Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Am I still Infected? RAM Memory usage 65%


  • Please log in to reply
3 replies to this topic

#1 mentalblue

mentalblue

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 30 September 2012 - 05:38 AM

Hi,

I have successfully removed the stdrt.exe trojan backdoor. (at least that is what I think .... )

After that I am experiencing somehow abnormal RAM memory usage to 65%. (more than 5GB from 8GB in total) Is seems like the majority of the memory is taken by multiple svchost and chrome processes. Ok even though that I often have multiple tabs in chrome It still looks very much abnormal so I think I might have something malicious still hooked on my pc. Can you help me?

To illustrate the situation please look at the links to pictures below.

- Task manager

- Task manager - Performance

- Resource monitor

- CPU and RAM - widget


Please help.
Thanks in advance!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:58 PM

Posted 30 September 2012 - 05:39 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 mentalblue

mentalblue
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 30 September 2012 - 09:51 AM

So,... this is what I got. What now?

TDSSkiller:

13:28:37.0638 2516 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
13:28:37.0758 2516 ============================================================
13:28:37.0758 2516 Current date / time: 2012/09/30 13:28:37.0758
13:28:37.0758 2516 SystemInfo:
13:28:37.0758 2516
13:28:37.0758 2516 OS Version: 6.1.7601 ServicePack: 1.0
13:28:37.0758 2516 Product type: Workstation
13:28:37.0758 2516 ComputerName: SUBATOM
13:28:37.0758 2516 UserName: roland
13:28:37.0758 2516 Windows directory: C:\Windows
13:28:37.0758 2516 System windows directory: C:\Windows
13:28:37.0758 2516 Running under WOW64
13:28:37.0758 2516 Processor architecture: Intel x64
13:28:37.0758 2516 Number of processors: 4
13:28:37.0758 2516 Page size: 0x1000
13:28:37.0758 2516 Boot type: Normal boot
13:28:37.0758 2516 ============================================================
13:28:38.0583 2516 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:28:38.0585 2516 Drive \Device\Harddisk1\DR1 - Size: 0x2BAA0C76000 (2794.51 Gb), SectorSize: 0x200, Cylinders: 0x59100, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:28:53.0768 2516 ============================================================
13:28:53.0768 2516 \Device\Harddisk0\DR0:
13:28:53.0774 2516 MBR partitions:
13:28:53.0774 2516 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3AF4C000
13:28:53.0774 2516 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3AF4C800, BlocksNum 0x397B9000
13:28:53.0774 2516 \Device\Harddisk1\DR1:
13:28:53.0774 2516 GPT partitions:
13:28:53.0775 2516 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {90D21C72-16C2-11E1-8460-001D92AFD40D}, Name: Microsoft reserved partition, StartLBA 0x800, BlocksNum 0x40000
13:28:53.0775 2516 \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {90D21C73-16C2-11E1-8460-001D92AFD40D}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0x5D4C5B8F
13:28:53.0775 2516 MBR partitions:
13:28:53.0775 2516 ============================================================
13:28:53.0796 2516 C: <-> \Device\Harddisk0\DR0\Partition1
13:28:53.0833 2516 F: <-> \Device\Harddisk0\DR0\Partition2
13:28:53.0914 2516 J: <-> \Device\Harddisk1\DR1\Partition2
13:28:53.0914 2516 ============================================================
13:28:53.0914 2516 Initialize success
13:28:53.0914 2516 ============================================================
13:29:42.0341 72040 ============================================================
13:29:42.0341 72040 Scan started
13:29:42.0341 72040 Mode: Manual; TDLFS;
13:29:42.0341 72040 ============================================================
13:29:42.0976 72040 ================ Scan system memory ========================
13:29:42.0976 72040 System memory - ok
13:29:42.0976 72040 ================ Scan services =============================
13:29:43.0068 72040 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:29:43.0071 72040 1394ohci - ok
13:29:43.0132 72040 7ByteIo - ok
13:29:43.0153 72040 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:29:43.0156 72040 ACPI - ok
13:29:43.0176 72040 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:29:43.0177 72040 AcpiPmi - ok
13:29:43.0216 72040 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
13:29:43.0217 72040 adfs - ok
13:29:43.0260 72040 [ 4AE327C9C375D985FF2A2AAB92765218 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
13:29:43.0261 72040 Adobe LM Service - ok
13:29:43.0309 72040 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:29:43.0310 72040 AdobeARMservice - ok
13:29:43.0394 72040 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:29:43.0396 72040 AdobeFlashPlayerUpdateSvc - ok
13:29:43.0435 72040 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:29:43.0439 72040 adp94xx - ok
13:29:43.0467 72040 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:29:43.0470 72040 adpahci - ok
13:29:43.0483 72040 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:29:43.0485 72040 adpu320 - ok
13:29:43.0504 72040 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:29:43.0505 72040 AeLookupSvc - ok
13:29:43.0537 72040 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:29:43.0541 72040 AFD - ok
13:29:43.0563 72040 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:29:43.0583 72040 agp440 - ok
13:29:43.0604 72040 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:29:43.0605 72040 ALG - ok
13:29:43.0622 72040 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:29:43.0623 72040 aliide - ok
13:29:43.0725 72040 ALSysIO - ok
13:29:43.0749 72040 [ 20C8A3E435A47F0408A1EA674AFA6194 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:29:43.0751 72040 AMD External Events Utility - ok
13:29:43.0818 72040 AMD FUEL Service - ok
13:29:43.0835 72040 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
13:29:43.0836 72040 amdide - ok
13:29:43.0857 72040 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
13:29:43.0858 72040 amdiox64 - ok
13:29:43.0879 72040 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:29:43.0892 72040 AmdK8 - ok
13:29:44.0065 72040 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:29:44.0219 72040 amdkmdag - ok
13:29:44.0240 72040 [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
13:29:44.0243 72040 amdkmdap - ok
13:29:44.0276 72040 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:29:44.0277 72040 AmdPPM - ok
13:29:44.0310 72040 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:29:44.0311 72040 amdsata - ok
13:29:44.0326 72040 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:29:44.0328 72040 amdsbs - ok
13:29:44.0335 72040 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:29:44.0336 72040 amdxata - ok
13:29:44.0365 72040 [ F312FAD7DBD49ED21A194AC71B497832 ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
13:29:44.0366 72040 AODDriver4.01 - ok
13:29:44.0400 72040 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
13:29:44.0422 72040 AppID - ok
13:29:44.0443 72040 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:29:44.0443 72040 AppIDSvc - ok
13:29:44.0466 72040 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:29:44.0467 72040 Appinfo - ok
13:29:44.0486 72040 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
13:29:44.0488 72040 AppMgmt - ok
13:29:44.0503 72040 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:29:44.0504 72040 arc - ok
13:29:44.0508 72040 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:29:44.0509 72040 arcsas - ok
13:29:44.0590 72040 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:29:44.0605 72040 aspnet_state - ok
13:29:44.0622 72040 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:29:44.0650 72040 AsyncMac - ok
13:29:44.0677 72040 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
13:29:44.0678 72040 atapi - ok
13:29:44.0727 72040 atillk64 - ok
13:29:44.0762 72040 [ E82E61F46D1336447F4DEFF8C074F13E ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie64.sys
13:29:44.0763 72040 AtiPcie - ok
13:29:44.0794 72040 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:29:44.0799 72040 AudioEndpointBuilder - ok
13:29:44.0807 72040 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:29:44.0810 72040 AudioSrv - ok
13:29:44.0835 72040 [ 08557705DBC8CCA08F26686109E2750F ] AVEO C:\Windows\system32\DRIVERS\AVEOdcnt.sys
13:29:44.0988 72040 AVEO - ok
13:29:45.0023 72040 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:29:45.0025 72040 AxInstSV - ok
13:29:45.0051 72040 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:29:45.0055 72040 b06bdrv - ok
13:29:45.0068 72040 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:29:45.0071 72040 b57nd60a - ok
13:29:45.0124 72040 [ 20E32BB25E282F62630161BC16B4B6C5 ] Backup Client Agent Service C:\Program Files (x86)\NovaStor\NovaStor NovaBACKUP\ManagementServer.Agent.Service.exe
13:29:45.0188 72040 Backup Client Agent Service - ok
13:29:45.0262 72040 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
13:29:45.0264 72040 BBSvc - ok
13:29:45.0299 72040 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
13:29:45.0301 72040 BBUpdate - ok
13:29:45.0318 72040 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:29:45.0320 72040 BDESVC - ok
13:29:45.0333 72040 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:29:45.0334 72040 Beep - ok
13:29:45.0372 72040 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
13:29:45.0378 72040 BFE - ok
13:29:45.0394 72040 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
13:29:45.0402 72040 BITS - ok
13:29:45.0422 72040 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:29:45.0423 72040 blbdrive - ok
13:29:45.0469 72040 [ 941E435E5A903CC60E50E72037FA39D0 ] BlueSoleilCS C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
13:29:45.0485 72040 BlueSoleilCS - ok
13:29:45.0526 72040 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:29:45.0530 72040 Bonjour Service - ok
13:29:45.0554 72040 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:29:45.0555 72040 bowser - ok
13:29:45.0581 72040 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:29:45.0581 72040 BrFiltLo - ok
13:29:45.0590 72040 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:29:45.0591 72040 BrFiltUp - ok
13:29:45.0611 72040 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
13:29:45.0635 72040 BridgeMP - ok
13:29:45.0662 72040 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
13:29:45.0663 72040 Browser - ok
13:29:45.0680 72040 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:29:45.0683 72040 Brserid - ok
13:29:45.0697 72040 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:29:45.0698 72040 BrSerWdm - ok
13:29:45.0708 72040 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:29:45.0709 72040 BrUsbMdm - ok
13:29:45.0725 72040 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:29:45.0725 72040 BrUsbSer - ok
13:29:45.0750 72040 [ 403E99F6DDB6CE624E0F81A554AFF178 ] BsHelpCS C:\Program Files (x86)\IVT Corporation\BlueSoleil\BsHelpCS.exe
13:29:45.0816 72040 BsHelpCS - ok
13:29:45.0842 72040 [ EA05E37130B94670E8AA3379EAFAE22E ] BT C:\Windows\system32\DRIVERS\btnetdrv.sys
13:29:45.0843 72040 BT - ok
13:29:45.0867 72040 [ 8BFBA6EBB2654DEF3EBD4D882BAB8EE6 ] Btcsrusb C:\Windows\system32\Drivers\btcusb.sys
13:29:45.0868 72040 Btcsrusb - ok
13:29:45.0887 72040 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
13:29:45.0931 72040 BthEnum - ok
13:29:45.0954 72040 [ 81229822FACAA324718B3B3C973688ED ] BtHidBus C:\Windows\system32\Drivers\BtHidBus.sys
13:29:45.0955 72040 BtHidBus - ok
13:29:45.0975 72040 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
13:29:46.0005 72040 BTHMODEM - ok
13:29:46.0029 72040 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
13:29:46.0031 72040 BthPan - ok
13:29:46.0070 72040 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
13:29:46.0079 72040 BTHPORT - ok
13:29:46.0109 72040 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:29:46.0110 72040 bthserv - ok
13:29:46.0127 72040 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
13:29:46.0151 72040 BTHUSB - ok
13:29:46.0189 72040 [ 2531372CC2AD7C7204A7520DC7C2D0DA ] btnetBUs C:\Windows\system32\Drivers\btnetBus.sys
13:29:46.0190 72040 btnetBUs - ok
13:29:46.0216 72040 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:29:46.0230 72040 cdfs - ok
13:29:46.0270 72040 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:29:46.0272 72040 cdrom - ok
13:29:46.0294 72040 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
13:29:46.0295 72040 CertPropSvc - ok
13:29:46.0312 72040 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:29:46.0313 72040 circlass - ok
13:29:46.0333 72040 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:29:46.0336 72040 CLFS - ok
13:29:46.0378 72040 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:29:46.0380 72040 clr_optimization_v2.0.50727_32 - ok
13:29:46.0404 72040 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:29:46.0405 72040 clr_optimization_v2.0.50727_64 - ok
13:29:46.0450 72040 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:29:46.0494 72040 clr_optimization_v4.0.30319_32 - ok
13:29:46.0508 72040 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:29:46.0533 72040 clr_optimization_v4.0.30319_64 - ok
13:29:46.0556 72040 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:29:46.0592 72040 CmBatt - ok
13:29:46.0618 72040 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:29:46.0619 72040 cmdide - ok
13:29:46.0644 72040 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
13:29:46.0648 72040 CNG - ok
13:29:46.0736 72040 [ 1C15404EA8FC42DAB8A7B3765ED53E58 ] CodeMeter.exe C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
13:29:46.0755 72040 CodeMeter.exe - ok
13:29:46.0771 72040 [ B5CCC5093405DCB1485193982CCD647F ] COMMONFX C:\Windows\system32\drivers\COMMONFX.SYS
13:29:46.0773 72040 COMMONFX - ok
13:29:46.0779 72040 [ B5CCC5093405DCB1485193982CCD647F ] COMMONFX.SYS C:\Windows\System32\drivers\COMMONFX.SYS
13:29:46.0780 72040 COMMONFX.SYS - ok
13:29:46.0797 72040 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:29:46.0798 72040 Compbatt - ok
13:29:46.0815 72040 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
13:29:46.0816 72040 CompositeBus - ok
13:29:46.0822 72040 COMSysApp - ok
13:29:46.0834 72040 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:29:46.0835 72040 crcdisk - ok
13:29:46.0856 72040 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:29:46.0859 72040 CryptSvc - ok
13:29:46.0890 72040 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
13:29:46.0894 72040 CSC - ok
13:29:46.0915 72040 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
13:29:46.0921 72040 CscService - ok
13:29:46.0952 72040 [ 171385080A6D86FA0917EEB905F3B3D6 ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
13:29:46.0954 72040 CT20XUT - ok
13:29:46.0959 72040 [ 171385080A6D86FA0917EEB905F3B3D6 ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
13:29:46.0960 72040 CT20XUT.SYS - ok
13:29:46.0976 72040 [ D9BEF22D893591F18A0A4404CEF26210 ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
13:29:46.0981 72040 ctac32k - ok
13:29:47.0001 72040 [ 123EC60C8166DA76FC52B28444B95233 ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
13:29:47.0007 72040 ctaud2k - ok
13:29:47.0026 72040 [ E3117F747692D3DE9C692A6240742876 ] CTAUDFX C:\Windows\system32\drivers\CTAUDFX.SYS
13:29:47.0032 72040 CTAUDFX - ok
13:29:47.0049 72040 [ E3117F747692D3DE9C692A6240742876 ] CTAUDFX.SYS C:\Windows\System32\drivers\CTAUDFX.SYS
13:29:47.0052 72040 CTAUDFX.SYS - ok
13:29:47.0069 72040 [ 17697718D0DF41A688161ACDDCA0611B ] CTEAPSFX C:\Windows\system32\drivers\CTEAPSFX.SYS
13:29:47.0071 72040 CTEAPSFX - ok
13:29:47.0075 72040 [ 17697718D0DF41A688161ACDDCA0611B ] CTEAPSFX.SYS C:\Windows\System32\drivers\CTEAPSFX.SYS
13:29:47.0076 72040 CTEAPSFX.SYS - ok
13:29:47.0085 72040 [ 479CF27E360C4996BD281C93C91163E2 ] CTEDSPFX C:\Windows\system32\drivers\CTEDSPFX.SYS
13:29:47.0088 72040 CTEDSPFX - ok
13:29:47.0093 72040 [ 479CF27E360C4996BD281C93C91163E2 ] CTEDSPFX.SYS C:\Windows\System32\drivers\CTEDSPFX.SYS
13:29:47.0094 72040 CTEDSPFX.SYS - ok
13:29:47.0108 72040 [ 02175D1716A6648A527DEAF6D98ACEDE ] CTEDSPIO C:\Windows\system32\drivers\CTEDSPIO.SYS
13:29:47.0110 72040 CTEDSPIO - ok
13:29:47.0114 72040 [ 02175D1716A6648A527DEAF6D98ACEDE ] CTEDSPIO.SYS C:\Windows\System32\drivers\CTEDSPIO.SYS
13:29:47.0115 72040 CTEDSPIO.SYS - ok
13:29:47.0139 72040 [ C839B43A9FDDD0A74DB72566AA8C5E9C ] CTEDSPSY C:\Windows\system32\drivers\CTEDSPSY.SYS
13:29:47.0143 72040 CTEDSPSY - ok
13:29:47.0148 72040 [ C839B43A9FDDD0A74DB72566AA8C5E9C ] CTEDSPSY.SYS C:\Windows\System32\drivers\CTEDSPSY.SYS
13:29:47.0150 72040 CTEDSPSY.SYS - ok
13:29:47.0163 72040 [ 3EDFDC832C4B6446D7301262A8E20E38 ] CTERFXFX C:\Windows\system32\drivers\CTERFXFX.SYS
13:29:47.0165 72040 CTERFXFX - ok
13:29:47.0169 72040 [ 3EDFDC832C4B6446D7301262A8E20E38 ] CTERFXFX.SYS C:\Windows\System32\drivers\CTERFXFX.SYS
13:29:47.0169 72040 CTERFXFX.SYS - ok
13:29:47.0205 72040 [ 97C57B1245CC83220F8CEFD4F0E88C9A ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
13:29:47.0217 72040 CTEXFIFX - ok
13:29:47.0232 72040 [ 97C57B1245CC83220F8CEFD4F0E88C9A ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
13:29:47.0238 72040 CTEXFIFX.SYS - ok
13:29:47.0250 72040 [ B24A34A4C578A33E366E7C5B1F208615 ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
13:29:47.0252 72040 CTHWIUT - ok
13:29:47.0264 72040 [ B24A34A4C578A33E366E7C5B1F208615 ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
13:29:47.0265 72040 CTHWIUT.SYS - ok
13:29:47.0271 72040 [ EC1CC15B0EBA6E4FF830635ADBB72577 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
13:29:47.0272 72040 ctprxy2k - ok
13:29:47.0294 72040 [ F71DC35275DA590322CAA4984B7298E2 ] CTSBLFX C:\Windows\system32\drivers\CTSBLFX.SYS
13:29:47.0299 72040 CTSBLFX - ok
13:29:47.0307 72040 [ F71DC35275DA590322CAA4984B7298E2 ] CTSBLFX.SYS C:\Windows\System32\drivers\CTSBLFX.SYS
13:29:47.0309 72040 CTSBLFX.SYS - ok
13:29:47.0328 72040 [ C2898531A1D40C667718C4D17B7B6535 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
13:29:47.0330 72040 ctsfm2k - ok
13:29:47.0357 72040 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:29:47.0362 72040 DcomLaunch - ok
13:29:47.0386 72040 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:29:47.0389 72040 defragsvc - ok
13:29:47.0410 72040 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:29:47.0411 72040 DfsC - ok
13:29:47.0439 72040 [ 6060106CE00F32F63F1A73160E46E9D2 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
13:29:47.0441 72040 dg_ssudbus - ok
13:29:47.0465 72040 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
13:29:47.0469 72040 Dhcp - ok
13:29:47.0491 72040 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:29:47.0492 72040 discache - ok
13:29:47.0513 72040 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:29:47.0514 72040 Disk - ok
13:29:47.0568 72040 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
13:29:47.0570 72040 dmvsc - ok
13:29:47.0597 72040 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:29:47.0599 72040 Dnscache - ok
13:29:47.0623 72040 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:29:47.0625 72040 dot3svc - ok
13:29:47.0642 72040 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
13:29:47.0644 72040 DPS - ok
13:29:47.0667 72040 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:29:47.0670 72040 drmkaud - ok
13:29:47.0745 72040 [ 1ED08A6264C5C92099D6D1DAE5E8F530 ] DrvAgent64 C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
13:29:47.0746 72040 DrvAgent64 - ok
13:29:47.0777 72040 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
13:29:47.0779 72040 dtsoftbus01 - ok
13:29:47.0811 72040 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:29:47.0819 72040 DXGKrnl - ok
13:29:47.0843 72040 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:29:47.0845 72040 EapHost - ok
13:29:47.0909 72040 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:29:47.0937 72040 ebdrv - ok
13:29:47.0958 72040 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
13:29:47.0960 72040 EFS - ok
13:29:47.0977 72040 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:29:47.0983 72040 ehRecvr - ok
13:29:48.0000 72040 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:29:48.0001 72040 ehSched - ok
13:29:48.0032 72040 [ 9A47AC3DFCF81D30922CDAAF1C2D579F ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
13:29:48.0033 72040 ElbyCDIO - ok
13:29:48.0062 72040 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:29:48.0067 72040 elxstor - ok
13:29:48.0083 72040 [ 6D659870C46798650EB272586AEFB2D5 ] emupia C:\Windows\system32\drivers\emupia2k.sys
13:29:48.0084 72040 emupia - ok
13:29:48.0121 72040 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
13:29:48.0125 72040 EpsonBidirectionalService - ok
13:29:48.0165 72040 [ 7C5BFAAC8DCE7292B0C04EBF892E71F9 ] EPSON_EB_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
13:29:48.0167 72040 EPSON_EB_RPCV4_04 - ok
13:29:48.0188 72040 [ D4615670CD49A1679E6067F155C47C68 ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
13:29:48.0190 72040 EPSON_PM_RPCV4_04 - ok
13:29:48.0207 72040 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:29:48.0210 72040 ErrDev - ok
13:29:48.0241 72040 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:29:48.0245 72040 EventSystem - ok
13:29:48.0277 72040 [ 069EB38F150AD399C058FF456CEDA2E9 ] ews88mt C:\Windows\system32\drivers\ews88wdm.sys
13:29:48.0332 72040 ews88mt - ok
13:29:48.0344 72040 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:29:48.0361 72040 exfat - ok
13:29:48.0412 72040 [ 6FC99E051835A72E780508325A3F81E2 ] F-Secure Filter C:\Program Files (x86)\F-Secure\Anti-Virus\Win2K\FSfilter.sys
13:29:48.0413 72040 F-Secure Filter - ok
13:29:48.0444 72040 [ 169897DE484A79120AF8C201883EFDC4 ] F-Secure Gatekeeper C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsgk.sys
13:29:48.0446 72040 F-Secure Gatekeeper - ok
13:29:48.0460 72040 [ F395FD380CF2E37865266D16FF6972C9 ] F-Secure Gatekeeper Handler Starter C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
13:29:48.0462 72040 F-Secure Gatekeeper Handler Starter - ok
13:29:48.0492 72040 [ C3FE6393877EF30AC68C74FA8E5C4C49 ] F-Secure HIPS C:\Program Files (x86)\F-Secure\HIPS\drivers\fshs.sys
13:29:48.0493 72040 F-Secure HIPS - ok
13:29:48.0528 72040 [ 631591AC6ACB1E654F513D8BA6D95AD8 ] F-Secure Network Request Broker C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE
13:29:48.0529 72040 F-Secure Network Request Broker - ok
13:29:48.0537 72040 [ 99A224B6999306209B2714A6CF54377D ] F-Secure Recognizer C:\Program Files (x86)\F-Secure\Anti-Virus\Win2K\FSrec.sys
13:29:48.0538 72040 F-Secure Recognizer - ok
13:29:48.0553 72040 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:29:48.0591 72040 fastfat - ok
13:29:48.0636 72040 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
13:29:48.0643 72040 Fax - ok
13:29:48.0655 72040 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:29:48.0700 72040 fdc - ok
13:29:48.0714 72040 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:29:48.0715 72040 fdPHost - ok
13:29:48.0728 72040 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:29:48.0729 72040 FDResPub - ok
13:29:48.0743 72040 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:29:48.0744 72040 FileInfo - ok
13:29:48.0752 72040 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:29:48.0773 72040 Filetrace - ok
13:29:48.0810 72040 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
13:29:48.0816 72040 FLEXnet Licensing Service - ok
13:29:48.0861 72040 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
13:29:48.0870 72040 FLEXnet Licensing Service 64 - ok
13:29:48.0878 72040 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:29:48.0879 72040 flpydisk - ok
13:29:48.0895 72040 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:29:48.0898 72040 FltMgr - ok
13:29:48.0931 72040 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
13:29:48.0942 72040 FontCache - ok
13:29:48.0991 72040 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:29:48.0992 72040 FontCache3.0.0.0 - ok
13:29:49.0036 72040 [ F59F2C574AA5D84477EB89F87C938F16 ] fsbts C:\Windows\system32\Drivers\fsbts.sys
13:29:49.0037 72040 fsbts - ok
13:29:49.0053 72040 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:29:49.0057 72040 FsDepends - ok
13:29:49.0096 72040 [ FB1302038B891D22457D30F25453CC9E ] FSDFWD C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe
13:29:49.0104 72040 FSDFWD - ok
13:29:49.0129 72040 [ 58E47D5102A964040D6B223155AE816C ] FSES C:\Windows\system32\drivers\fses.sys
13:29:49.0130 72040 FSES - ok
13:29:49.0144 72040 [ 24CAF00830A1A9633C739456D369C93F ] FSFW C:\Windows\system32\drivers\fsdfw.sys
13:29:49.0145 72040 FSFW - ok
13:29:49.0167 72040 [ C8DC27B0A4E9260BF2AEAC77A9556B1E ] FSMA C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE
13:29:49.0168 72040 FSMA - ok
13:29:49.0201 72040 [ 0A6E59B7B0CDE8225B8D237668EABAF8 ] FSORSPClient C:\Program Files (x86)\F-Secure\ORSP Client\fsorsp.exe
13:29:49.0202 72040 FSORSPClient - ok
13:29:49.0223 72040 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
13:29:49.0225 72040 fssfltr - ok
13:29:49.0300 72040 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
13:29:49.0312 72040 fsssvc - ok
13:29:49.0332 72040 [ A75C3223AD3BED466383C1E0A2492BDE ] fsvista C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsvista.sys
13:29:49.0332 72040 fsvista - ok
13:29:49.0344 72040 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:29:49.0345 72040 Fs_Rec - ok
13:29:49.0363 72040 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:29:49.0366 72040 fvevol - ok
13:29:49.0380 72040 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:29:49.0382 72040 gagp30kx - ok
13:29:49.0410 72040 [ A05CA8FECCD58256FD0B964DEBD8858F ] gbxavs C:\Windows\system32\Drivers\gbxavs.sys
13:29:49.0475 72040 gbxavs - ok
13:29:49.0481 72040 [ D7A02665FDC5D48E779C166466FA0849 ] gbxusb_svc C:\Windows\system32\Drivers\gbxusb.sys
13:29:49.0527 72040 gbxusb_svc - ok
13:29:49.0552 72040 [ 58E581A98A85587E9F5A297D4AD44CC0 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:29:49.0553 72040 GEARAspiWDM - ok
13:29:49.0590 72040 [ 94FCCE83CDEE9C8149667110093E701E ] GFIBckHAtt C:\PROGRA~2\GFI\GFIBAC~1\GFIHInst.exe
13:29:49.0598 72040 GFIBckHAtt - ok
13:29:49.0659 72040 [ E95911BD88EF967125724428772FDDD8 ] GFIBckHSched C:\PROGRA~2\GFI\GFIBAC~1\GFIHSC~1.EXE
13:29:49.0679 72040 GFIBckHSched - ok
13:29:49.0705 72040 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
13:29:49.0712 72040 gpsvc - ok
13:29:49.0735 72040 [ FF29BA67431A7EBD8B0C8D70F0B5672C ] ha10kx2k C:\Windows\system32\drivers\ha10kx2k.sys
13:29:49.0743 72040 ha10kx2k - ok
13:29:49.0755 72040 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:29:49.0755 72040 hcw85cir - ok
13:29:49.0787 72040 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:29:49.0791 72040 HdAudAddService - ok
13:29:49.0805 72040 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:29:49.0807 72040 HDAudBus - ok
13:29:49.0826 72040 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:29:49.0827 72040 HidBatt - ok
13:29:49.0835 72040 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:29:49.0836 72040 HidBth - ok
13:29:49.0849 72040 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:29:49.0850 72040 HidIr - ok
13:29:49.0865 72040 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
13:29:49.0866 72040 hidserv - ok
13:29:49.0897 72040 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:29:49.0898 72040 HidUsb - ok
13:29:49.0923 72040 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:29:49.0925 72040 hkmsvc - ok
13:29:49.0948 72040 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:29:49.0951 72040 HomeGroupListener - ok
13:29:49.0971 72040 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:29:49.0974 72040 HomeGroupProvider - ok
13:29:49.0992 72040 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:29:49.0993 72040 HpSAMD - ok
13:29:50.0026 72040 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:29:50.0033 72040 HTTP - ok
13:29:50.0046 72040 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:29:50.0047 72040 hwpolicy - ok
13:29:50.0065 72040 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:29:50.0066 72040 i8042prt - ok
13:29:50.0092 72040 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:29:50.0096 72040 iaStorV - ok
13:29:50.0131 72040 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:29:50.0138 72040 idsvc - ok
13:29:50.0157 72040 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:29:50.0158 72040 iirsp - ok
13:29:50.0183 72040 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
13:29:50.0191 72040 IKEEXT - ok
13:29:50.0287 72040 [ 150AC23F21DBDBF8488408BA944B0D65 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:29:50.0327 72040 IntcAzAudAddService - ok
13:29:50.0346 72040 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
13:29:50.0347 72040 intelide - ok
13:29:50.0364 72040 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:29:50.0390 72040 intelppm - ok
13:29:50.0417 72040 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:29:50.0419 72040 IPBusEnum - ok
13:29:50.0440 72040 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:29:50.0466 72040 IpFilterDriver - ok
13:29:50.0501 72040 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:29:50.0506 72040 iphlpsvc - ok
13:29:50.0529 72040 [ 9B5034272C03AB1794610209B59E3E9F ] ipMIDI C:\Windows\system32\drivers\ipmidi.sys
13:29:50.0584 72040 ipMIDI - ok
13:29:50.0611 72040 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:29:50.0612 72040 IPMIDRV - ok
13:29:50.0636 72040 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:29:50.0640 72040 IPNAT - ok
13:29:50.0661 72040 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:29:50.0664 72040 IRENUM - ok
13:29:50.0678 72040 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:29:50.0683 72040 isapnp - ok
13:29:50.0695 72040 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:29:50.0702 72040 iScsiPrt - ok
13:29:50.0723 72040 [ 70EBDA3ED637B0212450C5542EDD11A7 ] IvtBtBUs C:\Windows\system32\Drivers\IvtBtBus.sys
13:29:50.0724 72040 IvtBtBUs - ok
13:29:50.0748 72040 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:29:50.0750 72040 kbdclass - ok
13:29:50.0762 72040 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:29:50.0763 72040 kbdhid - ok
13:29:50.0775 72040 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
13:29:50.0776 72040 KeyIso - ok
13:29:50.0793 72040 KMService - ok
13:29:50.0821 72040 [ 89F835783BA34CC6FE59DD720E4C4361 ] ks2avs C:\Windows\system32\Drivers\ks2avs.sys
13:29:50.0867 72040 ks2avs - ok
13:29:50.0891 72040 [ 49B97E4180512C1B6C0E09D7233F0307 ] ks2usb_svc C:\Windows\system32\Drivers\ks2usb.sys
13:29:50.0935 72040 ks2usb_svc - ok
13:29:50.0952 72040 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:29:50.0953 72040 KSecDD - ok
13:29:50.0973 72040 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:29:50.0974 72040 KSecPkg - ok
13:29:50.0996 72040 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:29:50.0997 72040 ksthunk - ok
13:29:51.0019 72040 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:29:51.0023 72040 KtmRm - ok
13:29:51.0063 72040 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
13:29:51.0066 72040 LanmanServer - ok
13:29:51.0084 72040 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:29:51.0087 72040 LanmanWorkstation - ok
13:29:51.0105 72040 libusb0 - ok
13:29:51.0123 72040 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:29:51.0124 72040 lltdio - ok
13:29:51.0150 72040 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:29:51.0154 72040 lltdsvc - ok
13:29:51.0164 72040 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:29:51.0166 72040 lmhosts - ok
13:29:51.0183 72040 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:29:51.0184 72040 LSI_FC - ok
13:29:51.0199 72040 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:29:51.0201 72040 LSI_SAS - ok
13:29:51.0204 72040 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:29:51.0205 72040 LSI_SAS2 - ok
13:29:51.0214 72040 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:29:51.0216 72040 LSI_SCSI - ok
13:29:51.0232 72040 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:29:51.0233 72040 luafv - ok
13:29:51.0260 72040 [ 4CA4F65B270B816A411C445B7D77E13C ] MADFUAXIOMPRO C:\Windows\system32\DRIVERS\MAudioAxiomPro_DFU.sys
13:29:51.0261 72040 MADFUAXIOMPRO - ok
13:29:51.0277 72040 [ C994FCB70D794DDF24DBAB4C3F5883BD ] MADFUOP C:\Windows\system32\DRIVERS\madfuop.sys
13:29:51.0278 72040 MADFUOP - ok
13:29:51.0295 72040 [ C236DF7E5444D6A5A602C97538A34B53 ] MADFUXPONENT C:\Windows\system32\DRIVERS\MAudioXponent_DFU.sys
13:29:51.0296 72040 MADFUXPONENT - ok
13:29:51.0326 72040 [ 23191DCF7CA432873EAA024D2AE7655D ] MAUSBAXIOMPRO C:\Windows\system32\DRIVERS\MAudioAxiomPro.sys
13:29:51.0328 72040 MAUSBAXIOMPRO - ok
13:29:51.0332 72040 [ 41355C3F7A3C29EE1D1320A8090B0A1B ] MAUSBOP C:\Windows\system32\DRIVERS\mausbop.sys
13:29:51.0334 72040 MAUSBOP - ok
13:29:51.0365 72040 [ 1018EBA59777425671D0CAD233F8D93B ] MAUSBXPONENT C:\Windows\system32\DRIVERS\MAudioXponent.sys
13:29:51.0367 72040 MAUSBXPONENT - ok
13:29:51.0382 72040 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:29:51.0384 72040 Mcx2Svc - ok
13:29:51.0397 72040 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:29:51.0398 72040 megasas - ok
13:29:51.0408 72040 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:29:51.0411 72040 MegaSR - ok
13:29:51.0454 72040 [ 4D09756E231182B5CB8306B44F533DAB ] MemeoBackgroundService C:\Program Files\WD\WD Anywhere Backup\MemeoBackgroundService.exe
13:29:51.0454 72040 MemeoBackgroundService - ok
13:29:51.0489 72040 Microsoft SharePoint Workspace Audit Service - ok
13:29:51.0504 72040 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:29:51.0506 72040 MMCSS - ok
13:29:51.0553 72040 [ 74C85BBD2489949F5B325FDD886E662F ] mod7700 C:\Windows\system32\DRIVERS\mod7700.sys
13:29:51.0562 72040 mod7700 - ok
13:29:51.0573 72040 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:29:51.0574 72040 Modem - ok
13:29:51.0604 72040 [ 21D0CBAFD2E6AB86FD2BBFBCBEBE71D6 ] MODRC C:\Windows\system32\DRIVERS\modrc.sys
13:29:51.0605 72040 MODRC - ok
13:29:51.0629 72040 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:29:51.0630 72040 monitor - ok
13:29:51.0647 72040 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:29:51.0648 72040 mouclass - ok
13:29:51.0658 72040 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:29:51.0659 72040 mouhid - ok
13:29:51.0674 72040 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:29:51.0675 72040 mountmgr - ok
13:29:51.0723 72040 [ 96AA8BA23142CC8E2B30F3CAE0C80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:29:51.0725 72040 MozillaMaintenance - ok
13:29:51.0739 72040 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:29:51.0745 72040 mpio - ok
13:29:51.0766 72040 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:29:51.0767 72040 mpsdrv - ok
13:29:51.0790 72040 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:29:51.0798 72040 MpsSvc - ok
13:29:51.0826 72040 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:29:51.0831 72040 MRxDAV - ok
13:29:51.0869 72040 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:29:51.0870 72040 mrxsmb - ok
13:29:51.0893 72040 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:29:51.0896 72040 mrxsmb10 - ok
13:29:51.0900 72040 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:29:51.0902 72040 mrxsmb20 - ok
13:29:51.0930 72040 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:29:51.0930 72040 msahci - ok
13:29:51.0938 72040 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:29:51.0944 72040 msdsm - ok
13:29:51.0957 72040 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:29:51.0960 72040 MSDTC - ok
13:29:51.0975 72040 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:29:51.0975 72040 Msfs - ok
13:29:51.0993 72040 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:29:51.0997 72040 mshidkmdf - ok
13:29:52.0000 72040 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:29:52.0000 72040 msisadrv - ok
13:29:52.0024 72040 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:29:52.0026 72040 MSiSCSI - ok
13:29:52.0030 72040 msiserver - ok
13:29:52.0064 72040 [ 192476C10371DC83243D67432B2CDCBF ] MSI_MSIBIOS_010507 C:\Program Files (x86)\MSI\Live Update 5\msibios64_100507.sys
13:29:52.0065 72040 MSI_MSIBIOS_010507 - ok
13:29:52.0079 72040 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:29:52.0082 72040 MSKSSRV - ok
13:29:52.0092 72040 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:29:52.0096 72040 MSPCLOCK - ok
13:29:52.0116 72040 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:29:52.0147 72040 MSPQM - ok
13:29:52.0172 72040 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:29:52.0176 72040 MsRPC - ok
13:29:52.0190 72040 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:29:52.0191 72040 mssmbios - ok
13:29:52.0240 72040 MSSQL$MYMOVIES - ok
13:29:52.0262 72040 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
13:29:52.0263 72040 MSSQLServerADHelper - ok
13:29:52.0279 72040 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:29:52.0297 72040 MSTEE - ok
13:29:52.0311 72040 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:29:52.0312 72040 MTConfig - ok
13:29:52.0326 72040 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:29:52.0327 72040 Mup - ok
13:29:52.0354 72040 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
13:29:52.0359 72040 napagent - ok
13:29:52.0381 72040 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:29:52.0387 72040 NativeWifiP - ok
13:29:52.0419 72040 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:29:52.0427 72040 NDIS - ok
13:29:52.0443 72040 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:29:52.0447 72040 NdisCap - ok
13:29:52.0458 72040 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:29:52.0459 72040 NdisTapi - ok
13:29:52.0476 72040 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:29:52.0503 72040 Ndisuio - ok
13:29:52.0523 72040 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:29:52.0525 72040 NdisWan - ok
13:29:52.0544 72040 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:29:52.0545 72040 NDProxy - ok
13:29:52.0563 72040 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:29:52.0564 72040 NetBIOS - ok
13:29:52.0579 72040 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:29:52.0581 72040 NetBT - ok
13:29:52.0591 72040 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
13:29:52.0592 72040 Netlogon - ok
13:29:52.0619 72040 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:29:52.0624 72040 Netman - ok
13:29:52.0668 72040 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:29:52.0670 72040 NetMsmqActivator - ok
13:29:52.0673 72040 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:29:52.0674 72040 NetPipeActivator - ok
13:29:52.0687 72040 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:29:52.0691 72040 netprofm - ok
13:29:52.0695 72040 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:29:52.0696 72040 NetTcpActivator - ok
13:29:52.0698 72040 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:29:52.0699 72040 NetTcpPortSharing - ok
13:29:52.0720 72040 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:29:52.0721 72040 nfrd960 - ok
13:29:52.0844 72040 [ 93F304DEB07095BCF33BD1C17C2DB2A7 ] NIHardwareService C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
13:29:52.0871 72040 NIHardwareService - ok
13:29:52.0901 72040 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:29:52.0905 72040 NlaSvc - ok
13:29:52.0913 72040 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:29:52.0914 72040 Npfs - ok
13:29:52.0929 72040 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:29:52.0931 72040 nsi - ok
13:29:52.0948 72040 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:29:52.0948 72040 nsiproxy - ok
13:29:52.0989 72040 [ 361D638115E968754F23650A0324F204 ] nsService C:\Program Files (x86)\NovaStor\NovaStor NovaBACKUP\nsService.exe
13:29:52.0993 72040 nsService - ok
13:29:53.0033 72040 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:29:53.0058 72040 Ntfs - ok
13:29:53.0093 72040 [ 1B32C54B95121AB1683C7B83B2DB4B96 ] NTIOLib_1_0_4 C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys
13:29:53.0147 72040 NTIOLib_1_0_4 - ok
13:29:53.0161 72040 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:29:53.0162 72040 Null - ok
13:29:53.0384 72040 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:29:53.0581 72040 nvlddmkm - ok
13:29:53.0606 72040 [ 7AEAB7A9C665E97F8CF2CC87D9CCEEBB ] NvnUsbAudio C:\Windows\system32\DRIVERS\nvnusbaudio.sys
13:29:53.0664 72040 NvnUsbAudio - ok
13:29:53.0678 72040 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:29:53.0680 72040 nvraid - ok
13:29:53.0693 72040 [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:29:53.0695 72040 nvstor - ok
13:29:53.0736 72040 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] nvsvc C:\Windows\system32\nvvsvc.exe
13:29:53.0744 72040 nvsvc - ok
13:29:53.0803 72040 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
13:29:53.0814 72040 nvUpdatusService - ok
13:29:53.0840 72040 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:29:53.0842 72040 nv_agp - ok
13:29:53.0855 72040 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:29:53.0858 72040 ohci1394 - ok
13:29:53.0905 72040 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:29:53.0907 72040 ose - ok
13:29:54.0019 72040 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:29:54.0060 72040 osppsvc - ok
13:29:54.0088 72040 [ E26C2C2F424ABE0C2A9F16536F853E08 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
13:29:54.0090 72040 ossrv - ok
13:29:54.0109 72040 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:29:54.0113 72040 p2pimsvc - ok
13:29:54.0127 72040 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:29:54.0132 72040 p2psvc - ok
13:29:54.0155 72040 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:29:54.0172 72040 Parport - ok
13:29:54.0207 72040 Partizan - ok
13:29:54.0228 72040 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:29:54.0229 72040 partmgr - ok
13:29:54.0248 72040 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:29:54.0251 72040 PcaSvc - ok
13:29:54.0260 72040 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
13:29:54.0262 72040 pci - ok
13:29:54.0265 72040 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:29:54.0266 72040 pciide - ok
13:29:54.0279 72040 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:29:54.0281 72040 pcmcia - ok
13:29:54.0292 72040 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:29:54.0293 72040 pcw - ok
13:29:54.0314 72040 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:29:54.0320 72040 PEAUTH - ok
13:29:54.0342 72040 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
13:29:54.0354 72040 PeerDistSvc - ok
13:29:54.0411 72040 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:29:54.0413 72040 PerfHost - ok
13:29:54.0448 72040 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
13:29:54.0461 72040 pla - ok
13:29:54.0489 72040 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:29:54.0494 72040 PlugPlay - ok
13:29:54.0509 72040 PnkBstrA - ok
13:29:54.0516 72040 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:29:54.0518 72040 PNRPAutoReg - ok
13:29:54.0534 72040 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:29:54.0536 72040 PNRPsvc - ok
13:29:54.0557 72040 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:29:54.0562 72040 PolicyAgent - ok
13:29:54.0584 72040 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:29:54.0587 72040 Power - ok
13:29:54.0611 72040 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:29:54.0612 72040 PptpMiniport - ok
13:29:54.0633 72040 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:29:54.0634 72040 Processor - ok
13:29:54.0652 72040 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:29:54.0655 72040 ProfSvc - ok
13:29:54.0674 72040 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:29:54.0675 72040 ProtectedStorage - ok
13:29:54.0704 72040 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:29:54.0706 72040 Psched - ok
13:29:54.0747 72040 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:29:54.0760 72040 ql2300 - ok
13:29:54.0785 72040 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:29:54.0787 72040 ql40xx - ok
13:29:54.0814 72040 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:29:54.0817 72040 QWAVE - ok
13:29:54.0827 72040 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:29:54.0828 72040 QWAVEdrv - ok
13:29:54.0835 72040 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:29:54.0838 72040 RasAcd - ok
13:29:54.0857 72040 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:29:54.0858 72040 RasAgileVpn - ok
13:29:54.0872 72040 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:29:54.0874 72040 RasAuto - ok
13:29:54.0890 72040 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:29:54.0891 72040 Rasl2tp - ok
13:29:54.0924 72040 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
13:29:54.0928 72040 RasMan - ok
13:29:54.0942 72040 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:29:54.0943 72040 RasPppoe - ok
13:29:54.0954 72040 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:29:54.0956 72040 RasSstp - ok
13:29:54.0979 72040 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:29:54.0982 72040 rdbss - ok
13:29:54.0985 72040 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:29:54.0986 72040 rdpbus - ok
13:29:54.0998 72040 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:29:54.0998 72040 RDPCDD - ok
13:29:55.0023 72040 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
13:29:55.0028 72040 RDPDR - ok
13:29:55.0060 72040 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:29:55.0060 72040 RDPENCDD - ok
13:29:55.0068 72040 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:29:55.0069 72040 RDPREFMP - ok
13:29:55.0122 72040 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:29:55.0156 72040 RdpVideoMiniport - ok
13:29:55.0177 72040 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:29:55.0207 72040 RDPWD - ok
13:29:55.0233 72040 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:29:55.0235 72040 rdyboost - ok
13:29:55.0254 72040 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:29:55.0256 72040 RemoteAccess - ok
13:29:55.0279 72040 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:29:55.0282 72040 RemoteRegistry - ok
13:29:55.0303 72040 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:29:55.0308 72040 RFCOMM - ok
13:29:55.0332 72040 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
13:29:55.0333 72040 RimUsb - ok
13:29:55.0357 72040 [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
13:29:55.0358 72040 ROOTMODEM - ok
13:29:55.0363 72040 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:29:55.0365 72040 RpcEptMapper - ok
13:29:55.0382 72040 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:29:55.0383 72040 RpcLocator - ok
13:29:55.0406 72040 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
13:29:55.0409 72040 RpcSs - ok
13:29:55.0428 72040 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:29:55.0430 72040 rspndr - ok
13:29:55.0458 72040 [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:29:55.0464 72040 RTL8167 - ok
13:29:55.0510 72040 [ 651F33C42D88EC9B577EA5E9AC4B6970 ] rtpMIDIService C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe
13:29:55.0622 72040 rtpMIDIService - ok
13:29:55.0640 72040 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
13:29:55.0641 72040 s3cap - ok
13:29:55.0649 72040 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
13:29:55.0650 72040 SamSs - ok
13:29:55.0659 72040 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:29:55.0660 72040 sbp2port - ok
13:29:55.0679 72040 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:29:55.0682 72040 SCardSvr - ok
13:29:55.0698 72040 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:29:55.0701 72040 scfilter - ok
13:29:55.0728 72040 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
13:29:55.0738 72040 Schedule - ok
13:29:55.0760 72040 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:29:55.0760 72040 SCPolicySvc - ok
13:29:55.0777 72040 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:29:55.0780 72040 SDRSVC - ok
13:29:55.0805 72040 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:29:55.0805 72040 secdrv - ok
13:29:55.0813 72040 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
13:29:55.0815 72040 seclogon - ok
13:29:55.0827 72040 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:29:55.0830 72040 SENS - ok
13:29:55.0843 72040 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:29:55.0845 72040 SensrSvc - ok
13:29:55.0862 72040 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:29:55.0863 72040 Serenum - ok
13:29:55.0871 72040 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:29:55.0873 72040 Serial - ok
13:29:55.0891 72040 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:29:55.0895 72040 sermouse - ok
13:29:55.0931 72040 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:29:55.0934 72040 SessionEnv - ok
13:29:55.0945 72040 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:29:55.0948 72040 sffdisk - ok
13:29:55.0961 72040 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:29:55.0977 72040 sffp_mmc - ok
13:29:55.0995 72040 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:29:55.0999 72040 sffp_sd - ok
13:29:56.0016 72040 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:29:56.0017 72040 sfloppy - ok
13:29:56.0037 72040 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:29:56.0041 72040 SharedAccess - ok
13:29:56.0052 72040 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:29:56.0057 72040 ShellHWDetection - ok
13:29:56.0076 72040 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:29:56.0077 72040 SiSRaid2 - ok
13:29:56.0084 72040 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:29:56.0086 72040 SiSRaid4 - ok
13:29:56.0166 72040 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:29:56.0191 72040 Skype C2C Service - ok
13:29:56.0242 72040 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:29:56.0244 72040 SkypeUpdate - ok
13:29:56.0270 72040 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:29:56.0275 72040 Smb - ok
13:29:56.0295 72040 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:29:56.0297 72040 SNMPTRAP - ok
13:29:56.0460 72040 [ 37D91C6385BB1104D67925FC43800ED0 ] SNPSTD3 C:\Windows\system32\DRIVERS\snpstd3.sys
13:29:56.0613 72040 SNPSTD3 - ok
13:29:56.0681 72040 [ 3AF5C4C8930F5E208BD2D99E435F3129 ] SplashtopRemoteService C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
13:29:56.0685 72040 SplashtopRemoteService - ok
13:29:56.0700 72040 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:29:56.0701 72040 spldr - ok
13:29:56.0726 72040 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
13:29:56.0733 72040 Spooler - ok
13:29:56.0791 72040 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
13:29:56.0821 72040 sppsvc - ok
13:29:56.0841 72040 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:29:56.0843 72040 sppuinotify - ok
13:29:56.0872 72040 [ D519AD2DE7968CD2B47FEA807C5B29B2 ] sptd C:\Windows\System32\Drivers\sptd.sys
13:29:56.0873 72040 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: D519AD2DE7968CD2B47FEA807C5B29B2
13:29:56.0884 72040 sptd ( LockedFile.Multi.Generic ) - warning
13:29:56.0884 72040 sptd - detected LockedFile.Multi.Generic (1)
13:29:56.0932 72040 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
13:29:56.0934 72040 SQLBrowser - ok
13:29:56.0967 72040 [ 3C432A96363097870995E2A3C8B66ABD ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:29:56.0969 72040 SQLWriter - ok
13:29:56.0985 72040 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
13:29:56.0990 72040 srv - ok
13:29:56.0997 72040 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:29:57.0000 72040 srv2 - ok
13:29:57.0005 72040 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:29:57.0006 72040 srvnet - ok
13:29:57.0042 72040 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:29:57.0045 72040 SSDPSRV - ok
13:29:57.0052 72040 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:29:57.0055 72040 SstpSvc - ok
13:29:57.0074 72040 [ DAA02A6E84A4F99B5B9CD3EF8D59D652 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
13:29:57.0076 72040 ssudmdm - ok
13:29:57.0117 72040 [ 1CFA4A1F3C7BB4C8F299E00428EB8677 ] SSUService C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
13:29:57.0119 72040 SSUService - ok
13:29:57.0190 72040 [ C354621B6B94E10AE7F5CDBE745FEB86 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:29:57.0193 72040 Stereo Service - ok
13:29:57.0207 72040 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:29:57.0208 72040 stexstor - ok
13:29:57.0236 72040 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
13:29:57.0242 72040 stisvc - ok
13:29:57.0255 72040 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
13:29:57.0256 72040 storflt - ok
13:29:57.0265 72040 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
13:29:57.0266 72040 storvsc - ok
13:29:57.0280 72040 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:29:57.0281 72040 swenum - ok
13:29:57.0357 72040 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:29:57.0362 72040 SwitchBoard - ok
13:29:57.0383 72040 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:29:57.0389 72040 swprv - ok
13:29:57.0393 72040 Symantec SymSnap VSS Provider - ok
13:29:57.0407 72040 [ A3146E50F54BBE63708DF65BBD95547D ] symsnap C:\Windows\system32\DRIVERS\symsnap.sys
13:29:57.0409 72040 symsnap - ok
13:29:57.0411 72040 SymSnapService - ok
13:29:57.0443 72040 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
13:29:57.0444 72040 Synth3dVsc - ok
13:29:57.0488 72040 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
13:29:57.0504 72040 SysMain - ok
13:29:57.0519 72040 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:29:57.0521 72040 TabletInputService - ok
13:29:57.0534 72040 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:29:57.0538 72040 TapiSrv - ok
13:29:57.0556 72040 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:29:57.0558 72040 TBS - ok
13:29:57.0602 72040 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:29:57.0618 72040 Tcpip - ok
13:29:57.0640 72040 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:29:57.0649 72040 TCPIP6 - ok
13:29:57.0666 72040 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:29:57.0667 72040 tcpipreg - ok
13:29:57.0688 72040 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:29:57.0714 72040 TDPIPE - ok
13:29:57.0743 72040 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:29:57.0763 72040 TDTCP - ok
13:29:57.0787 72040 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:29:57.0789 72040 tdx - ok
13:29:57.0804 72040 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:29:57.0805 72040 TermDD - ok
13:29:57.0844 72040 [ 2B5BDFF688EC9871D7EC5837833374E9 ] terminpt C:\Windows\system32\drivers\terminpt.sys
13:29:57.0852 72040 terminpt - ok
13:29:57.0877 72040 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
13:29:57.0884 72040 TermService - ok
13:29:57.0912 72040 [ 678BD7D7620368AF1F399662E9B941B4 ] teVirtualMIDI64 C:\Windows\system32\DRIVERS\teVirtualMIDI64.sys
13:29:57.0996 72040 teVirtualMIDI64 - ok
13:29:58.0032 72040 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:29:58.0034 72040 Themes - ok
13:29:58.0053 72040 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:29:58.0055 72040 THREADORDER - ok
13:29:58.0065 72040 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:29:58.0068 72040 TrkWks - ok
13:29:58.0098 72040 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:29:58.0100 72040 TrustedInstaller - ok
13:29:58.0120 72040 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:29:58.0123 72040 tssecsrv - ok
13:29:58.0146 72040 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:29:58.0150 72040 TsUsbFlt - ok
13:29:58.0169 72040 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
13:29:58.0170 72040 TsUsbGD - ok
13:29:58.0199 72040 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
13:29:58.0200 72040 tsusbhub - ok
13:29:58.0280 72040 [ C414BF8C1330E7F9C294105617008D54 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
13:29:58.0297 72040 TuneUp.UtilitiesSvc - ok
13:29:58.0316 72040 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys
13:29:58.0316 72040 TuneUpUtilitiesDrv - ok
13:29:58.0338 72040 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:29:58.0340 72040 tunnel - ok
13:29:58.0354 72040 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:29:58.0355 72040 uagp35 - ok
13:29:58.0379 72040 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:29:58.0382 72040 udfs - ok
13:29:58.0406 72040 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:29:58.0408 72040 UI0Detect - ok
13:29:58.0427 72040 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:29:58.0428 72040 uliagpkx - ok
13:29:58.0450 72040 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:29:58.0451 72040 umbus - ok
13:29:58.0471 72040 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
13:29:58.0474 72040 UmPass - ok
13:29:58.0490 72040 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
13:29:58.0493 72040 UmRdpService - ok
13:29:58.0507 72040 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:29:58.0511 72040 upnphost - ok
13:29:58.0536 72040 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
13:29:58.0540 72040 usbaudio - ok
13:29:58.0560 72040 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:29:58.0561 72040 usbccgp - ok
13:29:58.0596 72040 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:29:58.0598 72040 usbcir - ok
13:29:58.0618 72040 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:29:58.0620 72040 usbehci - ok
13:29:58.0654 72040 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:29:58.0657 72040 usbhub - ok
13:29:58.0665 72040 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:29:58.0666 72040 usbohci - ok
13:29:58.0688 72040 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
13:29:58.0708 72040 usbprint - ok
13:29:58.0732 72040 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:29:58.0733 72040 usbscan - ok
13:29:58.0755 72040 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:29:58.0800 72040 USBSTOR - ok
13:29:58.0814 72040 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:29:58.0817 72040 usbuhci - ok
13:29:58.0845 72040 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
13:29:58.0848 72040 usbvideo - ok
13:29:58.0867 72040 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:29:58.0869 72040 UxSms - ok
13:29:58.0925 72040 [ A2F6D647D168B78791B4B19C088EBE4B ] UxTuneUp C:\Windows\System32\uxtuneup.dll
13:29:58.0928 72040 UxTuneUp - ok
13:29:58.0946 72040 [ 39583837498D6430833B03B37BCB1EFF ] v2imount C:\Windows\system32\DRIVERS\v2imount.sys
13:29:58.0948 72040 v2imount - ok
13:29:58.0958 72040 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:29:58.0959 72040 VaultSvc - ok
13:29:58.0981 72040 [ 84BB306B7863883018D7F3EB0C453BD5 ] VClone C:\Windows\system32\DRIVERS\VClone.sys
13:29:58.0982 72040 VClone - ok
13:29:59.0011 72040 [ 389AB97570E7F25192CA18B6348C904F ] VComm C:\Windows\system32\DRIVERS\VComm.sys
13:29:59.0012 72040 VComm - ok
13:29:59.0031 72040 [ 72F11B412446FAAF95B156A6B781502C ] VcommMgr C:\Windows\system32\Drivers\VcommMgr.sys
13:29:59.0032 72040 VcommMgr - ok
13:29:59.0048 72040 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:29:59.0049 72040 vdrvroot - ok
13:29:59.0070 72040 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:29:59.0076 72040 vds - ok
13:29:59.0096 72040 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:29:59.0099 72040 vga - ok
13:29:59.0110 72040 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:29:59.0111 72040 VgaSave - ok
13:29:59.0114 72040 VGPU - ok
13:29:59.0124 72040 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:29:59.0146 72040 vhdmp - ok
13:29:59.0182 72040 [ F3678125BFF5615B087EA7F4BD363370 ] VHidMinidrv C:\Windows\system32\drivers\VHIDMini.sys
13:29:59.0183 72040 VHidMinidrv - ok
13:29:59.0203 72040 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:29:59.0204 72040 viaide - ok
13:29:59.0217 72040 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
13:29:59.0219 72040 vmbus - ok
13:29:59.0234 72040 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
13:29:59.0235 72040 VMBusHID - ok
13:29:59.0238 72040 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:29:59.0239 72040 volmgr - ok
13:29:59.0255 72040 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:29:59.0258 72040 volmgrx - ok
13:29:59.0274 72040 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:29:59.0277 72040 volsnap - ok
13:29:59.0292 72040 [ D5C7C0AD442B182DA1D3565544FE1483 ] VProEventMonitor C:\Windows\system32\DRIVERS\vproeventmonitor.sys
13:29:59.0293 72040 VProEventMonitor - ok
13:29:59.0319 72040 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:29:59.0321 72040 vsmraid - ok
13:29:59.0362 72040 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:29:59.0376 72040 VSS - ok
13:29:59.0384 72040 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
13:29:59.0387 72040 vwifibus - ok
13:29:59.0414 72040 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:29:59.0419 72040 W32Time - ok
13:29:59.0433 72040 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:29:59.0434 72040 WacomPen - ok
13:29:59.0472 72040 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:29:59.0474 72040 WANARP - ok
13:29:59.0477 72040 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:29:59.0478 72040 Wanarpv6 - ok
13:29:59.0530 72040 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:29:59.0541 72040 WatAdminSvc - ok
13:29:59.0587 72040 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:29:59.0601 72040 wbengine - ok
13:29:59.0626 72040 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:29:59.0629 72040 WbioSrvc - ok
13:29:59.0647 72040 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:29:59.0652 72040 wcncsvc - ok
13:29:59.0659 72040 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:29:59.0661 72040 WcsPlugInService - ok
13:29:59.0678 72040 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:29:59.0679 72040 Wd - ok
13:29:59.0729 72040 [ 7B8CDBDEB84DA1A0C8897728BEBA80B8 ] WDBtnMgrSvc.exe C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
13:29:59.0731 72040 WDBtnMgrSvc.exe - ok
13:29:59.0747 72040 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
13:29:59.0748 72040 WDC_SAM - ok
13:29:59.0764 72040 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:29:59.0770 72040 Wdf01000 - ok
13:29:59.0784 72040 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:29:59.0787 72040 WdiServiceHost - ok
13:29:59.0789 72040 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:29:59.0791 72040 WdiSystemHost - ok
13:29:59.0818 72040 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:29:59.0822 72040 WebClient - ok
13:29:59.0843 72040 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:29:59.0847 72040 Wecsvc - ok
13:29:59.0853 72040 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:29:59.0855 72040 wercplsupport - ok
13:29:59.0872 72040 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:29:59.0875 72040 WerSvc - ok
13:29:59.0895 72040 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:29:59.0896 72040 WfpLwf - ok
13:29:59.0922 72040 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
13:29:59.0924 72040 WimFltr - ok
13:29:59.0934 72040 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:29:59.0938 72040 WIMMount - ok
13:29:59.0944 72040 WinDefend - ok
13:29:59.0948 72040 WinHttpAutoProxySvc - ok
13:29:59.0990 72040 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:29:59.0992 72040 Winmgmt - ok
13:30:00.0031 72040 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:30:00.0050 72040 WinRM - ok
13:30:00.0077 72040 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:30:00.0081 72040 WinUsb - ok
13:30:00.0113 72040 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:30:00.0122 72040 Wlansvc - ok
13:30:00.0158 72040 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:30:00.0159 72040 wlcrasvc - ok
13:30:00.0228 72040 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:30:00.0247 72040 wlidsvc - ok
13:30:00.0263 72040 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:30:00.0264 72040 WmiAcpi - ok
13:30:00.0288 72040 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:30:00.0290 72040 wmiApSrv - ok
13:30:00.0318 72040 WMPNetworkSvc - ok
13:30:00.0336 72040 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:30:00.0338 72040 WPCSvc - ok
13:30:00.0357 72040 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:30:00.0359 72040 WPDBusEnum - ok
13:30:00.0372 72040 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:30:00.0373 72040 ws2ifsl - ok
13:30:00.0379 72040 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
13:30:00.0382 72040 wscsvc - ok
13:30:00.0403 72040 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
13:30:00.0404 72040 WSDPrintDevice - ok
13:30:00.0424 72040 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
13:30:00.0424 72040 WSDScan - ok
13:30:00.0427 72040 WSearch - ok
13:30:00.0474 72040 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:30:00.0496 72040 wuauserv - ok
13:30:00.0510 72040 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:30:00.0512 72040 WudfPf - ok
13:30:00.0546 72040 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:30:00.0548 72040 WUDFRd - ok
13:30:00.0567 72040 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:30:00.0570 72040 wudfsvc - ok
13:30:00.0588 72040 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:30:00.0592 72040 WwanSvc - ok
13:30:00.0602 72040 ================ Scan global ===============================
13:30:00.0624 72040 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:30:00.0641 72040 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:30:00.0648 72040 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:30:00.0663 72040 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:30:00.0675 72040 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:30:00.0677 72040 [Global] - ok
13:30:00.0677 72040 ================ Scan MBR ==================================
13:30:00.0685 72040 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:30:00.0837 72040 \Device\Harddisk0\DR0 - ok
13:30:00.0841 72040 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
13:30:00.0948 72040 \Device\Harddisk1\DR1 - ok
13:30:00.0948 72040 ================ Scan VBR ==================================
13:30:00.0950 72040 [ A83A1A475DE2533B825B579D1D809733 ] \Device\Harddisk0\DR0\Partition1
13:30:00.0951 72040 \Device\Harddisk0\DR0\Partition1 - ok
13:30:00.0966 72040 [ 8CD1AF245621C398F94D7637AEB7034A ] \Device\Harddisk0\DR0\Partition2
13:30:00.0967 72040 \Device\Harddisk0\DR0\Partition2 - ok
13:30:00.0969 72040 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
13:30:00.0970 72040 \Device\Harddisk1\DR1\Partition1 - ok
13:30:00.0972 72040 [ FDF19E736BF0A579F6A30849FFE25CEF ] \Device\Harddisk1\DR1\Partition2
13:30:00.0974 72040 \Device\Harddisk1\DR1\Partition2 - ok
13:30:00.0974 72040 ============================================================
13:30:00.0974 72040 Scan finished
13:30:00.0974 72040 ============================================================
13:30:00.0980 72264 Detected object count: 1
13:30:00.0980 72264 Actual detected object count: 1
13:32:35.0579 72264 C:\Windows\System32\Drivers\sptd.sys - copied to quarantine
13:32:35.0579 72264 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine


aswMBR:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-30 13:37:14
-----------------------------
13:37:14.719 OS Version: Windows x64 6.1.7601 Service Pack 1
13:37:14.719 Number of processors: 4 586 0x403
13:37:14.720 ComputerName: SUBATOM UserName: roland
13:37:16.143 Initialize success
13:39:36.238 AVAST engine defs: 12093000
13:41:23.684 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T1L0-7
13:41:23.685 Disk 0 Vendor: Hitachi_HDT721010SLA360 ST6OA31B Size: 953869MB BusType: 3
13:41:23.699 Disk 0 MBR read successfully
13:41:23.701 Disk 0 MBR scan
13:41:23.764 Disk 0 Windows 7 default MBR code
13:41:23.773 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 482968 MB offset 2048
13:41:23.805 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 470898 MB offset 989120512
13:41:23.845 Disk 0 scanning C:\Windows\system32\drivers
13:41:38.637 Service scanning
13:42:11.972 Modules scanning
13:42:11.976 Disk 0 trace - called modules:
13:42:11.986 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80069ee2c0]<<sptd.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
13:42:11.990 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007ada790]
13:42:12.316 3 CLASSPNP.SYS[fffff8800120143f] -> nt!IofCallDriver -> [0xfffffa80069e1580]
13:42:12.319 5 ACPI.sys[fffff8800100b7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T1L0-7[0xfffffa8006b06680]
13:42:12.322 \Driver\atapi[0xfffffa8006afb8e0] -> IRP_MJ_CREATE -> 0xfffffa80069ee2c0
13:42:13.336 AVAST engine scan C:\
14:53:39.769 Disk 0 MBR has been saved successfully to "C:\Users\roland\Desktop\REIMAGE SUPPORT\1.10.2012\MBR.dat"
14:53:39.778 The log file has been saved successfully to "C:\Users\roland\Desktop\REIMAGE SUPPORT\1.10.2012\aswMBR.txt"


ESET online scanner:
C:\Program Files (x86)\Raw Image Viewer\MyBabylonTB.exe Win32/Toolbar.Babylon application cleaned by deleting - quarantined

Still having strange Memory usage by multiple svchost and chrome processes.... :/
What can I do next ?

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:58 PM

Posted 30 September 2012 - 10:25 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users