42:33.0278 4324 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:42:33.0279 4324 ws2ifsl - ok
13:42:33.0282 4324 WSearch - ok
13:42:33.0307 4324 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:42:33.0308 4324 WudfPf - ok
13:42:33.0328 4324 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:42:33.0330 4324 WUDFRd - ok
13:42:33.0367 4324 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:42:33.0369 4324 wudfsvc - ok
13:42:33.0385 4324 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:42:33.0387 4324 WwanSvc - ok
13:42:33.0457 4324 X6va005 - ok
13:42:33.0463 4324 X6va008 - ok
13:42:33.0524 4324 X6va010 - ok
13:42:33.0563 4324 [ 6AFFD75C6807B3DD3AB018E27B88EF95 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
13:42:33.0569 4324 yukonw7 - ok
13:42:33.0587 4324 ================ Scan global ===============================
13:42:33.0621 4324 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:42:33.0652 4324 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:42:33.0664 4324 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:42:33.0689 4324 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:42:33.0720 4324 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:42:33.0724 4324 [Global] - ok
13:42:33.0725 4324 ================ Scan MBR ==================================
13:42:33.0742 4324 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:42:34.0058 4324 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
13:42:34.0058 4324 \Device\Harddisk0\DR0 - detected TDSS File System (1)
13:42:34.0058 4324 ================ Scan VBR ==================================
13:42:34.0063 4324 [ 932B36718EEE2085D079439B26BD93C1 ] \Device\Harddisk0\DR0\Partition1
13:42:34.0066 4324 \Device\Harddisk0\DR0\Partition1 - ok
13:42:34.0106 4324 [ D3DB155F31E42DBE80FAC574467492AA ] \Device\Harddisk0\DR0\Partition2
13:42:34.0108 4324 \Device\Harddisk0\DR0\Partition2 - ok
13:42:34.0109 4324 ============================================================
13:42:34.0109 4324 Scan finished
13:42:34.0109 4324 ============================================================
13:42:34.0122 2204 Detected object count: 1
13:42:34.0122 2204 Actual detected object count: 1
13:43:07.0407 2204 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
13:43:07.0411 2204 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
13:43:07.0417 2204 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
13:43:07.0422 2204 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
13:43:07.0437 2204 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
13:43:07.0448 2204 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
13:43:07.0450 2204 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
13:43:07.0452 2204 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
13:43:07.0454 2204 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
13:43:07.0457 2204 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
13:43:07.0460 2204 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
13:43:07.0462 2204 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
13:43:07.0464 2204 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
13:43:07.0466 2204 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
13:43:07.0479 2204 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
13:43:07.0479 2204 \Device\Harddisk0\DR0\TDLFS - deleted
13:43:07.0479 2204 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete


Delete was the only option, so that is what I did. The laptop seems to be running great.
When you say I have to change all my passwords "on here" did you mean any passwords I have used on the laptop for everything (email, bank, work sites, etc)?

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,534 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:13 PM

Posted 04 October 2012 - 03:46 PM

everything (email, bank, work sites

Especially bank, work sites if there is sensitive info with work..

\TDLFS and TDSS are info stealers,looking for personal info. If you do your banking on it I would even call my bank and tell them you had an info stealing virus removed,so they can watch your account for activity.


Now run post 2 on the other machine. The first is clean.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 pringles13

pringles13
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 06 October 2012 - 05:29 PM

So when I turned on my PC to get started with everything today, I didn't see the /webhp in my Google address bar any longer. Don't know why it was there one day and not just a couple of days later. The only thing I did was shut down my PC after work and start it up this morning. I will go ahead and post all of the logs anyway.

TDSSKiller did not require a reboot. Here is the log:
17:39:29.0648 4392 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
17:39:30.0058 4392 ============================================================
17:39:30.0058 4392 Current date / time: 2012/10/06 17:39:30.0058
17:39:30.0058 4392 SystemInfo:
17:39:30.0058 4392
17:39:30.0058 4392 OS Version: 6.1.7601 ServicePack: 1.0
17:39:30.0058 4392 Product type: Workstation
17:39:30.0068 4392 ComputerName: HOMEPC
17:39:30.0068 4392 UserName: AmandaMorgan
17:39:30.0068 4392 Windows directory: C:\Windows
17:39:30.0068 4392 System windows directory: C:\Windows
17:39:30.0068 4392 Running under WOW64
17:39:30.0068 4392 Processor architecture: Intel x64
17:39:30.0068 4392 Number of processors: 2
17:39:30.0068 4392 Page size: 0x1000
17:39:30.0068 4392 Boot type: Normal boot
17:39:30.0068 4392 ============================================================
17:39:31.0288 4392 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:39:31.0304 4392 ============================================================
17:39:31.0304 4392 \Device\Harddisk0\DR0:
17:39:31.0304 4392 MBR partitions:
17:39:31.0304 4392 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:39:31.0304 4392 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x48DA3800
17:39:31.0304 4392 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x48DD6000, BlocksNum 0x1A81800
17:39:31.0304 4392 ============================================================
17:39:31.0351 4392 C: <-> \Device\Harddisk0\DR0\Partition2
17:39:31.0397 4392 D: <-> \Device\Harddisk0\DR0\Partition3
17:39:31.0397 4392 ============================================================
17:39:31.0397 4392 Initialize success
17:39:31.0397 4392 ============================================================
17:39:53.0398 4008 ============================================================
17:39:53.0398 4008 Scan started
17:39:53.0398 4008 Mode: Manual; TDLFS;
17:39:53.0398 4008 ============================================================
17:39:54.0341 4008 ================ Scan system memory ========================
17:39:54.0341 4008 System memory - ok
17:39:54.0341 4008 ================ Scan services =============================
17:39:54.0511 4008 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:39:54.0541 4008 1394ohci - ok
17:39:54.0581 4008 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:39:54.0591 4008 ACPI - ok
17:39:54.0621 4008 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:39:54.0621 4008 AcpiPmi - ok
17:39:54.0641 4008 [ DE7E8D852A806BE6091983838BF9697F ] ACPIService C:\Windows\system32\DRIVERS\OSDACPI.SYS
17:39:54.0651 4008 ACPIService - ok
17:39:54.0761 4008 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:39:54.0801 4008 AdobeARMservice - ok
17:39:54.0891 4008 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:39:54.0901 4008 AdobeFlashPlayerUpdateSvc - ok
17:39:54.0931 4008 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:39:54.0951 4008 adp94xx - ok
17:39:54.0981 4008 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:39:55.0001 4008 adpahci - ok
17:39:55.0021 4008 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:39:55.0021 4008 adpu320 - ok
17:39:55.0051 4008 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:39:55.0051 4008 AeLookupSvc - ok
17:39:55.0121 4008 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
17:39:55.0131 4008 AERTFilters - ok
17:39:55.0201 4008 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:39:55.0211 4008 AFD - ok
17:39:55.0251 4008 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:39:55.0271 4008 agp440 - ok
17:39:55.0301 4008 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:39:55.0311 4008 ALG - ok
17:39:55.0341 4008 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:39:55.0341 4008 aliide - ok
17:39:55.0361 4008 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:39:55.0361 4008 amdide - ok
17:39:55.0381 4008 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:39:55.0391 4008 AmdK8 - ok
17:39:55.0411 4008 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:39:55.0411 4008 AmdPPM - ok
17:39:55.0451 4008 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:39:55.0451 4008 amdsata - ok
17:39:55.0481 4008 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:39:55.0481 4008 amdsbs - ok
17:39:55.0501 4008 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:39:55.0501 4008 amdxata - ok
17:39:55.0551 4008 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:39:55.0571 4008 AppID - ok
17:39:55.0581 4008 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:39:55.0601 4008 AppIDSvc - ok
17:39:55.0631 4008 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:39:55.0661 4008 Appinfo - ok
17:39:55.0681 4008 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:39:55.0701 4008 arc - ok
17:39:55.0721 4008 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:39:55.0721 4008 arcsas - ok
17:39:55.0781 4008 aspnet_state - ok
17:39:55.0811 4008 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:39:55.0811 4008 AsyncMac - ok
17:39:55.0841 4008 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:39:55.0841 4008 atapi - ok
17:39:55.0891 4008 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:39:55.0951 4008 AudioEndpointBuilder - ok
17:39:55.0961 4008 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:39:55.0971 4008 AudioSrv - ok
17:39:56.0011 4008 [ A63B31D668424F7C20D0773769DBBB1E ] AVerAVF2 C:\Windows\system32\DRIVERS\AVerAVF2.sys
17:39:56.0051 4008 AVerAVF2 - ok
17:39:56.0131 4008 [ DF9586377384DF3808D42090242CC23B ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
17:39:56.0151 4008 AVP - ok
17:39:56.0241 4008 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:39:56.0271 4008 AxInstSV - ok
17:39:56.0311 4008 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:39:56.0321 4008 b06bdrv - ok
17:39:56.0361 4008 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:39:56.0381 4008 b57nd60a - ok
17:39:56.0411 4008 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:39:56.0421 4008 BDESVC - ok
17:39:56.0441 4008 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:39:56.0471 4008 Beep - ok
17:39:56.0531 4008 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:39:56.0581 4008 BFE - ok
17:39:56.0621 4008 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:39:56.0671 4008 BITS - ok
17:39:56.0701 4008 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:39:56.0711 4008 blbdrive - ok
17:39:56.0741 4008 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:39:56.0741 4008 bowser - ok
17:39:56.0761 4008 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:39:56.0771 4008 BrFiltLo - ok
17:39:56.0781 4008 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:39:56.0791 4008 BrFiltUp - ok
17:39:56.0821 4008 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:39:56.0841 4008 Browser - ok
17:39:56.0851 4008 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:39:56.0851 4008 Brserid - ok
17:39:56.0871 4008 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:39:56.0871 4008 BrSerWdm - ok
17:39:56.0881 4008 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:39:56.0881 4008 BrUsbMdm - ok
17:39:56.0901 4008 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:39:56.0901 4008 BrUsbSer - ok
17:39:56.0961 4008 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
17:39:56.0971 4008 BthEnum - ok
17:39:56.0991 4008 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:39:56.0991 4008 BTHMODEM - ok
17:39:57.0001 4008 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
17:39:57.0011 4008 BthPan - ok
17:39:57.0091 4008 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
17:39:57.0111 4008 BTHPORT - ok
17:39:57.0151 4008 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:39:57.0191 4008 bthserv - ok
17:39:57.0221 4008 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
17:39:57.0231 4008 BTHUSB - ok
17:39:57.0271 4008 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
17:39:57.0281 4008 btwaudio - ok
17:39:57.0311 4008 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
17:39:57.0321 4008 btwavdt - ok
17:39:57.0381 4008 [ D65AA164ACD0F6706DBCFBBCC9731584 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
17:39:57.0421 4008 btwdins - ok
17:39:57.0441 4008 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
17:39:57.0451 4008 btwl2cap - ok
17:39:57.0471 4008 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
17:39:57.0481 4008 btwrchid - ok
17:39:57.0531 4008 [ A7784F6DD505672E11DBD7ACDC718E75 ] CalendarSynchService C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
17:39:57.0531 4008 CalendarSynchService - ok
17:39:57.0561 4008 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:39:57.0591 4008 cdfs - ok
17:39:57.0631 4008 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:39:57.0651 4008 cdrom - ok
17:39:57.0691 4008 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:39:57.0721 4008 CertPropSvc - ok
17:39:57.0751 4008 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:39:57.0751 4008 circlass - ok
17:39:57.0781 4008 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:39:57.0791 4008 CLFS - ok
17:39:57.0821 4008 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:39:57.0821 4008 clr_optimization_v2.0.50727_32 - ok
17:39:57.0881 4008 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:39:57.0891 4008 clr_optimization_v2.0.50727_64 - ok
17:39:57.0961 4008 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:39:58.0001 4008 clr_optimization_v4.0.30319_32 - ok
17:39:58.0031 4008 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:39:58.0111 4008 clr_optimization_v4.0.30319_64 - ok
17:39:58.0151 4008 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:39:58.0151 4008 CmBatt - ok
17:39:58.0171 4008 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:39:58.0171 4008 cmdide - ok
17:39:58.0221 4008 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:39:58.0251 4008 CNG - ok
17:39:58.0271 4008 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:39:58.0271 4008 Compbatt - ok
17:39:58.0311 4008 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:39:58.0331 4008 CompositeBus - ok
17:39:58.0341 4008 COMSysApp - ok
17:39:58.0361 4008 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:39:58.0361 4008 crcdisk - ok
17:39:58.0401 4008 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:39:58.0411 4008 Creative ALchemy AL6 Licensing Service - ok
17:39:58.0451 4008 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
17:39:58.0461 4008 Creative Audio Engine Licensing Service - ok
17:39:58.0501 4008 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:39:58.0541 4008 CryptSvc - ok
17:39:58.0621 4008 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:39:58.0661 4008 CTAudSvcService - ok
17:39:58.0711 4008 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
17:39:58.0721 4008 dc3d - ok
17:39:58.0771 4008 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:39:58.0821 4008 DcomLaunch - ok
17:39:58.0851 4008 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:39:58.0891 4008 defragsvc - ok
17:39:58.0921 4008 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:39:58.0951 4008 DfsC - ok
17:39:58.0991 4008 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:39:59.0041 4008 Dhcp - ok
17:39:59.0061 4008 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:39:59.0081 4008 discache - ok
17:39:59.0081 4008 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:39:59.0091 4008 Disk - ok
17:39:59.0131 4008 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:39:59.0131 4008 Dnscache - ok
17:39:59.0161 4008 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:39:59.0211 4008 dot3svc - ok
17:39:59.0251 4008 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:39:59.0271 4008 Dot4 - ok
17:39:59.0321 4008 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:39:59.0331 4008 Dot4Print - ok
17:39:59.0341 4008 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:39:59.0351 4008 dot4usb - ok
17:39:59.0381 4008 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:39:59.0421 4008 DPS - ok
17:39:59.0451 4008 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:39:59.0481 4008 drmkaud - ok
17:39:59.0521 4008 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:39:59.0571 4008 DXGKrnl - ok
17:39:59.0591 4008 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:39:59.0601 4008 EapHost - ok
17:39:59.0681 4008 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:39:59.0771 4008 ebdrv - ok
17:39:59.0801 4008 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:39:59.0811 4008 EFS - ok
17:39:59.0851 4008 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:39:59.0901 4008 ehRecvr - ok
17:39:59.0931 4008 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:39:59.0951 4008 ehSched - ok
17:39:59.0981 4008 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:40:00.0011 4008 elxstor - ok
17:40:00.0041 4008 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:40:00.0061 4008 ErrDev - ok
17:40:00.0111 4008 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:40:00.0121 4008 EventSystem - ok
17:40:00.0151 4008 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:40:00.0181 4008 exfat - ok
17:40:00.0201 4008 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:40:00.0241 4008 fastfat - ok
17:40:00.0301 4008 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:40:00.0341 4008 Fax - ok
17:40:00.0361 4008 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:40:00.0381 4008 fdc - ok
17:40:00.0401 4008 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:40:00.0431 4008 fdPHost - ok
17:40:00.0441 4008 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:40:00.0471 4008 FDResPub - ok
17:40:00.0491 4008 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:40:00.0491 4008 FileInfo - ok
17:40:00.0511 4008 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:40:00.0541 4008 Filetrace - ok
17:40:00.0561 4008 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:40:00.0581 4008 flpydisk - ok
17:40:00.0621 4008 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:40:00.0651 4008 FltMgr - ok
17:40:00.0711 4008 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:40:00.0741 4008 FontCache - ok
17:40:00.0791 4008 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:40:00.0821 4008 FontCache3.0.0.0 - ok
17:40:00.0841 4008 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:40:00.0871 4008 FsDepends - ok
17:40:00.0901 4008 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:40:00.0901 4008 Fs_Rec - ok
17:40:00.0941 4008 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:40:00.0971 4008 fvevol - ok
17:40:00.0981 4008 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:40:01.0001 4008 gagp30kx - ok
17:40:01.0051 4008 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:40:01.0111 4008 gpsvc - ok
17:40:01.0151 4008 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:40:01.0151 4008 gupdate - ok
17:40:01.0191 4008 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:40:01.0191 4008 gupdatem - ok
17:40:01.0221 4008 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:40:01.0261 4008 hcw85cir - ok
17:40:01.0321 4008 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:40:01.0321 4008 HDAudBus - ok
17:40:01.0331 4008 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:40:01.0351 4008 HidBatt - ok
17:40:01.0371 4008 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:40:01.0391 4008 HidBth - ok
17:40:01.0401 4008 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:40:01.0431 4008 HidIr - ok
17:40:01.0451 4008 [ AC0E56C858B86732420A44827B7CE2C9 ] hidkmdf C:\Windows\system32\DRIVERS\hidkmdf.sys
17:40:01.0461 4008 hidkmdf - ok
17:40:01.0491 4008 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:40:01.0501 4008 hidserv - ok
17:40:01.0531 4008 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:40:01.0551 4008 HidUsb - ok
17:40:01.0581 4008 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:40:01.0621 4008 hkmsvc - ok
17:40:01.0651 4008 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:40:01.0691 4008 HomeGroupListener - ok
17:40:01.0731 4008 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:40:01.0761 4008 HomeGroupProvider - ok
17:40:01.0831 4008 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:40:01.0841 4008 HP Support Assistant Service - ok
17:40:01.0891 4008 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:40:01.0911 4008 HPDrvMntSvc.exe - ok
17:40:01.0981 4008 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:40:02.0021 4008 hpqcxs08 - ok
17:40:02.0051 4008 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:40:02.0071 4008 hpqddsvc - ok
17:40:02.0111 4008 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:40:02.0141 4008 hpqwmiex - ok
17:40:02.0171 4008 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:40:02.0181 4008 HpSAMD - ok
17:40:02.0221 4008 [ D4F91CF4DE215D6F14A06087D46725E4 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:40:02.0351 4008 HPSLPSVC - ok
17:40:02.0401 4008 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:40:02.0451 4008 HTTP - ok
17:40:02.0481 4008 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:40:02.0511 4008 hwpolicy - ok
17:40:02.0561 4008 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:40:02.0581 4008 i8042prt - ok
17:40:02.0621 4008 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:40:02.0641 4008 iaStorV - ok
17:40:02.0681 4008 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:40:02.0711 4008 IDriverT - ok
17:40:02.0761 4008 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:40:02.0811 4008 idsvc - ok
17:40:02.0841 4008 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:40:02.0861 4008 iirsp - ok
17:40:02.0901 4008 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:40:02.0951 4008 IKEEXT - ok
17:40:03.0011 4008 [ BC64B75E8E0A0B8982AB773483164E72 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:40:03.0061 4008 IntcAzAudAddService - ok
17:40:03.0081 4008 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:40:03.0081 4008 intelide - ok
17:40:03.0101 4008 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:40:03.0101 4008 intelppm - ok
17:40:03.0131 4008 IOPort - ok
17:40:03.0161 4008 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:40:03.0191 4008 IPBusEnum - ok
17:40:03.0221 4008 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:40:03.0251 4008 IpFilterDriver - ok
17:40:03.0301 4008 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:40:03.0341 4008 iphlpsvc - ok
17:40:03.0381 4008 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:40:03.0381 4008 IPMIDRV - ok
17:40:03.0401 4008 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:40:03.0431 4008 IPNAT - ok
17:40:03.0451 4008 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:40:03.0481 4008 IRENUM - ok
17:40:03.0511 4008 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:40:03.0531 4008 isapnp - ok
17:40:03.0561 4008 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:40:03.0601 4008 iScsiPrt - ok
17:40:03.0621 4008 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:40:03.0641 4008 kbdclass - ok
17:40:03.0661 4008 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:40:03.0681 4008 kbdhid - ok
17:40:03.0691 4008 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:40:03.0691 4008 KeyIso - ok
17:40:03.0731 4008 [ DB449F50E5141458EB58E64FFAC4863F ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
17:40:03.0751 4008 kl1 - ok
17:40:03.0771 4008 [ 87200A8AFE40532BAA4D2B24A7BA0EEA ] KLBG C:\Windows\system32\DRIVERS\klbg.sys
17:40:03.0811 4008 KLBG - ok
17:40:03.0841 4008 [ 09BAD645D3843669C281431C7DF2DB2E ] KLIF C:\Windows\system32\DRIVERS\klif.sys
17:40:03.0871 4008 KLIF - ok
17:40:03.0891 4008 [ 630F22545379437737CF4172F09FE449 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
17:40:03.0901 4008 KLIM6 - ok
17:40:03.0941 4008 [ 786791291939ABB11F6D0F040DA23912 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
17:40:03.0951 4008 klmouflt - ok
17:40:04.0001 4008 [ 0BC501F8889C59E332BA5B3765CEEB30 ] ksaud C:\Windows\system32\drivers\ksaud.sys
17:40:04.0031 4008 ksaud - ok
17:40:04.0061 4008 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:40:04.0081 4008 KSecDD - ok
17:40:04.0121 4008 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:40:04.0151 4008 KSecPkg - ok
17:40:04.0171 4008 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:40:04.0201 4008 ksthunk - ok
17:40:04.0231 4008 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:40:04.0271 4008 KtmRm - ok
17:40:04.0321 4008 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:40:04.0361 4008 LanmanServer - ok
17:40:04.0391 4008 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:40:04.0431 4008 LanmanWorkstation - ok
17:40:04.0471 4008 [ 108333981C841EB0FF198AA5DFCF3D3B ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:40:04.0481 4008 LightScribeService - ok
17:40:04.0511 4008 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:40:04.0541 4008 lltdio - ok
17:40:04.0581 4008 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:40:04.0621 4008 lltdsvc - ok
17:40:04.0641 4008 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:40:04.0681 4008 lmhosts - ok
17:40:04.0701 4008 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:40:04.0721 4008 LSI_FC - ok
17:40:04.0741 4008 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:40:04.0761 4008 LSI_SAS - ok
17:40:04.0781 4008 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:40:04.0801 4008 LSI_SAS2 - ok
17:40:04.0821 4008 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:40:04.0851 4008 LSI_SCSI - ok
17:40:04.0881 4008 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:40:04.0881 4008 luafv - ok
17:40:04.0911 4008 [ F6216C0549996D6CF3006F743C8A0618 ] LWWLicenseService C:\Program Files (x86)\Common Files\WoltersKluwerLWW Shared\Service\LWWLicenseService.exe
17:40:04.0921 4008 LWWLicenseService - ok
17:40:04.0951 4008 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:40:04.0981 4008 Mcx2Svc - ok
17:40:05.0001 4008 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:40:05.0021 4008 megasas - ok
17:40:05.0041 4008 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:40:05.0071 4008 MegaSR - ok
17:40:05.0101 4008 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:40:05.0121 4008 MMCSS - ok
17:40:05.0141 4008 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:40:05.0171 4008 Modem - ok
17:40:05.0211 4008 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:40:05.0211 4008 monitor - ok
17:40:05.0231 4008 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:40:05.0251 4008 mouclass - ok
17:40:05.0281 4008 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:40:05.0321 4008 mouhid - ok
17:40:05.0351 4008 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:40:05.0381 4008 mountmgr - ok
17:40:05.0481 4008 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:40:05.0541 4008 MozillaMaintenance - ok
17:40:05.0571 4008 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:40:05.0591 4008 mpio - ok
17:40:05.0611 4008 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:40:05.0651 4008 mpsdrv - ok
17:40:05.0701 4008 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:40:05.0751 4008 MpsSvc - ok
17:40:05.0781 4008 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:40:05.0821 4008 MRxDAV - ok
17:40:05.0861 4008 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:40:05.0921 4008 mrxsmb - ok
17:40:05.0951 4008 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:40:05.0961 4008 mrxsmb10 - ok
17:40:05.0971 4008 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:40:05.0991 4008 mrxsmb20 - ok
17:40:06.0001 4008 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:40:06.0001 4008 msahci - ok
17:40:06.0041 4008 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:40:06.0071 4008 msdsm - ok
17:40:06.0101 4008 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:40:06.0131 4008 MSDTC - ok
17:40:06.0151 4008 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:40:06.0151 4008 Msfs - ok
17:40:06.0181 4008 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:40:06.0211 4008 mshidkmdf - ok
17:40:06.0221 4008 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:40:06.0221 4008 msisadrv - ok
17:40:06.0251 4008 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:40:06.0311 4008 MSiSCSI - ok
17:40:06.0321 4008 msiserver - ok
17:40:06.0371 4008 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:40:06.0411 4008 MSKSSRV - ok
17:40:06.0461 4008 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:40:06.0501 4008 MSPCLOCK - ok
17:40:06.0521 4008 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:40:06.0581 4008 MSPQM - ok
17:40:06.0611 4008 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:40:06.0691 4008 MsRPC - ok
17:40:06.0721 4008 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:40:06.0721 4008 mssmbios - ok
17:40:06.0741 4008 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:40:06.0771 4008 MSTEE - ok
17:40:06.0791 4008 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:40:06.0811 4008 MTConfig - ok
17:40:06.0831 4008 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:40:06.0831 4008 Mup - ok
17:40:06.0871 4008 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:40:06.0921 4008 napagent - ok
17:40:06.0951 4008 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:40:06.0991 4008 NativeWifiP - ok
17:40:07.0051 4008 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:40:07.0131 4008 NDIS - ok
17:40:07.0151 4008 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:40:07.0161 4008 NdisCap - ok
17:40:07.0181 4008 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:40:07.0201 4008 NdisTapi - ok
17:40:07.0231 4008 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:40:07.0261 4008 Ndisuio - ok
17:40:07.0291 4008 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:40:07.0341 4008 NdisWan - ok
17:40:07.0371 4008 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:40:07.0401 4008 NDProxy - ok
17:40:07.0461 4008 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:40:07.0461 4008 Net Driver HPZ12 - ok
17:40:07.0481 4008 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:40:07.0511 4008 NetBIOS - ok
17:40:07.0551 4008 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:40:07.0591 4008 NetBT - ok
17:40:07.0601 4008 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:40:07.0601 4008 Netlogon - ok
17:40:07.0641 4008 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:40:07.0661 4008 Netman - ok
17:40:07.0681 4008 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:40:07.0701 4008 netprofm - ok
17:40:07.0741 4008 [ 44D4BD55191624C82A2745296BA42814 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
17:40:07.0771 4008 netr28x - ok
17:40:07.0801 4008 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:40:07.0811 4008 NetTcpPortSharing - ok
17:40:07.0831 4008 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:40:07.0841 4008 nfrd960 - ok
17:40:07.0891 4008 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:40:07.0931 4008 NlaSvc - ok
17:40:07.0951 4008 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:40:07.0981 4008 Npfs - ok
17:40:08.0011 4008 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:40:08.0021 4008 nsi - ok
17:40:08.0031 4008 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:40:08.0041 4008 nsiproxy - ok
17:40:08.0111 4008 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:40:08.0141 4008 Ntfs - ok
17:40:08.0181 4008 [ 317020D31F1696334679B9D0416EB62E ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
17:40:08.0191 4008 NuidFltr - ok
17:40:08.0211 4008 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:40:08.0221 4008 Null - ok
17:40:08.0461 4008 [ 1CF597C9F0745735A6C5181ECB83706E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:40:08.0691 4008 nvlddmkm - ok
17:40:08.0731 4008 [ 9C3024E48DB4C98E50AF7D8B72D0EF89 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
17:40:08.0751 4008 NVNET - ok
17:40:08.0781 4008 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:40:08.0781 4008 nvraid - ok
17:40:08.0811 4008 [ AFDE3015BB8D76E26BEC3B287C5443A0 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
17:40:08.0821 4008 nvsmu - ok
17:40:08.0861 4008 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:40:08.0861 4008 nvstor - ok
17:40:08.0881 4008 [ 6BA747B1A9297A6C0271700D12FDD495 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
17:40:08.0891 4008 nvstor64 - ok
17:40:08.0911 4008 [ E71CFA7AE5E7518E29073D7C20A8FCA1 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:40:08.0931 4008 nvsvc - ok
17:40:08.0961 4008 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:40:08.0961 4008 nv_agp - ok
17:40:08.0991 4008 [ 1490B742E560E337AC6D2F80CE9FE14B ] NW1950 C:\Windows\system32\DRIVERS\NW1950.sys
17:40:09.0001 4008 NW1950 - ok
17:40:09.0061 4008 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:40:09.0121 4008 odserv - ok
17:40:09.0151 4008 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:40:09.0171 4008 ohci1394 - ok
17:40:09.0221 4008 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:40:09.0221 4008 ose - ok
17:40:09.0271 4008 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:40:09.0311 4008 p2pimsvc - ok
17:40:09.0331 4008 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:40:09.0381 4008 p2psvc - ok
17:40:09.0411 4008 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:40:09.0421 4008 Parport - ok
17:40:09.0461 4008 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:40:09.0471 4008 partmgr - ok
17:40:09.0491 4008 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:40:09.0501 4008 PcaSvc - ok
17:40:09.0571 4008 PcdrNdisuio - ok
17:40:09.0591 4008 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:40:09.0591 4008 pci - ok
17:40:09.0631 4008 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:40:09.0651 4008 pciide - ok
17:40:09.0671 4008 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:40:09.0681 4008 pcmcia - ok
17:40:09.0701 4008 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:40:09.0731 4008 pcw - ok
17:40:09.0751 4008 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:40:09.0781 4008 PEAUTH - ok
17:40:09.0801 4008 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:40:09.0821 4008 PerfHost - ok
17:40:09.0891 4008 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:40:09.0951 4008 pla - ok
17:40:10.0001 4008 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:40:10.0111 4008 PlugPlay - ok
17:40:10.0171 4008 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:40:10.0171 4008 Pml Driver HPZ12 - ok
17:40:10.0201 4008 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:40:10.0221 4008 PNRPAutoReg - ok
17:40:10.0241 4008 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:40:10.0251 4008 PNRPsvc - ok
17:40:10.0281 4008 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
17:40:10.0291 4008 Point64 - ok
17:40:10.0321 4008 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:40:10.0381 4008 PolicyAgent - ok
17:40:10.0421 4008 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:40:10.0431 4008 Power - ok
17:40:10.0481 4008 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:40:10.0511 4008 PptpMiniport - ok
17:40:10.0531 4008 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:40:10.0541 4008 Processor - ok
17:40:10.0581 4008 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:40:10.0601 4008 ProfSvc - ok
17:40:10.0621 4008 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:40:10.0621 4008 ProtectedStorage - ok
17:40:10.0671 4008 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:40:10.0711 4008 Psched - ok
17:40:10.0751 4008 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:40:10.0791 4008 ql2300 - ok
17:40:10.0821 4008 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:40:10.0831 4008 ql40xx - ok
17:40:10.0861 4008 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:40:10.0901 4008 QWAVE - ok
17:40:10.0911 4008 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:40:10.0921 4008 QWAVEdrv - ok
17:40:10.0941 4008 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:40:10.0951 4008 RasAcd - ok
17:40:10.0981 4008 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:40:10.0991 4008 RasAgileVpn - ok
17:40:11.0001 4008 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:40:11.0031 4008 RasAuto - ok
17:40:11.0071 4008 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:40:11.0111 4008 Rasl2tp - ok
17:40:11.0151 4008 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:40:11.0211 4008 RasMan - ok
17:40:11.0221 4008 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:40:11.0231 4008 RasPppoe - ok
17:40:11.0241 4008 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:40:11.0261 4008 RasSstp - ok
17:40:11.0301 4008 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:40:11.0341 4008 rdbss - ok
17:40:11.0361 4008 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:40:11.0371 4008 rdpbus - ok
17:40:11.0391 4008 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:40:11.0401 4008 RDPCDD - ok
17:40:11.0431 4008 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:40:11.0451 4008 RDPENCDD - ok
17:40:11.0461 4008 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:40:11.0471 4008 RDPREFMP - ok
17:40:11.0541 4008 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:40:11.0571 4008 RDPWD - ok
17:40:11.0651 4008 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:40:11.0691 4008 rdyboost - ok
17:40:11.0721 4008 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:40:11.0751 4008 RemoteAccess - ok
17:40:11.0781 4008 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:40:11.0821 4008 RemoteRegistry - ok
17:40:11.0831 4008 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
17:40:11.0851 4008 RFCOMM - ok
17:40:11.0871 4008 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:40:11.0881 4008 RpcEptMapper - ok
17:40:11.0911 4008 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:40:11.0921 4008 RpcLocator - ok
17:40:11.0961 4008 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:40:11.0971 4008 RpcSs - ok
17:40:11.0981 4008 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:40:11.0991 4008 rspndr - ok
17:40:12.0011 4008 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:40:12.0011 4008 SamSs - ok
17:40:12.0051 4008 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:40:12.0061 4008 sbp2port - ok
17:40:12.0081 4008 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:40:12.0111 4008 SCardSvr - ok
17:40:12.0141 4008 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:40:12.0171 4008 scfilter - ok
17:40:12.0231 4008 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:40:12.0291 4008 Schedule - ok
17:40:12.0321 4008 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:40:12.0321 4008 SCPolicySvc - ok
17:40:12.0361 4008 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:40:12.0401 4008 SDRSVC - ok
17:40:12.0431 4008 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:40:12.0441 4008 secdrv - ok
17:40:12.0471 4008 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:40:12.0511 4008 seclogon - ok
17:40:12.0521 4008 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:40:12.0531 4008 SENS - ok
17:40:12.0551 4008 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:40:12.0571 4008 SensrSvc - ok
17:40:12.0601 4008 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:40:12.0621 4008 Serenum - ok
17:40:12.0631 4008 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:40:12.0641 4008 Serial - ok
17:40:12.0691 4008 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:40:12.0711 4008 sermouse - ok
17:40:12.0751 4008 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:40:12.0791 4008 SessionEnv - ok
17:40:12.0821 4008 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:40:12.0841 4008 sffdisk - ok
17:40:12.0861 4008 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:40:12.0881 4008 sffp_mmc - ok
17:40:12.0891 4008 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:40:12.0911 4008 sffp_sd - ok
17:40:12.0931 4008 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:40:12.0951 4008 sfloppy - ok
17:40:12.0971 4008 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:40:13.0021 4008 SharedAccess - ok
17:40:13.0091 4008 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:40:13.0201 4008 ShellHWDetection - ok
17:40:13.0241 4008 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:40:13.0251 4008 SiSRaid2 - ok
17:40:13.0271 4008 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:40:13.0281 4008 SiSRaid4 - ok
17:40:13.0331 4008 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:40:13.0361 4008 SkypeUpdate - ok
17:40:13.0391 4008 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:40:13.0401 4008 Smb - ok
17:40:13.0441 4008 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:40:13.0451 4008 SNMPTRAP - ok
17:40:13.0461 4008 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:40:13.0501 4008 spldr - ok
17:40:13.0531 4008 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:40:13.0561 4008 Spooler - ok
17:40:13.0661 4008 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:40:13.0731 4008 sppsvc - ok
17:40:13.0741 4008 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:40:13.0771 4008 sppuinotify - ok
17:40:13.0811 4008 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:40:13.0841 4008 srv - ok
17:40:13.0861 4008 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:40:13.0891 4008 srv2 - ok
17:40:13.0911 4008 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:40:13.0941 4008 srvnet - ok
17:40:13.0961 4008 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:40:14.0001 4008 SSDPSRV - ok
17:40:14.0021 4008 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:40:14.0051 4008 SstpSvc - ok
17:40:14.0061 4008 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:40:14.0071 4008 stexstor - ok
17:40:14.0101 4008 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
17:40:14.0111 4008 StillCam - ok
17:40:14.0161 4008 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:40:14.0211 4008 stisvc - ok
17:40:14.0241 4008 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:40:14.0241 4008 swenum - ok
17:40:14.0271 4008 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:40:14.0291 4008 swprv - ok
17:40:14.0351 4008 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:40:14.0411 4008 SysMain - ok
17:40:14.0451 4008 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:40:14.0491 4008 TabletInputService - ok
17:40:14.0521 4008 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:40:14.0561 4008 TapiSrv - ok
17:40:14.0581 4008 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:40:14.0621 4008 TBS - ok
17:40:14.0681 4008 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:40:14.0771 4008 Tcpip - ok
17:40:14.0821 4008 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:40:14.0831 4008 TCPIP6 - ok
17:40:14.0871 4008 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:40:14.0901 4008 tcpipreg - ok
17:40:14.0941 4008 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:40:14.0951 4008 TDPIPE - ok
17:40:14.0991 4008 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:40:15.0021 4008 TDTCP - ok
17:40:15.0061 4008 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:40:15.0101 4008 tdx - ok
17:40:15.0131 4008 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:40:15.0151 4008 TermDD - ok
17:40:15.0191 4008 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:40:15.0241 4008 TermService - ok
17:40:15.0251 4008 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:40:15.0261 4008 Themes - ok
17:40:15.0271 4008 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:40:15.0271 4008 THREADORDER - ok
17:40:15.0291 4008 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:40:15.0311 4008 TrkWks - ok
17:40:15.0371 4008 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:40:15.0401 4008 TrustedInstaller - ok
17:40:15.0441 4008 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:40:15.0471 4008 tssecsrv - ok
17:40:15.0521 4008 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:40:15.0551 4008 TsUsbFlt - ok
17:40:15.0611 4008 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:40:15.0641 4008 tunnel - ok
17:40:15.0661 4008 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:40:15.0671 4008 uagp35 - ok
17:40:15.0711 4008 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:40:15.0751 4008 udfs - ok
17:40:15.0781 4008 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:40:15.0791 4008 UI0Detect - ok
17:40:15.0821 4008 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:40:15.0821 4008 uliagpkx - ok
17:40:15.0861 4008 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:40:15.0881 4008 umbus - ok
17:40:15.0891 4008 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:40:15.0901 4008 UmPass - ok
17:40:15.0931 4008 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:40:15.0951 4008 upnphost - ok
17:40:16.0001 4008 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:40:16.0021 4008 usbaudio - ok
17:40:16.0051 4008 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:40:16.0061 4008 usbccgp - ok
17:40:16.0111 4008 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:40:16.0111 4008 usbcir - ok
17:40:16.0131 4008 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:40:16.0141 4008 usbehci - ok
17:40:16.0161 4008 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:40:16.0211 4008 usbhub - ok
17:40:16.0231 4008 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:40:16.0271 4008 usbohci - ok
17:40:16.0291 4008 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:40:16.0301 4008 usbprint - ok
17:40:16.0331 4008 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:40:16.0341 4008 usbscan - ok
17:40:16.0381 4008 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:40:16.0381 4008 USBSTOR - ok
17:40:16.0401 4008 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:40:16.0411 4008 usbuhci - ok
17:40:16.0421 4008 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:40:16.0451 4008 usbvideo - ok
17:40:16.0481 4008 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:40:16.0491 4008 UxSms - ok
17:40:16.0501 4008 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:40:16.0501 4008 VaultSvc - ok
17:40:16.0531 4008 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:40:16.0541 4008 vdrvroot - ok
17:40:16.0581 4008 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:40:16.0631 4008 vds - ok
17:40:16.0651 4008 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:40:16.0661 4008 vga - ok
17:40:16.0671 4008 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:40:16.0681 4008 VgaSave - ok
17:40:16.0711 4008 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:40:16.0731 4008 vhdmp - ok
17:40:16.0771 4008 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:40:16.0771 4008 viaide - ok
17:40:16.0801 4008 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:40:16.0801 4008 volmgr - ok
17:40:16.0841 4008 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:40:16.0881 4008 volmgrx - ok
17:40:16.0901 4008 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:40:16.0921 4008 volsnap - ok
17:40:16.0931 4008 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:40:16.0951 4008 vsmraid - ok
17:40:17.0021 4008 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:40:17.0071 4008 VSS - ok
17:40:17.0081 4008 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:40:17.0091 4008 vwifibus - ok
17:40:17.0111 4008 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:40:17.0121 4008 vwififlt - ok
17:40:17.0161 4008 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:40:17.0171 4008 vwifimp - ok
17:40:17.0201 4008 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:40:17.0221 4008 W32Time - ok
17:40:17.0241 4008 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:40:17.0261 4008 WacomPen - ok
17:40:17.0281 4008 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:40:17.0311 4008 WANARP - ok
17:40:17.0331 4008 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:40:17.0331 4008 Wanarpv6 - ok
17:40:17.0401 4008 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:40:17.0441 4008 WatAdminSvc - ok
17:40:17.0501 4008 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:40:17.0571 4008 wbengine - ok
17:40:17.0591 4008 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:40:17.0631 4008 WbioSrvc - ok
17:40:17.0671 4008 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:40:17.0711 4008 wcncsvc - ok
17:40:17.0731 4008 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:40:17.0761 4008 WcsPlugInService - ok
17:40:17.0781 4008 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:40:17.0791 4008 Wd - ok
17:40:17.0821 4008 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:40:17.0871 4008 Wdf01000 - ok
17:40:17.0891 4008 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:40:17.0901 4008 WdiServiceHost - ok
17:40:17.0901 4008 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:40:17.0911 4008 WdiSystemHost - ok
17:40:17.0951 4008 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:40:17.0991 4008 WebClient - ok
17:40:18.0011 4008 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:40:18.0051 4008 Wecsvc - ok
17:40:18.0061 4008 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:40:18.0071 4008 wercplsupport - ok
17:40:18.0091 4008 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:40:18.0121 4008 WerSvc - ok
17:40:18.0151 4008 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:40:18.0161 4008 WfpLwf - ok
17:40:18.0181 4008 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:40:18.0191 4008 WIMMount - ok
17:40:18.0211 4008 WinDefend - ok
17:40:18.0221 4008 WinHttpAutoProxySvc - ok
17:40:18.0271 4008 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:40:18.0281 4008 Winmgmt - ok
17:40:18.0351 4008 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:40:18.0421 4008 WinRM - ok
17:40:18.0461 4008 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:40:18.0521 4008 Wlansvc - ok
17:40:18.0551 4008 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:40:18.0551 4008 WmiAcpi - ok
17:40:18.0571 4008 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:40:18.0591 4008 wmiApSrv - ok
17:40:18.0611 4008 WMPNetworkSvc - ok
17:40:18.0631 4008 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:40:18.0661 4008 WPCSvc - ok
17:40:18.0701 4008 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:40:18.0731 4008 WPDBusEnum - ok
17:40:18.0751 4008 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:40:18.0761 4008 ws2ifsl - ok
17:40:18.0781 4008 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:40:18.0781 4008 wscsvc - ok
17:40:18.0821 4008 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
17:40:18.0831 4008 WSDPrintDevice - ok
17:40:18.0831 4008 WSearch - ok
17:40:18.0921 4008 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:40:19.0011 4008 wuauserv - ok
17:40:19.0031 4008 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:40:19.0061 4008 WudfPf - ok
17:40:19.0111 4008 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:40:19.0161 4008 WUDFRd - ok
17:40:19.0191 4008 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:40:19.0221 4008 wudfsvc - ok
17:40:19.0241 4008 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:40:19.0281 4008 WwanSvc - ok
17:40:19.0381 4008 X6va003 - ok
17:40:19.0411 4008 X6va008 - ok
17:40:19.0501 4008 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
17:40:19.0601 4008 YahooAUService - ok
17:40:19.0631 4008 ================ Scan global ===============================
17:40:19.0651 4008 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:40:19.0691 4008 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
17:40:19.0721 4008 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
17:40:19.0751 4008 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:40:19.0781 4008 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:40:19.0791 4008 [Global] - ok
17:40:19.0791 4008 ================ Scan MBR ==================================
17:40:19.0801 4008 [ 6ACCF3D309471D343311CAE86034C2AB ] \Device\Harddisk0\DR0
17:40:20.0061 4008 \Device\Harddisk0\DR0 - ok
17:40:20.0061 4008 ================ Scan VBR ==================================
17:40:20.0071 4008 [ 8EF6B0691FE64915A73577BDC622FF43 ] \Device\Harddisk0\DR0\Partition1
17:40:20.0071 4008 \Device\Harddisk0\DR0\Partition1 - ok
17:40:20.0101 4008 [ 5D5640F671E5B1BFA91D7293841008AB ] \Device\Harddisk0\DR0\Partition2
17:40:20.0101 4008 \Device\Harddisk0\DR0\Partition2 - ok
17:40:20.0141 4008 [ 36F6FED0DF8474FC92F7B7C249DA3C86 ] \Device\Harddisk0\DR0\Partition3
17:40:20.0141 4008 \Device\Harddisk0\DR0\Partition3 - ok
17:40:20.0141 4008 ============================================================
17:40:20.0141 4008 Scan finished
17:40:20.0141 4008 ============================================================
17:40:20.0161 2724 Detected object count: 0
17:40:20.0161 2724 Actual detected object count: 0


aswMRB log:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-06 17:41:10
-----------------------------
17:41:10.346 OS Version: Windows x64 6.1.7601 Service Pack 1
17:41:10.346 Number of processors: 2 586 0x170A
17:41:10.346 ComputerName: HOMEPC UserName:
17:41:12.104 Initialize success
17:42:15.081 AVAST engine defs: 12100601
17:42:19.001 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000062
17:42:19.001 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3
17:42:19.021 Disk 0 MBR read successfully
17:42:19.021 Disk 0 MBR scan
17:42:19.031 Disk 0 unknown MBR code
17:42:19.051 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
17:42:19.061 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 596807 MB offset 206848
17:42:19.101 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13571 MB offset 1222467584
17:42:19.141 Disk 0 scanning C:\Windows\system32\drivers
17:42:41.021 Service scanning
17:43:01.751 Modules scanning
17:43:01.751 Disk 0 trace - called modules:
17:43:01.781 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll nvstor64.sys
17:43:01.781 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80045b9060]
17:43:01.791 3 CLASSPNP.SYS[fffff8800181743f] -> nt!IofCallDriver -> [0xfffffa80040d24a0]
17:43:01.801 5 ACPI.sys[fffff88000f047a1] -> nt!IofCallDriver -> \Device\00000062[0xfffffa80040d26c0]
17:43:04.682 AVAST engine scan C:\Windows
17:43:11.522 AVAST engine scan C:\Windows\system32
17:49:55.091 AVAST engine scan C:\Windows\system32\drivers
17:50:32.261 AVAST engine scan C:\Users\AmandaMorgan
17:52:56.841 Disk 0 MBR has been saved successfully to "C:\Users\AmandaMorgan\Desktop\clean pc\MBR.dat"
17:52:56.861 The log file has been saved successfully to "C:\Users\AmandaMorgan\Desktop\clean pc\aswMBR10.6.12.txt"

and Malwarebytes log:
Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.06.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
AmandaMorgan :: HOMEPC [administrator]

10/6/2012 5:53:40 PM
mbam-log-2012-10-06 (17-53-40).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 222425
Time elapsed: 30 minute(s), 30 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Users\AmandaMorgan\AppData\Local\Temp\Dealio.exe (PUP.Dealio.TB) -> Quarantined and deleted successfully.

(end)

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,534 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:13 PM

Posted 06 October 2012 - 09:42 PM

Well it appears to be gone. Perhaps it was just left in memory until the reboot.

Run this and see if it stays away.

Run TFC by OT (Temp File Cleaner)
Please download TFC by Old Timer and save it to your desktop.
alternate download link

Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 pringles13

pringles13
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 07 October 2012 - 06:07 PM

Thanks so much for the help with both computers. :clapping: :bowdown:

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,534 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:13 PM

Posted 07 October 2012 - 07:05 PM

You're welcome and thanks for visiting.

If there are no more problems or signs of infection, you should Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Posted Image > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to Posted Image > Run... and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically.
Vista and Windows 7 users can refer to these links:
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users