Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Sony Vaio about to die after just 14 months' use


  • Please log in to reply
10 replies to this topic

#1 katwmn6

katwmn6

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:03:20 AM

Posted 22 October 2012 - 06:43 AM

Hi everyone,

I bought a Sony Vaio VPCYB2M1E last summer. It worked fine until 3-4 months ago, when it started slowing down considerably, and then one day I got the BSOD:

Windows has recovered from an unexpected shutdown

Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7601.2.1.0.256.4
Locale ID: 2057

Additional information about the problem:
BCCode: 1000009f
BCP1: 0000000000000004
BCP2: 0000000000000258
BCP3: FFFFFA8003227B50
BCP4: FFFFF80000B9C510
OS Version: 6_1_7601
Service Pack: 1_0
Product: 256_1

Files that help describe the problem:
C:\Windows\Minidump\082912-19858-01.dmp
C:\Users\kathryn\AppData\Local\Temp\WER-48984-0.sysdata.xml

Read our privacy statement online:
http://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0409

If the online privacy statement is not available, please read our privacy statement offline:
C:\Windows\system32\en-US\erofflps.txt



I work at an IT company so I had one of our technicians do a system rebuild. This solved the problem for a few weeks, but now the laptop is even worse. Problems initially started again when streaming HD: the CPU would spike and then hover at 95-100, and the video would constantly "skip." Then problems started happening using Chrome, or when opening a large Excel file - the computer would temporarily freeze, or take 1-2 minutes to save a file or open a new browser window (all while the CPU hovered around 95-100). Now the CPU is at 100 constantly, and the fan is at full tilt. I got a blank screen when I tried to start it up this morning and had to do a hard reset to get it up and running today. I suspect it is going to die by the end of the day. I thought I would try here before giving up completely.

Here are my system details:

Processor: AMD E-350 Procesor 1.60 GHz
RAM: 4.00 GB (3.60 GB usable)
64-bit operating system
Windows 7 Enterprise
228 GB free space

Here is a summary of what the IT technician has done since the rebuild in an attempt to fix the slowness/freezing problems:

  • Disabled all unused services
  • Installed latest version of: Graphic drivers; Chipset drivers; DirectX and related; Video codecs (CCCP)
  • Tweaked power settings for max. performance
  • Checked for malicious software, didn’t find any

I have Process Hacker installed as well (system information screen shot attached) so I can provide additional system info from this if required (note none of the info from PH was of any help when a different IT engineer at my company tried to fix it).

If I'm wasting my time trying to fix it, just let me know.

Thanks for any/all help!

[Moderator edit and note: thread moved to more appropriate forum. jgw]

Attached Files

  • Attached File  PH.png   125.09KB   5 downloads

Edited by jgweed, 29 October 2012 - 07:28 AM.


BC AdBot (Login to Remove)

 


#2 Allan

Allan

  • BC Advisor
  • 8,633 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:11:20 PM

Posted 22 October 2012 - 10:57 AM

1) Just the one BSOD?

2) I don't know what a "system rebuild" is. Can you describe EXACTLY what was done?

3) EXACTLY how did you check for malware?

#3 katwmn6

katwmn6
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:03:20 AM

Posted 22 October 2012 - 06:00 PM

Thanks for your reply, Allan.

To answer your questions:

  • Yes, just one BSOD. This morning when I tried to turn it on I got a black screen with the a cursor. It stayed like that for a few minutes, then I did a hard reset and it booted up normally (and has since continuously run at 100% CPU)
  • Apologies - by system rebuild, I mean reinstalled the operating system and subsequently, most programmes that were previously on the computer (limited number - namely Word, Skype, Irfanview, iTunes, Chrome & Adobe)
  • One of the IT technicians who looked at my computer manually went through the registry (although I'm not sure how thorough he was). The other technician did scans with Microsoft Security Essentials (and potentially more programmes, but he didn't give details - I will ask him tomorrow).

Edited by katwmn6, 22 October 2012 - 06:00 PM.


#4 Allan

Allan

  • BC Advisor
  • 8,633 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:11:20 PM

Posted 23 October 2012 - 07:13 AM

I suggest you download and run a full scan with MalwareBytes as a first step.

Also, you say the cpu is at 100%. Which process is spiking?

#5 katwmn6

katwmn6
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:03:20 AM

Posted 29 October 2012 - 04:28 AM

Okay so things have changed slightly over the past few days. The CPU is no longer constantly at 100%, instead it is just spiking on and off, which slows/freezes my computer (which is what it had been doing the past month or so ever since the rebuild). When Chrome is open it is always at the top of the process list. svchost.exe is also always near the top, followed by jucheck.exe, PresentationFontCache.exe, MOM.exe and (on & off) MsMpEng.exe. Please let me know if a longer list of processes would be helpful.

I did a full MalwareBytes scan and it came back with nothing.

#6 katwmn6

katwmn6
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:03:20 AM

Posted 29 October 2012 - 06:12 AM

Update: I suspect I may have a virus/adware. Every time I do a Google search, a second or two after the results load these ads appear at the top of the screen, pushing down the search results. There are icons for major websites (YouTube, Amazon, eBay, etc) as well as sponsored results. Next to the sponsored results it says "Buzzdock Ads." I have attached a screen shot of this. Twice when using Chrome I have seen a Malwarebytes pop-up that says "Malwarebytes has blocked a potentially malicious webpage." These pop-ups only happened in the day after I installed Malwarebytes; I haven't encountered any since, but perhaps that was related (at the time the pop-ups appeared I wasn't visiting any website out of the ordinary - this is a work computer so I am very careful to visit only "safe" websites).

I have found some threads on how to remove/disable it (some of which suggest it's a virus/adware), but I would like to seek your advice first.

I have also noticed something called PageRage adverts when using Facebook recently - these appear in the "news feed" section rather than off to the side of the page. I had assumed this was a change to Facebook's presentation of ads but after Googling I now believe this is related.

Please let me know what you think, and if you recommend a specific anti-adware software.

Thanks again for the continued help!

Attached Files


Edited by katwmn6, 29 October 2012 - 06:27 AM.


#7 Allan

Allan

  • BC Advisor
  • 8,633 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:11:20 PM

Posted 29 October 2012 - 06:32 AM

Almost certainly malware, as I suggested above. I've asked a staff member to move this thread to the appropriate forum. Please wait for a malware specialist to reply.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,492 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:20 PM

Posted 29 October 2012 - 09:45 AM

Hello, please run a few scans..

Please Download

TDSSkiller


Launch it. Click on change parameters-Select TDLFS file system

Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.

>>>>>>>

Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

>>>>>>>

Posted Image Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

>>>>
MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 katwmn6

katwmn6
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:03:20 AM

Posted 31 October 2012 - 10:24 AM

Hi boopme,

Thanks for your post. I have copied all the requested scan logs below.

# AdwCleaner v2.005 - Logfile created 10/30/2012 at 11:28:04
# Updated 14/10/2012 by Xplode
# Operating system : Windows 7 Enterprise Service Pack 1 (64 bits)
# User : NAME
# Boot Mode : Normal
# Running from : C:\Users\NAME\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Yontoo
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\NAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Tarma Installer

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v21.0.1180.60

File : C:\Users\NAME\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [3582 octets] - [30/10/2012 11:28:04]

########## EOF - C:\AdwCleaner[S1].txt - [3642 octets] ##########


Junkware Removal Tool (JRT) by Thisisu
Version: 2.2.8 (10.29.2012)
OS: Windows 7 Enterprise x64
Ran by NAME on 31/10/2012 at 9:49:40.67
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys: 0 Detections



*** Files: 0 Detections



*** Folders: 0 Detections



*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on 31/10/2012 at 10:41:37.18
End of Report


MiniToolBox by Farbar Version: 23-07-2012
Ran by NAME(administrator) on 30-10-2012 at 12:25:12
Microsoft Windows 7 Enterprise Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: www.aychedee.com:3128

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Qualcomm Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : NAME-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : C0-F8-DA-CA-39-EA
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Qualcomm Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 90-00-4E-BB-57-4E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3c8e:4ad3:4de:e0b0%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 30 October 2012 11:30:04
Lease Expires . . . . . . . . . . : 31 October 2012 11:40:05
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 227541070
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-B1-83-55-F0-BF-97-46-12-36
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : F0-BF-97-46-12-36
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{72C74E53-C989-4CC9-A3B9-9AB52B55BAD3}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:73b8:3808:44:3f57:fefc(Preferred)
Link-local IPv6 Address . . . . . : fe80::3808:44:3f57:fefc%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2a00:1450:4009:807::1008
173.194.41.96
173.194.41.105
173.194.41.99
173.194.41.102
173.194.41.98
173.194.41.103
173.194.41.110
173.194.41.104
173.194.41.97
173.194.41.101
173.194.41.100


Pinging google.com [173.194.41.105] with 32 bytes of data:
Reply from 173.194.41.105: bytes=32 time=25ms TTL=55
Reply from 173.194.41.105: bytes=32 time=18ms TTL=54

Ping statistics for 173.194.41.105:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 25ms, Average = 21ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=196ms TTL=53
Reply from 72.30.38.140: bytes=32 time=289ms TTL=53

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 196ms, Maximum = 289ms, Average = 242ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=14ms TTL=128
Reply from 127.0.0.1: bytes=32 time=4ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 4ms, Maximum = 14ms, Average = 9ms
===========================================================================
Interface List
13...c0 f8 da ca 39 ea ......Bluetooth Device (Personal Area Network)
11...90 00 4e bb 57 4e ......Qualcomm Atheros AR9285 Wireless Network Adapter
10...f0 bf 97 46 12 36 ......Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 281
192.168.1.3 255.255.255.255 On-link 192.168.1.3 281
192.168.1.255 255.255.255.255 On-link 192.168.1.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 58 ::/0 On-link
1 306 ::1/128 On-link
14 58 2001::/32 On-link
14 306 2001:0:5ef5:73b8:3808:44:3f57:fefc/128
On-link
11 281 fe80::/64 On-link
14 306 fe80::/64 On-link
14 306 fe80::3808:44:3f57:fefc/128
On-link
11 281 fe80::3c8e:4ad3:4de:e0b0/128
On-link
1 306 ff00::/8 On-link
14 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/30/2012 08:27:08 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Volume/disk not connected or not found.
Error context: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 0000000000000180,0x00560038,00000000003E2FE0,0,00000000003E1FD0,4096,[0]).


Operation:
Processing PostFinalCommitSnapshots

Context:
Execution Context: System Provider

Error: (10/29/2012 08:10:36 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Volume/disk not connected or not found.
Error context: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy2,0xc0000000,0x00000003,...).


Operation:
Processing PostFinalCommitSnapshots

Context:
Execution Context: System Provider

Error: (10/29/2012 07:25:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9391

Error: (10/29/2012 07:25:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9391

Error: (10/29/2012 07:25:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/29/2012 07:25:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8159

Error: (10/29/2012 07:25:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8159

Error: (10/29/2012 07:25:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/29/2012 07:25:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7160

Error: (10/29/2012 07:25:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7160


System errors:
=============
Error: (10/30/2012 11:30:08 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (10/30/2012 11:29:39 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (10/30/2012 11:29:39 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (10/30/2012 11:22:20 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (10/30/2012 08:27:08 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because of an IO failure on volume C:.

Error: (10/30/2012 08:27:05 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (10/30/2012 08:27:05 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (10/30/2012 08:27:05 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (10/30/2012 08:27:05 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (10/30/2012 08:27:05 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.


Microsoft Office Sessions:
=========================
Error: (10/30/2012 08:27:08 AM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 0000000000000180,0x00560038,00000000003E2FE0,0,00000000003E1FD0,4096,[0])

Operation:
Processing PostFinalCommitSnapshots

Context:
Execution Context: System Provider

Error: (10/29/2012 08:10:36 PM) (Source: VSS)(User: )
Description: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy2,0xc0000000,0x00000003,...)

Operation:
Processing PostFinalCommitSnapshots

Context:
Execution Context: System Provider

Error: (10/29/2012 07:25:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9391

Error: (10/29/2012 07:25:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9391

Error: (10/29/2012 07:25:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/29/2012 07:25:02 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8159

Error: (10/29/2012 07:25:02 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8159

Error: (10/29/2012 07:25:02 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/29/2012 07:25:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7160

Error: (10/29/2012 07:25:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7160


=========================== Installed Programs ============================

3Connect (Version: 2.0.0)
64 Bit HP CIO Components Installer (Version: 6.2.2)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0806.1213.19931)
AMD Media Foundation Decoders (Version: 1.0.70727.2220)
AMD Steady Video Plug-In (Version: 2.06.0000)
AMD VISION Engine Control Center (Version: 2012.0806.1213.19931)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1213.19931)
Catalyst Control Center InstallProxy (Version: 2012.0806.1213.19931)
Catalyst Control Center Localization All (Version: 2012.0806.1213.19931)
ccc-utility64 (Version: 2012.0806.1213.19931)
CCC Help Chinese Standard (Version: 2012.0806.1212.19931)
CCC Help Chinese Traditional (Version: 2012.0806.1212.19931)
CCC Help Czech (Version: 2012.0806.1212.19931)
CCC Help Danish (Version: 2012.0806.1212.19931)
CCC Help Dutch (Version: 2012.0806.1212.19931)
CCC Help English (Version: 2012.0806.1212.19931)
CCC Help Finnish (Version: 2012.0806.1212.19931)
CCC Help French (Version: 2012.0806.1212.19931)
CCC Help German (Version: 2012.0806.1212.19931)
CCC Help Greek (Version: 2012.0806.1212.19931)
CCC Help Hungarian (Version: 2012.0806.1212.19931)
CCC Help Italian (Version: 2012.0806.1212.19931)
CCC Help Japanese (Version: 2012.0806.1212.19931)
CCC Help Korean (Version: 2012.0806.1212.19931)
CCC Help Norwegian (Version: 2012.0806.1212.19931)
CCC Help Polish (Version: 2012.0806.1212.19931)
CCC Help Portuguese (Version: 2012.0806.1212.19931)
CCC Help Russian (Version: 2012.0806.1212.19931)
CCC Help Spanish (Version: 2012.0806.1212.19931)
CCC Help Swedish (Version: 2012.0806.1212.19931)
CCC Help Thai (Version: 2012.0806.1212.19931)
CCC Help Turkish (Version: 2012.0806.1212.19931)
Combined Community Codec Pack 2011-11-11 (Version: 2011.11.11.0)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DJ_AIO_06_F2400_SW_Min (Version: 140.0.690.000)
Dropbox (Version: 1.4.12)
Google Chrome (Version: 21.0.1180.60)
HD Tune 2.55
HP Deskjet F2400 All-in-One Driver 14.0 Rel. 6 (Version: 14.0)
IrfanView (remove only) (Version: 4.32)
iTunes (Version: 10.7.0.21)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
PandoraRecovery (Remove Only)
Process Hacker 2.28 (r5073) (Version: 2.28.0.5073)
Scan (Version: 140.0.80.000)
Screen Tinter LITE (Version: 1.00.0000)
Skype™ 5.10 (Version: 5.10.116)
SSLx64 (Version: 1.0.0)
SSLx86 (Version: 1.0.0)
Synaptics Pointing Device Driver (Version: 15.1.9.0)
TeamViewer 7 (Version: 7.0.14484)
Toolbox (Version: 140.0.428.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
VAIO Control Center (Version: 4.5.0.03040)
VAIO Event Service (Version: 5.5.0.03040)
VCCx86 (Version: 1.0.0)
VESx64 (Version: 1.0.0)
VESx86 (Version: 1.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
ZTE_MF627_USB_MODEM_1.2059.0.4

========================= Memory info: ===================================

Percentage of memory in use: 36%
Total physical RAM: 3690.9 MB
Available physical RAM: 2325.62 MB
Total Pagefile: 7380 MB
Available Pagefile: 5705.49 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.89 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:297.99 GB) (Free:228.86 GB) NTFS

========================= Users: ========================================

User accounts for \\NAME-PC

Administrator Guest NAME


**** End of log ****


11:22:16.0044 4236 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
11:22:16.0655 4236 ============================================================
11:22:16.0656 4236 Current date / time: 2012/10/30 11:22:16.0655
11:22:16.0656 4236 SystemInfo:
11:22:16.0656 4236
11:22:16.0656 4236 OS Version: 6.1.7601 ServicePack: 1.0
11:22:16.0656 4236 Product type: Workstation
11:22:16.0656 4236 ComputerName: NAME-PC
11:22:16.0657 4236 UserName: NAME
11:22:16.0657 4236 Windows directory: C:\Windows
11:22:16.0657 4236 System windows directory: C:\Windows
11:22:16.0657 4236 Running under WOW64
11:22:16.0658 4236 Processor architecture: Intel x64
11:22:16.0658 4236 Number of processors: 2
11:22:16.0658 4236 Page size: 0x1000
11:22:16.0658 4236 Boot type: Normal boot
11:22:16.0658 4236 ============================================================
11:22:34.0401 4236 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:22:34.0438 4236 ============================================================
11:22:34.0438 4236 \Device\Harddisk0\DR0:
11:22:34.0439 4236 MBR partitions:
11:22:34.0439 4236 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:22:34.0439 4236 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x253FB800
11:22:34.0439 4236 ============================================================
11:22:34.0441 4236 C: <-> \Device\Harddisk0\DR0\Partition2
11:22:34.0441 4236 ============================================================
11:22:34.0441 4236 Initialize success
11:22:34.0441 4236 ============================================================
11:23:37.0829 0696 ============================================================
11:23:37.0829 0696 Scan started
11:23:37.0829 0696 Mode: Manual;
11:23:37.0829 0696 ============================================================
11:23:38.0664 0696 ================ Scan system memory ========================
11:23:38.0664 0696 System memory - ok
11:23:38.0668 0696 ================ Scan services =============================
11:23:38.0867 0696 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:23:38.0872 0696 1394ohci - ok
11:23:38.0926 0696 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:23:38.0934 0696 ACPI - ok
11:23:38.0963 0696 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:23:38.0965 0696 AcpiPmi - ok
11:23:39.0074 0696 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:23:39.0077 0696 AdobeARMservice - ok
11:23:39.0258 0696 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:23:39.0262 0696 AdobeFlashPlayerUpdateSvc - ok
11:23:39.0307 0696 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:23:39.0316 0696 adp94xx - ok
11:23:39.0330 0696 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:23:39.0340 0696 adpahci - ok
11:23:39.0359 0696 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:23:39.0366 0696 adpu320 - ok
11:23:39.0404 0696 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:23:39.0407 0696 AeLookupSvc - ok
11:23:39.0465 0696 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:23:39.0475 0696 AFD - ok
11:23:39.0506 0696 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:23:39.0509 0696 agp440 - ok
11:23:39.0538 0696 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:23:39.0545 0696 ALG - ok
11:23:39.0571 0696 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:23:39.0574 0696 aliide - ok
11:23:39.0638 0696 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:23:39.0643 0696 AMD External Events Utility - ok
11:23:39.0712 0696 AMD FUEL Service - ok
11:23:39.0740 0696 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
11:23:39.0742 0696 amdide - ok
11:23:39.0800 0696 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
11:23:39.0804 0696 amdiox64 - ok
11:23:39.0840 0696 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:23:39.0847 0696 AmdK8 - ok
11:23:40.0173 0696 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:23:40.0418 0696 amdkmdag - ok
11:23:40.0468 0696 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
11:23:40.0477 0696 amdkmdap - ok
11:23:40.0512 0696 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:23:40.0515 0696 AmdPPM - ok
11:23:40.0561 0696 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:23:40.0565 0696 amdsata - ok
11:23:40.0604 0696 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:23:40.0613 0696 amdsbs - ok
11:23:40.0643 0696 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:23:40.0645 0696 amdxata - ok
11:23:40.0693 0696 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
11:23:40.0696 0696 AppID - ok
11:23:40.0741 0696 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:23:40.0744 0696 AppIDSvc - ok
11:23:40.0780 0696 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
11:23:40.0782 0696 Appinfo - ok
11:23:40.0850 0696 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:23:40.0854 0696 Apple Mobile Device - ok
11:23:40.0899 0696 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
11:23:40.0905 0696 AppMgmt - ok
11:23:40.0946 0696 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
11:23:40.0951 0696 arc - ok
11:23:40.0985 0696 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:23:40.0990 0696 arcsas - ok
11:23:41.0021 0696 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:23:41.0023 0696 AsyncMac - ok
11:23:41.0071 0696 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
11:23:41.0072 0696 atapi - ok
11:23:41.0229 0696 [ 481CC0E01A941BA4DD0D949C1D47B417 ] athr C:\Windows\system32\DRIVERS\athrx.sys
11:23:41.0409 0696 athr - ok
11:23:41.0479 0696 [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
11:23:41.0483 0696 AtiHDAudioService - ok
11:23:41.0543 0696 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:23:41.0557 0696 AudioEndpointBuilder - ok
11:23:41.0578 0696 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:23:41.0585 0696 AudioSrv - ok
11:23:41.0622 0696 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:23:41.0627 0696 AxInstSV - ok
11:23:41.0658 0696 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:23:41.0667 0696 b06bdrv - ok
11:23:41.0709 0696 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:23:41.0715 0696 b57nd60a - ok
11:23:41.0754 0696 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:23:41.0758 0696 BDESVC - ok
11:23:41.0769 0696 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:23:41.0779 0696 Beep - ok
11:23:41.0847 0696 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
11:23:41.0859 0696 BFE - ok
11:23:41.0927 0696 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
11:23:41.0961 0696 BITS - ok
11:23:41.0997 0696 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:23:42.0000 0696 blbdrive - ok
11:23:42.0069 0696 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:23:42.0077 0696 Bonjour Service - ok
11:23:42.0119 0696 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:23:42.0123 0696 bowser - ok
11:23:42.0133 0696 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:23:42.0137 0696 BrFiltLo - ok
11:23:42.0147 0696 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:23:42.0150 0696 BrFiltUp - ok
11:23:42.0199 0696 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
11:23:42.0202 0696 Browser - ok
11:23:42.0232 0696 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:23:42.0239 0696 Brserid - ok
11:23:42.0248 0696 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:23:42.0253 0696 BrSerWdm - ok
11:23:42.0262 0696 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:23:42.0264 0696 BrUsbMdm - ok
11:23:42.0278 0696 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:23:42.0281 0696 BrUsbSer - ok
11:23:42.0343 0696 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:23:42.0345 0696 BthEnum - ok
11:23:42.0355 0696 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:23:42.0358 0696 BTHMODEM - ok
11:23:42.0389 0696 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:23:42.0393 0696 BthPan - ok
11:23:42.0445 0696 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:23:42.0455 0696 BTHPORT - ok
11:23:42.0472 0696 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:23:42.0476 0696 bthserv - ok
11:23:42.0513 0696 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:23:42.0517 0696 BTHUSB - ok
11:23:42.0546 0696 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:23:42.0549 0696 cdfs - ok
11:23:42.0603 0696 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:23:42.0608 0696 cdrom - ok
11:23:42.0659 0696 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
11:23:42.0662 0696 CertPropSvc - ok
11:23:42.0682 0696 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:23:42.0686 0696 circlass - ok
11:23:42.0701 0696 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:23:42.0708 0696 CLFS - ok
11:23:42.0793 0696 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:23:42.0797 0696 clr_optimization_v2.0.50727_32 - ok
11:23:42.0827 0696 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:23:42.0832 0696 clr_optimization_v2.0.50727_64 - ok
11:23:42.0901 0696 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:23:42.0906 0696 clr_optimization_v4.0.30319_32 - ok
11:23:42.0942 0696 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:23:42.0947 0696 clr_optimization_v4.0.30319_64 - ok
11:23:42.0969 0696 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:23:42.0972 0696 CmBatt - ok
11:23:43.0007 0696 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:23:43.0010 0696 cmdide - ok
11:23:43.0056 0696 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
11:23:43.0064 0696 CNG - ok
11:23:43.0090 0696 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:23:43.0092 0696 Compbatt - ok
11:23:43.0136 0696 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:23:43.0140 0696 CompositeBus - ok
11:23:43.0156 0696 COMSysApp - ok
11:23:43.0176 0696 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:23:43.0178 0696 crcdisk - ok
11:23:43.0231 0696 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:23:43.0236 0696 CryptSvc - ok
11:23:43.0273 0696 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
11:23:43.0283 0696 CSC - ok
11:23:43.0314 0696 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
11:23:43.0325 0696 CscService - ok
11:23:43.0356 0696 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:23:43.0367 0696 DcomLaunch - ok
11:23:43.0409 0696 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:23:43.0415 0696 defragsvc - ok
11:23:43.0455 0696 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:23:43.0458 0696 DfsC - ok
11:23:43.0497 0696 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
11:23:43.0505 0696 Dhcp - ok
11:23:43.0519 0696 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:23:43.0522 0696 discache - ok
11:23:43.0556 0696 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:23:43.0559 0696 Disk - ok
11:23:43.0594 0696 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:23:43.0599 0696 Dnscache - ok
11:23:43.0637 0696 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:23:43.0644 0696 dot3svc - ok
11:23:43.0702 0696 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
11:23:43.0706 0696 Dot4 - ok
11:23:43.0723 0696 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
11:23:43.0726 0696 Dot4Print - ok
11:23:43.0748 0696 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
11:23:43.0751 0696 dot4usb - ok
11:23:43.0793 0696 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
11:23:43.0798 0696 DPS - ok
11:23:43.0851 0696 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:23:43.0853 0696 drmkaud - ok
11:23:43.0903 0696 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:23:43.0936 0696 DXGKrnl - ok
11:23:44.0001 0696 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:23:44.0005 0696 EapHost - ok
11:23:44.0094 0696 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:23:44.0171 0696 ebdrv - ok
11:23:44.0202 0696 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
11:23:44.0206 0696 EFS - ok
11:23:44.0276 0696 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:23:44.0288 0696 ehRecvr - ok
11:23:44.0322 0696 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:23:44.0326 0696 ehSched - ok
11:23:44.0377 0696 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:23:44.0387 0696 elxstor - ok
11:23:44.0427 0696 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:23:44.0430 0696 ErrDev - ok
11:23:44.0476 0696 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:23:44.0483 0696 EventSystem - ok
11:23:44.0496 0696 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:23:44.0500 0696 exfat - ok
11:23:44.0530 0696 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:23:44.0535 0696 fastfat - ok
11:23:44.0599 0696 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
11:23:44.0616 0696 Fax - ok
11:23:44.0625 0696 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:23:44.0628 0696 fdc - ok
11:23:44.0645 0696 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:23:44.0648 0696 fdPHost - ok
11:23:44.0666 0696 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:23:44.0670 0696 FDResPub - ok
11:23:44.0693 0696 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:23:44.0696 0696 FileInfo - ok
11:23:44.0718 0696 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:23:44.0723 0696 Filetrace - ok
11:23:44.0732 0696 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:23:44.0735 0696 flpydisk - ok
11:23:44.0759 0696 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:23:44.0766 0696 FltMgr - ok
11:23:44.0841 0696 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
11:23:44.0877 0696 FontCache - ok
11:23:44.0922 0696 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:23:44.0924 0696 FontCache3.0.0.0 - ok
11:23:44.0944 0696 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:23:44.0947 0696 FsDepends - ok
11:23:44.0990 0696 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:23:44.0992 0696 Fs_Rec - ok
11:23:45.0040 0696 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:23:45.0045 0696 fvevol - ok
11:23:45.0081 0696 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:23:45.0084 0696 gagp30kx - ok
11:23:45.0124 0696 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:23:45.0126 0696 GEARAspiWDM - ok
11:23:45.0174 0696 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
11:23:45.0190 0696 gpsvc - ok
11:23:45.0213 0696 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:23:45.0216 0696 hcw85cir - ok
11:23:45.0248 0696 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:23:45.0256 0696 HdAudAddService - ok
11:23:45.0301 0696 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:23:45.0305 0696 HDAudBus - ok
11:23:45.0324 0696 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:23:45.0327 0696 HidBatt - ok
11:23:45.0339 0696 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:23:45.0343 0696 HidBth - ok
11:23:45.0353 0696 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:23:45.0356 0696 HidIr - ok
11:23:45.0396 0696 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
11:23:45.0400 0696 hidserv - ok
11:23:45.0430 0696 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:23:45.0433 0696 HidUsb - ok
11:23:45.0474 0696 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:23:45.0478 0696 hkmsvc - ok
11:23:45.0520 0696 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:23:45.0527 0696 HomeGroupListener - ok
11:23:45.0549 0696 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:23:45.0557 0696 HomeGroupProvider - ok
11:23:45.0584 0696 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:23:45.0587 0696 HpSAMD - ok
11:23:45.0633 0696 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:23:45.0646 0696 HTTP - ok
11:23:45.0672 0696 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:23:45.0675 0696 hwpolicy - ok
11:23:45.0692 0696 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:23:45.0695 0696 i8042prt - ok
11:23:45.0725 0696 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:23:45.0732 0696 iaStorV - ok
11:23:45.0783 0696 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:23:45.0815 0696 idsvc - ok
11:23:45.0875 0696 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:23:45.0878 0696 iirsp - ok
11:23:45.0952 0696 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
11:23:45.0972 0696 IKEEXT - ok
11:23:46.0004 0696 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
11:23:46.0007 0696 intelide - ok
11:23:46.0031 0696 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:23:46.0035 0696 intelppm - ok
11:23:46.0046 0696 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:23:46.0051 0696 IPBusEnum - ok
11:23:46.0085 0696 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:23:46.0089 0696 IpFilterDriver - ok
11:23:46.0136 0696 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:23:46.0148 0696 iphlpsvc - ok
11:23:46.0169 0696 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:23:46.0174 0696 IPMIDRV - ok
11:23:46.0183 0696 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:23:46.0189 0696 IPNAT - ok
11:23:46.0249 0696 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:23:46.0269 0696 iPod Service - ok
11:23:46.0284 0696 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:23:46.0288 0696 IRENUM - ok
11:23:46.0308 0696 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:23:46.0311 0696 isapnp - ok
11:23:46.0345 0696 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:23:46.0351 0696 iScsiPrt - ok
11:23:46.0383 0696 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:23:46.0386 0696 kbdclass - ok
11:23:46.0429 0696 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:23:46.0432 0696 kbdhid - ok
11:23:46.0457 0696 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
11:23:46.0460 0696 KeyIso - ok
11:23:46.0529 0696 [ BD70833AE5B0A9190D9A9618609034E2 ] KProcessHacker2 C:\Program Files\Process Hacker 2\kprocesshacker.sys
11:23:46.0580 0696 KProcessHacker2 - ok
11:23:46.0625 0696 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:23:46.0629 0696 KSecDD - ok
11:23:46.0702 0696 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:23:46.0706 0696 KSecPkg - ok
11:23:46.0722 0696 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:23:46.0725 0696 ksthunk - ok
11:23:46.0767 0696 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:23:46.0779 0696 KtmRm - ok
11:23:46.0817 0696 [ 033B4AED2C5519072C0D81E00804D003 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
11:23:46.0820 0696 L1C - ok
11:23:46.0867 0696 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:23:46.0876 0696 LanmanServer - ok
11:23:46.0909 0696 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:23:46.0915 0696 LanmanWorkstation - ok
11:23:46.0949 0696 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:23:46.0952 0696 lltdio - ok
11:23:46.0993 0696 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:23:47.0001 0696 lltdsvc - ok
11:23:47.0028 0696 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:23:47.0032 0696 lmhosts - ok
11:23:47.0079 0696 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:23:47.0083 0696 LSI_FC - ok
11:23:47.0114 0696 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:23:47.0117 0696 LSI_SAS - ok
11:23:47.0137 0696 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:23:47.0169 0696 LSI_SAS2 - ok
11:23:47.0272 0696 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:23:47.0336 0696 LSI_SCSI - ok
11:23:47.0397 0696 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:23:47.0400 0696 luafv - ok
11:23:47.0445 0696 [ F093EF8279734393B0A134FB55C5657D ] massfilter C:\Windows\system32\drivers\massfilter.sys
11:23:47.0448 0696 massfilter - ok
11:23:47.0486 0696 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:23:47.0489 0696 MBAMProtector - ok
11:23:47.0593 0696 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:23:47.0600 0696 MBAMScheduler - ok
11:23:47.0627 0696 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:23:47.0641 0696 MBAMService - ok
11:23:47.0680 0696 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:23:47.0686 0696 Mcx2Svc - ok
11:23:47.0714 0696 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:23:47.0717 0696 megasas - ok
11:23:47.0758 0696 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:23:47.0765 0696 MegaSR - ok
11:23:47.0823 0696 Microsoft SharePoint Workspace Audit Service - ok
11:23:47.0853 0696 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:23:47.0857 0696 MMCSS - ok
11:23:47.0875 0696 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:23:47.0878 0696 Modem - ok
11:23:47.0908 0696 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:23:47.0910 0696 monitor - ok
11:23:47.0951 0696 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
11:23:47.0954 0696 mouclass - ok
11:23:47.0984 0696 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:23:47.0987 0696 mouhid - ok
11:23:48.0026 0696 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:23:48.0029 0696 mountmgr - ok
11:23:48.0059 0696 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:23:48.0064 0696 MpFilter - ok
11:23:48.0106 0696 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:23:48.0111 0696 mpio - ok
11:23:48.0134 0696 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:23:48.0140 0696 mpsdrv - ok
11:23:48.0194 0696 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:23:48.0225 0696 MpsSvc - ok
11:23:48.0280 0696 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:23:48.0284 0696 MRxDAV - ok
11:23:48.0323 0696 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:23:48.0327 0696 mrxsmb - ok
11:23:48.0359 0696 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:23:48.0365 0696 mrxsmb10 - ok
11:23:48.0400 0696 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:23:48.0404 0696 mrxsmb20 - ok
11:23:48.0420 0696 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:23:48.0423 0696 msahci - ok
11:23:48.0449 0696 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:23:48.0453 0696 msdsm - ok
11:23:48.0475 0696 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:23:48.0481 0696 MSDTC - ok
11:23:48.0527 0696 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:23:48.0529 0696 Msfs - ok
11:23:48.0551 0696 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:23:48.0554 0696 mshidkmdf - ok
11:23:48.0574 0696 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:23:48.0577 0696 msisadrv - ok
11:23:48.0622 0696 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:23:48.0628 0696 MSiSCSI - ok
11:23:48.0637 0696 msiserver - ok
11:23:48.0664 0696 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:23:48.0666 0696 MSKSSRV - ok
11:23:48.0735 0696 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
11:23:48.0737 0696 MsMpSvc - ok
11:23:48.0764 0696 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:23:48.0766 0696 MSPCLOCK - ok
11:23:48.0787 0696 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:23:48.0791 0696 MSPQM - ok
11:23:48.0838 0696 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:23:48.0845 0696 MsRPC - ok
11:23:48.0865 0696 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:23:48.0867 0696 mssmbios - ok
11:23:48.0901 0696 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:23:48.0904 0696 MSTEE - ok
11:23:48.0913 0696 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:23:48.0916 0696 MTConfig - ok
11:23:48.0946 0696 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:23:48.0950 0696 Mup - ok
11:23:48.0985 0696 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
11:23:48.0995 0696 napagent - ok
11:23:49.0023 0696 Scan interrupted by user!
11:23:49.0023 0696 ================ Scan global ===============================
11:23:49.0023 0696 Scan interrupted by user!
11:23:49.0023 0696 ================ Scan MBR ==================================
11:23:49.0023 0696 Scan interrupted by user!
11:23:49.0023 0696 ================ Scan VBR ==================================
11:23:49.0023 0696 Scan interrupted by user!
11:23:49.0023 0696 ============================================================
11:23:49.0024 0696 Scan finished
11:23:49.0024 0696 ============================================================
11:23:49.0048 1900 Detected object count: 0
11:23:49.0048 1900 Actual detected object count: 0
11:24:04.0828 5656 ============================================================
11:24:04.0828 5656 Scan started
11:24:04.0828 5656 Mode: Manual; TDLFS;
11:24:04.0828 5656 ============================================================
11:24:05.0162 5656 ================ Scan system memory ========================
11:24:05.0162 5656 System memory - ok
11:24:05.0163 5656 ================ Scan services =============================
11:24:05.0355 5656 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:24:05.0358 5656 1394ohci - ok
11:24:05.0392 5656 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:24:05.0396 5656 ACPI - ok
11:24:05.0418 5656 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:24:05.0419 5656 AcpiPmi - ok
11:24:05.0507 5656 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:24:05.0509 5656 AdobeARMservice - ok
11:24:05.0669 5656 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:24:05.0672 5656 AdobeFlashPlayerUpdateSvc - ok
11:24:05.0717 5656 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:24:05.0723 5656 adp94xx - ok
11:24:05.0738 5656 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:24:05.0742 5656 adpahci - ok
11:24:05.0754 5656 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:24:05.0757 5656 adpu320 - ok
11:24:05.0825 5656 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:24:05.0827 5656 AeLookupSvc - ok
11:24:05.0874 5656 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:24:05.0880 5656 AFD - ok
11:24:05.0906 5656 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:24:05.0907 5656 agp440 - ok
11:24:05.0936 5656 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:24:05.0937 5656 ALG - ok
11:24:05.0959 5656 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:24:05.0960 5656 aliide - ok
11:24:06.0003 5656 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:24:06.0006 5656 AMD External Events Utility - ok
11:24:06.0045 5656 AMD FUEL Service - ok
11:24:06.0072 5656 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
11:24:06.0073 5656 amdide - ok
11:24:06.0111 5656 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
11:24:06.0112 5656 amdiox64 - ok
11:24:06.0139 5656 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:24:06.0141 5656 AmdK8 - ok
11:24:06.0383 5656 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:24:06.0473 5656 amdkmdag - ok
11:24:06.0512 5656 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
11:24:06.0517 5656 amdkmdap - ok
11:24:06.0545 5656 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:24:06.0546 5656 AmdPPM - ok
11:24:06.0572 5656 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:24:06.0574 5656 amdsata - ok
11:24:06.0589 5656 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:24:06.0592 5656 amdsbs - ok
11:24:06.0620 5656 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:24:06.0621 5656 amdxata - ok
11:24:06.0659 5656 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
11:24:06.0660 5656 AppID - ok
11:24:06.0685 5656 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:24:06.0687 5656 AppIDSvc - ok
11:24:06.0724 5656 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
11:24:06.0725 5656 Appinfo - ok
11:24:06.0794 5656 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:24:06.0796 5656 Apple Mobile Device - ok
11:24:06.0821 5656 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
11:24:06.0824 5656 AppMgmt - ok
11:24:06.0857 5656 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
11:24:06.0859 5656 arc - ok
11:24:06.0885 5656 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:24:06.0886 5656 arcsas - ok
11:24:06.0910 5656 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:24:06.0911 5656 AsyncMac - ok
11:24:06.0926 5656 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
11:24:06.0927 5656 atapi - ok
11:24:07.0027 5656 [ 481CC0E01A941BA4DD0D949C1D47B417 ] athr C:\Windows\system32\DRIVERS\athrx.sys
11:24:07.0059 5656 athr - ok
11:24:07.0102 5656 [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
11:24:07.0104 5656 AtiHDAudioService - ok
11:24:07.0152 5656 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:24:07.0159 5656 AudioEndpointBuilder - ok
11:24:07.0187 5656 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:24:07.0194 5656 AudioSrv - ok
11:24:07.0234 5656 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:24:07.0236 5656 AxInstSV - ok
11:24:07.0270 5656 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:24:07.0275 5656 b06bdrv - ok
11:24:07.0299 5656 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:24:07.0303 5656 b57nd60a - ok
11:24:07.0318 5656 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:24:07.0321 5656 BDESVC - ok
11:24:07.0348 5656 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:24:07.0349 5656 Beep - ok
11:24:07.0403 5656 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
11:24:07.0410 5656 BFE - ok
11:24:07.0450 5656 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
11:24:07.0460 5656 BITS - ok
11:24:07.0487 5656 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:24:07.0488 5656 blbdrive - ok
11:24:07.0537 5656 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:24:07.0542 5656 Bonjour Service - ok
11:24:07.0587 5656 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:24:07.0588 5656 bowser - ok
11:24:07.0599 5656 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:24:07.0600 5656 BrFiltLo - ok
11:24:07.0612 5656 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:24:07.0613 5656 BrFiltUp - ok
11:24:07.0666 5656 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
11:24:07.0668 5656 Browser - ok
11:24:07.0681 5656 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:24:07.0685 5656 Brserid - ok
11:24:07.0694 5656 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:24:07.0696 5656 BrSerWdm - ok
11:24:07.0705 5656 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:24:07.0706 5656 BrUsbMdm - ok
11:24:07.0718 5656 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:24:07.0719 5656 BrUsbSer - ok
11:24:07.0755 5656 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:24:07.0756 5656 BthEnum - ok
11:24:07.0765 5656 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:24:07.0769 5656 BTHMODEM - ok
11:24:07.0824 5656 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:24:07.0825 5656 BthPan - ok
11:24:07.0879 5656 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:24:07.0885 5656 BTHPORT - ok
11:24:07.0917 5656 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:24:07.0919 5656 bthserv - ok
11:24:07.0958 5656 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:24:07.0960 5656 BTHUSB - ok
11:24:07.0991 5656 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:24:07.0992 5656 cdfs - ok
11:24:08.0025 5656 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:24:08.0028 5656 cdrom - ok
11:24:08.0070 5656 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
11:24:08.0072 5656 CertPropSvc - ok
11:24:08.0094 5656 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:24:08.0095 5656 circlass - ok
11:24:08.0128 5656 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:24:08.0133 5656 CLFS - ok
11:24:08.0216 5656 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:24:08.0218 5656 clr_optimization_v2.0.50727_32 - ok
11:24:08.0250 5656 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:24:08.0252 5656 clr_optimization_v2.0.50727_64 - ok
11:24:08.0313 5656 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:24:08.0315 5656 clr_optimization_v4.0.30319_32 - ok
11:24:08.0354 5656 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:24:08.0357 5656 clr_optimization_v4.0.30319_64 - ok
11:24:08.0370 5656 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:24:08.0371 5656 CmBatt - ok
11:24:08.0408 5656 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:24:08.0409 5656 cmdide - ok
11:24:08.0455 5656 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
11:24:08.0461 5656 CNG - ok
11:24:08.0479 5656 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:24:08.0480 5656 Compbatt - ok
11:24:08.0525 5656 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:24:08.0526 5656 CompositeBus - ok
11:24:08.0536 5656 COMSysApp - ok
11:24:08.0576 5656 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:24:08.0577 5656 crcdisk - ok
11:24:08.0620 5656 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:24:08.0623 5656 CryptSvc - ok
11:24:08.0662 5656 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
11:24:08.0668 5656 CSC - ok
11:24:08.0705 5656 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
11:24:08.0712 5656 CscService - ok
11:24:08.0745 5656 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:24:08.0753 5656 DcomLaunch - ok
11:24:08.0798 5656 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:24:08.0803 5656 defragsvc - ok
11:24:08.0844 5656 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:24:08.0846 5656 DfsC - ok
11:24:08.0876 5656 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
11:24:08.0880 5656 Dhcp - ok
11:24:08.0898 5656 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:24:08.0899 5656 discache - ok
11:24:08.0923 5656 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:24:08.0925 5656 Disk - ok
11:24:08.0962 5656 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:24:08.0965 5656 Dnscache - ok
11:24:09.0005 5656 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:24:09.0008 5656 dot3svc - ok
11:24:09.0047 5656 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
11:24:09.0049 5656 Dot4 - ok
11:24:09.0068 5656 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
11:24:09.0069 5656 Dot4Print - ok
11:24:09.0093 5656 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
11:24:09.0094 5656 dot4usb - ok
11:24:09.0138 5656 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
11:24:09.0141 5656 DPS - ok
11:24:09.0174 5656 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:24:09.0175 5656 drmkaud - ok
11:24:09.0214 5656 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:24:09.0224 5656 DXGKrnl - ok
11:24:09.0246 5656 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:24:09.0249 5656 EapHost - ok
11:24:09.0346 5656 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:24:09.0376 5656 ebdrv - ok
11:24:09.0402 5656 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
11:24:09.0405 5656 EFS - ok
11:24:09.0465 5656 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:24:09.0472 5656 ehRecvr - ok
11:24:09.0510 5656 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:24:09.0512 5656 ehSched - ok
11:24:09.0544 5656 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:24:09.0550 5656 elxstor - ok
11:24:09.0583 5656 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:24:09.0585 5656 ErrDev - ok
11:24:09.0632 5656 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:24:09.0637 5656 EventSystem - ok
11:24:09.0648 5656 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:24:09.0652 5656 exfat - ok
11:24:09.0675 5656 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:24:09.0678 5656 fastfat - ok
11:24:09.0732 5656 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
11:24:09.0740 5656 Fax - ok
11:24:09.0749 5656 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:24:09.0751 5656 fdc - ok
11:24:09.0768 5656 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:24:09.0772 5656 fdPHost - ok
11:24:09.0789 5656 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:24:09.0791 5656 FDResPub - ok
11:24:09.0816 5656 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:24:09.0817 5656 FileInfo - ok
11:24:09.0840 5656 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:24:09.0842 5656 Filetrace - ok
11:24:09.0854 5656 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:24:09.0855 5656 flpydisk - ok
11:24:09.0915 5656 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:24:09.0919 5656 FltMgr - ok
11:24:09.0986 5656 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
11:24:09.0998 5656 FontCache - ok
11:24:10.0056 5656 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:24:10.0057 5656 FontCache3.0.0.0 - ok
11:24:10.0078 5656 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:24:10.0079 5656 FsDepends - ok
11:24:10.0113 5656 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:24:10.0114 5656 Fs_Rec - ok
11:24:10.0152 5656 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:24:10.0155 5656 fvevol - ok
11:24:10.0181 5656 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:24:10.0183 5656 gagp30kx - ok
11:24:10.0225 5656 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:24:10.0226 5656 GEARAspiWDM - ok
11:24:10.0274 5656 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
11:24:10.0283 5656 gpsvc - ok
11:24:10.0303 5656 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:24:10.0304 5656 hcw85cir - ok
11:24:10.0337 5656 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:24:10.0341 5656 HdAudAddService - ok
11:24:10.0379 5656 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:24:10.0381 5656 HDAudBus - ok
11:24:10.0402 5656 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:24:10.0403 5656 HidBatt - ok
11:24:10.0413 5656 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:24:10.0416 5656 HidBth - ok
11:24:10.0427 5656 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:24:10.0429 5656 HidIr - ok
11:24:10.0463 5656 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
11:24:10.0466 5656 hidserv - ok
11:24:10.0486 5656 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:24:10.0488 5656 HidUsb - ok
11:24:10.0519 5656 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:24:10.0522 5656 hkmsvc - ok
11:24:10.0565 5656 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:24:10.0572 5656 HomeGroupListener - ok
11:24:10.0595 5656 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:24:10.0599 5656 HomeGroupProvider - ok
11:24:10.0618 5656 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:24:10.0620 5656 HpSAMD - ok
11:24:10.0656 5656 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:24:10.0664 5656 HTTP - ok
11:24:10.0684 5656 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:24:10.0686 5656 hwpolicy - ok
11:24:10.0703 5656 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:24:10.0705 5656 i8042prt - ok
11:24:10.0736 5656 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:24:10.0741 5656 iaStorV - ok
11:24:10.0794 5656 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:24:10.0803 5656 idsvc - ok
11:24:10.0813 5656 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:24:10.0814 5656 iirsp - ok
11:24:10.0874 5656 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
11:24:10.0884 5656 IKEEXT - ok
11:24:10.0915 5656 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
11:24:10.0917 5656 intelide - ok
11:24:10.0943 5656 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:24:10.0944 5656 intelppm - ok
11:24:10.0956 5656 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:24:10.0959 5656 IPBusEnum - ok
11:24:10.0997 5656 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:24:10.0999 5656 IpFilterDriver - ok
11:24:11.0047 5656 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:24:11.0054 5656 iphlpsvc - ok
11:24:11.0081 5656 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:24:11.0083 5656 IPMIDRV - ok
11:24:11.0094 5656 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:24:11.0096 5656 IPNAT - ok
11:24:11.0149 5656 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:24:11.0158 5656 iPod Service - ok
11:24:11.0185 5656 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:24:11.0186 5656 IRENUM - ok
11:24:11.0209 5656 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:24:11.0210 5656 isapnp - ok
11:24:11.0235 5656 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:24:11.0239 5656 iScsiPrt - ok
11:24:11.0261 5656 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:24:11.0263 5656 kbdclass - ok
11:24:11.0285 5656 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:24:11.0286 5656 kbdhid - ok
11:24:11.0313 5656 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
11:24:11.0316 5656 KeyIso - ok
11:24:11.0362 5656 [ BD70833AE5B0A9190D9A9618609034E2 ] KProcessHacker2 C:\Program Files\Process Hacker 2\kprocesshacker.sys
11:24:11.0364 5656 KProcessHacker2 - ok
11:24:11.0403 5656 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:24:11.0405 5656 KSecDD - ok
11:24:11.0425 5656 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:24:11.0427 5656 KSecPkg - ok
11:24:11.0445 5656 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:24:11.0446 5656 ksthunk - ok
11:24:11.0479 5656 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:24:11.0485 5656 KtmRm - ok
11:24:11.0506 5656 [ 033B4AED2C5519072C0D81E00804D003 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
11:24:11.0508 5656 L1C - ok
11:24:11.0535 5656 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:24:11.0540 5656 LanmanServer - ok
11:24:11.0575 5656 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:24:11.0580 5656 LanmanWorkstation - ok
11:24:11.0605 5656 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:24:11.0607 5656 lltdio - ok
11:24:11.0649 5656 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:24:11.0655 5656 lltdsvc - ok
11:24:11.0673 5656 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:24:11.0676 5656 lmhosts - ok
11:24:11.0702 5656 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:24:11.0704 5656 LSI_FC - ok
11:24:11.0725 5656 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:24:11.0727 5656 LSI_SAS - ok
11:24:11.0749 5656 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:24:11.0750 5656 LSI_SAS2 - ok
11:24:11.0775 5656 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:24:11.0777 5656 LSI_SCSI - ok
11:24:11.0798 5656 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:24:11.0799 5656 luafv - ok
11:24:11.0835 5656 [ F093EF8279734393B0A134FB55C5657D ] massfilter C:\Windows\system32\drivers\massfilter.sys
11:24:11.0837 5656 massfilter - ok
11:24:11.0876 5656 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:24:11.0877 5656 MBAMProtector - ok
11:24:11.0926 5656 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:24:11.0931 5656 MBAMScheduler - ok
11:24:11.0961 5656 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:24:11.0968 5656 MBAMService - ok
11:24:12.0003 5656 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:24:12.0006 5656 Mcx2Svc - ok
11:24:12.0026 5656 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:24:12.0027 5656 megasas - ok
11:24:12.0059 5656 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:24:12.0062 5656 MegaSR - ok
11:24:12.0123 5656 Microsoft SharePoint Workspace Audit Service - ok
11:24:12.0153 5656 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:24:12.0156 5656 MMCSS - ok
11:24:12.0176 5656 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:24:12.0177 5656 Modem - ok
11:24:12.0198 5656 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:24:12.0199 5656 monitor - ok
11:24:12.0241 5656 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
11:24:12.0242 5656 mouclass - ok
11:24:12.0263 5656 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:24:12.0264 5656 mouhid - ok
11:24:12.0304 5656 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:24:12.0306 5656 mountmgr - ok
11:24:12.0327 5656 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:24:12.0330 5656 MpFilter - ok
11:24:12.0373 5656 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:24:12.0375 5656 mpio - ok
11:24:12.0401 5656 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:24:12.0404 5656 mpsdrv - ok
11:24:12.0450 5656 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:24:12.0459 5656 MpsSvc - ok
11:24:12.0514 5656 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:24:12.0516 5656 MRxDAV - ok
11:24:12.0545 5656 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:24:12.0548 5656 mrxsmb - ok
11:24:12.0582 5656 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:24:12.0586 5656 mrxsmb10 - ok
11:24:12.0611 5656 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:24:12.0614 5656 mrxsmb20 - ok
11:24:12.0632 5656 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:24:12.0633 5656 msahci - ok
11:24:12.0661 5656 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:24:12.0663 5656 msdsm - ok
11:24:12.0698 5656 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:24:12.0702 5656 MSDTC - ok
11:24:12.0727 5656 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:24:12.0728 5656 Msfs - ok
11:24:12.0752 5656 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:24:12.0753 5656 mshidkmdf - ok
11:24:12.0775 5656 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:24:12.0776 5656 msisadrv - ok
11:24:12.0811 5656 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:24:12.0815 5656 MSiSCSI - ok
11:24:12.0824 5656 msiserver - ok
11:24:12.0853 5656 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:24:12.0854 5656 MSKSSRV - ok
11:24:12.0902 5656 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
11:24:12.0904 5656 MsMpSvc - ok
11:24:12.0931 5656 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:24:12.0932 5656 MSPCLOCK - ok
11:24:12.0955 5656 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:24:12.0956 5656 MSPQM - ok
11:24:13.0005 5656 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:24:13.0010 5656 MsRPC - ok
11:24:13.0033 5656 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:24:13.0034 5656 mssmbios - ok
11:24:13.0069 5656 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:24:13.0070 5656 MSTEE - ok
11:24:13.0078 5656 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:24:13.0080 5656 MTConfig - ok
11:24:13.0102 5656 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:24:13.0104 5656 Mup - ok
11:24:13.0130 5656 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
11:24:13.0138 5656 napagent - ok
11:24:13.0162 5656 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:24:13.0170 5656 NativeWifiP - ok
11:24:13.0224 5656 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:24:13.0255 5656 NDIS - ok
11:24:13.0285 5656 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:24:13.0288 5656 NdisCap - ok
11:24:13.0313 5656 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:24:13.0316 5656 NdisTapi - ok
11:24:13.0345 5656 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:24:13.0348 5656 Ndisuio - ok
11:24:13.0380 5656 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:24:13.0385 5656 NdisWan - ok
11:24:13.0418 5656 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:24:13.0421 5656 NDProxy - ok
11:24:13.0478 5656 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:24:13.0482 5656 Net Driver HPZ12 - ok
11:24:13.0492 5656 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:24:13.0495 5656 NetBIOS - ok
11:24:13.0521 5656 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:24:13.0527 5656 NetBT - ok
11:24:13.0547 5656 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
11:24:13.0549 5656 Netlogon - ok
11:24:13.0598 5656 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
11:24:13.0607 5656 Netman - ok
11:24:13.0633 5656 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
11:24:13.0644 5656 netprofm - ok
11:24:13.0681 5656 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:24:13.0685 5656 NetTcpPortSharing - ok
11:24:13.0719 5656 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:24:13.0723 5656 nfrd960 - ok
11:24:13.0764 5656 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:24:13.0768 5656 NisDrv - ok
11:24:13.0834 5656 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
11:24:13.0840 5656 NisSrv - ok
11:24:13.0891 5656 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:24:13.0898 5656 NlaSvc - ok
11:24:13.0919 5656 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:24:13.0922 5656 Npfs - ok
11:24:13.0944 5656 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:24:13.0948 5656 nsi - ok
11:24:13.0964 5656 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:24:13.0967 5656 nsiproxy - ok
11:24:14.0049 5656 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:24:14.0097 5656 Ntfs - ok
11:24:14.0118 5656 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
11:24:14.0120 5656 Null - ok
11:24:14.0160 5656 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:24:14.0164 5656 nvraid - ok
11:24:14.0210 5656 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:24:14.0215 5656 nvstor - ok
11:24:14.0236 5656 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:24:14.0241 5656 nv_agp - ok
11:24:14.0279 5656 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:24:14.0283 5656 ohci1394 - ok
11:24:14.0344 5656 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:24:14.0348 5656 ose - ok
11:24:14.0501 5656 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:24:14.0547 5656 osppsvc - ok
11:24:14.0595 5656 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:24:14.0604 5656 p2pimsvc - ok
11:24:14.0628 5656 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:24:14.0639 5656 p2psvc - ok
11:24:14.0662 5656 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:24:14.0666 5656 Parport - ok
11:24:14.0701 5656 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:24:14.0705 5656 partmgr - ok
11:24:14.0724 5656 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:24:14.0730 5656 PcaSvc - ok
11:24:14.0759 5656 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
11:24:14.0764 5656 pci - ok
11:24:14.0790 5656 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
11:24:14.0792 5656 pciide - ok
11:24:14.0804 5656 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
11:24:14.0809 5656 pcmcia - ok
11:24:14.0837 5656 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:24:14.0840 5656 pcw - ok
11:24:14.0872 5656 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:24:14.0883 5656 PEAUTH - ok
11:24:14.0930 5656 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
11:24:14.0965 5656 PeerDistSvc - ok
11:24:15.0085 5656 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:24:15.0090 5656 PerfHost - ok
11:24:15.0164 5656 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
11:24:15.0199 5656 pla - ok
11:24:15.0260 5656 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:24:15.0270 5656 PlugPlay - ok
11:24:15.0319 5656 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:24:15.0323 5656 Pml Driver HPZ12 - ok
11:24:15.0349 5656 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:24:15.0354 5656 PNRPAutoReg - ok
11:24:15.0384 5656 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:24:15.0391 5656 PNRPsvc - ok
11:24:15.0420 5656 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:24:15.0429 5656 PolicyAgent - ok
11:24:15.0465 5656 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
11:24:15.0472 5656 Power - ok
11:24:15.0519 5656 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:24:15.0522 5656 PptpMiniport - ok
11:24:15.0559 5656 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
11:24:15.0562 5656 Processor - ok
11:24:15.0598 5656 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
11:24:15.0605 5656 ProfSvc - ok
11:24:15.0624 5656 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:24:15.0627 5656 ProtectedStorage - ok
11:24:15.0659 5656 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:24:15.0663 5656 Psched - ok
11:24:15.0725 5656 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
11:24:15.0774 5656 ql2300 - ok
11:24:15.0825 5656 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
11:24:15.0830 5656 ql40xx - ok
11:24:15.0842 5656 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
11:24:15.0851 5656 QWAVE - ok
11:24:15.0878 5656 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:24:15.0881 5656 QWAVEdrv - ok
11:24:15.0905 5656 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:24:15.0908 5656 RasAcd - ok
11:24:15.0945 5656 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:24:15.0948 5656 RasAgileVpn - ok
11:24:15.0958 5656 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
11:24:15.0964 5656 RasAuto - ok
11:24:16.0003 5656 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:24:16.0007 5656 Rasl2tp - ok
11:24:16.0066 5656 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
11:24:16.0074 5656 RasMan - ok
11:24:16.0086 5656 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:24:16.0090 5656 RasPppoe - ok
11:24:16.0099 5656 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:24:16.0103 5656 RasSstp - ok
11:24:16.0145 5656 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:24:16.0152 5656 rdbss - ok
11:24:16.0175 5656 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:24:16.0178 5656 rdpbus - ok
11:24:16.0197 5656 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:24:16.0199 5656 RDPCDD - ok
11:24:16.0251 5656 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
11:24:16.0256 5656 RDPDR - ok
11:24:16.0287 5656 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:24:16.0290 5656 RDPENCDD - ok
11:24:16.0313 5656 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:24:16.0315 5656 RDPREFMP - ok
11:24:16.0378 5656 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:24:16.0380 5656 RdpVideoMiniport - ok
11:24:16.0424 5656 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:24:16.0430 5656 RDPWD - ok
11:24:16.0467 5656 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:24:16.0472 5656 rdyboost - ok
11:24:16.0510 5656 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:24:16.0516 5656 RemoteAccess - ok
11:24:16.0529 5656 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:24:16.0536 5656 RemoteRegistry - ok
11:24:16.0581 5656 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:24:16.0585 5656 RFCOMM - ok
11:24:16.0637 5656 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
11:24:16.0640 5656 RimUsb - ok
11:24:16.0673 5656 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:24:16.0678 5656 RpcEptMapper - ok
11:24:16.0709 5656 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
11:24:16.0713 5656 RpcLocator - ok
11:24:16.0756 5656 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
11:24:16.0764 5656 RpcSs - ok
11:24:16.0806 5656 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:24:16.0809 5656 rspndr - ok
11:24:16.0849 5656 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
11:24:16.0851 5656 s3cap - ok
11:24:16.0868 5656 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
11:24:16.0872 5656 SamSs - ok
11:24:16.0896 5656 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:24:16.0900 5656 sbp2port - ok
11:24:16.0926 5656 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:24:16.0933 5656 SCardSvr - ok
11:24:16.0968 5656 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:24:16.0970 5656 scfilter - ok
11:24:17.0009 5656 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
11:24:17.0045 5656 Schedule - ok
11:24:17.0081 5656 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:24:17.0083 5656 SCPolicySvc - ok
11:24:17.0125 5656 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:24:17.0132 5656 SDRSVC - ok
11:24:17.0166 5656 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:24:17.0169 5656 secdrv - ok
11:24:17.0200 5656 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
11:24:17.0205 5656 seclogon - ok
11:24:17.0227 5656 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
11:24:17.0232 5656 SENS - ok
11:24:17.0253 5656 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:24:17.0259 5656 SensrSvc - ok
11:24:17.0277 5656 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:24:17.0280 5656 Serenum - ok
11:24:17.0303 5656 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:24:17.0308 5656 Serial - ok
11:24:17.0329 5656 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:24:17.0331 5656 sermouse - ok
11:24:17.0381 5656 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
11:24:17.0387 5656 SessionEnv - ok
11:24:17.0443 5656 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
11:24:17.0468 5656 SFEP - ok
11:24:17.0498 5656 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:24:17.0500 5656 sffdisk - ok
11:24:17.0510 5656 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:24:17.0513 5656 sffp_mmc - ok
11:24:17.0522 5656 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:24:17.0524 5656 sffp_sd - ok
11:24:17.0543 5656 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:24:17.0545 5656 sfloppy - ok
11:24:17.0590 5656 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:24:17.0599 5656 SharedAccess - ok
11:24:17.0638 5656 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:24:17.0647 5656 ShellHWDetection - ok
11:24:17.0675 5656 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:24:17.0678 5656 SiSRaid2 - ok
11:24:17.0701 5656 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:24:17.0705 5656 SiSRaid4 - ok
11:24:17.0751 5656 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:24:17.0755 5656 SkypeUpdate - ok
11:24:17.0765 5656 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:24:17.0770 5656 Smb - ok
11:24:17.0835 5656 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:24:17.0840 5656 SNMPTRAP - ok
11:24:17.0862 5656 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:24:17.0864 5656 spldr - ok
11:24:17.0922 5656 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
11:24:17.0933 5656 Spooler - ok
11:24:18.0047 5656 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
11:24:18.0129 5656 sppsvc - ok
11:24:18.0155 5656 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:24:18.0161 5656 sppuinotify - ok
11:24:18.0194 5656 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
11:24:18.0203 5656 srv - ok
11:24:18.0233 5656 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:24:18.0242 5656 srv2 - ok
11:24:18.0274 5656 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:24:18.0279 5656 srvnet - ok
11:24:18.0300 5656 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:24:18.0307 5656 SSDPSRV - ok
11:24:18.0328 5656 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:24:18.0333 5656 SstpSvc - ok
11:24:18.0342 5656 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:24:18.0345 5656 stexstor - ok
11:24:18.0383 5656 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
11:24:18.0402 5656 stisvc - ok
11:24:18.0434 5656 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
11:24:18.0437 5656 storflt - ok
11:24:18.0453 5656 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
11:24:18.0459 5656 StorSvc - ok
11:24:18.0485 5656 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
11:24:18.0488 5656 storvsc - ok
11:24:18.0509 5656 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
11:24:18.0512 5656 swenum - ok
11:24:18.0533 5656 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
11:24:18.0544 5656 swprv - ok
11:24:18.0570 5656 Synth3dVsc - ok
11:24:18.0656 5656 [ C43E3CA9C672B2EC30B66CCE0B89BD36 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:24:18.0692 5656 SynTP - ok
11:24:18.0761 5656 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
11:24:18.0808 5656 SysMain - ok
11:24:18.0827 5656 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:24:18.0833 5656 TabletInputService - ok
11:24:18.0862 5656 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:24:18.0871 5656 TapiSrv - ok
11:24:18.0931 5656 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
11:24:18.0937 5656 TBS - ok
11:24:19.0005 5656 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:24:19.0052 5656 Tcpip - ok
11:24:19.0097 5656 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:24:19.0114 5656 TCPIP6 - ok
11:24:19.0155 5656 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:24:19.0158 5656 tcpipreg - ok
11:24:19.0193 5656 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:24:19.0196 5656 TDPIPE - ok
11:24:19.0228 5656 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:24:19.0231 5656 TDTCP - ok
11:24:19.0277 5656 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:24:19.0281 5656 tdx - ok
11:24:19.0412 5656 [ 9C1F776825207C203CB44CA3C63B5A6E ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
11:24:19.0483 5656 TeamViewer7 - ok
11:24:19.0514 5656 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
11:24:19.0517 5656 TermDD - ok
11:24:19.0558 5656 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
11:24:19.0576 5656 TermService - ok
11:24:19.0601 5656 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
11:24:19.0606 5656 Themes - ok
11:24:19.0642 5656 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
11:24:19.0645 5656 THREADORDER - ok
11:24:19.0662 5656 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
11:24:19.0668 5656 TrkWks - ok
11:24:19.0742 5656 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:24:19.0747 5656 TrustedInstaller - ok
11:24:19.0779 5656 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:24:19.0782 5656 tssecsrv - ok
11:24:19.0816 5656 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:24:19.0819 5656 TsUsbFlt - ok
11:24:19.0842 5656 tsusbhub - ok
11:24:19.0887 5656 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:24:19.0890 5656 tunnel - ok
11:24:19.0924 5656 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:24:19.0928 5656 uagp35 - ok
11:24:19.0951 5656 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:24:19.0959 5656 udfs - ok
11:24:20.0013 5656 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:24:20.0018 5656 UI0Detect - ok
11:24:20.0036 5656 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:24:20.0040 5656 uliagpkx - ok
11:24:20.0080 5656 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
11:24:20.0083 5656 umbus - ok
11:24:20.0094 5656 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:24:20.0097 5656 UmPass - ok
11:24:20.0116 5656 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
11:24:20.0124 5656 UmRdpService - ok
11:24:20.0150 5656 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
11:24:20.0160 5656 upnphost - ok
11:24:20.0194 5656 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
11:24:20.0197 5656 USBAAPL64 - ok
11:24:20.0236 5656 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:24:20.0240 5656 usbccgp - ok
11:24:20.0296 5656 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:24:20.0300 5656 usbcir - ok
11:24:20.0333 5656 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:24:20.0336 5656 usbehci - ok
11:24:20.0377 5656 [ 76E2FFAD301490BA27B947C6507752FB ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
11:24:20.0380 5656 usbfilter - ok
11:24:20.0401 5656 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:24:20.0408 5656 usbhub - ok
11:24:20.0431 5656 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:24:20.0434 5656 usbohci - ok
11:24:20.0453 5656 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:24:20.0457 5656 usbprint - ok
11:24:20.0501 5656 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:24:20.0504 5656 usbscan - ok
11:24:20.0526 5656 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:24:20.0529 5656 USBSTOR - ok
11:24:20.0555 5656 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:24:20.0557 5656 usbuhci - ok
11:24:20.0595 5656 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:24:20.0599 5656 usbvideo - ok
11:24:20.0631 5656 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
11:24:20.0636 5656 UxSms - ok
11:24:20.0710 5656 [ DCB1F83AD167D16D263CE57C94E9EEDF ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
11:24:20.0712 5656 VAIO Event Service - ok
11:24:20.0735 5656 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
11:24:20.0738 5656 VaultSvc - ok
11:24:20.0773 5656 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:24:20.0776 5656 vdrvroot - ok
11:24:20.0821 5656 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
11:24:20.0833 5656 vds - ok
11:24:20.0859 5656 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:24:20.0861 5656 vga - ok
11:24:20.0879 5656 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
11:24:20.0882 5656 VgaSave - ok
11:24:20.0905 5656 VGPU - ok
11:24:20.0937 5656 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:24:20.0942 5656 vhdmp - ok
11:24:20.0986 5656 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
11:24:20.0989 5656 viaide - ok
11:24:21.0027 5656 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
11:24:21.0032 5656 vmbus - ok
11:24:21.0066 5656 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
11:24:21.0069 5656 VMBusHID - ok
11:24:21.0097 5656 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:24:21.0100 5656 volmgr - ok
11:24:21.0139 5656 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:24:21.0147 5656 volmgrx - ok
11:24:21.0169 5656 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:24:21.0176 5656 volsnap - ok
11:24:21.0210 5656 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:24:21.0215 5656 vsmraid - ok
11:24:21.0280 5656 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
11:24:21.0326 5656 VSS - ok
11:24:21.0344 5656 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:24:21.0346 5656 vwifibus - ok
11:24:21.0370 5656 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:24:21.0374 5656 vwififlt - ok
11:24:21.0416 5656 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
11:24:21.0426 5656 W32Time - ok
11:24:21.0451 5656 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:24:21.0454 5656 WacomPen - ok
11:24:21.0491 5656 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:24:21.0495 5656 WANARP - ok
11:24:21.0502 5656 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:24:21.0504 5656 Wanarpv6 - ok
11:24:21.0579 5656 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:24:21.0615 5656 WatAdminSvc - ok
11:24:21.0667 5656 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
11:24:21.0714 5656 wbengine - ok
11:24:21.0741 5656 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:24:21.0749 5656 WbioSrvc - ok
11:24:21.0784 5656 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:24:21.0794 5656 wcncsvc - ok
11:24:21.0836 5656 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:24:21.0842 5656 WcsPlugInService - ok
11:24:21.0864 5656 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:24:21.0867 5656 Wd - ok
11:24:21.0903 5656 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:24:21.0914 5656 Wdf01000 - ok
11:24:21.0938 5656 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:24:21.0944 5656 WdiServiceHost - ok
11:24:21.0952 5656 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:24:21.0957 5656 WdiSystemHost - ok
11:24:21.0978 5656 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
11:24:21.0986 5656 WebClient - ok
11:24:22.0013 5656 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:24:22.0022 5656 Wecsvc - ok
11:24:22.0045 5656 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:24:22.0051 5656 wercplsupport - ok
11:24:22.0089 5656 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:24:22.0096 5656 WerSvc - ok
11:24:22.0108 5656 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:24:22.0111 5656 WfpLwf - ok
11:24:22.0129 5656 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:24:22.0132 5656 WIMMount - ok
11:24:22.0149 5656 WinDefend - ok
11:24:22.0164 5656 WinHttpAutoProxySvc - ok
11:24:22.0225 5656 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:24:22.0230 5656 Winmgmt - ok
11:24:22.0308 5656 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
11:24:22.0366 5656 WinRM - ok
11:24:22.0413 5656 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
11:24:22.0446 5656 Wlansvc - ok
11:24:22.0502 5656 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:24:22.0506 5656 wlcrasvc - ok
11:24:22.0618 5656 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:24:22.0676 5656 wlidsvc - ok
11:24:22.0716 5656 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:24:22.0718 5656 WmiAcpi - ok
11:24:22.0749 5656 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:24:22.0754 5656 wmiApSrv - ok
11:24:22.0763 5656 WMPNetworkSvc - ok
11:24:22.0787 5656 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:24:22.0793 5656 WPCSvc - ok
11:24:22.0821 5656 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:24:22.0828 5656 WPDBusEnum - ok
11:24:22.0861 5656 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:24:22.0863 5656 ws2ifsl - ok
11:24:22.0873 5656 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
11:24:22.0879 5656 wscsvc - ok
11:24:22.0888 5656 WSearch - ok
11:24:22.0974 5656 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:24:23.0032 5656 wuauserv - ok
11:24:23.0052 5656 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:24:23.0056 5656 WudfPf - ok
11:24:23.0093 5656 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:24:23.0098 5656 WUDFRd - ok
11:24:23.0135 5656 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:24:23.0141 5656 wudfsvc - ok
11:24:23.0180 5656 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
11:24:23.0189 5656 WwanSvc - ok
11:24:23.0244 5656 [ BCD008C9FC4B57C107CBCFC3E77B58BA ] ZTEusbmdm6k C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
11:24:23.0248 5656 ZTEusbmdm6k - ok
11:24:23.0267 5656 [ BCD008C9FC4B57C107CBCFC3E77B58BA ] ZTEusbnmea C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
11:24:23.0271 5656 ZTEusbnmea - ok
11:24:23.0294 5656 [ BCD008C9FC4B57C107CBCFC3E77B58BA ] ZTEusbser6k C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
11:24:23.0298 5656 ZTEusbser6k - ok
11:24:23.0322 5656 ================ Scan global ===============================
11:24:23.0348 5656 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:24:23.0394 5656 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
11:24:23.0416 5656 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
11:24:23.0450 5656 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:24:23.0490 5656 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:24:23.0499 5656 [Global] - ok
11:24:23.0500 5656 ================ Scan MBR ==================================
11:24:23.0519 5656 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:24:24.0020 5656 \Device\Harddisk0\DR0 - ok
11:24:24.0021 5656 ================ Scan VBR ==================================
11:24:24.0026 5656 [ 55A581A46A1640F9737DCEF14A68952F ] \Device\Harddisk0\DR0\Partition1
11:24:24.0029 5656 \Device\Harddisk0\DR0\Partition1 - ok
11:24:24.0062 5656 [ E4C673A8A940545EA55F01A5AF9387E8 ] \Device\Harddisk0\DR0\Partition2
11:24:24.0065 5656 \Device\Harddisk0\DR0\Partition2 - ok
11:24:24.0066 5656 ============================================================
11:24:24.0067 5656 Scan finished
11:24:24.0067 5656 ============================================================
11:24:24.0085 4436 Detected object count: 0
11:24:24.0085 4436 Actual detected object count: 0
11:26:55.0617 5812 Deinitialize success


Edited by katwmn6, 31 October 2012 - 10:27 AM.


#10 katwmn6

katwmn6
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:03:20 AM

Posted 03 November 2012 - 03:52 AM

Just an update, my Chrome has been operating better since I ran the scans you suggested. The Malware/Adware had changed some of my Chrome settings (e.g. clicking on a link would open a new tab) which have now gone back to normal, and the ads have stopped appearing in Google search results and on Facebook.

That said, the computer still isn't running terribly well. I am wondering if my external HD is infected, which might explain why my computer had problems so soon again after the rebuild (I regularly backup my computer files to my external HD).

Further advice would be much appreciated!

Many thanks

Edited by katwmn6, 03 November 2012 - 03:52 AM.


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,492 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:20 PM

Posted 03 November 2012 - 08:11 PM

Hello,sorry for the delay.. we were affected by the hurricane for days..

I think we should get a deeper look. Please follow this Preparation Guide and post in a new topic.
If Gmer won't run,skip it.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users