Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with rootkit.0access


  • Please log in to reply
39 replies to this topic

#1 xm0067

xm0067

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 08:49 PM

Well, I'm sitting pretty on a rootkit and MBAM isn't having any luck, and since most Google searches resulting me being more confused than before (ran into a guide asking me to delete sys32). I'm currently in safe mode with networking, where to go from here?

Thanks in advance!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:38 AM

Posted 01 September 2012 - 08:50 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 08:51 PM

I forgot to mention: win7 64 bit, no recovery media (parent's computer), no windows disk. If it was mine id just reinstall as to not mess with it.

#4 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 08:53 PM

TDSSkiller log:
21:52:13.0225 1864 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
21:52:13.0490 1864 ============================================================
21:52:13.0490 1864 Current date / time: 2012/09/01 21:52:13.0490
21:52:13.0490 1864 SystemInfo:
21:52:13.0490 1864
21:52:13.0490 1864 OS Version: 6.1.7601 ServicePack: 1.0
21:52:13.0490 1864 Product type: Workstation
21:52:13.0490 1864 ComputerName: STRANKO-HP-MAIN
21:52:13.0490 1864 UserName: Stranko
21:52:13.0490 1864 Windows directory: C:\Windows
21:52:13.0490 1864 System windows directory: C:\Windows
21:52:13.0490 1864 Running under WOW64
21:52:13.0490 1864 Processor architecture: Intel x64
21:52:13.0490 1864 Number of processors: 4
21:52:13.0490 1864 Page size: 0x1000
21:52:13.0490 1864 Boot type: Safe boot with network
21:52:13.0490 1864 ============================================================
21:52:13.0865 1864 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:52:13.0880 1864 ============================================================
21:52:13.0880 1864 \Device\Harddisk0\DR0:
21:52:13.0880 1864 MBR partitions:
21:52:13.0880 1864 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:52:13.0880 1864 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x725D3800
21:52:13.0880 1864 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x72606000, BlocksNum 0x2100000
21:52:13.0880 1864 ============================================================
21:52:13.0911 1864 C: <-> \Device\Harddisk0\DR0\Partition2
21:52:13.0943 1864 D: <-> \Device\Harddisk0\DR0\Partition3
21:52:13.0943 1864 ============================================================
21:52:13.0943 1864 Initialize success
21:52:13.0943 1864 ============================================================
21:52:17.0109 1376 ============================================================
21:52:17.0109 1376 Scan started
21:52:17.0109 1376 Mode: Manual;
21:52:17.0109 1376 ============================================================
21:52:17.0390 1376 ================ Scan system memory ========================
21:52:17.0390 1376 System memory - ok
21:52:17.0390 1376 ================ Scan services =============================
21:52:17.0577 1376 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:52:17.0593 1376 1394ohci - ok
21:52:17.0655 1376 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:52:17.0655 1376 ACPI - ok
21:52:17.0702 1376 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:52:17.0702 1376 AcpiPmi - ok
21:52:17.0843 1376 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:52:17.0858 1376 AdobeARMservice - ok
21:52:17.0921 1376 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:52:17.0921 1376 AdobeFlashPlayerUpdateSvc - ok
21:52:17.0967 1376 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:52:17.0967 1376 adp94xx - ok
21:52:17.0983 1376 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:52:17.0983 1376 adpahci - ok
21:52:17.0999 1376 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:52:18.0014 1376 adpu320 - ok
21:52:18.0045 1376 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:52:18.0045 1376 AeLookupSvc - ok
21:52:18.0108 1376 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:52:18.0108 1376 AFD - ok
21:52:18.0123 1376 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:52:18.0123 1376 agp440 - ok
21:52:18.0139 1376 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:52:18.0139 1376 ALG - ok
21:52:18.0155 1376 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:52:18.0155 1376 aliide - ok
21:52:18.0170 1376 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:52:18.0170 1376 amdide - ok
21:52:18.0170 1376 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:52:18.0170 1376 AmdK8 - ok
21:52:18.0186 1376 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
21:52:18.0186 1376 AmdPPM - ok
21:52:18.0201 1376 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:52:18.0201 1376 amdsata - ok
21:52:18.0233 1376 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
21:52:18.0233 1376 amdsbs - ok
21:52:18.0248 1376 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:52:18.0248 1376 amdxata - ok
21:52:18.0279 1376 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:52:18.0279 1376 AppID - ok
21:52:18.0279 1376 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:52:18.0279 1376 AppIDSvc - ok
21:52:18.0295 1376 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:52:18.0295 1376 Appinfo - ok
21:52:18.0326 1376 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:52:18.0326 1376 Apple Mobile Device - ok
21:52:18.0342 1376 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
21:52:18.0342 1376 arc - ok
21:52:18.0357 1376 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:52:18.0357 1376 arcsas - ok
21:52:18.0420 1376 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:52:18.0451 1376 aspnet_state - ok
21:52:18.0467 1376 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:52:18.0467 1376 AsyncMac - ok
21:52:18.0498 1376 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:52:18.0498 1376 atapi - ok
21:52:18.0513 1376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:52:18.0529 1376 AudioEndpointBuilder - ok
21:52:18.0529 1376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:52:18.0529 1376 AudioSrv - ok
21:52:18.0545 1376 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:52:18.0545 1376 AxInstSV - ok
21:52:18.0560 1376 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
21:52:18.0560 1376 b06bdrv - ok
21:52:18.0576 1376 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:52:18.0576 1376 b57nd60a - ok
21:52:18.0591 1376 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:52:18.0591 1376 BDESVC - ok
21:52:18.0591 1376 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:52:18.0591 1376 Beep - ok
21:52:18.0623 1376 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:52:18.0623 1376 blbdrive - ok
21:52:18.0685 1376 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:52:18.0685 1376 Bonjour Service - ok
21:52:18.0716 1376 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:52:18.0732 1376 bowser - ok
21:52:18.0747 1376 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
21:52:18.0747 1376 BrFiltLo - ok
21:52:18.0747 1376 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
21:52:18.0747 1376 BrFiltUp - ok
21:52:18.0779 1376 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
21:52:18.0779 1376 Browser - ok
21:52:18.0779 1376 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:52:18.0794 1376 Brserid - ok
21:52:18.0794 1376 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:52:18.0810 1376 BrSerWdm - ok
21:52:18.0810 1376 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:52:18.0810 1376 BrUsbMdm - ok
21:52:18.0825 1376 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:52:18.0825 1376 BrUsbSer - ok
21:52:18.0841 1376 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:52:18.0841 1376 BTHMODEM - ok
21:52:18.0857 1376 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:52:18.0857 1376 bthserv - ok
21:52:18.0919 1376 [ A3AD13CA2747953DDD4C9AE4FB925BEC ] CalendarSynchService C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
21:52:18.0919 1376 CalendarSynchService - ok
21:52:18.0935 1376 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:52:18.0935 1376 cdfs - ok
21:52:18.0950 1376 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:52:18.0950 1376 cdrom - ok
21:52:18.0966 1376 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:52:18.0966 1376 CertPropSvc - ok
21:52:18.0966 1376 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
21:52:18.0966 1376 circlass - ok
21:52:18.0997 1376 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:52:18.0997 1376 CLFS - ok
21:52:19.0044 1376 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:52:19.0044 1376 clr_optimization_v2.0.50727_32 - ok
21:52:19.0075 1376 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:52:19.0075 1376 clr_optimization_v2.0.50727_64 - ok
21:52:19.0153 1376 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:52:19.0184 1376 clr_optimization_v4.0.30319_32 - ok
21:52:19.0215 1376 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:52:19.0278 1376 clr_optimization_v4.0.30319_64 - ok
21:52:19.0278 1376 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
21:52:19.0278 1376 CmBatt - ok
21:52:19.0293 1376 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:52:19.0293 1376 cmdide - ok
21:52:19.0325 1376 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:52:19.0325 1376 CNG - ok
21:52:19.0340 1376 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
21:52:19.0340 1376 Compbatt - ok
21:52:19.0356 1376 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:52:19.0356 1376 CompositeBus - ok
21:52:19.0356 1376 COMSysApp - ok
21:52:19.0371 1376 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:52:19.0371 1376 crcdisk - ok
21:52:19.0403 1376 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:52:19.0403 1376 CryptSvc - ok
21:52:19.0418 1376 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:52:19.0512 1376 DcomLaunch - ok
21:52:19.0543 1376 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:52:19.0543 1376 defragsvc - ok
21:52:19.0590 1376 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:52:19.0590 1376 DfsC - ok
21:52:19.0605 1376 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:52:19.0621 1376 Dhcp - ok
21:52:19.0621 1376 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:52:19.0621 1376 discache - ok
21:52:19.0637 1376 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
21:52:19.0637 1376 Disk - ok
21:52:19.0652 1376 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:52:19.0668 1376 Dnscache - ok
21:52:19.0668 1376 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:52:19.0683 1376 dot3svc - ok
21:52:19.0683 1376 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:52:19.0683 1376 DPS - ok
21:52:19.0715 1376 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:52:19.0715 1376 drmkaud - ok
21:52:19.0730 1376 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:52:19.0746 1376 DXGKrnl - ok
21:52:19.0746 1376 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:52:19.0746 1376 EapHost - ok
21:52:19.0793 1376 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
21:52:19.0839 1376 ebdrv - ok
21:52:19.0855 1376 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:52:19.0855 1376 EFS - ok
21:52:19.0902 1376 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:52:19.0902 1376 ehRecvr - ok
21:52:19.0933 1376 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:52:19.0933 1376 ehSched - ok
21:52:19.0949 1376 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:52:19.0949 1376 elxstor - ok
21:52:19.0995 1376 [ B5581646636759D0DAFA8B008881C079 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
21:52:20.0027 1376 EPSON_EB_RPCV4_01 - ok
21:52:20.0042 1376 [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
21:52:20.0042 1376 EPSON_PM_RPCV4_01 - ok
21:52:20.0058 1376 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:52:20.0058 1376 ErrDev - ok
21:52:20.0089 1376 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:52:20.0089 1376 EventSystem - ok
21:52:20.0105 1376 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:52:20.0105 1376 exfat - ok
21:52:20.0120 1376 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:52:20.0120 1376 fastfat - ok
21:52:20.0136 1376 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:52:20.0136 1376 Fax - ok
21:52:20.0151 1376 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
21:52:20.0151 1376 fdc - ok
21:52:20.0167 1376 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:52:20.0167 1376 fdPHost - ok
21:52:20.0183 1376 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:52:20.0183 1376 FDResPub - ok
21:52:20.0183 1376 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:52:20.0183 1376 FileInfo - ok
21:52:20.0198 1376 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:52:20.0198 1376 Filetrace - ok
21:52:20.0214 1376 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
21:52:20.0214 1376 flpydisk - ok
21:52:20.0214 1376 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:52:20.0229 1376 FltMgr - ok
21:52:20.0261 1376 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
21:52:20.0276 1376 FontCache - ok
21:52:20.0323 1376 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:52:20.0323 1376 FontCache3.0.0.0 - ok
21:52:20.0339 1376 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:52:20.0339 1376 FsDepends - ok
21:52:20.0354 1376 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:52:20.0354 1376 Fs_Rec - ok
21:52:20.0354 1376 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:52:20.0370 1376 fvevol - ok
21:52:20.0370 1376 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:52:20.0370 1376 gagp30kx - ok
21:52:20.0385 1376 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:52:20.0385 1376 GEARAspiWDM - ok
21:52:20.0417 1376 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:52:20.0417 1376 gpsvc - ok
21:52:20.0432 1376 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:52:20.0432 1376 hcw85cir - ok
21:52:20.0448 1376 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:52:20.0448 1376 HdAudAddService - ok
21:52:20.0479 1376 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:52:20.0479 1376 HDAudBus - ok
21:52:20.0479 1376 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
21:52:20.0479 1376 HidBatt - ok
21:52:20.0495 1376 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:52:20.0495 1376 HidBth - ok
21:52:20.0510 1376 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
21:52:20.0510 1376 HidIr - ok
21:52:20.0526 1376 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:52:20.0526 1376 hidserv - ok
21:52:20.0541 1376 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:52:20.0541 1376 HidUsb - ok
21:52:20.0604 1376 [ FD1837DEE0A1D7F180D7B301C0656511 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
21:52:20.0619 1376 HiPatchService - ok
21:52:20.0635 1376 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:52:20.0635 1376 hkmsvc - ok
21:52:20.0651 1376 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:52:20.0666 1376 HomeGroupListener - ok
21:52:20.0682 1376 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:52:20.0682 1376 HomeGroupProvider - ok
21:52:20.0729 1376 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
21:52:20.0729 1376 HP Support Assistant Service - ok
21:52:20.0760 1376 [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
21:52:20.0775 1376 HPClientSvc - ok
21:52:20.0775 1376 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
21:52:20.0775 1376 HPDrvMntSvc.exe - ok
21:52:20.0807 1376 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
21:52:20.0822 1376 hpqwmiex - ok
21:52:20.0822 1376 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:52:20.0838 1376 HpSAMD - ok
21:52:20.0853 1376 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:52:20.0853 1376 HTTP - ok
21:52:20.0869 1376 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:52:20.0869 1376 hwpolicy - ok
21:52:20.0869 1376 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:52:20.0869 1376 i8042prt - ok
21:52:20.0916 1376 [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor C:\Windows\system32\drivers\iaStor.sys
21:52:20.0916 1376 iaStor - ok
21:52:20.0931 1376 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:52:20.0947 1376 iaStorV - ok
21:52:20.0978 1376 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:52:20.0994 1376 idsvc - ok
21:52:21.0150 1376 [ EFE5A0AF39A8E179624117C521F1E012 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
21:52:21.0321 1376 igfx - ok
21:52:21.0353 1376 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:52:21.0353 1376 iirsp - ok
21:52:21.0384 1376 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:52:21.0384 1376 IKEEXT - ok
21:52:21.0399 1376 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys
21:52:21.0399 1376 Impcd - ok
21:52:21.0462 1376 [ 392D5C87F282E8E36DF5154418A7BB20 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:52:21.0493 1376 IntcAzAudAddService - ok
21:52:21.0509 1376 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:52:21.0509 1376 intelide - ok
21:52:21.0540 1376 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
21:52:21.0540 1376 intelppm - ok
21:52:21.0555 1376 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:52:21.0555 1376 IPBusEnum - ok
21:52:21.0555 1376 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:52:21.0571 1376 IpFilterDriver - ok
21:52:21.0587 1376 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:52:21.0587 1376 IPMIDRV - ok
21:52:21.0602 1376 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:52:21.0618 1376 IPNAT - ok
21:52:21.0649 1376 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:52:21.0665 1376 iPod Service - ok
21:52:21.0680 1376 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:52:21.0680 1376 IRENUM - ok
21:52:21.0696 1376 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:52:21.0696 1376 isapnp - ok
21:52:21.0696 1376 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:52:21.0711 1376 iScsiPrt - ok
21:52:21.0758 1376 [ 5A9894E80575647DC77A7D1954B05CE7 ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
21:52:21.0758 1376 jhi_service - ok
21:52:21.0774 1376 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:52:21.0774 1376 kbdclass - ok
21:52:21.0789 1376 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:52:21.0789 1376 kbdhid - ok
21:52:21.0789 1376 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:52:21.0789 1376 KeyIso - ok
21:52:21.0821 1376 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:52:21.0821 1376 KSecDD - ok
21:52:21.0821 1376 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:52:21.0821 1376 KSecPkg - ok
21:52:21.0836 1376 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:52:21.0836 1376 ksthunk - ok
21:52:21.0852 1376 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:52:21.0852 1376 KtmRm - ok
21:52:21.0883 1376 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:52:21.0883 1376 LanmanServer - ok
21:52:21.0883 1376 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:52:21.0883 1376 LanmanWorkstation - ok
21:52:21.0914 1376 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:52:21.0914 1376 lltdio - ok
21:52:21.0930 1376 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:52:21.0930 1376 lltdsvc - ok
21:52:21.0945 1376 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:52:21.0945 1376 lmhosts - ok
21:52:21.0977 1376 [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:52:21.0977 1376 LMS - ok
21:52:21.0992 1376 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:52:21.0992 1376 LSI_FC - ok
21:52:22.0008 1376 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:52:22.0008 1376 LSI_SAS - ok
21:52:22.0023 1376 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
21:52:22.0023 1376 LSI_SAS2 - ok
21:52:22.0039 1376 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:52:22.0039 1376 LSI_SCSI - ok
21:52:22.0055 1376 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:52:22.0055 1376 luafv - ok
21:52:22.0070 1376 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:52:22.0070 1376 Mcx2Svc - ok
21:52:22.0101 1376 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
21:52:22.0101 1376 megasas - ok
21:52:22.0117 1376 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
21:52:22.0117 1376 MegaSR - ok
21:52:22.0117 1376 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\drivers\HECIx64.sys
21:52:22.0117 1376 MEIx64 - ok
21:52:22.0195 1376 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
21:52:22.0195 1376 Microsoft Office Groove Audit Service - ok
21:52:22.0211 1376 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:52:22.0211 1376 MMCSS - ok
21:52:22.0226 1376 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:52:22.0226 1376 Modem - ok
21:52:22.0257 1376 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:52:22.0257 1376 monitor - ok
21:52:22.0273 1376 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:52:22.0273 1376 mouclass - ok
21:52:22.0273 1376 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:52:22.0273 1376 mouhid - ok
21:52:22.0289 1376 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:52:22.0289 1376 mountmgr - ok
21:52:22.0335 1376 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:52:22.0335 1376 MozillaMaintenance - ok
21:52:22.0335 1376 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:52:22.0335 1376 mpio - ok
21:52:22.0367 1376 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:52:22.0367 1376 mpsdrv - ok
21:52:22.0367 1376 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:52:22.0382 1376 MRxDAV - ok
21:52:22.0398 1376 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:52:22.0398 1376 mrxsmb - ok
21:52:22.0429 1376 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:52:22.0429 1376 mrxsmb10 - ok
21:52:22.0429 1376 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:52:22.0445 1376 mrxsmb20 - ok
21:52:22.0445 1376 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:52:22.0445 1376 msahci - ok
21:52:22.0460 1376 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:52:22.0460 1376 msdsm - ok
21:52:22.0491 1376 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:52:22.0491 1376 MSDTC - ok
21:52:22.0507 1376 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:52:22.0507 1376 Msfs - ok
21:52:22.0523 1376 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:52:22.0523 1376 mshidkmdf - ok
21:52:22.0523 1376 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:52:22.0538 1376 msisadrv - ok
21:52:22.0569 1376 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:52:22.0569 1376 MSiSCSI - ok
21:52:22.0569 1376 msiserver - ok
21:52:22.0585 1376 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:52:22.0585 1376 MSKSSRV - ok
21:52:22.0585 1376 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:52:22.0585 1376 MSPCLOCK - ok
21:52:22.0601 1376 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:52:22.0601 1376 MSPQM - ok
21:52:22.0616 1376 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:52:22.0616 1376 MsRPC - ok
21:52:22.0632 1376 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:52:22.0632 1376 mssmbios - ok
21:52:22.0647 1376 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:52:22.0647 1376 MSTEE - ok
21:52:22.0663 1376 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
21:52:22.0663 1376 MTConfig - ok
21:52:22.0679 1376 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:52:22.0679 1376 Mup - ok
21:52:22.0694 1376 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:52:22.0694 1376 napagent - ok
21:52:22.0725 1376 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:52:22.0725 1376 NativeWifiP - ok
21:52:22.0757 1376 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
21:52:22.0757 1376 NDIS - ok
21:52:22.0772 1376 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:52:22.0772 1376 NdisCap - ok
21:52:22.0803 1376 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:52:22.0803 1376 NdisTapi - ok
21:52:22.0803 1376 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:52:22.0803 1376 Ndisuio - ok
21:52:22.0819 1376 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:52:22.0819 1376 NdisWan - ok
21:52:22.0835 1376 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:52:22.0835 1376 NDProxy - ok
21:52:22.0835 1376 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:52:22.0835 1376 NetBIOS - ok
21:52:22.0850 1376 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:52:22.0850 1376 NetBT - ok
21:52:22.0850 1376 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:52:22.0850 1376 Netlogon - ok
21:52:22.0866 1376 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:52:22.0881 1376 Netman - ok
21:52:22.0897 1376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:52:22.0944 1376 NetMsmqActivator - ok
21:52:22.0959 1376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:52:22.0959 1376 NetPipeActivator - ok
21:52:22.0975 1376 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:52:22.0991 1376 netprofm - ok
21:52:23.0037 1376 [ 570813483F26B5C8D984BCA5BB70B50D ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
21:52:23.0037 1376 netr28x - ok
21:52:23.0037 1376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:52:23.0037 1376 NetTcpActivator - ok
21:52:23.0037 1376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:52:23.0037 1376 NetTcpPortSharing - ok
21:52:23.0053 1376 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:52:23.0053 1376 nfrd960 - ok
21:52:23.0069 1376 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:52:23.0069 1376 NlaSvc - ok
21:52:23.0069 1376 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:52:23.0084 1376 Npfs - ok
21:52:23.0084 1376 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:52:23.0084 1376 nsi - ok
21:52:23.0100 1376 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:52:23.0100 1376 nsiproxy - ok
21:52:23.0131 1376 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:52:23.0162 1376 Ntfs - ok
21:52:23.0178 1376 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:52:23.0193 1376 Null - ok
21:52:23.0225 1376 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:52:23.0240 1376 nvraid - ok
21:52:23.0256 1376 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:52:23.0256 1376 nvstor - ok
21:52:23.0271 1376 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:52:23.0271 1376 nv_agp - ok
21:52:23.0365 1376 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:52:23.0365 1376 odserv - ok
21:52:23.0381 1376 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:52:23.0381 1376 ohci1394 - ok
21:52:23.0396 1376 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:52:23.0396 1376 ose - ok
21:52:23.0412 1376 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:52:23.0412 1376 p2pimsvc - ok
21:52:23.0427 1376 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:52:23.0427 1376 p2psvc - ok
21:52:23.0443 1376 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
21:52:23.0443 1376 Parport - ok
21:52:23.0490 1376 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:52:23.0490 1376 partmgr - ok
21:52:23.0505 1376 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:52:23.0505 1376 PcaSvc - ok
21:52:23.0521 1376 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:52:23.0521 1376 pci - ok
21:52:23.0537 1376 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:52:23.0537 1376 pciide - ok
21:52:23.0568 1376 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:52:23.0568 1376 pcmcia - ok
21:52:23.0568 1376 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:52:23.0568 1376 pcw - ok
21:52:23.0599 1376 pdfcDispatcher - ok
21:52:23.0615 1376 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:52:23.0630 1376 PEAUTH - ok
21:52:23.0661 1376 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:52:23.0708 1376 PerfHost - ok
21:52:23.0739 1376 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:52:23.0755 1376 pla - ok
21:52:23.0802 1376 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:52:23.0802 1376 PlugPlay - ok
21:52:23.0817 1376 [ 0BEE791C7C7ACE453C134E73633C497D ] pmxdrv C:\Windows\system32\drivers\pmxdrv.sys
21:52:23.0817 1376 pmxdrv - ok
21:52:23.0833 1376 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:52:23.0833 1376 PNRPAutoReg - ok
21:52:23.0849 1376 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:52:23.0849 1376 PNRPsvc - ok
21:52:23.0880 1376 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:52:23.0880 1376 PolicyAgent - ok
21:52:23.0895 1376 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:52:23.0895 1376 Power - ok
21:52:23.0927 1376 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:52:23.0927 1376 PptpMiniport - ok
21:52:23.0942 1376 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
21:52:23.0942 1376 Processor - ok
21:52:23.0958 1376 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
21:52:23.0958 1376 ProfSvc - ok
21:52:23.0958 1376 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:52:23.0958 1376 ProtectedStorage - ok
21:52:23.0989 1376 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:52:23.0989 1376 Psched - ok
21:52:24.0020 1376 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:52:24.0051 1376 ql2300 - ok
21:52:24.0067 1376 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:52:24.0067 1376 ql40xx - ok
21:52:24.0083 1376 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:52:24.0083 1376 QWAVE - ok
21:52:24.0098 1376 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:52:24.0098 1376 QWAVEdrv - ok
21:52:24.0114 1376 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:52:24.0114 1376 RasAcd - ok
21:52:24.0129 1376 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:52:24.0129 1376 RasAgileVpn - ok
21:52:24.0129 1376 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:52:24.0129 1376 RasAuto - ok
21:52:24.0129 1376 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:52:24.0145 1376 Rasl2tp - ok
21:52:24.0145 1376 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:52:24.0161 1376 RasMan - ok
21:52:24.0176 1376 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:52:24.0176 1376 RasPppoe - ok
21:52:24.0192 1376 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:52:24.0192 1376 RasSstp - ok
21:52:24.0223 1376 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:52:24.0223 1376 rdbss - ok
21:52:24.0239 1376 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
21:52:24.0239 1376 rdpbus - ok
21:52:24.0254 1376 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:52:24.0270 1376 RDPCDD - ok
21:52:24.0285 1376 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:52:24.0301 1376 RDPENCDD - ok
21:52:24.0301 1376 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:52:24.0301 1376 RDPREFMP - ok
21:52:24.0332 1376 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:52:24.0332 1376 RDPWD - ok
21:52:24.0348 1376 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:52:24.0348 1376 rdyboost - ok
21:52:24.0379 1376 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:52:24.0379 1376 RemoteAccess - ok
21:52:24.0395 1376 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:52:24.0395 1376 RemoteRegistry - ok
21:52:24.0410 1376 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:52:24.0410 1376 RpcEptMapper - ok
21:52:24.0410 1376 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:52:24.0426 1376 RpcLocator - ok
21:52:24.0441 1376 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:52:24.0441 1376 RpcSs - ok
21:52:24.0457 1376 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:52:24.0457 1376 rspndr - ok
21:52:24.0488 1376 [ E50CFB92986DCAB49DE93788FD695813 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
21:52:24.0488 1376 RTL8167 - ok
21:52:24.0519 1376 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:52:24.0519 1376 SamSs - ok
21:52:24.0535 1376 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:52:24.0535 1376 sbp2port - ok
21:52:24.0551 1376 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:52:24.0551 1376 SCardSvr - ok
21:52:24.0551 1376 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:52:24.0551 1376 scfilter - ok
21:52:24.0582 1376 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:52:24.0597 1376 Schedule - ok
21:52:24.0613 1376 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:52:24.0613 1376 SCPolicySvc - ok
21:52:24.0629 1376 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:52:24.0629 1376 SDRSVC - ok
21:52:24.0629 1376 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:52:24.0644 1376 secdrv - ok
21:52:24.0644 1376 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:52:24.0644 1376 seclogon - ok
21:52:24.0660 1376 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:52:24.0660 1376 SENS - ok
21:52:24.0660 1376 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:52:24.0675 1376 SensrSvc - ok
21:52:24.0675 1376 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
21:52:24.0675 1376 Serenum - ok
21:52:24.0691 1376 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
21:52:24.0691 1376 Serial - ok
21:52:24.0707 1376 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:52:24.0707 1376 sermouse - ok
21:52:24.0722 1376 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:52:24.0722 1376 SessionEnv - ok
21:52:24.0738 1376 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:52:24.0738 1376 sffdisk - ok
21:52:24.0753 1376 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:52:24.0753 1376 sffp_mmc - ok
21:52:24.0769 1376 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:52:24.0769 1376 sffp_sd - ok
21:52:24.0785 1376 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:52:24.0785 1376 sfloppy - ok
21:52:24.0800 1376 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:52:24.0800 1376 ShellHWDetection - ok
21:52:24.0831 1376 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
21:52:24.0831 1376 SiSRaid2 - ok
21:52:24.0831 1376 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:52:24.0831 1376 SiSRaid4 - ok
21:52:24.0878 1376 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:52:24.0878 1376 SkypeUpdate - ok
21:52:24.0894 1376 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:52:24.0894 1376 Smb - ok
21:52:24.0925 1376 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:52:24.0925 1376 SNMPTRAP - ok
21:52:24.0925 1376 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:52:24.0925 1376 spldr - ok
21:52:24.0956 1376 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
21:52:24.0956 1376 Spooler - ok
21:52:25.0003 1376 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:52:25.0050 1376 sppsvc - ok
21:52:25.0065 1376 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:52:25.0065 1376 sppuinotify - ok
21:52:25.0097 1376 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:52:25.0097 1376 srv - ok
21:52:25.0112 1376 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:52:25.0112 1376 srv2 - ok
21:52:25.0143 1376 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:52:25.0143 1376 srvnet - ok
21:52:25.0159 1376 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:52:25.0159 1376 SSDPSRV - ok
21:52:25.0159 1376 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:52:25.0175 1376 SstpSvc - ok
21:52:25.0206 1376 Steam Client Service - ok
21:52:25.0221 1376 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
21:52:25.0221 1376 stexstor - ok
21:52:25.0237 1376 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:52:25.0253 1376 stisvc - ok
21:52:25.0268 1376 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:52:25.0268 1376 swenum - ok
21:52:25.0284 1376 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:52:25.0284 1376 swprv - ok
21:52:25.0315 1376 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:52:25.0346 1376 SysMain - ok
21:52:25.0346 1376 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:52:25.0362 1376 TabletInputService - ok
21:52:25.0362 1376 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:52:25.0362 1376 TapiSrv - ok
21:52:25.0377 1376 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:52:25.0377 1376 TBS - ok
21:52:25.0424 1376 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:52:25.0455 1376 Tcpip - ok
21:52:25.0502 1376 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:52:25.0502 1376 TCPIP6 - ok
21:52:25.0518 1376 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:52:25.0518 1376 tcpipreg - ok
21:52:25.0533 1376 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:52:25.0533 1376 TDPIPE - ok
21:52:25.0565 1376 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:52:25.0565 1376 TDTCP - ok
21:52:25.0565 1376 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:52:25.0580 1376 tdx - ok
21:52:25.0580 1376 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:52:25.0580 1376 TermDD - ok
21:52:25.0596 1376 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:52:25.0596 1376 TermService - ok
21:52:25.0611 1376 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:52:25.0611 1376 Themes - ok
21:52:25.0643 1376 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:52:25.0643 1376 THREADORDER - ok
21:52:25.0643 1376 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:52:25.0658 1376 TrkWks - ok
21:52:25.0689 1376 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:52:25.0689 1376 TrustedInstaller - ok
21:52:25.0705 1376 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:52:25.0705 1376 tssecsrv - ok
21:52:25.0705 1376 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:52:25.0705 1376 TsUsbFlt - ok
21:52:25.0721 1376 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
21:52:25.0721 1376 TsUsbGD - ok
21:52:25.0736 1376 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:52:25.0752 1376 tunnel - ok
21:52:25.0767 1376 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:52:25.0767 1376 uagp35 - ok
21:52:25.0783 1376 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:52:25.0783 1376 udfs - ok
21:52:25.0799 1376 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:52:25.0799 1376 UI0Detect - ok
21:52:25.0814 1376 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:52:25.0814 1376 uliagpkx - ok
21:52:25.0830 1376 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:52:25.0830 1376 umbus - ok
21:52:25.0845 1376 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
21:52:25.0845 1376 UmPass - ok
21:52:25.0939 1376 [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:52:25.0970 1376 UNS - ok
21:52:25.0986 1376 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:52:25.0986 1376 upnphost - ok
21:52:26.0017 1376 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:52:26.0017 1376 USBAAPL64 - ok
21:52:26.0064 1376 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:52:26.0064 1376 usbaudio - ok
21:52:26.0064 1376 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:52:26.0064 1376 usbccgp - ok
21:52:26.0095 1376 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:52:26.0095 1376 usbcir - ok
21:52:26.0111 1376 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
21:52:26.0111 1376 usbehci - ok
21:52:26.0126 1376 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\drivers\usbhub.sys
21:52:26.0126 1376 usbhub - ok
21:52:26.0142 1376 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:52:26.0142 1376 usbohci - ok
21:52:26.0173 1376 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:52:26.0173 1376 usbprint - ok
21:52:26.0189 1376 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:52:26.0189 1376 usbscan - ok
21:52:26.0204 1376 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:52:26.0204 1376 USBSTOR - ok
21:52:26.0220 1376 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:52:26.0220 1376 usbuhci - ok
21:52:26.0235 1376 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:52:26.0235 1376 usbvideo - ok
21:52:26.0251 1376 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:52:26.0251 1376 UxSms - ok
21:52:26.0251 1376 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:52:26.0251 1376 VaultSvc - ok
21:52:26.0267 1376 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:52:26.0267 1376 vdrvroot - ok
21:52:26.0282 1376 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:52:26.0282 1376 vds - ok
21:52:26.0298 1376 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:52:26.0298 1376 vga - ok
21:52:26.0313 1376 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:52:26.0329 1376 VgaSave - ok
21:52:26.0329 1376 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:52:26.0329 1376 vhdmp - ok
21:52:26.0360 1376 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:52:26.0360 1376 viaide - ok
21:52:26.0423 1376 [ 49C122513203B98B0B2C10211F23450B ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
21:52:26.0423 1376 VIPAppService - ok
21:52:26.0423 1376 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:52:26.0423 1376 volmgr - ok
21:52:26.0438 1376 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:52:26.0438 1376 volmgrx - ok
21:52:26.0454 1376 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:52:26.0454 1376 volsnap - ok
21:52:26.0469 1376 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:52:26.0469 1376 vsmraid - ok
21:52:26.0501 1376 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:52:26.0532 1376 VSS - ok
21:52:26.0532 1376 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:52:26.0532 1376 vwifibus - ok
21:52:26.0547 1376 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:52:26.0547 1376 vwififlt - ok
21:52:26.0563 1376 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:52:26.0563 1376 W32Time - ok
21:52:26.0563 1376 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:52:26.0563 1376 WacomPen - ok
21:52:26.0594 1376 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:52:26.0594 1376 WANARP - ok
21:52:26.0594 1376 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:52:26.0594 1376 Wanarpv6 - ok
21:52:26.0641 1376 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:52:26.0657 1376 WatAdminSvc - ok
21:52:26.0688 1376 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:52:26.0703 1376 wbengine - ok
21:52:26.0719 1376 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:52:26.0719 1376 WbioSrvc - ok
21:52:26.0735 1376 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:52:26.0735 1376 wcncsvc - ok
21:52:26.0735 1376 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:52:26.0750 1376 WcsPlugInService - ok
21:52:26.0750 1376 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
21:52:26.0750 1376 Wd - ok
21:52:26.0781 1376 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:52:26.0781 1376 Wdf01000 - ok
21:52:26.0797 1376 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:52:26.0797 1376 WdiServiceHost - ok
21:52:26.0797 1376 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:52:26.0797 1376 WdiSystemHost - ok
21:52:26.0813 1376 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:52:26.0813 1376 WebClient - ok
21:52:26.0828 1376 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:52:26.0828 1376 Wecsvc - ok
21:52:26.0828 1376 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:52:26.0844 1376 wercplsupport - ok
21:52:26.0859 1376 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:52:26.0859 1376 WerSvc - ok
21:52:26.0859 1376 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:52:26.0859 1376 WfpLwf - ok
21:52:26.0875 1376 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:52:26.0875 1376 WIMMount - ok
21:52:26.0875 1376 WinHttpAutoProxySvc - ok
21:52:26.0922 1376 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:52:26.0922 1376 Winmgmt - ok
21:52:26.0969 1376 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:52:27.0000 1376 WinRM - ok
21:52:27.0062 1376 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:52:27.0062 1376 WinUsb - ok
21:52:27.0078 1376 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:52:27.0093 1376 Wlansvc - ok
21:52:27.0156 1376 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:52:27.0156 1376 wlcrasvc - ok
21:52:27.0218 1376 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:52:27.0265 1376 wlidsvc - ok
21:52:27.0281 1376 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:52:27.0281 1376 WmiAcpi - ok
21:52:27.0296 1376 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:52:27.0296 1376 wmiApSrv - ok
21:52:27.0312 1376 WMPNetworkSvc - ok
21:52:27.0312 1376 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:52:27.0312 1376 WPCSvc - ok
21:52:27.0327 1376 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:52:27.0327 1376 WPDBusEnum - ok
21:52:27.0327 1376 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:52:27.0327 1376 ws2ifsl - ok
21:52:27.0343 1376 WSearch - ok
21:52:27.0343 1376 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:52:27.0359 1376 WudfPf - ok
21:52:27.0359 1376 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:52:27.0359 1376 WUDFRd - ok
21:52:27.0374 1376 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:52:27.0374 1376 wudfsvc - ok
21:52:27.0374 1376 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:52:27.0421 1376 WwanSvc - ok
21:52:27.0452 1376 ================ Scan global ===============================
21:52:27.0468 1376 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:52:27.0483 1376 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
21:52:27.0499 1376 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
21:52:27.0499 1376 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:52:27.0530 1376 [ 014A9CB92514E27C0107614DF764BC06 ] C:\Windows\system32\services.exe
21:52:27.0530 1376 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
21:52:27.0530 1376 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
21:52:27.0530 1376 ================ Scan MBR ==================================
21:52:27.0546 1376 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:52:27.0655 1376 \Device\Harddisk0\DR0 - ok
21:52:27.0655 1376 ================ Scan VBR ==================================
21:52:27.0655 1376 [ F3B4D6057950DC9C05D646F10EE96A7F ] \Device\Harddisk0\DR0\Partition1
21:52:27.0655 1376 \Device\Harddisk0\DR0\Partition1 - ok
21:52:27.0655 1376 [ E73E158F7120EDCE3175E60ECA757435 ] \Device\Harddisk0\DR0\Partition2
21:52:27.0655 1376 \Device\Harddisk0\DR0\Partition2 - ok
21:52:27.0686 1376 [ 6D7466391DB97192E50ECEBE865BA8BE ] \Device\Harddisk0\DR0\Partition3
21:52:27.0686 1376 \Device\Harddisk0\DR0\Partition3 - ok
21:52:27.0686 1376 ============================================================
21:52:27.0686 1376 Scan finished
21:52:27.0686 1376 ============================================================
21:52:27.0702 1276 Detected object count: 1
21:52:27.0702 1276 Actual detected object count: 1

#5 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 08:57 PM

By the way, thank you for your help.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:38 AM

Posted 01 September 2012 - 08:57 PM

21:52:27.0530 1376 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected


Do not skip it.Make sure to remove the infection

#7 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 09:02 PM

I neglected to change it to TDLFS, important?

Also, is it "copy all to quarantine"?

awsMBR log:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-01 21:54:08
-----------------------------
21:54:08.431 OS Version: Windows x64 6.1.7601 Service Pack 1
21:54:08.431 Number of processors: 4 586 0x2A07
21:54:08.431 ComputerName: STRANKO-HP-MAIN UserName: Stranko
21:54:09.211 Initialize success
21:54:45.856 AVAST engine defs: 12090101
21:54:50.395 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:54:50.395 Disk 0 Vendor: ST310005 HP64 Size: 953869MB BusType: 3
21:54:50.411 Disk 0 MBR read successfully
21:54:50.411 Disk 0 MBR scan
21:54:50.411 Disk 0 Windows 7 default MBR code
21:54:50.426 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
21:54:50.442 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 936871 MB offset 206848
21:54:50.473 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 16896 MB offset 1918918656
21:54:50.504 Disk 0 scanning C:\Windows\system32\drivers
21:54:57.977 Service scanning
21:55:09.942 Modules scanning
21:55:09.942 Disk 0 trace - called modules:
21:55:09.973 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
21:55:10.488 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008fc8790]
21:55:10.504 3 CLASSPNP.SYS[fffff88001a5143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007ad7050]
21:55:11.564 AVAST engine scan C:\Windows
21:55:13.031 AVAST engine scan C:\Windows\system32
21:56:01.344 File: C:\Windows\system32\services.exe **INFECTED** Win32:Patched-AKC [Trj]
21:57:17.628 AVAST engine scan C:\Windows\system32\drivers
21:57:26.489 AVAST engine scan C:\Users\Stranko
21:58:31.104 AVAST engine scan C:\ProgramData
21:59:25.970 Scan finished successfully
22:00:11.678 Disk 0 MBR has been saved successfully to "C:\Users\Stranko\Documents\MBR.dat"
22:00:11.693 The log file has been saved successfully to "C:\Users\Stranko\Documents\aswMBR.txt"

#8 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 09:07 PM

Anyone?

#9 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 09:12 PM

ESET is scanning but TDSS is prompting reboot, what do?

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:38 AM

Posted 01 September 2012 - 09:12 PM

I neglected to change it to TDLFS, important?

Also, is it "copy all to quarantine"?


Run TDSSkiller and CURE this infection

21:52:27.0530 1376 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected

Post the new tdsskiller log

Anyone?


????

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:38 AM

Posted 01 September 2012 - 09:13 PM

ESET is scanning but TDSS is prompting reboot, what do?


Click on Reboot later.

#12 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 09:15 PM

I already hit reboot. Crap. Well more things to run then :/ should I redo aswMBR?

#13 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 09:18 PM

New TDSS log: clean

22:16:28.0229 2044 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:16:28.0510 2044 ============================================================
22:16:28.0510 2044 Current date / time: 2012/09/01 22:16:28.0510
22:16:28.0510 2044 SystemInfo:
22:16:28.0510 2044
22:16:28.0510 2044 OS Version: 6.1.7601 ServicePack: 1.0
22:16:28.0510 2044 Product type: Workstation
22:16:28.0510 2044 ComputerName: STRANKO-HP-MAIN
22:16:28.0510 2044 UserName: Stranko
22:16:28.0510 2044 Windows directory: C:\Windows
22:16:28.0510 2044 System windows directory: C:\Windows
22:16:28.0510 2044 Running under WOW64
22:16:28.0510 2044 Processor architecture: Intel x64
22:16:28.0510 2044 Number of processors: 4
22:16:28.0510 2044 Page size: 0x1000
22:16:28.0510 2044 Boot type: Safe boot with network
22:16:28.0510 2044 ============================================================
22:16:29.0118 2044 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:16:29.0149 2044 ============================================================
22:16:29.0149 2044 \Device\Harddisk0\DR0:
22:16:29.0149 2044 MBR partitions:
22:16:29.0149 2044 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:16:29.0149 2044 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x725D3800
22:16:29.0149 2044 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x72606000, BlocksNum 0x2100000
22:16:29.0149 2044 ============================================================
22:16:29.0165 2044 C: <-> \Device\Harddisk0\DR0\Partition2
22:16:29.0212 2044 D: <-> \Device\Harddisk0\DR0\Partition3
22:16:29.0212 2044 ============================================================
22:16:29.0212 2044 Initialize success
22:16:29.0212 2044 ============================================================
22:16:38.0962 1140 ============================================================
22:16:38.0962 1140 Scan started
22:16:38.0962 1140 Mode: Manual; TDLFS;
22:16:38.0962 1140 ============================================================
22:16:39.0352 1140 ================ Scan system memory ========================
22:16:39.0352 1140 System memory - ok
22:16:39.0352 1140 ================ Scan services =============================
22:16:39.0523 1140 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:16:39.0539 1140 1394ohci - ok
22:16:39.0539 1140 97238043 - ok
22:16:39.0570 1140 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:16:39.0586 1140 ACPI - ok
22:16:39.0586 1140 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:16:39.0601 1140 AcpiPmi - ok
22:16:39.0804 1140 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:16:39.0804 1140 AdobeARMservice - ok
22:16:39.0898 1140 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:16:39.0929 1140 AdobeFlashPlayerUpdateSvc - ok
22:16:39.0960 1140 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:16:39.0960 1140 adp94xx - ok
22:16:39.0976 1140 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:16:39.0976 1140 adpahci - ok
22:16:40.0007 1140 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:16:40.0007 1140 adpu320 - ok
22:16:40.0069 1140 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:16:40.0069 1140 AeLookupSvc - ok
22:16:40.0116 1140 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:16:40.0116 1140 AFD - ok
22:16:40.0147 1140 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:16:40.0147 1140 agp440 - ok
22:16:40.0163 1140 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:16:40.0163 1140 ALG - ok
22:16:40.0179 1140 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:16:40.0179 1140 aliide - ok
22:16:40.0194 1140 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:16:40.0194 1140 amdide - ok
22:16:40.0210 1140 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:16:40.0210 1140 AmdK8 - ok
22:16:40.0225 1140 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
22:16:40.0225 1140 AmdPPM - ok
22:16:40.0241 1140 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:16:40.0241 1140 amdsata - ok
22:16:40.0272 1140 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
22:16:40.0272 1140 amdsbs - ok
22:16:40.0288 1140 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:16:40.0288 1140 amdxata - ok
22:16:40.0303 1140 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:16:40.0303 1140 AppID - ok
22:16:40.0319 1140 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:16:40.0319 1140 AppIDSvc - ok
22:16:40.0335 1140 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:16:40.0335 1140 Appinfo - ok
22:16:40.0366 1140 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:16:40.0366 1140 Apple Mobile Device - ok
22:16:40.0381 1140 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
22:16:40.0381 1140 arc - ok
22:16:40.0397 1140 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:16:40.0397 1140 arcsas - ok
22:16:40.0459 1140 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:16:40.0491 1140 aspnet_state - ok
22:16:40.0491 1140 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:16:40.0491 1140 AsyncMac - ok
22:16:40.0522 1140 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:16:40.0522 1140 atapi - ok
22:16:40.0553 1140 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:16:40.0553 1140 AudioEndpointBuilder - ok
22:16:40.0569 1140 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:16:40.0569 1140 AudioSrv - ok
22:16:40.0584 1140 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:16:40.0584 1140 AxInstSV - ok
22:16:40.0600 1140 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
22:16:40.0600 1140 b06bdrv - ok
22:16:40.0615 1140 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:16:40.0615 1140 b57nd60a - ok
22:16:40.0631 1140 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:16:40.0631 1140 BDESVC - ok
22:16:40.0631 1140 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:16:40.0631 1140 Beep - ok
22:16:40.0647 1140 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
22:16:40.0647 1140 blbdrive - ok
22:16:40.0678 1140 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:16:40.0693 1140 Bonjour Service - ok
22:16:40.0709 1140 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:16:40.0725 1140 bowser - ok
22:16:40.0725 1140 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
22:16:40.0725 1140 BrFiltLo - ok
22:16:40.0740 1140 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
22:16:40.0740 1140 BrFiltUp - ok
22:16:40.0740 1140 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
22:16:40.0756 1140 Browser - ok
22:16:40.0756 1140 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:16:40.0771 1140 Brserid - ok
22:16:40.0771 1140 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:16:40.0771 1140 BrSerWdm - ok
22:16:40.0787 1140 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:16:40.0787 1140 BrUsbMdm - ok
22:16:40.0803 1140 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:16:40.0803 1140 BrUsbSer - ok
22:16:40.0818 1140 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:16:40.0818 1140 BTHMODEM - ok
22:16:40.0834 1140 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:16:40.0834 1140 bthserv - ok
22:16:40.0912 1140 [ A3AD13CA2747953DDD4C9AE4FB925BEC ] CalendarSynchService C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
22:16:40.0912 1140 CalendarSynchService - ok
22:16:40.0912 1140 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:16:40.0927 1140 cdfs - ok
22:16:40.0943 1140 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:16:40.0943 1140 cdrom - ok
22:16:40.0959 1140 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:16:40.0959 1140 CertPropSvc - ok
22:16:40.0959 1140 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
22:16:40.0959 1140 circlass - ok
22:16:40.0990 1140 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:16:40.0990 1140 CLFS - ok
22:16:41.0037 1140 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:16:41.0068 1140 clr_optimization_v2.0.50727_32 - ok
22:16:41.0099 1140 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:16:41.0099 1140 clr_optimization_v2.0.50727_64 - ok
22:16:41.0146 1140 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:16:41.0177 1140 clr_optimization_v4.0.30319_32 - ok
22:16:41.0193 1140 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:16:41.0208 1140 clr_optimization_v4.0.30319_64 - ok
22:16:41.0208 1140 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
22:16:41.0208 1140 CmBatt - ok
22:16:41.0224 1140 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:16:41.0224 1140 cmdide - ok
22:16:41.0255 1140 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:16:41.0255 1140 CNG - ok
22:16:41.0271 1140 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
22:16:41.0271 1140 Compbatt - ok
22:16:41.0286 1140 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:16:41.0286 1140 CompositeBus - ok
22:16:41.0286 1140 COMSysApp - ok
22:16:41.0317 1140 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:16:41.0317 1140 crcdisk - ok
22:16:41.0349 1140 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:16:41.0349 1140 CryptSvc - ok
22:16:41.0364 1140 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:16:41.0380 1140 DcomLaunch - ok
22:16:41.0395 1140 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:16:41.0395 1140 defragsvc - ok
22:16:41.0411 1140 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:16:41.0411 1140 DfsC - ok
22:16:41.0427 1140 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:16:41.0427 1140 Dhcp - ok
22:16:41.0442 1140 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:16:41.0442 1140 discache - ok
22:16:41.0458 1140 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
22:16:41.0458 1140 Disk - ok
22:16:41.0489 1140 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:16:41.0489 1140 Dnscache - ok
22:16:41.0505 1140 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:16:41.0505 1140 dot3svc - ok
22:16:41.0520 1140 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:16:41.0520 1140 DPS - ok
22:16:41.0536 1140 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:16:41.0536 1140 drmkaud - ok
22:16:41.0567 1140 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:16:41.0567 1140 DXGKrnl - ok
22:16:41.0567 1140 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:16:41.0583 1140 EapHost - ok
22:16:41.0629 1140 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:16:41.0676 1140 ebdrv - ok
22:16:41.0676 1140 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:16:41.0676 1140 EFS - ok
22:16:41.0723 1140 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:16:41.0739 1140 ehRecvr - ok
22:16:41.0739 1140 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:16:41.0739 1140 ehSched - ok
22:16:41.0754 1140 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:16:41.0770 1140 elxstor - ok
22:16:41.0817 1140 [ B5581646636759D0DAFA8B008881C079 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
22:16:41.0817 1140 EPSON_EB_RPCV4_01 - ok
22:16:41.0817 1140 [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
22:16:41.0817 1140 EPSON_PM_RPCV4_01 - ok
22:16:41.0863 1140 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:16:41.0863 1140 ErrDev - ok
22:16:41.0879 1140 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:16:41.0895 1140 EventSystem - ok
22:16:41.0910 1140 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:16:41.0910 1140 exfat - ok
22:16:41.0910 1140 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:16:41.0910 1140 fastfat - ok
22:16:41.0941 1140 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:16:41.0957 1140 Fax - ok
22:16:41.0957 1140 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
22:16:41.0957 1140 fdc - ok
22:16:41.0973 1140 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:16:41.0973 1140 fdPHost - ok
22:16:41.0988 1140 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:16:41.0988 1140 FDResPub - ok
22:16:41.0988 1140 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:16:41.0988 1140 FileInfo - ok
22:16:42.0004 1140 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:16:42.0004 1140 Filetrace - ok
22:16:42.0019 1140 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
22:16:42.0019 1140 flpydisk - ok
22:16:42.0035 1140 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:16:42.0035 1140 FltMgr - ok
22:16:42.0066 1140 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:16:42.0082 1140 FontCache - ok
22:16:42.0331 1140 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:16:42.0347 1140 FontCache3.0.0.0 - ok
22:16:42.0347 1140 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:16:42.0347 1140 FsDepends - ok
22:16:42.0363 1140 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:16:42.0363 1140 Fs_Rec - ok
22:16:42.0378 1140 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:16:42.0378 1140 fvevol - ok
22:16:42.0394 1140 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:16:42.0394 1140 gagp30kx - ok
22:16:42.0425 1140 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:16:42.0425 1140 GEARAspiWDM - ok
22:16:42.0441 1140 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:16:42.0441 1140 gpsvc - ok
22:16:42.0456 1140 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:16:42.0456 1140 hcw85cir - ok
22:16:42.0472 1140 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:16:42.0472 1140 HdAudAddService - ok
22:16:42.0503 1140 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:16:42.0503 1140 HDAudBus - ok
22:16:42.0519 1140 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
22:16:42.0519 1140 HidBatt - ok
22:16:42.0534 1140 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:16:42.0534 1140 HidBth - ok
22:16:42.0534 1140 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
22:16:42.0534 1140 HidIr - ok
22:16:42.0550 1140 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:16:42.0550 1140 hidserv - ok
22:16:42.0565 1140 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:16:42.0565 1140 HidUsb - ok
22:16:42.0643 1140 [ FD1837DEE0A1D7F180D7B301C0656511 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
22:16:42.0643 1140 HiPatchService - ok
22:16:42.0659 1140 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:16:42.0659 1140 hkmsvc - ok
22:16:42.0659 1140 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:16:42.0675 1140 HomeGroupListener - ok
22:16:42.0690 1140 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:16:42.0690 1140 HomeGroupProvider - ok
22:16:42.0737 1140 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
22:16:42.0737 1140 HP Support Assistant Service - ok
22:16:42.0768 1140 [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
22:16:42.0768 1140 HPClientSvc - ok
22:16:42.0784 1140 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
22:16:42.0784 1140 HPDrvMntSvc.exe - ok
22:16:42.0799 1140 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:16:42.0815 1140 hpqwmiex - ok
22:16:42.0846 1140 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:16:42.0846 1140 HpSAMD - ok
22:16:42.0862 1140 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:16:42.0862 1140 HTTP - ok
22:16:42.0877 1140 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:16:42.0877 1140 hwpolicy - ok
22:16:42.0893 1140 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:16:42.0893 1140 i8042prt - ok
22:16:42.0924 1140 [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor C:\Windows\system32\drivers\iaStor.sys
22:16:42.0924 1140 iaStor - ok
22:16:42.0940 1140 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:16:42.0955 1140 iaStorV - ok
22:16:42.0987 1140 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:16:43.0002 1140 idsvc - ok
22:16:43.0158 1140 [ EFE5A0AF39A8E179624117C521F1E012 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:16:43.0299 1140 igfx - ok
22:16:43.0314 1140 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:16:43.0314 1140 iirsp - ok
22:16:43.0345 1140 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:16:43.0345 1140 IKEEXT - ok
22:16:43.0377 1140 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys
22:16:43.0377 1140 Impcd - ok
22:16:43.0423 1140 [ 392D5C87F282E8E36DF5154418A7BB20 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:16:43.0470 1140 IntcAzAudAddService - ok
22:16:43.0470 1140 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:16:43.0470 1140 intelide - ok
22:16:43.0486 1140 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
22:16:43.0486 1140 intelppm - ok
22:16:43.0501 1140 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:16:43.0501 1140 IPBusEnum - ok
22:16:43.0517 1140 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:16:43.0517 1140 IpFilterDriver - ok
22:16:43.0548 1140 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:16:43.0548 1140 IPMIDRV - ok
22:16:43.0564 1140 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:16:43.0564 1140 IPNAT - ok
22:16:43.0595 1140 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:16:43.0595 1140 iPod Service - ok
22:16:43.0611 1140 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:16:43.0611 1140 IRENUM - ok
22:16:43.0626 1140 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:16:43.0626 1140 isapnp - ok
22:16:43.0642 1140 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:16:43.0642 1140 iScsiPrt - ok
22:16:43.0689 1140 [ 5A9894E80575647DC77A7D1954B05CE7 ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
22:16:43.0689 1140 jhi_service - ok
22:16:43.0704 1140 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:16:43.0704 1140 kbdclass - ok
22:16:43.0720 1140 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:16:43.0720 1140 kbdhid - ok
22:16:43.0720 1140 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:16:43.0720 1140 KeyIso - ok
22:16:43.0751 1140 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:16:43.0751 1140 KSecDD - ok
22:16:43.0751 1140 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:16:43.0751 1140 KSecPkg - ok
22:16:43.0767 1140 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:16:43.0767 1140 ksthunk - ok
22:16:43.0782 1140 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:16:43.0782 1140 KtmRm - ok
22:16:43.0798 1140 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:16:43.0798 1140 LanmanServer - ok
22:16:43.0813 1140 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:16:43.0813 1140 LanmanWorkstation - ok
22:16:43.0860 1140 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:16:43.0860 1140 lltdio - ok
22:16:43.0876 1140 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:16:43.0876 1140 lltdsvc - ok
22:16:43.0891 1140 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:16:43.0891 1140 lmhosts - ok
22:16:43.0923 1140 [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:16:43.0923 1140 LMS - ok
22:16:43.0954 1140 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:16:43.0954 1140 LSI_FC - ok
22:16:43.0985 1140 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:16:43.0985 1140 LSI_SAS - ok
22:16:44.0001 1140 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:16:44.0001 1140 LSI_SAS2 - ok
22:16:44.0016 1140 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:16:44.0016 1140 LSI_SCSI - ok
22:16:44.0032 1140 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:16:44.0032 1140 luafv - ok
22:16:44.0047 1140 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:16:44.0047 1140 Mcx2Svc - ok
22:16:44.0063 1140 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
22:16:44.0079 1140 megasas - ok
22:16:44.0079 1140 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:16:44.0079 1140 MegaSR - ok
22:16:44.0110 1140 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\drivers\HECIx64.sys
22:16:44.0110 1140 MEIx64 - ok
22:16:44.0188 1140 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
22:16:44.0188 1140 Microsoft Office Groove Audit Service - ok
22:16:44.0203 1140 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:16:44.0203 1140 MMCSS - ok
22:16:44.0219 1140 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:16:44.0219 1140 Modem - ok
22:16:44.0250 1140 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:16:44.0250 1140 monitor - ok
22:16:44.0266 1140 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:16:44.0266 1140 mouclass - ok
22:16:44.0266 1140 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:16:44.0266 1140 mouhid - ok
22:16:44.0281 1140 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:16:44.0281 1140 mountmgr - ok
22:16:44.0328 1140 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:16:44.0328 1140 MozillaMaintenance - ok
22:16:44.0344 1140 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:16:44.0344 1140 mpio - ok
22:16:44.0359 1140 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:16:44.0359 1140 mpsdrv - ok
22:16:44.0359 1140 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:16:44.0375 1140 MRxDAV - ok
22:16:44.0391 1140 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:16:44.0391 1140 mrxsmb - ok
22:16:44.0406 1140 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:16:44.0406 1140 mrxsmb10 - ok
22:16:44.0422 1140 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:16:44.0422 1140 mrxsmb20 - ok
22:16:44.0437 1140 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:16:44.0437 1140 msahci - ok
22:16:44.0453 1140 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:16:44.0453 1140 msdsm - ok
22:16:44.0469 1140 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:16:44.0469 1140 MSDTC - ok
22:16:44.0484 1140 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:16:44.0484 1140 Msfs - ok
22:16:44.0500 1140 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:16:44.0500 1140 mshidkmdf - ok
22:16:44.0500 1140 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:16:44.0500 1140 msisadrv - ok
22:16:44.0531 1140 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:16:44.0531 1140 MSiSCSI - ok
22:16:44.0531 1140 msiserver - ok
22:16:44.0547 1140 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:16:44.0562 1140 MSKSSRV - ok
22:16:44.0562 1140 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:16:44.0562 1140 MSPCLOCK - ok
22:16:44.0578 1140 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:16:44.0578 1140 MSPQM - ok
22:16:44.0593 1140 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:16:44.0593 1140 MsRPC - ok
22:16:44.0609 1140 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:16:44.0609 1140 mssmbios - ok
22:16:44.0625 1140 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:16:44.0625 1140 MSTEE - ok
22:16:44.0640 1140 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
22:16:44.0640 1140 MTConfig - ok
22:16:44.0656 1140 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:16:44.0656 1140 Mup - ok
22:16:44.0671 1140 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:16:44.0671 1140 napagent - ok
22:16:44.0703 1140 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:16:44.0703 1140 NativeWifiP - ok
22:16:44.0734 1140 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
22:16:44.0734 1140 NDIS - ok
22:16:44.0749 1140 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:16:44.0749 1140 NdisCap - ok
22:16:44.0781 1140 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:16:44.0781 1140 NdisTapi - ok
22:16:44.0781 1140 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:16:44.0781 1140 Ndisuio - ok
22:16:44.0796 1140 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:16:44.0796 1140 NdisWan - ok
22:16:44.0796 1140 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:16:44.0796 1140 NDProxy - ok
22:16:44.0812 1140 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:16:44.0812 1140 NetBIOS - ok
22:16:44.0827 1140 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:16:44.0827 1140 NetBT - ok
22:16:44.0827 1140 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:16:44.0827 1140 Netlogon - ok
22:16:44.0843 1140 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:16:44.0843 1140 Netman - ok
22:16:44.0874 1140 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:16:44.0921 1140 NetMsmqActivator - ok
22:16:44.0937 1140 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:16:44.0937 1140 NetPipeActivator - ok
22:16:44.0952 1140 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:16:44.0968 1140 netprofm - ok
22:16:45.0015 1140 [ 570813483F26B5C8D984BCA5BB70B50D ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
22:16:45.0015 1140 netr28x - ok
22:16:45.0015 1140 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:16:45.0015 1140 NetTcpActivator - ok
22:16:45.0015 1140 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:16:45.0015 1140 NetTcpPortSharing - ok
22:16:45.0030 1140 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:16:45.0030 1140 nfrd960 - ok
22:16:45.0046 1140 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:16:45.0046 1140 NlaSvc - ok
22:16:45.0046 1140 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:16:45.0046 1140 Npfs - ok
22:16:45.0061 1140 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:16:45.0061 1140 nsi - ok
22:16:45.0077 1140 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:16:45.0077 1140 nsiproxy - ok
22:16:45.0108 1140 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:16:45.0139 1140 Ntfs - ok
22:16:45.0155 1140 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:16:45.0155 1140 Null - ok
22:16:45.0171 1140 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:16:45.0171 1140 nvraid - ok
22:16:45.0186 1140 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:16:45.0186 1140 nvstor - ok
22:16:45.0202 1140 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:16:45.0202 1140 nv_agp - ok
22:16:45.0295 1140 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:16:45.0295 1140 odserv - ok
22:16:45.0311 1140 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:16:45.0311 1140 ohci1394 - ok
22:16:45.0311 1140 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:16:45.0311 1140 ose - ok
22:16:45.0327 1140 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:16:45.0342 1140 p2pimsvc - ok
22:16:45.0342 1140 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:16:45.0358 1140 p2psvc - ok
22:16:45.0373 1140 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
22:16:45.0373 1140 Parport - ok
22:16:45.0389 1140 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:16:45.0389 1140 partmgr - ok
22:16:45.0405 1140 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:16:45.0405 1140 PcaSvc - ok
22:16:45.0420 1140 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:16:45.0420 1140 pci - ok
22:16:45.0436 1140 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:16:45.0436 1140 pciide - ok
22:16:45.0467 1140 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:16:45.0467 1140 pcmcia - ok
22:16:45.0467 1140 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:16:45.0467 1140 pcw - ok
22:16:45.0498 1140 pdfcDispatcher - ok
22:16:45.0514 1140 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:16:45.0514 1140 PEAUTH - ok
22:16:45.0561 1140 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:16:45.0561 1140 PerfHost - ok
22:16:45.0592 1140 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:16:45.0607 1140 pla - ok
22:16:45.0639 1140 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:16:45.0654 1140 PlugPlay - ok
22:16:45.0670 1140 [ 0BEE791C7C7ACE453C134E73633C497D ] pmxdrv C:\Windows\system32\drivers\pmxdrv.sys
22:16:45.0670 1140 pmxdrv - ok
22:16:45.0685 1140 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:16:45.0685 1140 PNRPAutoReg - ok
22:16:45.0685 1140 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:16:45.0701 1140 PNRPsvc - ok
22:16:45.0717 1140 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:16:45.0717 1140 PolicyAgent - ok
22:16:45.0748 1140 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:16:45.0748 1140 Power - ok
22:16:45.0763 1140 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:16:45.0763 1140 PptpMiniport - ok
22:16:45.0779 1140 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
22:16:45.0779 1140 Processor - ok
22:16:45.0795 1140 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
22:16:45.0795 1140 ProfSvc - ok
22:16:45.0810 1140 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:16:45.0810 1140 ProtectedStorage - ok
22:16:45.0826 1140 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:16:45.0826 1140 Psched - ok
22:16:45.0857 1140 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:16:45.0888 1140 ql2300 - ok
22:16:45.0904 1140 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:16:45.0904 1140 ql40xx - ok
22:16:45.0919 1140 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:16:45.0919 1140 QWAVE - ok
22:16:45.0935 1140 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:16:45.0935 1140 QWAVEdrv - ok
22:16:45.0951 1140 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:16:45.0951 1140 RasAcd - ok
22:16:45.0951 1140 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:16:45.0951 1140 RasAgileVpn - ok
22:16:45.0966 1140 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:16:45.0966 1140 RasAuto - ok
22:16:45.0966 1140 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:16:45.0966 1140 Rasl2tp - ok
22:16:45.0982 1140 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:16:45.0982 1140 RasMan - ok
22:16:45.0997 1140 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:16:45.0997 1140 RasPppoe - ok
22:16:46.0013 1140 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:16:46.0013 1140 RasSstp - ok
22:16:46.0029 1140 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:16:46.0029 1140 rdbss - ok
22:16:46.0029 1140 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
22:16:46.0029 1140 rdpbus - ok
22:16:46.0060 1140 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:16:46.0060 1140 RDPCDD - ok
22:16:46.0075 1140 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:16:46.0075 1140 RDPENCDD - ok
22:16:46.0075 1140 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:16:46.0075 1140 RDPREFMP - ok
22:16:46.0107 1140 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:16:46.0107 1140 RDPWD - ok
22:16:46.0122 1140 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:16:46.0138 1140 rdyboost - ok
22:16:46.0153 1140 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:16:46.0169 1140 RemoteAccess - ok
22:16:46.0169 1140 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:16:46.0169 1140 RemoteRegistry - ok
22:16:46.0185 1140 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:16:46.0185 1140 RpcEptMapper - ok
22:16:46.0216 1140 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:16:46.0216 1140 RpcLocator - ok
22:16:46.0231 1140 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:16:46.0231 1140 RpcSs - ok
22:16:46.0263 1140 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:16:46.0263 1140 rspndr - ok
22:16:46.0309 1140 [ E50CFB92986DCAB49DE93788FD695813 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:16:46.0309 1140 RTL8167 - ok
22:16:46.0309 1140 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:16:46.0309 1140 SamSs - ok
22:16:46.0325 1140 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:16:46.0325 1140 sbp2port - ok
22:16:46.0341 1140 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:16:46.0356 1140 SCardSvr - ok
22:16:46.0372 1140 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:16:46.0372 1140 scfilter - ok
22:16:46.0387 1140 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:16:46.0403 1140 Schedule - ok
22:16:46.0434 1140 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:16:46.0434 1140 SCPolicySvc - ok
22:16:46.0434 1140 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:16:46.0450 1140 SDRSVC - ok
22:16:46.0465 1140 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:16:46.0465 1140 secdrv - ok
22:16:46.0481 1140 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:16:46.0481 1140 seclogon - ok
22:16:46.0481 1140 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:16:46.0481 1140 SENS - ok
22:16:46.0497 1140 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:16:46.0497 1140 SensrSvc - ok
22:16:46.0512 1140 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
22:16:46.0512 1140 Serenum - ok
22:16:46.0512 1140 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
22:16:46.0528 1140 Serial - ok
22:16:46.0528 1140 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:16:46.0528 1140 sermouse - ok
22:16:46.0543 1140 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:16:46.0543 1140 SessionEnv - ok
22:16:46.0559 1140 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:16:46.0559 1140 sffdisk - ok
22:16:46.0575 1140 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:16:46.0575 1140 sffp_mmc - ok
22:16:46.0575 1140 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:16:46.0575 1140 sffp_sd - ok
22:16:46.0590 1140 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:16:46.0590 1140 sfloppy - ok
22:16:46.0606 1140 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:16:46.0621 1140 ShellHWDetection - ok
22:16:46.0637 1140 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:16:46.0637 1140 SiSRaid2 - ok
22:16:46.0637 1140 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:16:46.0653 1140 SiSRaid4 - ok
22:16:46.0684 1140 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:16:46.0699 1140 SkypeUpdate - ok
22:16:46.0715 1140 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:16:46.0715 1140 Smb - ok
22:16:46.0715 1140 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:16:46.0715 1140 SNMPTRAP - ok
22:16:46.0731 1140 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:16:46.0731 1140 spldr - ok
22:16:46.0746 1140 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
22:16:46.0746 1140 Spooler - ok
22:16:46.0793 1140 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:16:46.0840 1140 sppsvc - ok
22:16:46.0855 1140 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:16:46.0855 1140 sppuinotify - ok
22:16:46.0887 1140 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:16:46.0887 1140 srv - ok
22:16:46.0902 1140 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:16:46.0902 1140 srv2 - ok
22:16:46.0902 1140 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:16:46.0902 1140 srvnet - ok
22:16:46.0918 1140 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:16:46.0918 1140 SSDPSRV - ok
22:16:46.0933 1140 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:16:46.0933 1140 SstpSvc - ok
22:16:46.0980 1140 Steam Client Service - ok
22:16:46.0980 1140 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:16:46.0980 1140 stexstor - ok
22:16:47.0011 1140 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:16:47.0027 1140 stisvc - ok
22:16:47.0043 1140 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:16:47.0043 1140 swenum - ok
22:16:47.0058 1140 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:16:47.0058 1140 swprv - ok
22:16:47.0089 1140 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:16:47.0105 1140 SysMain - ok
22:16:47.0121 1140 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:16:47.0121 1140 TabletInputService - ok
22:16:47.0136 1140 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:16:47.0136 1140 TapiSrv - ok
22:16:47.0136 1140 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:16:47.0152 1140 TBS - ok
22:16:47.0199 1140 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:16:47.0230 1140 Tcpip - ok
22:16:47.0261 1140 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:16:47.0277 1140 TCPIP6 - ok
22:16:47.0292 1140 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:16:47.0292 1140 tcpipreg - ok
22:16:47.0308 1140 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:16:47.0308 1140 TDPIPE - ok
22:16:47.0323 1140 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:16:47.0323 1140 TDTCP - ok
22:16:47.0339 1140 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:16:47.0339 1140 tdx - ok
22:16:47.0355 1140 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:16:47.0355 1140 TermDD - ok
22:16:47.0370 1140 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:16:47.0370 1140 TermService - ok
22:16:47.0386 1140 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:16:47.0386 1140 Themes - ok
22:16:47.0401 1140 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:16:47.0401 1140 THREADORDER - ok
22:16:47.0417 1140 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:16:47.0417 1140 TrkWks - ok
22:16:47.0448 1140 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:16:47.0448 1140 TrustedInstaller - ok
22:16:47.0464 1140 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:16:47.0464 1140 tssecsrv - ok
22:16:47.0479 1140 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:16:47.0479 1140 TsUsbFlt - ok
22:16:47.0479 1140 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
22:16:47.0479 1140 TsUsbGD - ok
22:16:47.0511 1140 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:16:47.0511 1140 tunnel - ok
22:16:47.0526 1140 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:16:47.0526 1140 uagp35 - ok
22:16:47.0542 1140 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:16:47.0542 1140 udfs - ok
22:16:47.0557 1140 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:16:47.0557 1140 UI0Detect - ok
22:16:47.0573 1140 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:16:47.0573 1140 uliagpkx - ok
22:16:47.0589 1140 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:16:47.0589 1140 umbus - ok
22:16:47.0604 1140 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
22:16:47.0604 1140 UmPass - ok
22:16:47.0698 1140 [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:16:47.0729 1140 UNS - ok
22:16:47.0745 1140 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:16:47.0745 1140 upnphost - ok
22:16:47.0776 1140 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:16:47.0776 1140 USBAAPL64 - ok
22:16:47.0823 1140 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:16:47.0823 1140 usbaudio - ok
22:16:47.0823 1140 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:16:47.0823 1140 usbccgp - ok
22:16:47.0854 1140 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:16:47.0854 1140 usbcir - ok
22:16:47.0869 1140 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
22:16:47.0869 1140 usbehci - ok
22:16:47.0885 1140 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\drivers\usbhub.sys
22:16:47.0885 1140 usbhub - ok
22:16:47.0901 1140 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:16:47.0901 1140 usbohci - ok
22:16:47.0932 1140 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:16:47.0932 1140 usbprint - ok
22:16:47.0963 1140 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:16:47.0963 1140 usbscan - ok
22:16:47.0963 1140 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:16:47.0963 1140 USBSTOR - ok
22:16:47.0979 1140 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:16:47.0979 1140 usbuhci - ok
22:16:47.0994 1140 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
22:16:47.0994 1140 usbvideo - ok
22:16:48.0010 1140 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:16:48.0010 1140 UxSms - ok
22:16:48.0025 1140 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:16:48.0025 1140 VaultSvc - ok
22:16:48.0025 1140 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:16:48.0025 1140 vdrvroot - ok
22:16:48.0041 1140 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:16:48.0057 1140 vds - ok
22:16:48.0072 1140 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:16:48.0072 1140 vga - ok
22:16:48.0103 1140 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:16:48.0103 1140 VgaSave - ok
22:16:48.0103 1140 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:16:48.0103 1140 vhdmp - ok
22:16:48.0135 1140 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:16:48.0135 1140 viaide - ok
22:16:48.0244 1140 [ 49C122513203B98B0B2C10211F23450B ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
22:16:48.0244 1140 VIPAppService - ok
22:16:48.0259 1140 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:16:48.0259 1140 volmgr - ok
22:16:48.0275 1140 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:16:48.0275 1140 volmgrx - ok
22:16:48.0291 1140 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:16:48.0291 1140 volsnap - ok
22:16:48.0306 1140 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:16:48.0306 1140 vsmraid - ok
22:16:48.0337 1140 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:16:48.0353 1140 VSS - ok
22:16:48.0369 1140 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:16:48.0369 1140 vwifibus - ok
22:16:48.0384 1140 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:16:48.0384 1140 vwififlt - ok
22:16:48.0400 1140 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:16:48.0400 1140 W32Time - ok
22:16:48.0415 1140 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:16:48.0415 1140 WacomPen - ok
22:16:48.0447 1140 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:16:48.0447 1140 WANARP - ok
22:16:48.0447 1140 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:16:48.0447 1140 Wanarpv6 - ok
22:16:48.0493 1140 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:16:48.0509 1140 WatAdminSvc - ok
22:16:48.0540 1140 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:16:48.0571 1140 wbengine - ok
22:16:48.0571 1140 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:16:48.0571 1140 WbioSrvc - ok
22:16:48.0587 1140 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:16:48.0603 1140 wcncsvc - ok
22:16:48.0603 1140 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:16:48.0618 1140 WcsPlugInService - ok
22:16:48.0634 1140 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
22:16:48.0634 1140 Wd - ok
22:16:48.0649 1140 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:16:48.0649 1140 Wdf01000 - ok
22:16:48.0681 1140 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:16:48.0681 1140 WdiServiceHost - ok
22:16:48.0681 1140 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:16:48.0681 1140 WdiSystemHost - ok
22:16:48.0696 1140 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:16:48.0696 1140 WebClient - ok
22:16:48.0712 1140 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:16:48.0712 1140 Wecsvc - ok
22:16:48.0712 1140 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:16:48.0727 1140 wercplsupport - ok
22:16:48.0743 1140 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:16:48.0743 1140 WerSvc - ok
22:16:48.0743 1140 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:16:48.0743 1140 WfpLwf - ok
22:16:48.0759 1140 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:16:48.0759 1140 WIMMount - ok
22:16:48.0774 1140 WinHttpAutoProxySvc - ok
22:16:48.0805 1140 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:16:48.0805 1140 Winmgmt - ok
22:16:48.0852 1140 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:16:48.0883 1140 WinRM - ok
22:16:48.0961 1140 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:16:48.0961 1140 WinUsb - ok
22:16:48.0977 1140 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:16:48.0977 1140 Wlansvc - ok
22:16:49.0024 1140 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:16:49.0024 1140 wlcrasvc - ok
22:16:49.0086 1140 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:16:49.0133 1140 wlidsvc - ok
22:16:49.0149 1140 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:16:49.0149 1140 WmiAcpi - ok
22:16:49.0164 1140 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:16:49.0164 1140 wmiApSrv - ok
22:16:49.0195 1140 WMPNetworkSvc - ok
22:16:49.0195 1140 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:16:49.0195 1140 WPCSvc - ok
22:16:49.0211 1140 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:16:49.0211 1140 WPDBusEnum - ok
22:16:49.0211 1140 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:16:49.0227 1140 ws2ifsl - ok
22:16:49.0227 1140 WSearch - ok
22:16:49.0242 1140 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:16:49.0242 1140 WudfPf - ok
22:16:49.0242 1140 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:16:49.0242 1140 WUDFRd - ok
22:16:49.0258 1140 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:16:49.0258 1140 wudfsvc - ok
22:16:49.0273 1140 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:16:49.0273 1140 WwanSvc - ok
22:16:49.0289 1140 ================ Scan global ===============================
22:16:49.0305 1140 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:16:49.0336 1140 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:16:49.0336 1140 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:16:49.0351 1140 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:16:49.0367 1140 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:16:49.0367 1140 [Global] - ok
22:16:49.0367 1140 ================ Scan MBR ==================================
22:16:49.0383 1140 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:16:49.0554 1140 \Device\Harddisk0\DR0 - ok
22:16:49.0554 1140 ================ Scan VBR ==================================
22:16:49.0554 1140 [ F3B4D6057950DC9C05D646F10EE96A7F ] \Device\Harddisk0\DR0\Partition1
22:16:49.0554 1140 \Device\Harddisk0\DR0\Partition1 - ok
22:16:49.0585 1140 [ E73E158F7120EDCE3175E60ECA757435 ] \Device\Harddisk0\DR0\Partition2
22:16:49.0585 1140 \Device\Harddisk0\DR0\Partition2 - ok
22:16:49.0617 1140 [ 6D7466391DB97192E50ECEBE865BA8BE ] \Device\Harddisk0\DR0\Partition3
22:16:49.0617 1140 \Device\Harddisk0\DR0\Partition3 - ok
22:16:49.0617 1140 ============================================================
22:16:49.0617 1140 Scan finished
22:16:49.0617 1140 ============================================================
22:16:49.0617 1132 Detected object count: 0
22:16:49.0617 1132 Actual detected object count: 0

#14 xm0067

xm0067
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:12:38 AM

Posted 01 September 2012 - 09:31 PM

re-ran aswMBR and it detected nothing?

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:38 AM

Posted 01 September 2012 - 09:34 PM

Please follow my instructions.

I still require ESET log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users