Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Patched.A Zeroaccess AND FBI Moneypak Virus


  • Please log in to reply
8 replies to this topic

#1 HeadshotIO

HeadshotIO

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:58 AM

Posted 18 October 2012 - 03:00 PM

I am experiencing the patched.a zero access virus in addition to the FBI ransomware virus and I can't figure it out. I've looked at other threads but it appears that some of the information on there is personalized to whomever is having the problem. Thank you for the time!

Infections
;"File";"Infection";"Result"
;"C:\Windows\System32\services.exe";"Virus identified Win64/Patched.A";"Object is white-listed (critical/system file that should not be removed)"


That's part of it. It is also detecting two trojans with desktop.ini being something to do with it.

Edited by HeadshotIO, 18 October 2012 - 03:40 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:58 AM

Posted 18 October 2012 - 04:08 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 HeadshotIO

HeadshotIO
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:58 AM

Posted 18 October 2012 - 04:24 PM

TDSSkiller:

16:22:32.0525 4160 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
16:22:32.0993 4160 ============================================================
16:22:32.0993 4160 Current date / time: 2012/10/18 16:22:32.0993
16:22:32.0993 4160 SystemInfo:
16:22:32.0993 4160
16:22:32.0993 4160 OS Version: 6.1.7601 ServicePack: 1.0
16:22:32.0993 4160 Product type: Workstation
16:22:32.0993 4160 ComputerName: LADYBIRD
16:22:32.0993 4160 UserName: Stewart
16:22:32.0993 4160 Windows directory: C:\Windows
16:22:32.0993 4160 System windows directory: C:\Windows
16:22:32.0993 4160 Running under WOW64
16:22:32.0993 4160 Processor architecture: Intel x64
16:22:32.0993 4160 Number of processors: 6
16:22:32.0993 4160 Page size: 0x1000
16:22:32.0993 4160 Boot type: Normal boot
16:22:32.0993 4160 ============================================================
16:22:34.0132 4160 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
16:22:34.0132 4160 Drive \Device\Harddisk1\DR2 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:22:34.0241 4160 ============================================================
16:22:34.0241 4160 \Device\Harddisk0\DR0:
16:22:34.0241 4160 MBR partitions:
16:22:34.0241 4160 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:22:34.0241 4160 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4A825000
16:22:34.0241 4160 \Device\Harddisk1\DR2:
16:22:34.0273 4160 MBR partitions:
16:22:34.0273 4160 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xC, StartLBA 0x800, BlocksNum 0x4A8566C1
16:22:34.0273 4160 ============================================================
16:22:34.0288 4160 C: <-> \Device\Harddisk0\DR0\Partition2
16:22:34.0351 4160 E: <-> \Device\Harddisk1\DR2\Partition1
16:22:34.0351 4160 ============================================================
16:22:34.0351 4160 Initialize success
16:22:34.0351 4160 ============================================================
16:22:39.0140 2468 ============================================================
16:22:39.0140 2468 Scan started
16:22:39.0140 2468 Mode: Manual;
16:22:39.0140 2468 ============================================================
16:22:41.0324 2468 ================ Scan system memory ========================
16:22:41.0324 2468 System memory - ok
16:22:41.0324 2468 ================ Scan services =============================
16:22:41.0745 2468 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:22:41.0745 2468 1394ohci - ok
16:22:41.0776 2468 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:22:41.0776 2468 ACPI - ok
16:22:41.0808 2468 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:22:41.0808 2468 AcpiPmi - ok
16:22:42.0088 2468 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:22:42.0088 2468 AdobeARMservice - ok
16:22:42.0928 2468 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:22:42.0934 2468 AdobeFlashPlayerUpdateSvc - ok
16:22:43.0002 2468 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:22:43.0007 2468 adp94xx - ok
16:22:43.0025 2468 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:22:43.0028 2468 adpahci - ok
16:22:43.0041 2468 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:22:43.0043 2468 adpu320 - ok
16:22:43.0071 2468 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:22:43.0072 2468 AeLookupSvc - ok
16:22:43.0204 2468 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:22:43.0204 2468 AFD - ok
16:22:43.0251 2468 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:22:43.0251 2468 agp440 - ok
16:22:43.0376 2468 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:22:43.0376 2468 ALG - ok
16:22:43.0391 2468 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:22:43.0391 2468 aliide - ok
16:22:43.0422 2468 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:22:43.0422 2468 AMD External Events Utility - ok
16:22:43.0672 2468 AMD FUEL Service - ok
16:22:43.0719 2468 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:22:43.0719 2468 amdide - ok
16:22:43.0812 2468 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
16:22:43.0812 2468 amdiox64 - ok
16:22:43.0828 2468 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:22:43.0828 2468 AmdK8 - ok
16:22:44.0452 2468 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:22:44.0530 2468 amdkmdag - ok
16:22:44.0592 2468 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:22:44.0624 2468 amdkmdap - ok
16:22:44.0780 2468 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:22:44.0780 2468 AmdPPM - ok
16:22:44.0795 2468 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:22:44.0811 2468 amdsata - ok
16:22:44.0826 2468 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:22:44.0826 2468 amdsbs - ok
16:22:44.0842 2468 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:22:44.0842 2468 amdxata - ok
16:22:44.0858 2468 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:22:44.0858 2468 AODDriver4.1 - ok
16:22:44.0889 2468 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:22:44.0889 2468 AppID - ok
16:22:44.0904 2468 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:22:44.0904 2468 AppIDSvc - ok
16:22:44.0951 2468 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:22:44.0951 2468 Appinfo - ok
16:22:45.0123 2468 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:22:45.0123 2468 Apple Mobile Device - ok
16:22:45.0201 2468 [ 301AA64F9643BC453D90A66C4C0E7204 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
16:22:45.0201 2468 AppleCharger - ok
16:22:45.0326 2468 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
16:22:45.0326 2468 AppleChargerSrv - ok
16:22:45.0435 2468 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
16:22:45.0466 2468 AppMgmt - ok
16:22:45.0528 2468 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:22:45.0528 2468 arc - ok
16:22:45.0653 2468 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:22:45.0669 2468 arcsas - ok
16:22:45.0716 2468 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:22:45.0716 2468 AsyncMac - ok
16:22:45.0778 2468 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:22:45.0778 2468 atapi - ok
16:22:45.0856 2468 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:22:45.0856 2468 AudioEndpointBuilder - ok
16:22:45.0872 2468 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:22:45.0872 2468 AudioSrv - ok
16:22:46.0152 2468 [ 7A0F6A3E0E41425B9BA54616B482668A ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
16:22:46.0262 2468 AVGIDSAgent - ok
16:22:46.0293 2468 [ E6671E90D38C88764412E07C9D9B3D63 ] AVGIDSDriver C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
16:22:46.0293 2468 AVGIDSDriver - ok
16:22:46.0308 2468 [ 1553B388E0F0462C25AD8F30C3C29E83 ] AVGIDSEH C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
16:22:46.0324 2468 AVGIDSEH - ok
16:22:46.0340 2468 [ DCA426A66739E75F51A72160DFB945AD ] AVGIDSFilter C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
16:22:46.0340 2468 AVGIDSFilter - ok
16:22:46.0371 2468 [ FF7383388A7D2283DAE5831ABC2B0720 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
16:22:46.0386 2468 Avgldx64 - ok
16:22:46.0386 2468 [ 997D002827D3E3DCBBB25BF46DB161AB ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
16:22:46.0386 2468 Avgmfx64 - ok
16:22:46.0449 2468 [ BCCFE3374C887075CDE2AC8FDB1CB2F8 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
16:22:46.0449 2468 Avgrkx64 - ok
16:22:46.0527 2468 [ 0D49ADCEBE243B79366EA523B647519A ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
16:22:46.0558 2468 Avgtdia - ok
16:22:46.0574 2468 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
16:22:46.0589 2468 avgwd - ok
16:22:46.0620 2468 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:22:46.0636 2468 AxInstSV - ok
16:22:46.0667 2468 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:22:46.0683 2468 b06bdrv - ok
16:22:46.0698 2468 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:22:46.0714 2468 b57nd60a - ok
16:22:46.0745 2468 [ 382B151DAFFE4A9CE9DA9F564B66761E ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
16:22:46.0745 2468 BCUService - ok
16:22:46.0776 2468 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:22:46.0776 2468 BDESVC - ok
16:22:46.0792 2468 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:22:46.0792 2468 Beep - ok
16:22:47.0120 2468 [ A45BE4E091636F6C86D6E4FC945D5A26 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120928.001\BHDrvx64.sys
16:22:47.0166 2468 BHDrvx64 - ok
16:22:47.0182 2468 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:22:47.0182 2468 blbdrive - ok
16:22:47.0260 2468 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:22:47.0260 2468 Bonjour Service - ok
16:22:47.0276 2468 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:22:47.0276 2468 bowser - ok
16:22:47.0291 2468 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:22:47.0307 2468 BrFiltLo - ok
16:22:47.0322 2468 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:22:47.0322 2468 BrFiltUp - ok
16:22:47.0416 2468 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:22:47.0416 2468 Browser - ok
16:22:47.0447 2468 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:22:47.0447 2468 Brserid - ok
16:22:47.0478 2468 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:22:47.0478 2468 BrSerWdm - ok
16:22:47.0510 2468 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:22:47.0510 2468 BrUsbMdm - ok
16:22:47.0525 2468 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:22:47.0525 2468 BrUsbSer - ok
16:22:47.0556 2468 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:22:47.0556 2468 BTHMODEM - ok
16:22:47.0572 2468 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:22:47.0588 2468 bthserv - ok
16:22:47.0650 2468 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\0604000.009\ccSetx64.sys
16:22:47.0666 2468 ccSet_N360 - ok
16:22:47.0681 2468 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:22:47.0681 2468 cdfs - ok
16:22:47.0712 2468 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:22:47.0712 2468 cdrom - ok
16:22:47.0759 2468 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:22:47.0759 2468 CertPropSvc - ok
16:22:47.0775 2468 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:22:47.0775 2468 circlass - ok
16:22:47.0868 2468 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:22:47.0868 2468 CLFS - ok
16:22:47.0978 2468 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:22:47.0993 2468 clr_optimization_v2.0.50727_32 - ok
16:22:48.0024 2468 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:22:48.0040 2468 clr_optimization_v2.0.50727_64 - ok
16:22:48.0165 2468 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:22:48.0165 2468 clr_optimization_v4.0.30319_32 - ok
16:22:48.0180 2468 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:22:48.0180 2468 clr_optimization_v4.0.30319_64 - ok
16:22:48.0196 2468 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:22:48.0196 2468 CmBatt - ok
16:22:48.0227 2468 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:22:48.0227 2468 cmdide - ok
16:22:48.0414 2468 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
16:22:48.0461 2468 CNG - ok
16:22:48.0477 2468 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:22:48.0477 2468 Compbatt - ok
16:22:48.0524 2468 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:22:48.0524 2468 CompositeBus - ok
16:22:48.0524 2468 COMSysApp - ok
16:22:48.0539 2468 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:22:48.0539 2468 crcdisk - ok
16:22:48.0602 2468 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:22:48.0617 2468 CryptSvc - ok
16:22:48.0680 2468 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
16:22:48.0711 2468 CSC - ok
16:22:48.0773 2468 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
16:22:48.0789 2468 CscService - ok
16:22:48.0804 2468 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:22:48.0820 2468 DcomLaunch - ok
16:22:48.0851 2468 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:22:48.0851 2468 defragsvc - ok
16:22:48.0867 2468 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:22:48.0867 2468 DfsC - ok
16:22:48.0898 2468 dgderdrv - ok
16:22:48.0945 2468 [ 6060106CE00F32F63F1A73160E46E9D2 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
16:22:48.0945 2468 dg_ssudbus - ok
16:22:48.0976 2468 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:22:48.0976 2468 Dhcp - ok
16:22:48.0992 2468 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:22:48.0992 2468 discache - ok
16:22:49.0007 2468 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:22:49.0007 2468 Disk - ok
16:22:49.0038 2468 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:22:49.0054 2468 Dnscache - ok
16:22:49.0085 2468 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:22:49.0085 2468 dot3svc - ok
16:22:49.0163 2468 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:22:49.0179 2468 DPS - ok
16:22:49.0257 2468 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:22:49.0257 2468 drmkaud - ok
16:22:49.0366 2468 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:22:49.0382 2468 DXGKrnl - ok
16:22:49.0397 2468 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:22:49.0397 2468 EapHost - ok
16:22:49.0522 2468 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:22:49.0569 2468 ebdrv - ok
16:22:49.0725 2468 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:22:49.0740 2468 eeCtrl - ok
16:22:49.0756 2468 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:22:49.0756 2468 EFS - ok
16:22:49.0803 2468 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:22:49.0803 2468 ehRecvr - ok
16:22:49.0818 2468 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:22:49.0818 2468 ehSched - ok
16:22:49.0834 2468 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:22:49.0850 2468 elxstor - ok
16:22:49.0959 2468 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:22:49.0959 2468 EraserUtilRebootDrv - ok
16:22:49.0959 2468 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:22:49.0959 2468 ErrDev - ok
16:22:50.0006 2468 [ B8FA96995726D1FA58476E352C02AD82 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
16:22:50.0006 2468 ES lite Service - ok
16:22:50.0068 2468 [ 84486624268E078255BC7AA47F0960BC ] etdrv C:\Windows\etdrv.sys
16:22:50.0068 2468 etdrv - ok
16:22:50.0208 2468 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:22:50.0208 2468 EventSystem - ok
16:22:50.0286 2468 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:22:50.0286 2468 exfat - ok
16:22:50.0318 2468 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:22:50.0318 2468 fastfat - ok
16:22:50.0349 2468 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:22:50.0364 2468 Fax - ok
16:22:50.0380 2468 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:22:50.0396 2468 fdc - ok
16:22:50.0411 2468 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:22:50.0411 2468 fdPHost - ok
16:22:50.0458 2468 fdrawcmd - ok
16:22:50.0474 2468 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:22:50.0474 2468 FDResPub - ok
16:22:50.0489 2468 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:22:50.0489 2468 FileInfo - ok
16:22:50.0505 2468 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:22:50.0505 2468 Filetrace - ok
16:22:50.0520 2468 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:22:50.0520 2468 flpydisk - ok
16:22:50.0552 2468 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:22:50.0552 2468 FltMgr - ok
16:22:50.0739 2468 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:22:50.0770 2468 FontCache - ok
16:22:50.0832 2468 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:22:50.0832 2468 FontCache3.0.0.0 - ok
16:22:50.0926 2468 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:22:50.0926 2468 FsDepends - ok
16:22:51.0004 2468 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:22:51.0004 2468 Fs_Rec - ok
16:22:51.0051 2468 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:22:51.0051 2468 fvevol - ok
16:22:51.0082 2468 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:22:51.0082 2468 gagp30kx - ok
16:22:51.0160 2468 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
16:22:51.0160 2468 gdrv - ok
16:22:51.0222 2468 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:22:51.0222 2468 GEARAspiWDM - ok
16:22:51.0300 2468 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:22:51.0316 2468 gpsvc - ok
16:22:51.0394 2468 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:22:51.0394 2468 gupdate - ok
16:22:51.0410 2468 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:22:51.0410 2468 gupdatem - ok
16:22:51.0456 2468 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
16:22:51.0456 2468 GVTDrv64 - ok
16:22:51.0472 2468 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:22:51.0472 2468 hcw85cir - ok
16:22:51.0566 2468 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:22:51.0597 2468 HdAudAddService - ok
16:22:51.0644 2468 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:22:51.0644 2468 HDAudBus - ok
16:22:51.0690 2468 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:22:51.0690 2468 HidBatt - ok
16:22:51.0706 2468 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:22:51.0706 2468 HidBth - ok
16:22:51.0722 2468 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:22:51.0722 2468 HidIr - ok
16:22:51.0737 2468 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:22:51.0737 2468 hidserv - ok
16:22:51.0753 2468 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:22:51.0753 2468 HidUsb - ok
16:22:51.0784 2468 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:22:51.0784 2468 hkmsvc - ok
16:22:51.0831 2468 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:22:51.0831 2468 HomeGroupListener - ok
16:22:51.0862 2468 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:22:51.0862 2468 HomeGroupProvider - ok
16:22:51.0893 2468 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:22:51.0893 2468 HpSAMD - ok
16:22:51.0940 2468 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:22:51.0940 2468 HTTP - ok
16:22:51.0971 2468 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:22:51.0971 2468 hwpolicy - ok
16:22:52.0018 2468 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:22:52.0018 2468 i8042prt - ok
16:22:52.0112 2468 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:22:52.0127 2468 iaStorV - ok
16:22:52.0174 2468 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:22:52.0174 2468 IDriverT - ok
16:22:52.0205 2468 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:22:52.0221 2468 idsvc - ok
16:22:52.0299 2468 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20121017.001\IDSvia64.sys
16:22:52.0314 2468 IDSVia64 - ok
16:22:52.0330 2468 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:22:52.0330 2468 iirsp - ok
16:22:52.0517 2468 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:22:52.0548 2468 IKEEXT - ok
16:22:52.0595 2468 [ 0ADF714079AE174A39D69036143E4C50 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:22:52.0626 2468 IntcAzAudAddService - ok
16:22:52.0658 2468 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:22:52.0658 2468 intelide - ok
16:22:52.0673 2468 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:22:52.0673 2468 intelppm - ok
16:22:52.0673 2468 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:22:52.0689 2468 IPBusEnum - ok
16:22:52.0720 2468 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:22:52.0720 2468 IpFilterDriver - ok
16:22:52.0751 2468 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:22:52.0751 2468 IPMIDRV - ok
16:22:52.0767 2468 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:22:52.0767 2468 IPNAT - ok
16:22:52.0814 2468 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:22:52.0814 2468 iPod Service - ok
16:22:52.0845 2468 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:22:52.0845 2468 IRENUM - ok
16:22:52.0860 2468 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:22:52.0860 2468 isapnp - ok
16:22:52.0954 2468 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:22:52.0970 2468 iScsiPrt - ok
16:22:53.0032 2468 [ F3A41EC4C6506E76E07A219B3A1DF8D2 ] JMB36X C:\Windows\SysWOW64\XSrvSetup.exe
16:22:53.0032 2468 JMB36X - ok
16:22:53.0048 2468 [ 1C368C1A2733DCC5B8E15420AA2B0F6D ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
16:22:53.0048 2468 JRAID - ok
16:22:53.0063 2468 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:22:53.0063 2468 kbdclass - ok
16:22:53.0079 2468 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:22:53.0079 2468 kbdhid - ok
16:22:53.0094 2468 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:22:53.0094 2468 KeyIso - ok
16:22:53.0126 2468 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:22:53.0126 2468 KSecDD - ok
16:22:53.0157 2468 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:22:53.0157 2468 KSecPkg - ok
16:22:53.0157 2468 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:22:53.0157 2468 ksthunk - ok
16:22:53.0172 2468 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:22:53.0188 2468 KtmRm - ok
16:22:53.0250 2468 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:22:53.0266 2468 LanmanServer - ok
16:22:53.0297 2468 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:22:53.0313 2468 LanmanWorkstation - ok
16:22:53.0344 2468 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:22:53.0360 2468 lltdio - ok
16:22:53.0375 2468 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:22:53.0391 2468 lltdsvc - ok
16:22:53.0406 2468 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:22:53.0406 2468 lmhosts - ok
16:22:53.0422 2468 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:22:53.0422 2468 LSI_FC - ok
16:22:53.0438 2468 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:22:53.0438 2468 LSI_SAS - ok
16:22:53.0453 2468 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:22:53.0453 2468 LSI_SAS2 - ok
16:22:53.0469 2468 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:22:53.0469 2468 LSI_SCSI - ok
16:22:53.0484 2468 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:22:53.0484 2468 luafv - ok
16:22:53.0531 2468 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
16:22:53.0531 2468 LVPr2M64 - ok
16:22:53.0547 2468 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
16:22:53.0547 2468 LVPr2Mon - ok
16:22:53.0594 2468 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
16:22:53.0609 2468 LVRS64 - ok
16:22:53.0703 2468 [ EDF73BFA1BD24D74D1D64DC0ED28A7CD ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
16:22:53.0796 2468 LVUVC64 - ok
16:22:53.0921 2468 [ 60B3548FFA9A2EAAED75E9F0704DFCE0 ] lxeeCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxeeserv.exe
16:22:53.0921 2468 lxeeCATSCustConnectService - ok
16:22:53.0937 2468 lxee_device - ok
16:22:53.0968 2468 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:22:53.0968 2468 MBAMProtector - ok
16:22:54.0046 2468 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:22:54.0046 2468 MBAMScheduler - ok
16:22:54.0077 2468 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:22:54.0077 2468 MBAMService - ok
16:22:54.0108 2468 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:22:54.0108 2468 Mcx2Svc - ok
16:22:54.0124 2468 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:22:54.0124 2468 megasas - ok
16:22:54.0218 2468 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:22:54.0218 2468 MegaSR - ok
16:22:54.0233 2468 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:22:54.0264 2468 MMCSS - ok
16:22:54.0280 2468 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:22:54.0296 2468 Modem - ok
16:22:54.0311 2468 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:22:54.0311 2468 monitor - ok
16:22:54.0374 2468 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:22:54.0374 2468 mouclass - ok
16:22:54.0389 2468 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:22:54.0389 2468 mouhid - ok
16:22:54.0420 2468 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:22:54.0420 2468 mountmgr - ok
16:22:54.0483 2468 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:22:54.0483 2468 mpio - ok
16:22:54.0516 2468 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:22:54.0519 2468 mpsdrv - ok
16:22:54.0541 2468 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:22:54.0544 2468 MRxDAV - ok
16:22:54.0577 2468 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:22:54.0577 2468 mrxsmb - ok
16:22:54.0605 2468 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:22:54.0607 2468 mrxsmb10 - ok
16:22:54.0622 2468 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:22:54.0622 2468 mrxsmb20 - ok
16:22:54.0640 2468 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:22:54.0640 2468 msahci - ok
16:22:54.0675 2468 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:22:54.0677 2468 msdsm - ok
16:22:54.0735 2468 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:22:54.0737 2468 MSDTC - ok
16:22:54.0750 2468 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:22:54.0750 2468 Msfs - ok
16:22:54.0766 2468 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:22:54.0766 2468 mshidkmdf - ok
16:22:54.0799 2468 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:22:54.0799 2468 msisadrv - ok
16:22:54.0862 2468 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:22:54.0862 2468 MSiSCSI - ok
16:22:54.0862 2468 msiserver - ok
16:22:54.0877 2468 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:22:54.0877 2468 MSKSSRV - ok
16:22:54.0893 2468 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:22:54.0908 2468 MSPCLOCK - ok
16:22:54.0908 2468 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:22:54.0908 2468 MSPQM - ok
16:22:54.0924 2468 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:22:54.0924 2468 MsRPC - ok
16:22:54.0940 2468 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:22:54.0940 2468 mssmbios - ok
16:22:54.0955 2468 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:22:54.0955 2468 MSTEE - ok
16:22:54.0986 2468 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:22:54.0986 2468 MTConfig - ok
16:22:55.0018 2468 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:22:55.0018 2468 Mup - ok
16:22:55.0189 2468 [ F2840DBFE9322F35557219AE82CC4597 ] N360 C:\Program Files (x86)\Norton 360\Engine\6.4.0.9\ccSvcHst.exe
16:22:55.0205 2468 N360 - ok
16:22:55.0220 2468 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:22:55.0220 2468 napagent - ok
16:22:55.0252 2468 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:22:55.0252 2468 NativeWifiP - ok
16:22:55.0439 2468 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121017.019\ENG64.SYS
16:22:55.0439 2468 NAVENG - ok
16:22:55.0486 2468 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121017.019\EX64.SYS
16:22:55.0517 2468 NAVEX15 - ok
16:22:55.0579 2468 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:22:55.0579 2468 NDIS - ok
16:22:55.0595 2468 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:22:55.0595 2468 NdisCap - ok
16:22:55.0610 2468 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:22:55.0610 2468 NdisTapi - ok
16:22:55.0657 2468 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:22:55.0657 2468 Ndisuio - ok
16:22:55.0735 2468 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:22:55.0735 2468 NdisWan - ok
16:22:55.0813 2468 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:22:55.0813 2468 NDProxy - ok
16:22:55.0844 2468 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:22:55.0844 2468 NetBIOS - ok
16:22:55.0891 2468 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:22:55.0891 2468 NetBT - ok
16:22:55.0907 2468 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:22:55.0907 2468 Netlogon - ok
16:22:56.0172 2468 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:22:56.0203 2468 Netman - ok
16:22:56.0297 2468 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:22:56.0312 2468 netprofm - ok
16:22:56.0375 2468 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:22:56.0375 2468 NetTcpPortSharing - ok
16:22:56.0437 2468 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:22:56.0437 2468 nfrd960 - ok
16:22:56.0484 2468 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:22:56.0484 2468 NlaSvc - ok
16:22:56.0500 2468 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:22:56.0500 2468 Npfs - ok
16:22:56.0515 2468 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:22:56.0515 2468 nsi - ok
16:22:56.0531 2468 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:22:56.0531 2468 nsiproxy - ok
16:22:56.0578 2468 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:22:56.0593 2468 Ntfs - ok
16:22:56.0624 2468 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:22:56.0624 2468 Null - ok
16:22:56.0656 2468 [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
16:22:56.0656 2468 nusb3hub - ok
16:22:56.0687 2468 [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
16:22:56.0687 2468 nusb3xhc - ok
16:22:56.0734 2468 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:22:56.0734 2468 nvraid - ok
16:22:56.0749 2468 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:22:56.0749 2468 nvstor - ok
16:22:56.0765 2468 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:22:56.0780 2468 nv_agp - ok
16:22:56.0796 2468 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:22:56.0796 2468 ohci1394 - ok
16:22:56.0936 2468 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:22:56.0952 2468 ose - ok
16:22:57.0077 2468 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:22:57.0108 2468 osppsvc - ok
16:22:57.0124 2468 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:22:57.0124 2468 p2pimsvc - ok
16:22:57.0139 2468 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:22:57.0155 2468 p2psvc - ok
16:22:57.0155 2468 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:22:57.0155 2468 Parport - ok
16:22:57.0186 2468 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:22:57.0186 2468 partmgr - ok
16:22:57.0202 2468 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:22:57.0202 2468 PcaSvc - ok
16:22:57.0217 2468 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:22:57.0217 2468 pci - ok
16:22:57.0233 2468 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:22:57.0233 2468 pciide - ok
16:22:57.0248 2468 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:22:57.0248 2468 pcmcia - ok
16:22:57.0280 2468 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:22:57.0280 2468 pcw - ok
16:22:57.0358 2468 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:22:57.0358 2468 PEAUTH - ok
16:22:57.0404 2468 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
16:22:57.0420 2468 PeerDistSvc - ok
16:22:57.0436 2468 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:22:57.0436 2468 PerfHost - ok
16:22:57.0592 2468 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:22:57.0607 2468 pla - ok
16:22:57.0685 2468 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:22:57.0701 2468 PlugPlay - ok
16:22:57.0716 2468 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:22:57.0716 2468 PNRPAutoReg - ok
16:22:57.0732 2468 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:22:57.0732 2468 PNRPsvc - ok
16:22:57.0841 2468 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:22:57.0841 2468 PolicyAgent - ok
16:22:57.0872 2468 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:22:57.0872 2468 Power - ok
16:22:57.0904 2468 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:22:57.0904 2468 PptpMiniport - ok
16:22:57.0919 2468 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:22:57.0919 2468 Processor - ok
16:22:57.0982 2468 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:22:57.0997 2468 ProfSvc - ok
16:22:58.0028 2468 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:22:58.0028 2468 ProtectedStorage - ok
16:22:58.0169 2468 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:22:58.0184 2468 Psched - ok
16:22:58.0278 2468 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:22:58.0325 2468 ql2300 - ok
16:22:58.0340 2468 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:22:58.0340 2468 ql40xx - ok
16:22:58.0356 2468 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:22:58.0356 2468 QWAVE - ok
16:22:58.0372 2468 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:22:58.0372 2468 QWAVEdrv - ok
16:22:58.0387 2468 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:22:58.0387 2468 RasAcd - ok
16:22:58.0434 2468 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:22:58.0434 2468 RasAgileVpn - ok
16:22:58.0450 2468 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:22:58.0450 2468 RasAuto - ok
16:22:58.0496 2468 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:22:58.0496 2468 Rasl2tp - ok
16:22:58.0528 2468 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:22:58.0528 2468 RasMan - ok
16:22:58.0574 2468 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:22:58.0574 2468 RasPppoe - ok
16:22:58.0590 2468 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:22:58.0590 2468 RasSstp - ok
16:22:58.0606 2468 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:22:58.0621 2468 rdbss - ok
16:22:58.0637 2468 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:22:58.0637 2468 rdpbus - ok
16:22:58.0652 2468 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:22:58.0652 2468 RDPCDD - ok
16:22:58.0684 2468 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
16:22:58.0684 2468 RDPDR - ok
16:22:58.0699 2468 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:22:58.0699 2468 RDPENCDD - ok
16:22:58.0715 2468 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:22:58.0715 2468 RDPREFMP - ok
16:22:58.0746 2468 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:22:58.0746 2468 RDPWD - ok
16:22:58.0777 2468 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:22:58.0777 2468 rdyboost - ok
16:22:58.0840 2468 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:22:58.0855 2468 RemoteAccess - ok
16:22:58.0886 2468 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:22:58.0886 2468 RemoteRegistry - ok
16:22:58.0933 2468 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:22:58.0949 2468 RpcEptMapper - ok
16:22:58.0980 2468 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:22:58.0980 2468 RpcLocator - ok
16:22:59.0011 2468 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:22:59.0027 2468 RpcSs - ok
16:22:59.0027 2468 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:22:59.0027 2468 rspndr - ok
16:22:59.0058 2468 [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
16:22:59.0058 2468 RTHDMIAzAudService - ok
16:22:59.0089 2468 [ 4FBDA07EF0A3097CE14C5CABF723B278 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
16:22:59.0105 2468 RTL8167 - ok
16:22:59.0136 2468 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
16:22:59.0136 2468 s3cap - ok
16:22:59.0167 2468 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:22:59.0167 2468 SamSs - ok
16:22:59.0198 2468 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:22:59.0198 2468 sbp2port - ok
16:22:59.0214 2468 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:22:59.0230 2468 SCardSvr - ok
16:22:59.0261 2468 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:22:59.0261 2468 scfilter - ok
16:22:59.0370 2468 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:22:59.0386 2468 Schedule - ok
16:22:59.0417 2468 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:22:59.0417 2468 SCPolicySvc - ok
16:22:59.0495 2468 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:22:59.0510 2468 SDRSVC - ok
16:22:59.0510 2468 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:22:59.0526 2468 secdrv - ok
16:22:59.0542 2468 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:22:59.0542 2468 seclogon - ok
16:22:59.0557 2468 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:22:59.0557 2468 SENS - ok
16:22:59.0588 2468 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:22:59.0588 2468 SensrSvc - ok
16:22:59.0604 2468 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:22:59.0604 2468 Serenum - ok
16:22:59.0635 2468 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:22:59.0635 2468 Serial - ok
16:22:59.0666 2468 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:22:59.0666 2468 sermouse - ok
16:22:59.0744 2468 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:22:59.0744 2468 SessionEnv - ok
16:22:59.0776 2468 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:22:59.0776 2468 sffdisk - ok
16:22:59.0776 2468 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:22:59.0776 2468 sffp_mmc - ok
16:22:59.0807 2468 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:22:59.0807 2468 sffp_sd - ok
16:22:59.0822 2468 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:22:59.0822 2468 sfloppy - ok
16:22:59.0885 2468 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:22:59.0900 2468 ShellHWDetection - ok
16:22:59.0932 2468 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:22:59.0932 2468 SiSRaid2 - ok
16:22:59.0978 2468 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:22:59.0978 2468 SiSRaid4 - ok
16:23:00.0103 2468 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:23:00.0103 2468 SkypeUpdate - ok
16:23:00.0119 2468 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:23:00.0119 2468 Smb - ok
16:23:00.0134 2468 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:23:00.0134 2468 SNMPTRAP - ok
16:23:00.0166 2468 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:23:00.0166 2468 spldr - ok
16:23:00.0197 2468 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:23:00.0400 2468 Spooler - ok
16:23:00.0774 2468 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:23:00.0805 2468 sppsvc - ok
16:23:00.0821 2468 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:23:00.0821 2468 sppuinotify - ok
16:23:01.0024 2468 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\N360x64\0604000.009\SRTSP64.SYS
16:23:01.0055 2468 SRTSP - ok
16:23:01.0070 2468 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\N360x64\0604000.009\SRTSPX64.SYS
16:23:01.0070 2468 SRTSPX - ok
16:23:01.0102 2468 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:23:01.0102 2468 srv - ok
16:23:01.0117 2468 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:23:01.0117 2468 srv2 - ok
16:23:01.0133 2468 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:23:01.0133 2468 srvnet - ok
16:23:01.0148 2468 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:23:01.0148 2468 SSDPSRV - ok
16:23:01.0164 2468 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:23:01.0164 2468 SstpSvc - ok
16:23:01.0195 2468 [ 855335BF5792E56164F98C012E3D92DD ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
16:23:01.0195 2468 ssudmdm - ok
16:23:01.0226 2468 Steam Client Service - ok
16:23:01.0226 2468 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:23:01.0242 2468 stexstor - ok
16:23:01.0273 2468 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
16:23:01.0273 2468 StillCam - ok
16:23:01.0320 2468 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:23:01.0336 2468 stisvc - ok
16:23:01.0351 2468 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
16:23:01.0351 2468 storflt - ok
16:23:01.0414 2468 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
16:23:01.0429 2468 StorSvc - ok
16:23:01.0538 2468 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
16:23:01.0538 2468 storvsc - ok
16:23:01.0616 2468 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:23:01.0616 2468 swenum - ok
16:23:01.0788 2468 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:23:01.0804 2468 SwitchBoard - ok
16:23:01.0835 2468 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:23:01.0835 2468 swprv - ok
16:23:01.0897 2468 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\N360x64\0604000.009\SYMDS64.SYS
16:23:01.0913 2468 SymDS - ok
16:23:01.0991 2468 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\N360x64\0604000.009\SYMEFA64.SYS
16:23:02.0006 2468 SymEFA - ok
16:23:02.0038 2468 [ 894579207E39C465737E850A252CE4F2 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
16:23:02.0038 2468 SymEvent - ok
16:23:02.0069 2468 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\N360x64\0604000.009\Ironx64.SYS
16:23:02.0069 2468 SymIRON - ok
16:23:02.0100 2468 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\N360x64\0604000.009\SYMNETS.SYS
16:23:02.0100 2468 SymNetS - ok
16:23:02.0147 2468 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:23:02.0178 2468 SysMain - ok
16:23:02.0209 2468 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:23:02.0209 2468 TabletInputService - ok
16:23:02.0318 2468 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:23:02.0318 2468 TapiSrv - ok
16:23:02.0350 2468 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:23:02.0350 2468 TBS - ok
16:23:02.0412 2468 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:23:02.0443 2468 Tcpip - ok
16:23:02.0490 2468 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:23:02.0490 2468 TCPIP6 - ok
16:23:02.0521 2468 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:23:02.0521 2468 tcpipreg - ok
16:23:02.0584 2468 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:23:02.0584 2468 TDPIPE - ok
16:23:02.0646 2468 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:23:02.0646 2468 TDTCP - ok
16:23:02.0708 2468 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:23:02.0708 2468 tdx - ok
16:23:02.0740 2468 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:23:02.0755 2468 TermDD - ok
16:23:02.0802 2468 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:23:02.0818 2468 TermService - ok
16:23:02.0818 2468 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:23:02.0818 2468 Themes - ok
16:23:02.0864 2468 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:23:02.0864 2468 THREADORDER - ok
16:23:02.0880 2468 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:23:02.0896 2468 TrkWks - ok
16:23:02.0942 2468 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:23:02.0942 2468 TrustedInstaller - ok
16:23:02.0989 2468 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:23:02.0989 2468 tssecsrv - ok
16:23:03.0005 2468 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:23:03.0020 2468 TsUsbFlt - ok
16:23:03.0130 2468 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:23:03.0130 2468 tunnel - ok
16:23:03.0161 2468 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:23:03.0161 2468 uagp35 - ok
16:23:03.0208 2468 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:23:03.0208 2468 udfs - ok
16:23:03.0223 2468 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:23:03.0223 2468 UI0Detect - ok
16:23:03.0239 2468 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:23:03.0239 2468 uliagpkx - ok
16:23:03.0270 2468 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
16:23:03.0270 2468 umbus - ok
16:23:03.0301 2468 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:23:03.0301 2468 UmPass - ok
16:23:03.0364 2468 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
16:23:03.0395 2468 UmRdpService - ok
16:23:03.0457 2468 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
16:23:03.0457 2468 UMVPFSrv - ok
16:23:03.0488 2468 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:23:03.0488 2468 upnphost - ok
16:23:03.0566 2468 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:23:03.0566 2468 USBAAPL64 - ok
16:23:03.0707 2468 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:23:03.0707 2468 usbaudio - ok
16:23:03.0707 2468 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:23:03.0707 2468 usbccgp - ok
16:23:03.0738 2468 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:23:03.0738 2468 usbcir - ok
16:23:03.0754 2468 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:23:03.0754 2468 usbehci - ok
16:23:03.0769 2468 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:23:03.0769 2468 usbhub - ok
16:23:03.0769 2468 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
16:23:03.0769 2468 usbohci - ok
16:23:03.0800 2468 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:23:03.0800 2468 usbprint - ok
16:23:03.0832 2468 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:23:03.0847 2468 usbscan - ok
16:23:03.0863 2468 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:23:03.0863 2468 USBSTOR - ok
16:23:03.0863 2468 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:23:03.0863 2468 usbuhci - ok
16:23:03.0894 2468 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:23:03.0894 2468 UxSms - ok
16:23:03.0894 2468 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:23:03.0894 2468 VaultSvc - ok
16:23:03.0910 2468 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:23:03.0910 2468 vdrvroot - ok
16:23:03.0925 2468 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:23:03.0941 2468 vds - ok
16:23:03.0941 2468 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:23:03.0941 2468 vga - ok
16:23:03.0941 2468 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:23:03.0941 2468 VgaSave - ok
16:23:03.0956 2468 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:23:03.0972 2468 vhdmp - ok
16:23:03.0988 2468 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:23:03.0988 2468 viaide - ok
16:23:04.0003 2468 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
16:23:04.0003 2468 vmbus - ok
16:23:04.0019 2468 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
16:23:04.0019 2468 VMBusHID - ok
16:23:04.0034 2468 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:23:04.0034 2468 volmgr - ok
16:23:04.0128 2468 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:23:04.0144 2468 volmgrx - ok
16:23:04.0190 2468 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:23:04.0190 2468 volsnap - ok
16:23:04.0222 2468 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:23:04.0222 2468 vsmraid - ok
16:23:04.0268 2468 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:23:04.0284 2468 VSS - ok
16:23:04.0284 2468 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
16:23:04.0284 2468 vwifibus - ok
16:23:04.0300 2468 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:23:04.0315 2468 W32Time - ok
16:23:04.0315 2468 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:23:04.0315 2468 WacomPen - ok
16:23:04.0346 2468 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:23:04.0346 2468 WANARP - ok
16:23:04.0362 2468 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:23:04.0362 2468 Wanarpv6 - ok
16:23:04.0580 2468 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:23:04.0612 2468 WatAdminSvc - ok
16:23:04.0674 2468 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:23:04.0705 2468 wbengine - ok
16:23:04.0736 2468 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:23:04.0736 2468 WbioSrvc - ok
16:23:04.0799 2468 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:23:04.0814 2468 wcncsvc - ok
16:23:04.0830 2468 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:23:04.0830 2468 WcsPlugInService - ok
16:23:04.0846 2468 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:23:04.0846 2468 Wd - ok
16:23:04.0861 2468 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:23:04.0861 2468 Wdf01000 - ok
16:23:04.0877 2468 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:23:04.0892 2468 WdiServiceHost - ok
16:23:04.0892 2468 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:23:04.0892 2468 WdiSystemHost - ok
16:23:04.0908 2468 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:23:04.0924 2468 WebClient - ok
16:23:04.0924 2468 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:23:04.0924 2468 Wecsvc - ok
16:23:04.0939 2468 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:23:04.0939 2468 wercplsupport - ok
16:23:04.0955 2468 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:23:04.0955 2468 WerSvc - ok
16:23:04.0955 2468 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:23:04.0955 2468 WfpLwf - ok
16:23:04.0970 2468 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:23:05.0002 2468 WIMMount - ok
16:23:05.0017 2468 WinHttpAutoProxySvc - ok
16:23:05.0189 2468 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:23:05.0204 2468 Winmgmt - ok
16:23:05.0501 2468 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:23:05.0532 2468 WinRM - ok
16:23:05.0594 2468 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:23:05.0594 2468 WinUsb - ok
16:23:05.0626 2468 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:23:05.0626 2468 Wlansvc - ok
16:23:05.0938 2468 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:23:05.0984 2468 wlidsvc - ok
16:23:06.0000 2468 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:23:06.0000 2468 WmiAcpi - ok
16:23:06.0062 2468 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:23:06.0078 2468 wmiApSrv - ok
16:23:06.0109 2468 WMPNetworkSvc - ok
16:23:06.0125 2468 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:23:06.0125 2468 WPCSvc - ok
16:23:06.0172 2468 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:23:06.0203 2468 WPDBusEnum - ok
16:23:06.0234 2468 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:23:06.0234 2468 ws2ifsl - ok
16:23:06.0234 2468 WSearch - ok
16:23:06.0281 2468 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:23:06.0281 2468 WudfPf - ok
16:23:06.0343 2468 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:23:06.0343 2468 WUDFRd - ok
16:23:06.0374 2468 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:23:06.0390 2468 wudfsvc - ok
16:23:06.0406 2468 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:23:06.0421 2468 WwanSvc - ok
16:23:06.0452 2468 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
16:23:06.0468 2468 xusb21 - ok
16:23:06.0468 2468 ================ Scan global ===============================
16:23:06.0484 2468 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:23:06.0515 2468 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:23:06.0530 2468 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:23:06.0530 2468 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:23:06.0562 2468 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
16:23:06.0577 2468 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
16:23:06.0577 2468 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
16:23:06.0577 2468 ================ Scan MBR ==================================
16:23:06.0593 2468 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:23:06.0983 2468 \Device\Harddisk0\DR0 - ok
16:23:07.0061 2468 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR2
16:23:07.0076 2468 \Device\Harddisk1\DR2 - ok
16:23:07.0076 2468 ================ Scan VBR ==================================
16:23:07.0076 2468 [ 25132EADC2A3A035E6E4A710C2C88E71 ] \Device\Harddisk0\DR0\Partition1
16:23:07.0076 2468 \Device\Harddisk0\DR0\Partition1 - ok
16:23:07.0092 2468 [ F4A2D15D302C2B26D076C837DA8F3997 ] \Device\Harddisk0\DR0\Partition2
16:23:07.0092 2468 \Device\Harddisk0\DR0\Partition2 - ok
16:23:07.0170 2468 [ 29722AADEFB3671DEB727899D46DA841 ] \Device\Harddisk1\DR2\Partition1
16:23:07.0170 2468 \Device\Harddisk1\DR2\Partition1 - ok
16:23:07.0170 2468 ============================================================
16:23:07.0170 2468 Scan finished
16:23:07.0170 2468 ============================================================
16:23:07.0217 5928 Detected object count: 1
16:23:07.0217 5928 Actual detected object count: 1
16:23:19.0857 5928 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - skipped by user
16:23:19.0857 5928 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Skip

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:58 AM

Posted 18 October 2012 - 04:26 PM

16:23:19.0857 5928 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - skipped by user

Run TDSSkiller again and select CURE

#5 HeadshotIO

HeadshotIO
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:58 AM

Posted 18 October 2012 - 04:52 PM

16:22:32.0525 4160 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
16:22:32.0993 4160 ============================================================
16:22:32.0993 4160 Current date / time: 2012/10/18 16:22:32.0993
16:22:32.0993 4160 SystemInfo:
16:22:32.0993 4160
16:22:32.0993 4160 OS Version: 6.1.7601 ServicePack: 1.0
16:22:32.0993 4160 Product type: Workstation
16:22:32.0993 4160 ComputerName: LADYBIRD
16:22:32.0993 4160 UserName: Stewart
16:22:32.0993 4160 Windows directory: C:\Windows
16:22:32.0993 4160 System windows directory: C:\Windows
16:22:32.0993 4160 Running under WOW64
16:22:32.0993 4160 Processor architecture: Intel x64
16:22:32.0993 4160 Number of processors: 6
16:22:32.0993 4160 Page size: 0x1000
16:22:32.0993 4160 Boot type: Normal boot
16:22:32.0993 4160 ============================================================
16:22:34.0132 4160 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
16:22:34.0132 4160 Drive \Device\Harddisk1\DR2 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:22:34.0241 4160 ============================================================
16:22:34.0241 4160 \Device\Harddisk0\DR0:
16:22:34.0241 4160 MBR partitions:
16:22:34.0241 4160 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:22:34.0241 4160 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4A825000
16:22:34.0241 4160 \Device\Harddisk1\DR2:
16:22:34.0273 4160 MBR partitions:
16:22:34.0273 4160 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xC, StartLBA 0x800, BlocksNum 0x4A8566C1
16:22:34.0273 4160 ============================================================
16:22:34.0288 4160 C: <-> \Device\Harddisk0\DR0\Partition2
16:22:34.0351 4160 E: <-> \Device\Harddisk1\DR2\Partition1
16:22:34.0351 4160 ============================================================
16:22:34.0351 4160 Initialize success
16:22:34.0351 4160 ============================================================
16:22:39.0140 2468 ============================================================
16:22:39.0140 2468 Scan started
16:22:39.0140 2468 Mode: Manual;
16:22:39.0140 2468 ============================================================
16:22:41.0324 2468 ================ Scan system memory ========================
16:22:41.0324 2468 System memory - ok
16:22:41.0324 2468 ================ Scan services =============================
16:22:41.0745 2468 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:22:41.0745 2468 1394ohci - ok
16:22:41.0776 2468 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:22:41.0776 2468 ACPI - ok
16:22:41.0808 2468 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:22:41.0808 2468 AcpiPmi - ok
16:22:42.0088 2468 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:22:42.0088 2468 AdobeARMservice - ok
16:22:42.0928 2468 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:22:42.0934 2468 AdobeFlashPlayerUpdateSvc - ok
16:22:43.0002 2468 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:22:43.0007 2468 adp94xx - ok
16:22:43.0025 2468 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:22:43.0028 2468 adpahci - ok
16:22:43.0041 2468 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:22:43.0043 2468 adpu320 - ok
16:22:43.0071 2468 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:22:43.0072 2468 AeLookupSvc - ok
16:22:43.0204 2468 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:22:43.0204 2468 AFD - ok
16:22:43.0251 2468 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:22:43.0251 2468 agp440 - ok
16:22:43.0376 2468 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:22:43.0376 2468 ALG - ok
16:22:43.0391 2468 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:22:43.0391 2468 aliide - ok
16:22:43.0422 2468 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:22:43.0422 2468 AMD External Events Utility - ok
16:22:43.0672 2468 AMD FUEL Service - ok
16:22:43.0719 2468 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:22:43.0719 2468 amdide - ok
16:22:43.0812 2468 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
16:22:43.0812 2468 amdiox64 - ok
16:22:43.0828 2468 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:22:43.0828 2468 AmdK8 - ok
16:22:44.0452 2468 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:22:44.0530 2468 amdkmdag - ok
16:22:44.0592 2468 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:22:44.0624 2468 amdkmdap - ok
16:22:44.0780 2468 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:22:44.0780 2468 AmdPPM - ok
16:22:44.0795 2468 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:22:44.0811 2468 amdsata - ok
16:22:44.0826 2468 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:22:44.0826 2468 amdsbs - ok
16:22:44.0842 2468 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:22:44.0842 2468 amdxata - ok
16:22:44.0858 2468 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:22:44.0858 2468 AODDriver4.1 - ok
16:22:44.0889 2468 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:22:44.0889 2468 AppID - ok
16:22:44.0904 2468 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:22:44.0904 2468 AppIDSvc - ok
16:22:44.0951 2468 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:22:44.0951 2468 Appinfo - ok
16:22:45.0123 2468 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:22:45.0123 2468 Apple Mobile Device - ok
16:22:45.0201 2468 [ 301AA64F9643BC453D90A66C4C0E7204 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
16:22:45.0201 2468 AppleCharger - ok
16:22:45.0326 2468 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
16:22:45.0326 2468 AppleChargerSrv - ok
16:22:45.0435 2468 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
16:22:45.0466 2468 AppMgmt - ok
16:22:45.0528 2468 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:22:45.0528 2468 arc - ok
16:22:45.0653 2468 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:22:45.0669 2468 arcsas - ok
16:22:45.0716 2468 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:22:45.0716 2468 AsyncMac - ok
16:22:45.0778 2468 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:22:45.0778 2468 atapi - ok
16:22:45.0856 2468 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:22:45.0856 2468 AudioEndpointBuilder - ok
16:22:45.0872 2468 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:22:45.0872 2468 AudioSrv - ok
16:22:46.0152 2468 [ 7A0F6A3E0E41425B9BA54616B482668A ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
16:22:46.0262 2468 AVGIDSAgent - ok
16:22:46.0293 2468 [ E6671E90D38C88764412E07C9D9B3D63 ] AVGIDSDriver C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
16:22:46.0293 2468 AVGIDSDriver - ok
16:22:46.0308 2468 [ 1553B388E0F0462C25AD8F30C3C29E83 ] AVGIDSEH C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
16:22:46.0324 2468 AVGIDSEH - ok
16:22:46.0340 2468 [ DCA426A66739E75F51A72160DFB945AD ] AVGIDSFilter C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
16:22:46.0340 2468 AVGIDSFilter - ok
16:22:46.0371 2468 [ FF7383388A7D2283DAE5831ABC2B0720 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
16:22:46.0386 2468 Avgldx64 - ok
16:22:46.0386 2468 [ 997D002827D3E3DCBBB25BF46DB161AB ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
16:22:46.0386 2468 Avgmfx64 - ok
16:22:46.0449 2468 [ BCCFE3374C887075CDE2AC8FDB1CB2F8 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
16:22:46.0449 2468 Avgrkx64 - ok
16:22:46.0527 2468 [ 0D49ADCEBE243B79366EA523B647519A ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
16:22:46.0558 2468 Avgtdia - ok
16:22:46.0574 2468 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
16:22:46.0589 2468 avgwd - ok
16:22:46.0620 2468 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:22:46.0636 2468 AxInstSV - ok
16:22:46.0667 2468 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:22:46.0683 2468 b06bdrv - ok
16:22:46.0698 2468 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:22:46.0714 2468 b57nd60a - ok
16:22:46.0745 2468 [ 382B151DAFFE4A9CE9DA9F564B66761E ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
16:22:46.0745 2468 BCUService - ok
16:22:46.0776 2468 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:22:46.0776 2468 BDESVC - ok
16:22:46.0792 2468 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:22:46.0792 2468 Beep - ok
16:22:47.0120 2468 [ A45BE4E091636F6C86D6E4FC945D5A26 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120928.001\BHDrvx64.sys
16:22:47.0166 2468 BHDrvx64 - ok
16:22:47.0182 2468 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:22:47.0182 2468 blbdrive - ok
16:22:47.0260 2468 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:22:47.0260 2468 Bonjour Service - ok
16:22:47.0276 2468 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:22:47.0276 2468 bowser - ok
16:22:47.0291 2468 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:22:47.0307 2468 BrFiltLo - ok
16:22:47.0322 2468 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:22:47.0322 2468 BrFiltUp - ok
16:22:47.0416 2468 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:22:47.0416 2468 Browser - ok
16:22:47.0447 2468 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:22:47.0447 2468 Brserid - ok
16:22:47.0478 2468 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:22:47.0478 2468 BrSerWdm - ok
16:22:47.0510 2468 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:22:47.0510 2468 BrUsbMdm - ok
16:22:47.0525 2468 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:22:47.0525 2468 BrUsbSer - ok
16:22:47.0556 2468 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:22:47.0556 2468 BTHMODEM - ok
16:22:47.0572 2468 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:22:47.0588 2468 bthserv - ok
16:22:47.0650 2468 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\0604000.009\ccSetx64.sys
16:22:47.0666 2468 ccSet_N360 - ok
16:22:47.0681 2468 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:22:47.0681 2468 cdfs - ok
16:22:47.0712 2468 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:22:47.0712 2468 cdrom - ok
16:22:47.0759 2468 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:22:47.0759 2468 CertPropSvc - ok
16:22:47.0775 2468 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:22:47.0775 2468 circlass - ok
16:22:47.0868 2468 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:22:47.0868 2468 CLFS - ok
16:22:47.0978 2468 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:22:47.0993 2468 clr_optimization_v2.0.50727_32 - ok
16:22:48.0024 2468 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:22:48.0040 2468 clr_optimization_v2.0.50727_64 - ok
16:22:48.0165 2468 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:22:48.0165 2468 clr_optimization_v4.0.30319_32 - ok
16:22:48.0180 2468 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:22:48.0180 2468 clr_optimization_v4.0.30319_64 - ok
16:22:48.0196 2468 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:22:48.0196 2468 CmBatt - ok
16:22:48.0227 2468 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:22:48.0227 2468 cmdide - ok
16:22:48.0414 2468 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
16:22:48.0461 2468 CNG - ok
16:22:48.0477 2468 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:22:48.0477 2468 Compbatt - ok
16:22:48.0524 2468 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:22:48.0524 2468 CompositeBus - ok
16:22:48.0524 2468 COMSysApp - ok
16:22:48.0539 2468 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:22:48.0539 2468 crcdisk - ok
16:22:48.0602 2468 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:22:48.0617 2468 CryptSvc - ok
16:22:48.0680 2468 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
16:22:48.0711 2468 CSC - ok
16:22:48.0773 2468 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
16:22:48.0789 2468 CscService - ok
16:22:48.0804 2468 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:22:48.0820 2468 DcomLaunch - ok
16:22:48.0851 2468 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:22:48.0851 2468 defragsvc - ok
16:22:48.0867 2468 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:22:48.0867 2468 DfsC - ok
16:22:48.0898 2468 dgderdrv - ok
16:22:48.0945 2468 [ 6060106CE00F32F63F1A73160E46E9D2 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
16:22:48.0945 2468 dg_ssudbus - ok
16:22:48.0976 2468 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:22:48.0976 2468 Dhcp - ok
16:22:48.0992 2468 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:22:48.0992 2468 discache - ok
16:22:49.0007 2468 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:22:49.0007 2468 Disk - ok
16:22:49.0038 2468 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:22:49.0054 2468 Dnscache - ok
16:22:49.0085 2468 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:22:49.0085 2468 dot3svc - ok
16:22:49.0163 2468 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:22:49.0179 2468 DPS - ok
16:22:49.0257 2468 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:22:49.0257 2468 drmkaud - ok
16:22:49.0366 2468 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:22:49.0382 2468 DXGKrnl - ok
16:22:49.0397 2468 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:22:49.0397 2468 EapHost - ok
16:22:49.0522 2468 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:22:49.0569 2468 ebdrv - ok
16:22:49.0725 2468 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:22:49.0740 2468 eeCtrl - ok
16:22:49.0756 2468 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:22:49.0756 2468 EFS - ok
16:22:49.0803 2468 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:22:49.0803 2468 ehRecvr - ok
16:22:49.0818 2468 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:22:49.0818 2468 ehSched - ok
16:22:49.0834 2468 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:22:49.0850 2468 elxstor - ok
16:22:49.0959 2468 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:22:49.0959 2468 EraserUtilRebootDrv - ok
16:22:49.0959 2468 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:22:49.0959 2468 ErrDev - ok
16:22:50.0006 2468 [ B8FA96995726D1FA58476E352C02AD82 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
16:22:50.0006 2468 ES lite Service - ok
16:22:50.0068 2468 [ 84486624268E078255BC7AA47F0960BC ] etdrv C:\Windows\etdrv.sys
16:22:50.0068 2468 etdrv - ok
16:22:50.0208 2468 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:22:50.0208 2468 EventSystem - ok
16:22:50.0286 2468 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:22:50.0286 2468 exfat - ok
16:22:50.0318 2468 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:22:50.0318 2468 fastfat - ok
16:22:50.0349 2468 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:22:50.0364 2468 Fax - ok
16:22:50.0380 2468 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:22:50.0396 2468 fdc - ok
16:22:50.0411 2468 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:22:50.0411 2468 fdPHost - ok
16:22:50.0458 2468 fdrawcmd - ok
16:22:50.0474 2468 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:22:50.0474 2468 FDResPub - ok
16:22:50.0489 2468 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:22:50.0489 2468 FileInfo - ok
16:22:50.0505 2468 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:22:50.0505 2468 Filetrace - ok
16:22:50.0520 2468 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:22:50.0520 2468 flpydisk - ok
16:22:50.0552 2468 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:22:50.0552 2468 FltMgr - ok
16:22:50.0739 2468 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:22:50.0770 2468 FontCache - ok
16:22:50.0832 2468 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:22:50.0832 2468 FontCache3.0.0.0 - ok
16:22:50.0926 2468 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:22:50.0926 2468 FsDepends - ok
16:22:51.0004 2468 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:22:51.0004 2468 Fs_Rec - ok
16:22:51.0051 2468 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:22:51.0051 2468 fvevol - ok
16:22:51.0082 2468 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:22:51.0082 2468 gagp30kx - ok
16:22:51.0160 2468 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
16:22:51.0160 2468 gdrv - ok
16:22:51.0222 2468 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:22:51.0222 2468 GEARAspiWDM - ok
16:22:51.0300 2468 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:22:51.0316 2468 gpsvc - ok
16:22:51.0394 2468 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:22:51.0394 2468 gupdate - ok
16:22:51.0410 2468 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:22:51.0410 2468 gupdatem - ok
16:22:51.0456 2468 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
16:22:51.0456 2468 GVTDrv64 - ok
16:22:51.0472 2468 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:22:51.0472 2468 hcw85cir - ok
16:22:51.0566 2468 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:22:51.0597 2468 HdAudAddService - ok
16:22:51.0644 2468 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:22:51.0644 2468 HDAudBus - ok
16:22:51.0690 2468 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:22:51.0690 2468 HidBatt - ok
16:22:51.0706 2468 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:22:51.0706 2468 HidBth - ok
16:22:51.0722 2468 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:22:51.0722 2468 HidIr - ok
16:22:51.0737 2468 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:22:51.0737 2468 hidserv - ok
16:22:51.0753 2468 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:22:51.0753 2468 HidUsb - ok
16:22:51.0784 2468 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:22:51.0784 2468 hkmsvc - ok
16:22:51.0831 2468 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:22:51.0831 2468 HomeGroupListener - ok
16:22:51.0862 2468 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:22:51.0862 2468 HomeGroupProvider - ok
16:22:51.0893 2468 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:22:51.0893 2468 HpSAMD - ok
16:22:51.0940 2468 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:22:51.0940 2468 HTTP - ok
16:22:51.0971 2468 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:22:51.0971 2468 hwpolicy - ok
16:22:52.0018 2468 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:22:52.0018 2468 i8042prt - ok
16:22:52.0112 2468 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:22:52.0127 2468 iaStorV - ok
16:22:52.0174 2468 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:22:52.0174 2468 IDriverT - ok
16:22:52.0205 2468 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:22:52.0221 2468 idsvc - ok
16:22:52.0299 2468 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20121017.001\IDSvia64.sys
16:22:52.0314 2468 IDSVia64 - ok
16:22:52.0330 2468 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:22:52.0330 2468 iirsp - ok
16:22:52.0517 2468 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:22:52.0548 2468 IKEEXT - ok
16:22:52.0595 2468 [ 0ADF714079AE174A39D69036143E4C50 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:22:52.0626 2468 IntcAzAudAddService - ok
16:22:52.0658 2468 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:22:52.0658 2468 intelide - ok
16:22:52.0673 2468 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:22:52.0673 2468 intelppm - ok
16:22:52.0673 2468 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:22:52.0689 2468 IPBusEnum - ok
16:22:52.0720 2468 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:22:52.0720 2468 IpFilterDriver - ok
16:22:52.0751 2468 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:22:52.0751 2468 IPMIDRV - ok
16:22:52.0767 2468 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:22:52.0767 2468 IPNAT - ok
16:22:52.0814 2468 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:22:52.0814 2468 iPod Service - ok
16:22:52.0845 2468 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:22:52.0845 2468 IRENUM - ok
16:22:52.0860 2468 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:22:52.0860 2468 isapnp - ok
16:22:52.0954 2468 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:22:52.0970 2468 iScsiPrt - ok
16:22:53.0032 2468 [ F3A41EC4C6506E76E07A219B3A1DF8D2 ] JMB36X C:\Windows\SysWOW64\XSrvSetup.exe
16:22:53.0032 2468 JMB36X - ok
16:22:53.0048 2468 [ 1C368C1A2733DCC5B8E15420AA2B0F6D ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
16:22:53.0048 2468 JRAID - ok
16:22:53.0063 2468 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:22:53.0063 2468 kbdclass - ok
16:22:53.0079 2468 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:22:53.0079 2468 kbdhid - ok
16:22:53.0094 2468 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:22:53.0094 2468 KeyIso - ok
16:22:53.0126 2468 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:22:53.0126 2468 KSecDD - ok
16:22:53.0157 2468 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:22:53.0157 2468 KSecPkg - ok
16:22:53.0157 2468 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:22:53.0157 2468 ksthunk - ok
16:22:53.0172 2468 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:22:53.0188 2468 KtmRm - ok
16:22:53.0250 2468 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:22:53.0266 2468 LanmanServer - ok
16:22:53.0297 2468 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:22:53.0313 2468 LanmanWorkstation - ok
16:22:53.0344 2468 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:22:53.0360 2468 lltdio - ok
16:22:53.0375 2468 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:22:53.0391 2468 lltdsvc - ok
16:22:53.0406 2468 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:22:53.0406 2468 lmhosts - ok
16:22:53.0422 2468 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:22:53.0422 2468 LSI_FC - ok
16:22:53.0438 2468 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:22:53.0438 2468 LSI_SAS - ok
16:22:53.0453 2468 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:22:53.0453 2468 LSI_SAS2 - ok
16:22:53.0469 2468 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:22:53.0469 2468 LSI_SCSI - ok
16:22:53.0484 2468 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:22:53.0484 2468 luafv - ok
16:22:53.0531 2468 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
16:22:53.0531 2468 LVPr2M64 - ok
16:22:53.0547 2468 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
16:22:53.0547 2468 LVPr2Mon - ok
16:22:53.0594 2468 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
16:22:53.0609 2468 LVRS64 - ok
16:22:53.0703 2468 [ EDF73BFA1BD24D74D1D64DC0ED28A7CD ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
16:22:53.0796 2468 LVUVC64 - ok
16:22:53.0921 2468 [ 60B3548FFA9A2EAAED75E9F0704DFCE0 ] lxeeCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxeeserv.exe
16:22:53.0921 2468 lxeeCATSCustConnectService - ok
16:22:53.0937 2468 lxee_device - ok
16:22:53.0968 2468 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:22:53.0968 2468 MBAMProtector - ok
16:22:54.0046 2468 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:22:54.0046 2468 MBAMScheduler - ok
16:22:54.0077 2468 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:22:54.0077 2468 MBAMService - ok
16:22:54.0108 2468 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:22:54.0108 2468 Mcx2Svc - ok
16:22:54.0124 2468 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:22:54.0124 2468 megasas - ok
16:22:54.0218 2468 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:22:54.0218 2468 MegaSR - ok
16:22:54.0233 2468 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:22:54.0264 2468 MMCSS - ok
16:22:54.0280 2468 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:22:54.0296 2468 Modem - ok
16:22:54.0311 2468 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:22:54.0311 2468 monitor - ok
16:22:54.0374 2468 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:22:54.0374 2468 mouclass - ok
16:22:54.0389 2468 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:22:54.0389 2468 mouhid - ok
16:22:54.0420 2468 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:22:54.0420 2468 mountmgr - ok
16:22:54.0483 2468 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:22:54.0483 2468 mpio - ok
16:22:54.0516 2468 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:22:54.0519 2468 mpsdrv - ok
16:22:54.0541 2468 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:22:54.0544 2468 MRxDAV - ok
16:22:54.0577 2468 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:22:54.0577 2468 mrxsmb - ok
16:22:54.0605 2468 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:22:54.0607 2468 mrxsmb10 - ok
16:22:54.0622 2468 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:22:54.0622 2468 mrxsmb20 - ok
16:22:54.0640 2468 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:22:54.0640 2468 msahci - ok
16:22:54.0675 2468 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:22:54.0677 2468 msdsm - ok
16:22:54.0735 2468 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:22:54.0737 2468 MSDTC - ok
16:22:54.0750 2468 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:22:54.0750 2468 Msfs - ok
16:22:54.0766 2468 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:22:54.0766 2468 mshidkmdf - ok
16:22:54.0799 2468 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:22:54.0799 2468 msisadrv - ok
16:22:54.0862 2468 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:22:54.0862 2468 MSiSCSI - ok
16:22:54.0862 2468 msiserver - ok
16:22:54.0877 2468 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:22:54.0877 2468 MSKSSRV - ok
16:22:54.0893 2468 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:22:54.0908 2468 MSPCLOCK - ok
16:22:54.0908 2468 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:22:54.0908 2468 MSPQM - ok
16:22:54.0924 2468 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:22:54.0924 2468 MsRPC - ok
16:22:54.0940 2468 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:22:54.0940 2468 mssmbios - ok
16:22:54.0955 2468 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:22:54.0955 2468 MSTEE - ok
16:22:54.0986 2468 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:22:54.0986 2468 MTConfig - ok
16:22:55.0018 2468 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:22:55.0018 2468 Mup - ok
16:22:55.0189 2468 [ F2840DBFE9322F35557219AE82CC4597 ] N360 C:\Program Files (x86)\Norton 360\Engine\6.4.0.9\ccSvcHst.exe
16:22:55.0205 2468 N360 - ok
16:22:55.0220 2468 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:22:55.0220 2468 napagent - ok
16:22:55.0252 2468 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:22:55.0252 2468 NativeWifiP - ok
16:22:55.0439 2468 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121017.019\ENG64.SYS
16:22:55.0439 2468 NAVENG - ok
16:22:55.0486 2468 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121017.019\EX64.SYS
16:22:55.0517 2468 NAVEX15 - ok
16:22:55.0579 2468 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:22:55.0579 2468 NDIS - ok
16:22:55.0595 2468 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:22:55.0595 2468 NdisCap - ok
16:22:55.0610 2468 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:22:55.0610 2468 NdisTapi - ok
16:22:55.0657 2468 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:22:55.0657 2468 Ndisuio - ok
16:22:55.0735 2468 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:22:55.0735 2468 NdisWan - ok
16:22:55.0813 2468 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:22:55.0813 2468 NDProxy - ok
16:22:55.0844 2468 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:22:55.0844 2468 NetBIOS - ok
16:22:55.0891 2468 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:22:55.0891 2468 NetBT - ok
16:22:55.0907 2468 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:22:55.0907 2468 Netlogon - ok
16:22:56.0172 2468 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:22:56.0203 2468 Netman - ok
16:22:56.0297 2468 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:22:56.0312 2468 netprofm - ok
16:22:56.0375 2468 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:22:56.0375 2468 NetTcpPortSharing - ok
16:22:56.0437 2468 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:22:56.0437 2468 nfrd960 - ok
16:22:56.0484 2468 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:22:56.0484 2468 NlaSvc - ok
16:22:56.0500 2468 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:22:56.0500 2468 Npfs - ok
16:22:56.0515 2468 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:22:56.0515 2468 nsi - ok
16:22:56.0531 2468 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:22:56.0531 2468 nsiproxy - ok
16:22:56.0578 2468 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:22:56.0593 2468 Ntfs - ok
16:22:56.0624 2468 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:22:56.0624 2468 Null - ok
16:22:56.0656 2468 [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
16:22:56.0656 2468 nusb3hub - ok
16:22:56.0687 2468 [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
16:22:56.0687 2468 nusb3xhc - ok
16:22:56.0734 2468 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:22:56.0734 2468 nvraid - ok
16:22:56.0749 2468 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:22:56.0749 2468 nvstor - ok
16:22:56.0765 2468 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:22:56.0780 2468 nv_agp - ok
16:22:56.0796 2468 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:22:56.0796 2468 ohci1394 - ok
16:22:56.0936 2468 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:22:56.0952 2468 ose - ok
16:22:57.0077 2468 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:22:57.0108 2468 osppsvc - ok
16:22:57.0124 2468 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:22:57.0124 2468 p2pimsvc - ok
16:22:57.0139 2468 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:22:57.0155 2468 p2psvc - ok
16:22:57.0155 2468 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:22:57.0155 2468 Parport - ok
16:22:57.0186 2468 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:22:57.0186 2468 partmgr - ok
16:22:57.0202 2468 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:22:57.0202 2468 PcaSvc - ok
16:22:57.0217 2468 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:22:57.0217 2468 pci - ok
16:22:57.0233 2468 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:22:57.0233 2468 pciide - ok
16:22:57.0248 2468 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:22:57.0248 2468 pcmcia - ok
16:22:57.0280 2468 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:22:57.0280 2468 pcw - ok
16:22:57.0358 2468 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:22:57.0358 2468 PEAUTH - ok
16:22:57.0404 2468 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
16:22:57.0420 2468 PeerDistSvc - ok
16:22:57.0436 2468 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:22:57.0436 2468 PerfHost - ok
16:22:57.0592 2468 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:22:57.0607 2468 pla - ok
16:22:57.0685 2468 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:22:57.0701 2468 PlugPlay - ok
16:22:57.0716 2468 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:22:57.0716 2468 PNRPAutoReg - ok
16:22:57.0732 2468 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:22:57.0732 2468 PNRPsvc - ok
16:22:57.0841 2468 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:22:57.0841 2468 PolicyAgent - ok
16:22:57.0872 2468 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:22:57.0872 2468 Power - ok
16:22:57.0904 2468 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:22:57.0904 2468 PptpMiniport - ok
16:22:57.0919 2468 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:22:57.0919 2468 Processor - ok
16:22:57.0982 2468 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:22:57.0997 2468 ProfSvc - ok
16:22:58.0028 2468 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:22:58.0028 2468 ProtectedStorage - ok
16:22:58.0169 2468 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:22:58.0184 2468 Psched - ok
16:22:58.0278 2468 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:22:58.0325 2468 ql2300 - ok
16:22:58.0340 2468 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:22:58.0340 2468 ql40xx - ok
16:22:58.0356 2468 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:22:58.0356 2468 QWAVE - ok
16:22:58.0372 2468 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:22:58.0372 2468 QWAVEdrv - ok
16:22:58.0387 2468 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:22:58.0387 2468 RasAcd - ok
16:22:58.0434 2468 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:22:58.0434 2468 RasAgileVpn - ok
16:22:58.0450 2468 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:22:58.0450 2468 RasAuto - ok
16:22:58.0496 2468 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:22:58.0496 2468 Rasl2tp - ok
16:22:58.0528 2468 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:22:58.0528 2468 RasMan - ok
16:22:58.0574 2468 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:22:58.0574 2468 RasPppoe - ok
16:22:58.0590 2468 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:22:58.0590 2468 RasSstp - ok
16:22:58.0606 2468 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:22:58.0621 2468 rdbss - ok
16:22:58.0637 2468 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:22:58.0637 2468 rdpbus - ok
16:22:58.0652 2468 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:22:58.0652 2468 RDPCDD - ok
16:22:58.0684 2468 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
16:22:58.0684 2468 RDPDR - ok
16:22:58.0699 2468 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:22:58.0699 2468 RDPENCDD - ok
16:22:58.0715 2468 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:22:58.0715 2468 RDPREFMP - ok
16:22:58.0746 2468 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:22:58.0746 2468 RDPWD - ok
16:22:58.0777 2468 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:22:58.0777 2468 rdyboost - ok
16:22:58.0840 2468 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:22:58.0855 2468 RemoteAccess - ok
16:22:58.0886 2468 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:22:58.0886 2468 RemoteRegistry - ok
16:22:58.0933 2468 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:22:58.0949 2468 RpcEptMapper - ok
16:22:58.0980 2468 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:22:58.0980 2468 RpcLocator - ok
16:22:59.0011 2468 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:22:59.0027 2468 RpcSs - ok
16:22:59.0027 2468 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:22:59.0027 2468 rspndr - ok
16:22:59.0058 2468 [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
16:22:59.0058 2468 RTHDMIAzAudService - ok
16:22:59.0089 2468 [ 4FBDA07EF0A3097CE14C5CABF723B278 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
16:22:59.0105 2468 RTL8167 - ok
16:22:59.0136 2468 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
16:22:59.0136 2468 s3cap - ok
16:22:59.0167 2468 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:22:59.0167 2468 SamSs - ok
16:22:59.0198 2468 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:22:59.0198 2468 sbp2port - ok
16:22:59.0214 2468 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:22:59.0230 2468 SCardSvr - ok
16:22:59.0261 2468 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:22:59.0261 2468 scfilter - ok
16:22:59.0370 2468 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:22:59.0386 2468 Schedule - ok
16:22:59.0417 2468 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:22:59.0417 2468 SCPolicySvc - ok
16:22:59.0495 2468 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:22:59.0510 2468 SDRSVC - ok
16:22:59.0510 2468 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:22:59.0526 2468 secdrv - ok
16:22:59.0542 2468 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:22:59.0542 2468 seclogon - ok
16:22:59.0557 2468 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:22:59.0557 2468 SENS - ok
16:22:59.0588 2468 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:22:59.0588 2468 SensrSvc - ok
16:22:59.0604 2468 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:22:59.0604 2468 Serenum - ok
16:22:59.0635 2468 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:22:59.0635 2468 Serial - ok
16:22:59.0666 2468 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:22:59.0666 2468 sermouse - ok
16:22:59.0744 2468 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:22:59.0744 2468 SessionEnv - ok
16:22:59.0776 2468 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:22:59.0776 2468 sffdisk - ok
16:22:59.0776 2468 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:22:59.0776 2468 sffp_mmc - ok
16:22:59.0807 2468 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:22:59.0807 2468 sffp_sd - ok
16:22:59.0822 2468 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:22:59.0822 2468 sfloppy - ok
16:22:59.0885 2468 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:22:59.0900 2468 ShellHWDetection - ok
16:22:59.0932 2468 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:22:59.0932 2468 SiSRaid2 - ok
16:22:59.0978 2468 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:22:59.0978 2468 SiSRaid4 - ok
16:23:00.0103 2468 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:23:00.0103 2468 SkypeUpdate - ok
16:23:00.0119 2468 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:23:00.0119 2468 Smb - ok
16:23:00.0134 2468 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:23:00.0134 2468 SNMPTRAP - ok
16:23:00.0166 2468 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:23:00.0166 2468 spldr - ok
16:23:00.0197 2468 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:23:00.0400 2468 Spooler - ok
16:23:00.0774 2468 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:23:00.0805 2468 sppsvc - ok
16:23:00.0821 2468 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:23:00.0821 2468 sppuinotify - ok
16:23:01.0024 2468 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\N360x64\0604000.009\SRTSP64.SYS
16:23:01.0055 2468 SRTSP - ok
16:23:01.0070 2468 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\N360x64\0604000.009\SRTSPX64.SYS
16:23:01.0070 2468 SRTSPX - ok
16:23:01.0102 2468 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:23:01.0102 2468 srv - ok
16:23:01.0117 2468 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:23:01.0117 2468 srv2 - ok
16:23:01.0133 2468 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:23:01.0133 2468 srvnet - ok
16:23:01.0148 2468 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:23:01.0148 2468 SSDPSRV - ok
16:23:01.0164 2468 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:23:01.0164 2468 SstpSvc - ok
16:23:01.0195 2468 [ 855335BF5792E56164F98C012E3D92DD ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
16:23:01.0195 2468 ssudmdm - ok
16:23:01.0226 2468 Steam Client Service - ok
16:23:01.0226 2468 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:23:01.0242 2468 stexstor - ok
16:23:01.0273 2468 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
16:23:01.0273 2468 StillCam - ok
16:23:01.0320 2468 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:23:01.0336 2468 stisvc - ok
16:23:01.0351 2468 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
16:23:01.0351 2468 storflt - ok
16:23:01.0414 2468 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
16:23:01.0429 2468 StorSvc - ok
16:23:01.0538 2468 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
16:23:01.0538 2468 storvsc - ok
16:23:01.0616 2468 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:23:01.0616 2468 swenum - ok
16:23:01.0788 2468 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:23:01.0804 2468 SwitchBoard - ok
16:23:01.0835 2468 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:23:01.0835 2468 swprv - ok
16:23:01.0897 2468 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\N360x64\0604000.009\SYMDS64.SYS
16:23:01.0913 2468 SymDS - ok
16:23:01.0991 2468 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\N360x64\0604000.009\SYMEFA64.SYS
16:23:02.0006 2468 SymEFA - ok
16:23:02.0038 2468 [ 894579207E39C465737E850A252CE4F2 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
16:23:02.0038 2468 SymEvent - ok
16:23:02.0069 2468 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\N360x64\0604000.009\Ironx64.SYS
16:23:02.0069 2468 SymIRON - ok
16:23:02.0100 2468 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\N360x64\0604000.009\SYMNETS.SYS
16:23:02.0100 2468 SymNetS - ok
16:23:02.0147 2468 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:23:02.0178 2468 SysMain - ok
16:23:02.0209 2468 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:23:02.0209 2468 TabletInputService - ok
16:23:02.0318 2468 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:23:02.0318 2468 TapiSrv - ok
16:23:02.0350 2468 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:23:02.0350 2468 TBS - ok
16:23:02.0412 2468 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:23:02.0443 2468 Tcpip - ok
16:23:02.0490 2468 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:23:02.0490 2468 TCPIP6 - ok
16:23:02.0521 2468 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:23:02.0521 2468 tcpipreg - ok
16:23:02.0584 2468 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:23:02.0584 2468 TDPIPE - ok
16:23:02.0646 2468 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:23:02.0646 2468 TDTCP - ok
16:23:02.0708 2468 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:23:02.0708 2468 tdx - ok
16:23:02.0740 2468 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:23:02.0755 2468 TermDD - ok
16:23:02.0802 2468 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:23:02.0818 2468 TermService - ok
16:23:02.0818 2468 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:23:02.0818 2468 Themes - ok
16:23:02.0864 2468 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:23:02.0864 2468 THREADORDER - ok
16:23:02.0880 2468 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:23:02.0896 2468 TrkWks - ok
16:23:02.0942 2468 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:23:02.0942 2468 TrustedInstaller - ok
16:23:02.0989 2468 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:23:02.0989 2468 tssecsrv - ok
16:23:03.0005 2468 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:23:03.0020 2468 TsUsbFlt - ok
16:23:03.0130 2468 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:23:03.0130 2468 tunnel - ok
16:23:03.0161 2468 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:23:03.0161 2468 uagp35 - ok
16:23:03.0208 2468 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:23:03.0208 2468 udfs - ok
16:23:03.0223 2468 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:23:03.0223 2468 UI0Detect - ok
16:23:03.0239 2468 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:23:03.0239 2468 uliagpkx - ok
16:23:03.0270 2468 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
16:23:03.0270 2468 umbus - ok
16:23:03.0301 2468 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:23:03.0301 2468 UmPass - ok
16:23:03.0364 2468 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
16:23:03.0395 2468 UmRdpService - ok
16:23:03.0457 2468 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
16:23:03.0457 2468 UMVPFSrv - ok
16:23:03.0488 2468 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:23:03.0488 2468 upnphost - ok
16:23:03.0566 2468 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:23:03.0566 2468 USBAAPL64 - ok
16:23:03.0707 2468 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:23:03.0707 2468 usbaudio - ok
16:23:03.0707 2468 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:23:03.0707 2468 usbccgp - ok
16:23:03.0738 2468 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:23:03.0738 2468 usbcir - ok
16:23:03.0754 2468 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:23:03.0754 2468 usbehci - ok
16:23:03.0769 2468 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:23:03.0769 2468 usbhub - ok
16:23:03.0769 2468 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
16:23:03.0769 2468 usbohci - ok
16:23:03.0800 2468 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:23:03.0800 2468 usbprint - ok
16:23:03.0832 2468 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:23:03.0847 2468 usbscan - ok
16:23:03.0863 2468 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:23:03.0863 2468 USBSTOR - ok
16:23:03.0863 2468 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:23:03.0863 2468 usbuhci - ok
16:23:03.0894 2468 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:23:03.0894 2468 UxSms - ok
16:23:03.0894 2468 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:23:03.0894 2468 VaultSvc - ok
16:23:03.0910 2468 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:23:03.0910 2468 vdrvroot - ok
16:23:03.0925 2468 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:23:03.0941 2468 vds - ok
16:23:03.0941 2468 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:23:03.0941 2468 vga - ok
16:23:03.0941 2468 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:23:03.0941 2468 VgaSave - ok
16:23:03.0956 2468 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:23:03.0972 2468 vhdmp - ok
16:23:03.0988 2468 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:23:03.0988 2468 viaide - ok
16:23:04.0003 2468 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
16:23:04.0003 2468 vmbus - ok
16:23:04.0019 2468 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
16:23:04.0019 2468 VMBusHID - ok
16:23:04.0034 2468 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:23:04.0034 2468 volmgr - ok
16:23:04.0128 2468 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:23:04.0144 2468 volmgrx - ok
16:23:04.0190 2468 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:23:04.0190 2468 volsnap - ok
16:23:04.0222 2468 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:23:04.0222 2468 vsmraid - ok
16:23:04.0268 2468 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:23:04.0284 2468 VSS - ok
16:23:04.0284 2468 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
16:23:04.0284 2468 vwifibus - ok
16:23:04.0300 2468 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:23:04.0315 2468 W32Time - ok
16:23:04.0315 2468 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:23:04.0315 2468 WacomPen - ok
16:23:04.0346 2468 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:23:04.0346 2468 WANARP - ok
16:23:04.0362 2468 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:23:04.0362 2468 Wanarpv6 - ok
16:23:04.0580 2468 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:23:04.0612 2468 WatAdminSvc - ok
16:23:04.0674 2468 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:23:04.0705 2468 wbengine - ok
16:23:04.0736 2468 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:23:04.0736 2468 WbioSrvc - ok
16:23:04.0799 2468 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:23:04.0814 2468 wcncsvc - ok
16:23:04.0830 2468 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:23:04.0830 2468 WcsPlugInService - ok
16:23:04.0846 2468 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:23:04.0846 2468 Wd - ok
16:23:04.0861 2468 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:23:04.0861 2468 Wdf01000 - ok
16:23:04.0877 2468 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:23:04.0892 2468 WdiServiceHost - ok
16:23:04.0892 2468 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:23:04.0892 2468 WdiSystemHost - ok
16:23:04.0908 2468 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:23:04.0924 2468 WebClient - ok
16:23:04.0924 2468 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:23:04.0924 2468 Wecsvc - ok
16:23:04.0939 2468 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:23:04.0939 2468 wercplsupport - ok
16:23:04.0955 2468 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:23:04.0955 2468 WerSvc - ok
16:23:04.0955 2468 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:23:04.0955 2468 WfpLwf - ok
16:23:04.0970 2468 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:23:05.0002 2468 WIMMount - ok
16:23:05.0017 2468 WinHttpAutoProxySvc - ok
16:23:05.0189 2468 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:23:05.0204 2468 Winmgmt - ok
16:23:05.0501 2468 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:23:05.0532 2468 WinRM - ok
16:23:05.0594 2468 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:23:05.0594 2468 WinUsb - ok
16:23:05.0626 2468 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:23:05.0626 2468 Wlansvc - ok
16:23:05.0938 2468 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:23:05.0984 2468 wlidsvc - ok
16:23:06.0000 2468 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:23:06.0000 2468 WmiAcpi - ok
16:23:06.0062 2468 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:23:06.0078 2468 wmiApSrv - ok
16:23:06.0109 2468 WMPNetworkSvc - ok
16:23:06.0125 2468 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:23:06.0125 2468 WPCSvc - ok
16:23:06.0172 2468 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:23:06.0203 2468 WPDBusEnum - ok
16:23:06.0234 2468 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:23:06.0234 2468 ws2ifsl - ok
16:23:06.0234 2468 WSearch - ok
16:23:06.0281 2468 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:23:06.0281 2468 WudfPf - ok
16:23:06.0343 2468 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:23:06.0343 2468 WUDFRd - ok
16:23:06.0374 2468 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:23:06.0390 2468 wudfsvc - ok
16:23:06.0406 2468 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:23:06.0421 2468 WwanSvc - ok
16:23:06.0452 2468 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
16:23:06.0468 2468 xusb21 - ok
16:23:06.0468 2468 ================ Scan global ===============================
16:23:06.0484 2468 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:23:06.0515 2468 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:23:06.0530 2468 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:23:06.0530 2468 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:23:06.0562 2468 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
16:23:06.0577 2468 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
16:23:06.0577 2468 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
16:23:06.0577 2468 ================ Scan MBR ==================================
16:23:06.0593 2468 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:23:06.0983 2468 \Device\Harddisk0\DR0 - ok
16:23:07.0061 2468 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR2
16:23:07.0076 2468 \Device\Harddisk1\DR2 - ok
16:23:07.0076 2468 ================ Scan VBR ==================================
16:23:07.0076 2468 [ 25132EADC2A3A035E6E4A710C2C88E71 ] \Device\Harddisk0\DR0\Partition1
16:23:07.0076 2468 \Device\Harddisk0\DR0\Partition1 - ok
16:23:07.0092 2468 [ F4A2D15D302C2B26D076C837DA8F3997 ] \Device\Harddisk0\DR0\Partition2
16:23:07.0092 2468 \Device\Harddisk0\DR0\Partition2 - ok
16:23:07.0170 2468 [ 29722AADEFB3671DEB727899D46DA841 ] \Device\Harddisk1\DR2\Partition1
16:23:07.0170 2468 \Device\Harddisk1\DR2\Partition1 - ok
16:23:07.0170 2468 ============================================================
16:23:07.0170 2468 Scan finished
16:23:07.0170 2468 ============================================================
16:23:07.0217 5928 Detected object count: 1
16:23:07.0217 5928 Actual detected object count: 1
16:23:19.0857 5928 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - skipped by user
16:23:19.0857 5928 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Skip
16:46:48.0495 6024 ============================================================
16:46:48.0495 6024 Scan started
16:46:48.0495 6024 Mode: Manual;
16:46:48.0495 6024 ============================================================
16:46:53.0035 6024 ================ Scan system memory ========================
16:46:53.0035 6024 System memory - ok
16:46:53.0035 6024 ================ Scan services =============================
16:46:54.0485 6024 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:46:54.0485 6024 1394ohci - ok
16:46:54.0595 6024 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:46:54.0595 6024 ACPI - ok
16:46:54.0626 6024 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:46:54.0626 6024 AcpiPmi - ok
16:46:54.0985 6024 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:46:54.0985 6024 AdobeARMservice - ok
16:46:55.0702 6024 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:46:55.0702 6024 AdobeFlashPlayerUpdateSvc - ok
16:46:55.0936 6024 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:46:55.0936 6024 adp94xx - ok
16:46:56.0092 6024 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:46:56.0108 6024 adpahci - ok
16:46:56.0186 6024 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:46:56.0186 6024 adpu320 - ok
16:46:56.0295 6024 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:46:56.0295 6024 AeLookupSvc - ok
16:46:56.0545 6024 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:46:56.0560 6024 AFD - ok
16:46:56.0623 6024 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:46:56.0638 6024 agp440 - ok
16:46:56.0747 6024 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:46:56.0779 6024 ALG - ok
16:46:56.0841 6024 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:46:56.0841 6024 aliide - ok
16:46:56.0872 6024 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:46:56.0872 6024 AMD External Events Utility - ok
16:46:57.0028 6024 AMD FUEL Service - ok
16:46:57.0106 6024 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:46:57.0106 6024 amdide - ok
16:46:57.0169 6024 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
16:46:57.0169 6024 amdiox64 - ok
16:46:57.0200 6024 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:46:57.0200 6024 AmdK8 - ok
16:46:59.0602 6024 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:46:59.0649 6024 amdkmdag - ok
16:46:59.0790 6024 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:46:59.0790 6024 amdkmdap - ok
16:46:59.0883 6024 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:46:59.0883 6024 AmdPPM - ok
16:46:59.0946 6024 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:46:59.0946 6024 amdsata - ok
16:47:00.0055 6024 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:47:00.0055 6024 amdsbs - ok
16:47:00.0086 6024 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:47:00.0086 6024 amdxata - ok
16:47:00.0148 6024 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:47:00.0148 6024 AODDriver4.1 - ok
16:47:00.0211 6024 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:47:00.0211 6024 AppID - ok
16:47:00.0258 6024 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:47:00.0273 6024 AppIDSvc - ok
16:47:00.0336 6024 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:47:00.0367 6024 Appinfo - ok
16:47:00.0616 6024 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:47:00.0616 6024 Apple Mobile Device - ok
16:47:00.0694 6024 [ 301AA64F9643BC453D90A66C4C0E7204 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
16:47:00.0694 6024 AppleCharger - ok
16:47:00.0726 6024 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
16:47:00.0741 6024 AppleChargerSrv - ok
16:47:00.0850 6024 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
16:47:00.0850 6024 AppMgmt - ok
16:47:00.0866 6024 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:47:00.0866 6024 arc - ok
16:47:00.0944 6024 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:47:00.0944 6024 arcsas - ok
16:47:00.0975 6024 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:47:00.0975 6024 AsyncMac - ok
16:47:01.0069 6024 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:47:01.0069 6024 atapi - ok
16:47:01.0350 6024 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:47:01.0365 6024 AudioEndpointBuilder - ok
16:47:01.0521 6024 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:47:01.0537 6024 AudioSrv - ok
16:47:02.0988 6024 [ 7A0F6A3E0E41425B9BA54616B482668A ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
16:47:03.0019 6024 AVGIDSAgent - ok
16:47:03.0128 6024 [ E6671E90D38C88764412E07C9D9B3D63 ] AVGIDSDriver C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
16:47:03.0144 6024 AVGIDSDriver - ok
16:47:03.0175 6024 [ 1553B388E0F0462C25AD8F30C3C29E83 ] AVGIDSEH C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
16:47:03.0175 6024 AVGIDSEH - ok
16:47:03.0253 6024 [ DCA426A66739E75F51A72160DFB945AD ] AVGIDSFilter C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
16:47:03.0253 6024 AVGIDSFilter - ok
16:47:03.0362 6024 [ FF7383388A7D2283DAE5831ABC2B0720 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
16:47:03.0378 6024 Avgldx64 - ok
16:47:03.0440 6024 [ 997D002827D3E3DCBBB25BF46DB161AB ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
16:47:03.0440 6024 Avgmfx64 - ok
16:47:03.0534 6024 [ BCCFE3374C887075CDE2AC8FDB1CB2F8 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
16:47:03.0534 6024 Avgrkx64 - ok
16:47:03.0580 6024 [ 0D49ADCEBE243B79366EA523B647519A ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
16:47:03.0580 6024 Avgtdia - ok
16:47:03.0690 6024 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
16:47:03.0690 6024 avgwd - ok
16:47:03.0768 6024 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:47:03.0814 6024 AxInstSV - ok
16:47:04.0017 6024 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:47:04.0017 6024 b06bdrv - ok
16:47:04.0142 6024 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:47:04.0142 6024 b57nd60a - ok
16:47:04.0314 6024 [ 382B151DAFFE4A9CE9DA9F564B66761E ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
16:47:04.0314 6024 BCUService - ok
16:47:04.0376 6024 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:47:04.0438 6024 BDESVC - ok
16:47:04.0532 6024 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:47:04.0532 6024 Beep - ok
16:47:05.0296 6024 [ A45BE4E091636F6C86D6E4FC945D5A26 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20120928.001\BHDrvx64.sys
16:47:05.0312 6024 BHDrvx64 - ok
16:47:05.0359 6024 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:47:05.0359 6024 blbdrive - ok
16:47:05.0593 6024 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:47:05.0593 6024 Bonjour Service - ok
16:47:05.0640 6024 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:47:05.0640 6024 bowser - ok
16:47:05.0686 6024 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:47:05.0686 6024 BrFiltLo - ok
16:47:05.0718 6024 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:47:05.0718 6024 BrFiltUp - ok
16:47:05.0811 6024 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:47:05.0842 6024 Browser - ok
16:47:05.0967 6024 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:47:05.0967 6024 Brserid - ok
16:47:05.0998 6024 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:47:05.0998 6024 BrSerWdm - ok
16:47:06.0030 6024 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:47:06.0030 6024 BrUsbMdm - ok
16:47:06.0061 6024 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:47:06.0061 6024 BrUsbSer - ok
16:47:06.0092 6024 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:47:06.0092 6024 BTHMODEM - ok
16:47:06.0170 6024 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:47:06.0186 6024 bthserv - ok
16:47:06.0451 6024 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\0604000.009\ccSetx64.sys
16:47:06.0451 6024 ccSet_N360 - ok
16:47:06.0498 6024 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:47:06.0513 6024 cdfs - ok
16:47:06.0576 6024 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:47:06.0576 6024 cdrom - ok
16:47:06.0622 6024 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:47:06.0654 6024 CertPropSvc - ok
16:47:06.0732 6024 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:47:06.0732 6024 circlass - ok
16:47:06.0888 6024 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:47:06.0888 6024 CLFS - ok
16:47:07.0153 6024 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:47:07.0200 6024 clr_optimization_v2.0.50727_32 - ok
16:47:07.0449 6024 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:47:07.0465 6024 clr_optimization_v2.0.50727_64 - ok
16:47:07.0652 6024 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:47:07.0652 6024 clr_optimization_v4.0.30319_32 - ok
16:47:08.0120 6024 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:47:08.0120 6024 clr_optimization_v4.0.30319_64 - ok
16:47:08.0198 6024 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:47:08.0198 6024 CmBatt - ok
16:47:08.0276 6024 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:47:08.0276 6024 cmdide - ok
16:47:08.0432 6024 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
16:47:08.0463 6024 CNG - ok
16:47:08.0479 6024 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:47:08.0494 6024 Compbatt - ok
16:47:08.0541 6024 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:47:08.0541 6024 CompositeBus - ok
16:47:08.0541 6024 COMSysApp - ok
16:47:08.0619 6024 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:47:08.0619 6024 crcdisk - ok
16:47:08.0760 6024 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:47:08.0791 6024 CryptSvc - ok
16:47:08.0916 6024 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
16:47:08.0931 6024 CSC - ok
16:47:09.0150 6024 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
16:47:09.0196 6024 CscService - ok
16:47:09.0290 6024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:47:09.0306 6024 DcomLaunch - ok
16:47:09.0446 6024 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:47:09.0493 6024 defragsvc - ok
16:47:09.0540 6024 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:47:09.0540 6024 DfsC - ok
16:47:09.0555 6024 dgderdrv - ok
16:47:09.0586 6024 [ 6060106CE00F32F63F1A73160E46E9D2 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
16:47:09.0586 6024 dg_ssudbus - ok
16:47:09.0664 6024 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:47:09.0680 6024 Dhcp - ok
16:47:09.0727 6024 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:47:09.0727 6024 discache - ok
16:47:09.0774 6024 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:47:09.0774 6024 Disk - ok
16:47:09.0883 6024 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:47:09.0914 6024 Dnscache - ok
16:47:10.0008 6024 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:47:10.0008 6024 dot3svc - ok
16:47:10.0054 6024 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:47:10.0070 6024 DPS - ok
16:47:10.0132 6024 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:47:10.0132 6024 drmkaud - ok
16:47:10.0382 6024 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:47:10.0398 6024 DXGKrnl - ok
16:47:10.0429 6024 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:47:10.0444 6024 EapHost - ok
16:47:11.0068 6024 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:47:11.0115 6024 ebdrv - ok
16:47:11.0318 6024 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:47:11.0334 6024 eeCtrl - ok
16:47:11.0365 6024 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:47:11.0365 6024 EFS - ok
16:47:11.0724 6024 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:47:11.0724 6024 ehRecvr - ok
16:47:11.0770 6024 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:47:11.0786 6024 ehSched - ok
16:47:11.0848 6024 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:47:11.0864 6024 elxstor - ok
16:47:11.0958 6024 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:47:11.0958 6024 EraserUtilRebootDrv - ok
16:47:11.0989 6024 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:47:12.0020 6024 ErrDev - ok
16:47:12.0192 6024 [ B8FA96995726D1FA58476E352C02AD82 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
16:47:12.0192 6024 ES lite Service - ok
16:47:12.0254 6024 [ 84486624268E078255BC7AA47F0960BC ] etdrv C:\Windows\etdrv.sys
16:47:12.0270 6024 etdrv - ok
16:47:12.0441 6024 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:47:12.0457 6024 EventSystem - ok
16:47:12.0582 6024 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:47:12.0613 6024 exfat - ok
16:47:12.0691 6024 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:47:12.0706 6024 fastfat - ok
16:47:12.0784 6024 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:47:12.0816 6024 Fax - ok
16:47:12.0831 6024 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:47:12.0831 6024 fdc - ok
16:47:12.0847 6024 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:47:12.0878 6024 fdPHost - ok
16:47:12.0878 6024 fdrawcmd - ok
16:47:12.0972 6024 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:47:12.0987 6024 FDResPub - ok
16:47:13.0034 6024 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:47:13.0050 6024 FileInfo - ok
16:47:13.0081 6024 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:47:13.0096 6024 Filetrace - ok
16:47:13.0330 6024 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:47:13.0346 6024 flpydisk - ok
16:47:13.0502 6024 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:47:13.0518 6024 FltMgr - ok
16:47:13.0876 6024 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:47:13.0908 6024 FontCache - ok
16:47:14.0532 6024 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:47:14.0532 6024 FontCache3.0.0.0 - ok
16:47:14.0625 6024 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:47:14.0641 6024 FsDepends - ok
16:47:14.0703 6024 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:47:14.0734 6024 Fs_Rec - ok
16:47:14.0844 6024 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:47:14.0859 6024 fvevol - ok
16:47:14.0890 6024 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:47:14.0890 6024 gagp30kx - ok
16:47:14.0953 6024 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
16:47:14.0968 6024 gdrv - ok
16:47:15.0031 6024 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:47:15.0062 6024 GEARAspiWDM - ok
16:47:15.0296 6024 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:47:15.0343 6024 gpsvc - ok
16:47:15.0592 6024 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:47:15.0592 6024 gupdate - ok
16:47:15.0639 6024 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:47:15.0639 6024 gupdatem - ok
16:47:15.0702 6024 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
16:47:15.0717 6024 GVTDrv64 - ok
16:47:15.0764 6024 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:47:15.0795 6024 hcw85cir - ok
16:47:15.0920 6024 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:47:15.0936 6024 HdAudAddService - ok
16:47:15.0998 6024 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:47:16.0029 6024 HDAudBus - ok
16:47:16.0060 6024 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:47:16.0092 6024 HidBatt - ok
16:47:16.0138 6024 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:47:16.0154 6024 HidBth - ok
16:47:16.0170 6024 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:47:16.0185 6024 HidIr - ok
16:47:16.0263 6024 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:47:16.0279 6024 hidserv - ok
16:47:16.0326 6024 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:47:16.0357 6024 HidUsb - ok
16:47:16.0435 6024 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:47:16.0450 6024 hkmsvc - ok
16:47:16.0606 6024 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:47:16.0669 6024 HomeGroupListener - ok
16:47:16.0747 6024 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:47:16.0762 6024 HomeGroupProvider - ok
16:47:16.0840 6024 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:47:16.0856 6024 HpSAMD - ok
16:47:17.0121 6024 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:47:17.0137 6024 HTTP - ok
16:47:17.0199 6024 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:47:17.0215 6024 hwpolicy - ok
16:47:17.0246 6024 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:47:17.0293 6024 i8042prt - ok
16:47:17.0433 6024 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:47:17.0464 6024 iaStorV - ok
16:47:17.0636 6024 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:47:17.0636 6024 IDriverT - ok
16:47:17.0870 6024 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:47:17.0870 6024 idsvc - ok
16:47:18.0229 6024 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20121017.001\IDSvia64.sys
16:47:18.0276 6024 IDSVia64 - ok
16:47:18.0322 6024 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:47:18.0322 6024 iirsp - ok
16:47:18.0556 6024 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:47:18.0588 6024 IKEEXT - ok
16:47:18.0900 6024 [ 0ADF714079AE174A39D69036143E4C50 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:47:18.0931 6024 IntcAzAudAddService - ok
16:47:18.0962 6024 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:47:18.0962 6024 intelide - ok
16:47:18.0993 6024 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:47:19.0024 6024 intelppm - ok
16:47:19.0087 6024 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:47:19.0102 6024 IPBusEnum - ok
16:47:19.0180 6024 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:47:19.0212 6024 IpFilterDriver - ok
16:47:19.0258 6024 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:47:19.0258 6024 IPMIDRV - ok
16:47:19.0321 6024 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:47:19.0368 6024 IPNAT - ok
16:47:19.0648 6024 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:47:19.0664 6024 iPod Service - ok
16:47:19.0742 6024 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:47:19.0773 6024 IRENUM - ok
16:47:19.0804 6024 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:47:19.0804 6024 isapnp - ok
16:47:19.0929 6024 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:47:19.0945 6024 iScsiPrt - ok
16:47:22.0456 6024 [ F3A41EC4C6506E76E07A219B3A1DF8D2 ] JMB36X C:\Windows\SysWOW64\XSrvSetup.exe
16:47:22.0456 6024 JMB36X - ok
16:47:22.0472 6024 [ 1C368C1A2733DCC5B8E15420AA2B0F6D ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
16:47:22.0488 6024 JRAID - ok
16:47:22.0503 6024 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:47:22.0534 6024 kbdclass - ok
16:47:22.0612 6024 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:47:22.0644 6024 kbdhid - ok
16:47:22.0675 6024 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:47:22.0675 6024 KeyIso - ok
16:47:22.0737 6024 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:47:22.0753 6024 KSecDD - ok
16:47:22.0846 6024 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:47:22.0862 6024 KSecPkg - ok
16:47:22.0940 6024 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:47:22.0987 6024 ksthunk - ok
16:47:23.0112 6024 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:47:23.0127 6024 KtmRm - ok
16:47:23.0236 6024 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:47:23.0236 6024 LanmanServer - ok
16:47:23.0299 6024 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:47:23.0314 6024 LanmanWorkstation - ok
16:47:23.0330 6024 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:47:23.0346 6024 lltdio - ok
16:47:23.0455 6024 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:47:23.0470 6024 lltdsvc - ok
16:47:23.0517 6024 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:47:23.0564 6024 lmhosts - ok
16:47:23.0611 6024 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:47:23.0658 6024 LSI_FC - ok
16:47:23.0720 6024 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:47:23.0736 6024 LSI_SAS - ok
16:47:23.0782 6024 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:47:23.0814 6024 LSI_SAS2 - ok
16:47:23.0860 6024 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:47:23.0892 6024 LSI_SCSI - ok
16:47:23.0938 6024 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:47:23.0970 6024 luafv - ok
16:47:24.0032 6024 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
16:47:24.0048 6024 LVPr2M64 - ok
16:47:24.0048 6024 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
16:47:24.0048 6024 LVPr2Mon - ok
16:47:24.0126 6024 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
16:47:24.0157 6024 LVRS64 - ok
16:47:24.0859 6024 [ EDF73BFA1BD24D74D1D64DC0ED28A7CD ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
16:47:24.0937 6024 LVUVC64 - ok
16:47:25.0249 6024 [ 60B3548FFA9A2EAAED75E9F0704DFCE0 ] lxeeCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxeeserv.exe
16:47:25.0249 6024 lxeeCATSCustConnectService - ok
16:47:25.0264 6024 lxee_device - ok
16:47:25.0342 6024 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:47:25.0358 6024 MBAMProtector - ok
16:47:25.0561 6024 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:47:25.0561 6024 MBAMScheduler - ok
16:47:25.0732 6024 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:47:25.0732 6024 MBAMService - ok
16:47:25.0935 6024 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:47:25.0966 6024 Mcx2Svc - ok
16:47:26.0029 6024 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:47:26.0076 6024 megasas - ok
16:47:26.0169 6024 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:47:26.0200 6024 MegaSR - ok
16:47:26.0497 6024 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:47:26.0544 6024 MMCSS - ok
16:47:26.0606 6024 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:47:26.0606 6024 Modem - ok
16:47:26.0637 6024 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:47:26.0653 6024 monitor - ok
16:47:26.0715 6024 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:47:26.0731 6024 mouclass - ok
16:47:26.0809 6024 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:47:26.0824 6024 mouhid - ok
16:47:26.0887 6024 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:47:26.0918 6024 mountmgr - ok
16:47:27.0074 6024 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:47:27.0090 6024 mpio - ok
16:47:27.0152 6024 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:47:27.0183 6024 mpsdrv - ok
16:47:27.0308 6024 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:47:27.0324 6024 MRxDAV - ok
16:47:27.0417 6024 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:47:27.0433 6024 mrxsmb - ok
16:47:27.0604 6024 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:47:27.0667 6024 mrxsmb10 - ok
16:47:27.0729 6024 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:47:27.0729 6024 mrxsmb20 - ok
16:47:27.0792 6024 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:47:27.0838 6024 msahci - ok
16:47:27.0901 6024 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:47:27.0901 6024 msdsm - ok
16:47:28.0041 6024 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:47:28.0088 6024 MSDTC - ok
16:47:28.0166 6024 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:47:28.0213 6024 Msfs - ok
16:47:28.0244 6024 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:47:28.0260 6024 mshidkmdf - ok
16:47:28.0416 6024 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:47:28.0431 6024 msisadrv - ok
16:47:28.0540 6024 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:47:28.0587 6024 MSiSCSI - ok
16:47:28.0587 6024 msiserver - ok
16:47:28.0603 6024 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:47:28.0634 6024 MSKSSRV - ok
16:47:28.0681 6024 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:47:28.0712 6024 MSPCLOCK - ok
16:47:28.0728 6024 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:47:28.0728 6024 MSPQM - ok
16:47:28.0806 6024 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:47:28.0821 6024 MsRPC - ok
16:47:28.0852 6024 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:47:28.0852 6024 mssmbios - ok
16:47:28.0868 6024 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:47:28.0884 6024 MSTEE - ok
16:47:28.0899 6024 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:47:28.0899 6024 MTConfig - ok
16:47:28.0930 6024 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:47:28.0930 6024 Mup - ok
16:47:29.0071 6024 [ F2840DBFE9322F35557219AE82CC4597 ] N360 C:\Program Files (x86)\Norton 360\Engine\6.4.0.9\ccSvcHst.exe
16:47:29.0071 6024 N360 - ok
16:47:29.0180 6024 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:47:29.0211 6024 napagent - ok
16:47:29.0274 6024 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:47:29.0289 6024 NativeWifiP - ok
16:47:29.0414 6024 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121017.019\ENG64.SYS
16:47:29.0414 6024 NAVENG - ok
16:47:29.0601 6024 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121017.019\EX64.SYS
16:47:29.0632 6024 NAVEX15 - ok
16:47:29.0851 6024 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:47:29.0866 6024 NDIS - ok
16:47:29.0913 6024 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:47:29.0929 6024 NdisCap - ok
16:47:29.0976 6024 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:47:29.0991 6024 NdisTapi - ok
16:47:30.0022 6024 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:47:30.0022 6024 Ndisuio - ok
16:47:30.0116 6024 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:47:30.0132 6024 NdisWan - ok
16:47:30.0163 6024 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:47:30.0163 6024 NDProxy - ok
16:47:30.0178 6024 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:47:30.0194 6024 NetBIOS - ok
16:47:30.0288 6024 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:47:30.0288 6024 NetBT - ok
16:47:30.0303 6024 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:47:30.0303 6024 Netlogon - ok
16:47:30.0459 6024 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:47:30.0506 6024 Netman - ok
16:47:30.0584 6024 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:47:30.0615 6024 netprofm - ok
16:47:30.0678 6024 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:47:30.0693 6024 NetTcpPortSharing - ok
16:47:30.0787 6024 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:47:30.0818 6024 nfrd960 - ok
16:47:30.0912 6024 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:47:30.0927 6024 NlaSvc - ok
16:47:30.0958 6024 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:47:30.0974 6024 Npfs - ok
16:47:31.0005 6024 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:47:31.0036 6024 nsi - ok
16:47:31.0099 6024 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:47:31.0146 6024 nsiproxy - ok
16:47:31.0567 6024 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:47:31.0598 6024 Ntfs - ok
16:47:31.0614 6024 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:47:31.0629 6024 Null - ok
16:47:31.0723 6024 [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
16:47:31.0754 6024 nusb3hub - ok
16:47:31.0863 6024 [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
16:47:31.0894 6024 nusb3xhc - ok
16:47:31.0988 6024 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:47:32.0409 6024 nvraid - ok
16:47:32.0456 6024 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:47:32.0456 6024 nvstor - ok
16:47:32.0518 6024 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:47:32.0550 6024 nv_agp - ok
16:47:32.0612 6024 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:47:32.0628 6024 ohci1394 - ok
16:47:32.0752 6024 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:47:32.0752 6024 ose - ok
16:47:33.0579 6024 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:47:33.0595 6024 osppsvc - ok
16:47:33.0704 6024 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:47:33.0720 6024 p2pimsvc - ok
16:47:33.0813 6024 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:47:33.0844 6024 p2psvc - ok
16:47:33.0969 6024 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:47:34.0000 6024 Parport - ok
16:47:34.0078 6024 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:47:34.0094 6024 partmgr - ok
16:47:34.0156 6024 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:47:34.0188 6024 PcaSvc - ok
16:47:34.0219 6024 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:47:34.0234 6024 pci - ok
16:47:34.0266 6024 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:47:34.0297 6024 pciide - ok
16:47:34.0375 6024 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:47:34.0390 6024 pcmcia - ok
16:47:34.0453 6024 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:47:34.0468 6024 pcw - ok
16:47:34.0609 6024 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:47:34.0640 6024 PEAUTH - ok
16:47:35.0014 6024 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
16:47:35.0030 6024 PeerDistSvc - ok
16:47:35.0108 6024 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:47:35.0108 6024 PerfHost - ok
16:47:35.0436 6024 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:47:35.0498 6024 pla - ok
16:47:35.0623 6024 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:47:35.0638 6024 PlugPlay - ok
16:47:35.0685 6024 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:47:35.0685 6024 PNRPAutoReg - ok
16:47:35.0748 6024 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:47:35.0748 6024 PNRPsvc - ok
16:47:35.0904 6024 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:47:35.0919 6024 PolicyAgent - ok
16:47:36.0028 6024 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:47:36.0044 6024 Power - ok
16:47:36.0091 6024 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:47:36.0122 6024 PptpMiniport - ok
16:47:36.0200 6024 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:47:36.0231 6024 Processor - ok
16:47:36.0356 6024 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:47:36.0372 6024 ProfSvc - ok
16:47:36.0387 6024 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:47:36.0387 6024 ProtectedStorage - ok
16:47:36.0434 6024 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:47:36.0450 6024 Psched - ok
16:47:36.0793 6024 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:47:36.0824 6024 ql2300 - ok
16:47:36.0855 6024 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:47:36.0871 6024 ql40xx - ok
16:47:36.0964 6024 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:47:36.0980 6024 QWAVE - ok
16:47:37.0011 6024 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:47:37.0011 6024 QWAVEdrv - ok
16:47:37.0058 6024 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:47:37.0074 6024 RasAcd - ok
16:47:37.0120 6024 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:47:37.0152 6024 RasAgileVpn - ok
16:47:37.0167 6024 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:47:37.0183 6024 RasAuto - ok
16:47:37.0245 6024 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:47:37.0261 6024 Rasl2tp - ok
16:47:37.0370 6024 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:47:37.0401 6024 RasMan - ok
16:47:37.0448 6024 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:47:37.0760 6024 RasPppoe - ok
16:47:37.0807 6024 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:47:37.0838 6024 RasSstp - ok
16:47:38.0134 6024 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:47:38.0181 6024 rdbss - ok
16:47:38.0322 6024 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:47:38.0322 6024 rdpbus - ok
16:47:38.0384 6024 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:47:38.0400 6024 RDPCDD - ok
16:47:38.0524 6024 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
16:47:38.0556 6024 RDPDR - ok
16:47:38.0602 6024 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:47:38.0634 6024 RDPENCDD - ok
16:47:38.0696 6024 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:47:38.0727 6024 RDPREFMP - ok
16:47:38.0805 6024 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:47:38.0821 6024 RDPWD - ok
16:47:38.0914 6024 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:47:38.0946 6024 rdyboost - ok
16:47:39.0055 6024 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:47:39.0086 6024 RemoteAccess - ok
16:47:39.0117 6024 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:47:39.0117 6024 RemoteRegistry - ok
16:47:39.0164 6024 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:47:39.0164 6024 RpcEptMapper - ok
16:47:39.0195 6024 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:47:39.0226 6024 RpcLocator - ok
16:47:39.0429 6024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:47:39.0445 6024 RpcSs - ok
16:47:39.0476 6024 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:47:39.0476 6024 rspndr - ok
16:47:39.0585 6024 [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
16:47:39.0601 6024 RTHDMIAzAudService - ok
16:47:39.0772 6024 [ 4FBDA07EF0A3097CE14C5CABF723B278 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
16:47:39.0804 6024 RTL8167 - ok
16:47:39.0835 6024 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
16:47:39.0850 6024 s3cap - ok
16:47:39.0897 6024 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:47:39.0897 6024 SamSs - ok
16:47:39.0975 6024 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:47:39.0991 6024 sbp2port - ok
16:47:40.0100 6024 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:47:40.0116 6024 SCardSvr - ok
16:47:40.0225 6024 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:47:40.0256 6024 scfilter - ok
16:47:40.0599 6024 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:47:40.0646 6024 Schedule - ok
16:47:40.0677 6024 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:47:40.0677 6024 SCPolicySvc - ok
16:47:40.0755 6024 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:47:40.0771 6024 SDRSVC - ok
16:47:40.0802 6024 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:47:40.0818 6024 secdrv - ok
16:47:40.0864 6024 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:47:40.0864 6024 seclogon - ok
16:47:40.0896 6024 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:47:40.0927 6024 SENS - ok
16:47:40.0958 6024 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:47:40.0958 6024 SensrSvc - ok
16:47:41.0036 6024 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:47:41.0036 6024 Serenum - ok
16:47:41.0067 6024 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:47:41.0067 6024 Serial - ok
16:47:41.0114 6024 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:47:41.0145 6024 sermouse - ok
16:47:41.0239 6024 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:47:41.0254 6024 SessionEnv - ok
16:47:41.0270 6024 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:47:41.0270 6024 sffdisk - ok
16:47:41.0286 6024 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:47:41.0301 6024 sffp_mmc - ok
16:47:41.0332 6024 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:47:41.0348 6024 sffp_sd - ok
16:47:41.0364 6024 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:47:41.0395 6024 sfloppy - ok
16:47:41.0504 6024 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:47:41.0520 6024 ShellHWDetection - ok
16:47:41.0551 6024 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:47:41.0598 6024 SiSRaid2 - ok
16:47:41.0613 6024 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:47:41.0629 6024 SiSRaid4 - ok
16:47:41.0738 6024 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:47:41.0754 6024 SkypeUpdate - ok
16:47:41.0769 6024 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:47:41.0800 6024 Smb - ok
16:47:41.0863 6024 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:47:41.0894 6024 SNMPTRAP - ok
16:47:41.0910 6024 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:47:41.0925 6024 spldr - ok
16:47:42.0003 6024 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:47:42.0019 6024 Spooler - ok
16:47:42.0565 6024 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:47:42.0627 6024 sppsvc - ok
16:47:42.0705 6024 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:47:42.0721 6024 sppuinotify - ok
16:47:43.0111 6024 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\N360x64\0604000.009\SRTSP64.SYS
16:47:43.0142 6024 SRTSP - ok
16:47:43.0158 6024 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\N360x64\0604000.009\SRTSPX64.SYS
16:47:43.0189 6024 SRTSPX - ok
16:47:43.0314 6024 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:47:43.0329 6024 srv - ok
16:47:43.0392 6024 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:47:43.0407 6024 srv2 - ok
16:47:43.0485 6024 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:47:43.0532 6024 srvnet - ok
16:47:43.0610 6024 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:47:43.0626 6024 SSDPSRV - ok
16:47:43.0906 6024 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:47:43.0953 6024 SstpSvc - ok
16:47:44.0078 6024 [ 855335BF5792E56164F98C012E3D92DD ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
16:47:44.0125 6024 ssudmdm - ok
16:47:44.0156 6024 Steam Client Service - ok
16:47:44.0328 6024 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:47:44.0359 6024 stexstor - ok
16:47:44.0452 6024 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
16:47:44.0468 6024 StillCam - ok
16:47:44.0733 6024 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:47:44.0749 6024 stisvc - ok
16:47:44.0811 6024 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
16:47:44.0811 6024 storflt - ok
16:47:44.0842 6024 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
16:47:44.0858 6024 StorSvc - ok
16:47:44.0889 6024 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
16:47:44.0920 6024 storvsc - ok
16:47:44.0952 6024 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:47:44.0952 6024 swenum - ok
16:47:45.0217 6024 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:47:45.0217 6024 SwitchBoard - ok
16:47:45.0404 6024 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:47:45.0435 6024 swprv - ok
16:47:45.0654 6024 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\N360x64\0604000.009\SYMDS64.SYS
16:47:45.0685 6024 SymDS - ok
16:47:46.0012 6024 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\N360x64\0604000.009\SYMEFA64.SYS
16:47:46.0028 6024 SymEFA - ok
16:47:46.0137 6024 [ 894579207E39C465737E850A252CE4F2 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
16:47:46.0168 6024 SymEvent - ok
16:47:46.0231 6024 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\N360x64\0604000.009\Ironx64.SYS
16:47:46.0246 6024 SymIRON - ok
16:47:46.0387 6024 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\N360x64\0604000.009\SYMNETS.SYS
16:47:46.0402 6024 SymNetS - ok
16:47:46.0527 6024 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:47:46.0558 6024 SysMain - ok
16:47:46.0621 6024 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:47:46.0652 6024 TabletInputService - ok
16:47:46.0714 6024 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:47:46.0746 6024 TapiSrv - ok
16:47:46.0792 6024 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:47:46.0792 6024 TBS - ok
16:47:47.0260 6024 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:47:47.0307 6024 Tcpip - ok
16:47:47.0416 6024 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:47:47.0416 6024 TCPIP6 - ok
16:47:47.0463 6024 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:47:47.0463 6024 tcpipreg - ok
16:47:47.0510 6024 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:47:47.0510 6024 TDPIPE - ok
16:47:47.0541 6024 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:47:47.0572 6024 TDTCP - ok
16:47:47.0604 6024 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:47:47.0619 6024 tdx - ok
16:47:47.0666 6024 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:47:47.0682 6024 TermDD - ok
16:47:48.0025 6024 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:47:48.0056 6024 TermService - ok
16:47:48.0150 6024 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:47:48.0165 6024 Themes - ok
16:47:48.0228 6024 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:47:48.0228 6024 THREADORDER - ok
16:47:48.0337 6024 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:47:48.0368 6024 TrkWks - ok
16:47:48.0508 6024 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:47:48.0508 6024 TrustedInstaller - ok
16:47:48.0586 6024 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:47:48.0618 6024 tssecsrv - ok
16:47:48.0664 6024 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:47:48.0664 6024 TsUsbFlt - ok
16:47:48.0711 6024 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:47:48.0711 6024 tunnel - ok
16:47:48.0774 6024 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:47:48.0789 6024 uagp35 - ok
16:47:48.0883 6024 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:47:48.0898 6024 udfs - ok
16:47:48.0930 6024 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:47:48.0961 6024 UI0Detect - ok
16:47:48.0992 6024 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:47:49.0008 6024 uliagpkx - ok
16:47:49.0070 6024 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
16:47:49.0101 6024 umbus - ok
16:47:49.0195 6024 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:47:49.0195 6024 UmPass - ok
16:47:49.0273 6024 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
16:47:49.0288 6024 UmRdpService - ok
16:47:49.0491 6024 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
16:47:49.0507 6024 UMVPFSrv - ok
16:47:49.0632 6024 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:47:49.0663 6024 upnphost - ok
16:47:49.0741 6024 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:47:49.0756 6024 USBAAPL64 - ok
16:47:49.0803 6024 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:47:49.0834 6024 usbaudio - ok
16:47:50.0193 6024 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:47:50.0224 6024 usbccgp - ok
16:47:50.0271 6024 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:47:50.0287 6024 usbcir - ok
16:47:50.0318 6024 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:47:50.0334 6024 usbehci - ok
16:47:50.0458 6024 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:47:50.0458 6024 usbhub - ok
16:47:50.0505 6024 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
16:47:50.0521 6024 usbohci - ok
16:47:50.0583 6024 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:47:50.0599 6024 usbprint - ok
16:47:50.0724 6024 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:47:50.0739 6024 usbscan - ok
16:47:50.0755 6024 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:47:50.0786 6024 USBSTOR - ok
16:47:50.0802 6024 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:47:50.0833 6024 usbuhci - ok
16:47:50.0880 6024 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:47:50.0911 6024 UxSms - ok
16:47:50.0958 6024 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:47:50.0958 6024 VaultSvc - ok
16:47:50.0989 6024 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:47:51.0036 6024 vdrvroot - ok
16:47:51.0129 6024 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:47:51.0160 6024 vds - ok
16:47:51.0207 6024 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:47:51.0223 6024 vga - ok
16:47:51.0254 6024 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:47:51.0254 6024 VgaSave - ok
16:47:51.0332 6024 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:47:51.0348 6024 vhdmp - ok
16:47:51.0394 6024 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:47:51.0426 6024 viaide - ok
16:47:51.0550 6024 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
16:47:51.0582 6024 vmbus - ok
16:47:51.0628 6024 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
16:47:51.0644 6024 VMBusHID - ok
16:47:51.0675 6024 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:47:51.0691 6024 volmgr - ok
16:47:51.0784 6024 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:47:51.0800 6024 volmgrx - ok
16:47:51.0862 6024 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:47:51.0878 6024 volsnap - ok
16:47:51.0972 6024 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:47:51.0972 6024 vsmraid - ok
16:47:52.0299 6024 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:47:52.0315 6024 VSS - ok
16:47:52.0346 6024 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
16:47:52.0362 6024 vwifibus - ok
16:47:52.0518 6024 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:47:52.0549 6024 W32Time - ok
16:47:52.0596 6024 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:47:52.0627 6024 WacomPen - ok
16:47:52.0674 6024 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:47:52.0689 6024 WANARP - ok
16:47:52.0705 6024 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:47:52.0705 6024 Wanarpv6 - ok
16:47:52.0986 6024 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:47:53.0017 6024 WatAdminSvc - ok
16:47:53.0422 6024 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:47:53.0485 6024 wbengine - ok
16:47:53.0547 6024 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:47:53.0563 6024 WbioSrvc - ok
16:47:53.0703 6024 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:47:53.0719 6024 wcncsvc - ok
16:47:53.0766 6024 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:47:53.0781 6024 WcsPlugInService - ok
16:47:53.0797 6024 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:47:53.0812 6024 Wd - ok
16:47:53.0937 6024 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:47:53.0953 6024 Wdf01000 - ok
16:47:54.0000 6024 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:47:54.0015 6024 WdiServiceHost - ok
16:47:54.0062 6024 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:47:54.0062 6024 WdiSystemHost - ok
16:47:54.0171 6024 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:47:54.0202 6024 WebClient - ok
16:47:54.0249 6024 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:47:54.0280 6024 Wecsvc - ok
16:47:54.0296 6024 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:47:54.0296 6024 wercplsupport - ok
16:47:54.0343 6024 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:47:54.0358 6024 WerSvc - ok
16:47:54.0390 6024 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:47:54.0390 6024 WfpLwf - ok
16:47:54.0421 6024 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:47:54.0436 6024 WIMMount - ok
16:47:54.0436 6024 WinHttpAutoProxySvc - ok
16:47:54.0639 6024 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:47:54.0655 6024 Winmgmt - ok
16:47:55.0170 6024 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:47:55.0201 6024 WinRM - ok
16:47:55.0248 6024 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:47:55.0263 6024 WinUsb - ok
16:47:55.0762 6024 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:47:55.0794 6024 Wlansvc - ok
16:47:56.0776 6024 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:47:56.0792 6024 wlidsvc - ok
16:47:56.0870 6024 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:47:56.0870 6024 WmiAcpi - ok
16:47:57.0010 6024 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:47:57.0026 6024 wmiApSrv - ok
16:47:57.0088 6024 WMPNetworkSvc - ok
16:47:57.0135 6024 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:47:57.0151 6024 WPCSvc - ok
16:47:57.0213 6024 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:47:57.0229 6024 WPDBusEnum - ok
16:47:57.0276 6024 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:47:57.0291 6024 ws2ifsl - ok
16:47:57.0307 6024 WSearch - ok
16:47:57.0338 6024 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:47:57.0369 6024 WudfPf - ok
16:47:57.0494 6024 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:47:57.0510 6024 WUDFRd - ok
16:47:57.0556 6024 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:47:57.0572 6024 wudfsvc - ok
16:47:57.0650 6024 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:47:57.0666 6024 WwanSvc - ok
16:47:57.0712 6024 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
16:47:57.0728 6024 xusb21 - ok
16:47:57.0759 6024 ================ Scan global ===============================
16:47:57.0837 6024 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:47:58.0009 6024 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:47:58.0056 6024 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:47:58.0087 6024 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:47:58.0180 6024 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
16:47:58.0180 6024 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
16:47:58.0180 6024 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
16:47:58.0180 6024 ================ Scan MBR ==================================
16:47:58.0212 6024 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:48:03.0562 6024 \Device\Harddisk0\DR0 - ok
16:48:03.0906 6024 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR2
16:48:03.0921 6024 \Device\Harddisk1\DR2 - ok
16:48:03.0921 6024 ================ Scan VBR ==================================
16:48:03.0937 6024 [ 25132EADC2A3A035E6E4A710C2C88E71 ] \Device\Harddisk0\DR0\Partition1
16:48:03.0968 6024 \Device\Harddisk0\DR0\Partition1 - ok
16:48:03.0984 6024 [ F4A2D15D302C2B26D076C837DA8F3997 ] \Device\Harddisk0\DR0\Partition2
16:48:04.0030 6024 \Device\Harddisk0\DR0\Partition2 - ok
16:48:04.0046 6024 [ 848F7780B15A3CF57C9B2EF91C1E423C ] \Device\Harddisk1\DR2\Partition1
16:48:04.0046 6024 \Device\Harddisk1\DR2\Partition1 - ok
16:48:04.0046 6024 ============================================================
16:48:04.0046 6024 Scan finished
16:48:04.0046 6024 ============================================================
16:48:04.0062 5992 Detected object count: 1
16:48:04.0062 5992 Actual detected object count: 1
16:48:05.0996 5992 C:\Windows\system32\services.exe - copied to quarantine
16:48:15.0583 5992 C:\Windows\installer\{c8c2a087-cb09-2119-9392-c24bc3af8626}\@ - copied to quarantine
16:48:15.0599 5992 C:\Windows\installer\{c8c2a087-cb09-2119-9392-c24bc3af8626}\L\00000004.@ - copied to quarantine
16:48:15.0614 5992 C:\Windows\installer\{c8c2a087-cb09-2119-9392-c24bc3af8626}\L\201d3dde - copied to quarantine
16:50:39.0423 5992 Backup copy not found, trying to cure infected file..
16:50:39.0423 5992 C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
16:50:39.0423 5992 C:\Windows\system32\services.exe - processing error
16:50:39.0423 5992 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure


Note: I am still waiting for the other two scans to finish

#6 HeadshotIO

HeadshotIO
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:58 AM

Posted 18 October 2012 - 05:09 PM

aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-18 16:24:39
-----------------------------
16:24:39.242 OS Version: Windows x64 6.1.7601 Service Pack 1
16:24:39.242 Number of processors: 6 586 0xA00
16:24:39.242 ComputerName: LADYBIRD UserName: Stewart
16:24:41.692 Initialize success
16:25:49.117 AVAST engine defs: 12101801
16:26:17.680 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
16:26:17.696 Disk 0 Vendor: WDC_WD6402AAEX-00Z3A0 05.01D05 Size: 610480MB BusType: 3
16:26:17.696 Disk 1 \Device\Harddisk1\DR2 -> \Device\000000a0
16:26:17.696 Disk 1 Vendor: Size: 610480MB BusType: 0
16:26:17.711 Disk 0 MBR read successfully
16:26:17.711 Disk 0 MBR scan
16:26:17.711 Disk 0 Windows 7 default MBR code
16:26:17.727 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
16:26:17.727 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 610378 MB offset 206848
16:26:17.758 Disk 0 scanning C:\Windows\system32\drivers
16:26:30.285 Service scanning
16:26:55.573 Modules scanning
16:26:55.588 Disk 0 trace - called modules:
16:26:55.604 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
16:26:55.619 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800ddb8060]
16:26:55.635 3 CLASSPNP.SYS[fffff88001b5d43f] -> nt!IofCallDriver -> [0xfffffa800db98520]
16:26:55.651 5 ACPI.sys[fffff88000ed97a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800db9a060]
16:27:02.062 AVAST engine scan C:\Windows
16:27:05.728 AVAST engine scan C:\Windows\system32
16:30:30.452 File: C:\Windows\system32\services.exe **INFECTED** Win32:Sirefef-ZT [Trj]
16:32:10.651 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
16:32:18.654 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
16:35:45.292 AVAST engine scan C:\Windows\system32\drivers
16:36:15.616 AVAST engine scan C:\Users\Stewart
16:57:15.262 AVAST engine scan C:\ProgramData
17:08:50.055 Scan finished successfully
17:09:08.509 Disk 0 MBR has been saved successfully to "C:\Users\Stewart\Desktop\MBR.dat"
17:09:08.509 The log file has been saved successfully to "C:\Users\Stewart\Desktop\aswMBR.txt"

#7 HeadshotIO

HeadshotIO
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:58 AM

Posted 18 October 2012 - 09:10 PM

ESET:

C:\Program Files (x86)\vShare\imedix-silent.exe Win32/Toolbar.Zugo application
C:\Users\Stewart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.lnk Win32/Reveton.J trojan
C:\Users\Stewart\Documents\4844223e.dll a variant of Win32/Kryptik.ANHY trojan
C:\Users\Stewart\Downloads\mozilla-firefox-toDownload.exe a variant of Win32/InstallCore.AG application
C:\Users\Stewart\Downloads\peggle-setup.exe Win32/DownloadAdmin.A.Gen application
Operating memory multiple threats

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:58 AM

Posted 18 October 2012 - 09:12 PM

Remove the infections detected by ESET

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#9 HeadshotIO

HeadshotIO
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:58 AM

Posted 19 October 2012 - 05:20 PM

Mini Toolbox:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Stewart (administrator) on 19-10-2012 at 17:18:14
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Ladybird
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : satx.rr.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : satx.rr.com
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 6C-F0-49-EC-8D-83
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::747b:8be4:ec42:43b6%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.105(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, October 19, 2012 5:09:00 PM
Lease Expires . . . . . . . . . . : Saturday, October 20, 2012 5:08:59 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 242020425
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-77-D4-5A-6C-F0-49-EC-8D-83
DNS Servers . . . . . . . . . . . : 209.18.47.61
209.18.47.62
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.Dynex:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Pinging google.com [74.125.227.132] with 32 bytes of data:
Reply from 74.125.227.132: bytes=32 time=49ms TTL=47
Reply from 74.125.227.132: bytes=32 time=47ms TTL=47

Ping statistics for 74.125.227.132:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 47ms, Maximum = 49ms, Average = 48ms

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=861ms TTL=51
Reply from 72.30.38.140: bytes=32 time=640ms TTL=51

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 640ms, Maximum = 861ms, Average = 750ms

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...6c f0 49 ec 8d 83 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.105 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.105 276
192.168.1.105 255.255.255.255 On-link 192.168.1.105 276
192.168.1.255 255.255.255.255 On-link 192.168.1.105 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.105 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.105 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::747b:8be4:ec42:43b6/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/19/2012 05:12:19 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16450 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: d44

Start Time: 01cdae46754f57ec

Termination Time: 0

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id: 06a0c680-1a3a-11e2-9ab1-6cf049ec8d83

Error: (10/19/2012 05:09:40 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/19/2012 05:09:37 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (10/19/2012 00:31:20 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (10/19/2012 00:31:17 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/19/2012 00:30:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/18/2012 09:21:38 PM) (Source: Application Error) (User: )
Description: Faulting application name: MyCleanPC.exe, version: 1.0.0.4558, time stamp: 0x4ffee5b3
Faulting module name: MyCleanPC.exe, version: 1.0.0.4558, time stamp: 0x4ffee5b3
Exception code: 0xc0000005
Fault offset: 0x00036eb3
Faulting process id: 0xc14
Faulting application start time: 0xMyCleanPC.exe0
Faulting application path: MyCleanPC.exe1
Faulting module path: MyCleanPC.exe2
Report Id: MyCleanPC.exe3

Error: (10/18/2012 09:21:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (10/18/2012 07:01:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (10/18/2012 06:59:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (10/19/2012 05:09:43 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (10/19/2012 05:09:23 PM) (Source: Service Control Manager) (User: )
Description: The lxeeCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (10/19/2012 05:09:23 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the lxeeCATSCustConnectService service to connect.

Error: (10/19/2012 05:09:19 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (10/19/2012 05:09:10 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (10/19/2012 05:08:54 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 3:02:38 PM on ?10/?19/?2012 was unexpected.

Error: (10/18/2012 03:48:57 PM) (Source: Service Control Manager) (User: )
Description: The Windows Media Player Network Sharing Service service failed to start due to the following error:
%%1053

Error: (10/18/2012 03:48:57 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Media Player Network Sharing Service service to connect.

Error: (10/18/2012 03:45:37 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (10/18/2012 03:45:34 PM) (Source: Service Control Manager) (User: )
Description: The lxeeCATSCustConnectService service failed to start due to the following error:
%%1053


Microsoft Office Sessions:
=========================
Error: (10/19/2012 05:12:19 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.16450d4401cdae46754f57ec0C:\Program Files (x86)\Internet Explorer\iexplore.exe06a0c680-1a3a-11e2-9ab1-6cf049ec8d83

Error: (10/19/2012 05:09:40 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Stewart\Desktop\esetsmartinstaller_enu.exe

Error: (10/19/2012 05:09:37 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Stewart\Desktop\MyCleanPC.exe

Error: (10/19/2012 00:31:20 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\Users\Stewart\Desktop\MyCleanPC.exe

Error: (10/19/2012 00:31:17 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Stewart\Desktop\esetsmartinstaller_enu.exe

Error: (10/19/2012 00:30:27 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (10/18/2012 09:21:38 PM) (Source: Application Error)(User: )
Description: MyCleanPC.exe1.0.0.45584ffee5b3MyCleanPC.exe1.0.0.45584ffee5b3c000000500036eb3c1401cdada0763cc153C:\Users\Stewart\Desktop\MyCleanPC.exeC:\Users\Stewart\Desktop\MyCleanPC.exeb5851a42-1993-11e2-a02e-6cf049ec8d83

Error: (10/18/2012 09:21:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Stewart\Desktop\MyCleanPC.exe

Error: (10/18/2012 07:01:17 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\Users\Stewart\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\7JQ6OGTA\mycleanpc.exe

Error: (10/18/2012 06:59:11 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe


=========================== Installed Programs ============================

@BIOS (Version: 2.08)
µTorrent (Version: 3.1.3)
ActiveMail (Version: 5.8.18)
Adobe AIR (Version: 2.5.1.17730)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Advertising Center (Version: 0.0.0.2)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0806.1213.19931)
AMD Media Foundation Decoders (Version: 1.0.70727.2220)
AMD VISION Engine Control Center (Version: 2012.0806.1213.19931)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.15.4.0)
Ask Toolbar Updater (Version: 1.2.2.23821)
ATI AVIVO64 Codecs (Version: 11.6.0.50706)
AutoGreen B10.0517.1 (Version: 1.00.0000)
AVG 2011 (Version: 10.0.1427)
AVG 2011 (Version: 10.0.2441)
Batman: Arkham Asylum (Version: 1.0.0.0)
Bejeweled 3
Bonjour (Version: 3.0.0.10)
Browser Configuration Utility (Version: 1.1.18.0)
CameraHelperMsi (Version: 13.25.1010.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1213.19931)
Catalyst Control Center InstallProxy (Version: 2012.0806.1213.19931)
Catalyst Control Center Localization All (Version: 2012.0806.1213.19931)
ccc-utility64 (Version: 2012.0806.1213.19931)
CCC Help Chinese Standard (Version: 2012.0806.1212.19931)
CCC Help Chinese Traditional (Version: 2012.0806.1212.19931)
CCC Help Czech (Version: 2012.0806.1212.19931)
CCC Help Danish (Version: 2012.0806.1212.19931)
CCC Help Dutch (Version: 2012.0806.1212.19931)
CCC Help English (Version: 2012.0806.1212.19931)
CCC Help Finnish (Version: 2012.0806.1212.19931)
CCC Help French (Version: 2012.0806.1212.19931)
CCC Help German (Version: 2012.0806.1212.19931)
CCC Help Greek (Version: 2012.0806.1212.19931)
CCC Help Hungarian (Version: 2012.0806.1212.19931)
CCC Help Italian (Version: 2012.0806.1212.19931)
CCC Help Japanese (Version: 2012.0806.1212.19931)
CCC Help Korean (Version: 2012.0806.1212.19931)
CCC Help Norwegian (Version: 2012.0806.1212.19931)
CCC Help Polish (Version: 2012.0806.1212.19931)
CCC Help Portuguese (Version: 2012.0806.1212.19931)
CCC Help Russian (Version: 2012.0806.1212.19931)
CCC Help Spanish (Version: 2012.0806.1212.19931)
CCC Help Swedish (Version: 2012.0806.1212.19931)
CCC Help Thai (Version: 2012.0806.1212.19931)
CCC Help Turkish (Version: 2012.0806.1212.19931)
ConverterLite 1.5.1 (Version: 1.5.1)
Counter-Strike: Source
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Diablo III (Version: 1.0.4.11327)
DivX Setup (Version: 2.6.1.9)
DolbyFiles (Version: 0.1)
Dual-Core Optimizer (Version: 1.1.4.0169)
Easy Tune 6 B10.0516.1 (Version: 1.00.0000)
EasySaver B9.1214.1 (Version: 1.00.0000)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
FrostWire 5.4.0 (Version: 5.4.0.0)
Gigabyte Raid Configurer (Version: 1.00.0001)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.123)
HP Photo Creations (Version: 1.0.0.5192)
HP Photosmart 7510 series Basic Device Software (Version: 25.0.571.0)
HP Photosmart 7510 series Help (Version: 140.0.2.2)
HP Photosmart 7510 series Product Improvement Study (Version: 25.0.571.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HydraVision (Version: 4.2.174.0)
ImagXpress (Version: 7.0.74.0)
InstallAssist (Version: 1.0.0)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
Lexmark Pro700 Series
Logitech Unifying Software 2.00 (Version: 2.00.43)
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.20.1166.0)
LWS Gallery (Version: 13.20.1166.0)
LWS Help_main (Version: 13.25.1016.0)
LWS Launcher (Version: 13.20.1166.0)
LWS Motion Detection (Version: 13.20.1176.0)
LWS Pictures And Video (Version: 13.25.1010.0)
LWS Twitter (Version: 13.20.1166.0)
LWS VideoEffects (Version: 13.25.1005.0)
LWS Webcam Software (Version: 13.20.1168.0)
LWS WLM Plugin (Version: 1.20.1166.0)
LWS YouTube Plugin (Version: 13.20.1166.0)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Flight Simulator X (Version: 10.0.60905)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
NEC Electronics USB 3.0 Host Controller Driver (Version: 1.0.18.0)
Nero 9 Essentials
Nero BurnRights (Version: 3.4.13.100)
Nero BurnRights Help (Version: 3.4.4.100)
Nero ControlCenter (Version: 9.0.0.1)
Nero Disc Copy Gadget (Version: 2.4.34.0)
Nero Disc Copy Gadget Help (Version: 2.4.34.0)
Nero Express Help (Version: 9.4.27.100)
Nero InfoTool (Version: 6.4.12.100)
Nero InfoTool Help (Version: 6.4.4.100)
Nero Installer (Version: 4.4.9.0)
Nero Online Upgrade (Version: 1.3.0.0)
Nero Recode (Version: 4.4.38.1)
Nero Recode Help (Version: 4.4.38.1)
Nero StartSmart OEM (Version: 9.4.10.100)
NeroExpress (Version: 9.4.27.100)
Nike+ Connect (Version: 2.0)
Norton 360 (Version: 6.4.0.9)
NVIDIA PhysX (Version: 9.09.0720)
ON_OFF Charge B10.0427.1 (Version: 1.00.0001)
PDF Settings CS6 (Version: 11.0)
Peggle Nights
Peggle™ Nights
PokerStars.net
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.18.322.2010)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.6034)
Realtek High Definition Audio Driver (Version: 6.0.1.6083)
Safari (Version: 5.34.57.2)
Samsung Kies (Version: 2.3.2.12054_20)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.6.0)
Skype™ 5.10 (Version: 5.10.116)
Smart PDF Editor Pro 2.2.0.21
Star Wars: The Old Republic (Version: 1.00)
StarCraft II (Version: 1.5.3.23260)
Steam (Version: 1.0.0.0)
The Witcher 2 (Version: 1.00.0000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Ventrilo Client (Version: 3.0.8)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 1.1.5 (Version: 1.1.5)
vShare Plugin
Winamp (Version: 5.581 )
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
World of Warcraft (Version: 4.3.4.15595)
Zuma's Revenge!

========================= Memory info: ===================================

Percentage of memory in use: 17%
Total physical RAM: 16381.55 MB
Available physical RAM: 13475.32 MB
Total Pagefile: 32761.3 MB
Available Pagefile: 29610.99 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.73 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:596.07 GB) (Free:381.18 GB) NTFS
3 Drive d: (SC2-L100-D1) (CDROM) (Total:6.99 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\LADYBIRD

Administrator Guest Stewart

========================= Restore Points ==================================

27-09-2012 08:00:33 Windows Update
04-10-2012 15:36:51 Scheduled Checkpoint
11-10-2012 08:00:19 Windows Update
18-10-2012 20:41:56 OTL Restore Point - 10/18/2012 3:41:51 PM

**** End of log ****

Farbar:

Farbar Service Scanner Version: 07-10-2012
Ran by Stewart (administrator) on 19-10-2012 at 17:19:42
Running from "C:\Users\Stewart\Desktop"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-10-10 06:13] - [2012-06-02 00:41] - 0184320 ____A (Microsoft Corporation) 9C01375BE382E834CC26D1B7EAF2C4FE

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users