Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.Zbot


  • Please log in to reply
5 replies to this topic

#1 onetwothree4

onetwothree4

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 01 November 2012 - 08:14 PM

Malwarebytes found Trojan.Zbot on my computer. I'm removing it and now and am going to rescan. But I wanted to make sure the trojan is off my computer for good, so I need some help.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:23 PM

Posted 01 November 2012 - 08:28 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 onetwothree4

onetwothree4
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 01 November 2012 - 10:46 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-11-01 22:13:25
-----------------------------
22:13:25.794 OS Version: Windows x64 6.1.7600
22:13:25.794 Number of processors: 8 586 0x2A07
22:13:25.794 ComputerName: BRITTNI-PC UserName: Brittni
22:13:27.502 Initialize success
22:13:38.082 AVAST engine defs: 12110101
22:13:40.133 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
22:13:40.133 Disk 0 Vendor: ST9500420AS D005SDM1 Size: 476940MB BusType: 11
22:13:40.133 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T0L0-1
22:13:40.133 Disk 1 Vendor: ST9500420AS D005SDM1 Size: 476940MB BusType: 11
22:13:40.173 Disk 0 MBR read successfully
22:13:40.173 Disk 0 MBR scan
22:13:40.223 Disk 0 Windows 7 default MBR code
22:13:40.233 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
22:13:40.253 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 208845
22:13:40.293 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461837 MB offset 30928845
22:13:40.373 Disk 0 scanning C:\Windows\system32\drivers
22:14:04.946 Service scanning
22:14:56.819 Modules scanning
22:14:56.821 Disk 0 trace - called modules:
22:14:56.854 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
22:14:56.855 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007e7f060]
22:14:56.855 3 CLASSPNP.SYS[fffff880015c343f] -> nt!IofCallDriver -> [0xfffffa8007ca4af0]
22:14:56.856 5 stdcfltn.sys[fffff880017cac52] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80077381f0]
22:15:00.676 AVAST engine scan C:\Windows
22:15:27.727 AVAST engine scan C:\Windows\system32
22:24:26.978 AVAST engine scan C:\Windows\system32\drivers
22:25:22.016 AVAST engine scan C:\Users\Brittni
22:51:33.478 AVAST engine scan C:\ProgramData
22:55:20.047 Scan finished successfully
22:57:14.395 Disk 0 MBR has been saved successfully to "C:\Users\Brittni\Desktop\MBR.dat"
22:57:14.458 The log file has been saved successfully to "C:\Users\Brittni\Desktop\aswMBR.txt"


21:38:16.0645 5800 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:38:18.0110 5800 ============================================================
21:38:18.0110 5800 Current date / time: 2012/11/01 21:38:18.0110
21:38:18.0110 5800 SystemInfo:
21:38:18.0110 5800
21:38:18.0110 5800 OS Version: 6.1.7600 ServicePack: 0.0
21:38:18.0110 5800 Product type: Workstation
21:38:18.0110 5800 ComputerName: BRITTNI-PC
21:38:18.0110 5800 UserName: Brittni
21:38:18.0110 5800 Windows directory: C:\Windows
21:38:18.0110 5800 System windows directory: C:\Windows
21:38:18.0110 5800 Running under WOW64
21:38:18.0110 5800 Processor architecture: Intel x64
21:38:18.0110 5800 Number of processors: 8
21:38:18.0110 5800 Page size: 0x1000
21:38:18.0110 5800 Boot type: Normal boot
21:38:18.0110 5800 ============================================================
21:38:19.0509 5800 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:38:19.0509 5800 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:38:19.0568 5800 ============================================================
21:38:19.0569 5800 \Device\Harddisk0\DR0:
21:38:19.0569 5800 MBR partitions:
21:38:19.0569 5800 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
21:38:19.0569 5800 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x38606863
21:38:19.0569 5800 \Device\Harddisk1\DR1:
21:38:19.0569 5800 MBR partitions:
21:38:19.0569 5800 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
21:38:19.0569 5800 ============================================================
21:38:19.0600 5800 C: <-> \Device\Harddisk0\DR0\Partition2
21:38:19.0601 5800 D: <-> \Device\Harddisk1\DR1\Partition1
21:38:19.0601 5800 ============================================================
21:38:19.0601 5800 Initialize success
21:38:19.0601 5800 ============================================================
21:38:29.0331 5104 ============================================================
21:38:29.0331 5104 Scan started
21:38:29.0331 5104 Mode: Manual;
21:38:29.0331 5104 ============================================================
21:38:30.0335 5104 ================ Scan system memory ========================
21:38:30.0335 5104 System memory - ok
21:38:30.0335 5104 ================ Scan services =============================
21:38:30.0447 5104 [ 969C91060CBB5D17CB8440B5F78B4C51 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
21:38:30.0451 5104 1394ohci - ok
21:38:30.0478 5104 [ E0065CBF1A25C015C218457D2CD522B9 ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
21:38:30.0479 5104 Acceler - ok
21:38:30.0494 5104 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
21:38:30.0499 5104 ACPI - ok
21:38:30.0514 5104 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
21:38:30.0516 5104 AcpiPmi - ok
21:38:30.0540 5104 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:38:30.0548 5104 adp94xx - ok
21:38:30.0569 5104 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:38:30.0574 5104 adpahci - ok
21:38:30.0592 5104 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:38:30.0595 5104 adpu320 - ok
21:38:30.0625 5104 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:38:30.0626 5104 AeLookupSvc - ok
21:38:30.0674 5104 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
21:38:30.0675 5104 AERTFilters - ok
21:38:30.0710 5104 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
21:38:30.0717 5104 AFD - ok
21:38:30.0731 5104 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
21:38:30.0733 5104 agp440 - ok
21:38:30.0747 5104 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:38:30.0750 5104 ALG - ok
21:38:30.0770 5104 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
21:38:30.0772 5104 aliide - ok
21:38:30.0784 5104 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
21:38:30.0786 5104 amdide - ok
21:38:30.0818 5104 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:38:30.0820 5104 AmdK8 - ok
21:38:30.0831 5104 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:38:30.0833 5104 AmdPPM - ok
21:38:30.0864 5104 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:38:30.0866 5104 amdsata - ok
21:38:30.0883 5104 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:38:30.0887 5104 amdsbs - ok
21:38:30.0905 5104 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:38:30.0906 5104 amdxata - ok
21:38:30.0945 5104 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
21:38:30.0947 5104 AppID - ok
21:38:30.0961 5104 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:38:30.0962 5104 AppIDSvc - ok
21:38:30.0974 5104 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
21:38:30.0975 5104 Appinfo - ok
21:38:31.0037 5104 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:38:31.0038 5104 Apple Mobile Device - ok
21:38:31.0055 5104 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:38:31.0058 5104 arc - ok
21:38:31.0077 5104 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:38:31.0079 5104 arcsas - ok
21:38:31.0107 5104 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:38:31.0109 5104 AsyncMac - ok
21:38:31.0119 5104 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
21:38:31.0119 5104 atapi - ok
21:38:31.0145 5104 [ E1FFD1F7B043AEF0ACC9E7593043FD4C ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:38:31.0152 5104 AudioEndpointBuilder - ok
21:38:31.0169 5104 [ E1FFD1F7B043AEF0ACC9E7593043FD4C ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:38:31.0173 5104 AudioSrv - ok
21:38:31.0205 5104 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:38:31.0207 5104 AxInstSV - ok
21:38:31.0231 5104 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:38:31.0238 5104 b06bdrv - ok
21:38:31.0266 5104 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:38:31.0270 5104 b57nd60a - ok
21:38:31.0300 5104 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:38:31.0302 5104 BDESVC - ok
21:38:31.0308 5104 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:38:31.0309 5104 Beep - ok
21:38:31.0340 5104 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
21:38:31.0358 5104 BFE - ok
21:38:31.0385 5104 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
21:38:31.0390 5104 BITS - ok
21:38:31.0398 5104 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:38:31.0400 5104 blbdrive - ok
21:38:31.0442 5104 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:38:31.0445 5104 Bonjour Service - ok
21:38:31.0485 5104 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:38:31.0487 5104 bowser - ok
21:38:31.0502 5104 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:38:31.0503 5104 BrFiltLo - ok
21:38:31.0520 5104 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:38:31.0524 5104 BrFiltUp - ok
21:38:31.0546 5104 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
21:38:31.0548 5104 Browser - ok
21:38:31.0565 5104 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:38:31.0570 5104 Brserid - ok
21:38:31.0582 5104 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:38:31.0584 5104 BrSerWdm - ok
21:38:31.0599 5104 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:38:31.0601 5104 BrUsbMdm - ok
21:38:31.0606 5104 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:38:31.0608 5104 BrUsbSer - ok
21:38:31.0624 5104 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:38:31.0626 5104 BTHMODEM - ok
21:38:31.0653 5104 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:38:31.0655 5104 bthserv - ok
21:38:31.0667 5104 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:38:31.0669 5104 cdfs - ok
21:38:31.0693 5104 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:38:31.0696 5104 cdrom - ok
21:38:31.0720 5104 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
21:38:31.0722 5104 CertPropSvc - ok
21:38:31.0761 5104 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\Windows\system32\drivers\cfwids.sys
21:38:31.0762 5104 cfwids - ok
21:38:31.0780 5104 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:38:31.0782 5104 circlass - ok
21:38:31.0806 5104 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:38:31.0813 5104 CLFS - ok
21:38:31.0860 5104 [ 730BF325E4CC1E3935B81943AC6DA216 ] CLKMSVC10_9EC60124 c:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
21:38:31.0863 5104 CLKMSVC10_9EC60124 - ok
21:38:31.0915 5104 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:38:31.0916 5104 clr_optimization_v2.0.50727_32 - ok
21:38:31.0959 5104 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:38:31.0965 5104 clr_optimization_v2.0.50727_64 - ok
21:38:32.0022 5104 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:38:32.0023 5104 clr_optimization_v4.0.30319_32 - ok
21:38:32.0051 5104 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:38:32.0052 5104 clr_optimization_v4.0.30319_64 - ok
21:38:32.0079 5104 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:38:32.0081 5104 CmBatt - ok
21:38:32.0090 5104 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
21:38:32.0091 5104 cmdide - ok
21:38:32.0135 5104 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
21:38:32.0142 5104 CNG - ok
21:38:32.0154 5104 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:38:32.0155 5104 Compbatt - ok
21:38:32.0170 5104 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:38:32.0172 5104 CompositeBus - ok
21:38:32.0174 5104 COMSysApp - ok
21:38:32.0188 5104 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:38:32.0190 5104 crcdisk - ok
21:38:32.0224 5104 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:38:32.0228 5104 CryptSvc - ok
21:38:32.0256 5104 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
21:38:32.0259 5104 CtClsFlt - ok
21:38:32.0281 5104 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:38:32.0285 5104 DcomLaunch - ok
21:38:32.0428 5104 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:38:32.0466 5104 defragsvc - ok
21:38:32.0554 5104 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:38:32.0557 5104 DfsC - ok
21:38:32.0580 5104 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
21:38:32.0585 5104 Dhcp - ok
21:38:32.0598 5104 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:38:32.0600 5104 discache - ok
21:38:32.0624 5104 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:38:32.0625 5104 Disk - ok
21:38:32.0646 5104 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:38:32.0674 5104 Dnscache - ok
21:38:32.0688 5104 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
21:38:32.0692 5104 dot3svc - ok
21:38:32.0703 5104 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
21:38:32.0705 5104 DPS - ok
21:38:32.0725 5104 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:38:32.0727 5104 drmkaud - ok
21:38:32.0759 5104 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:38:32.0764 5104 DXGKrnl - ok
21:38:32.0786 5104 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:38:32.0789 5104 EapHost - ok
21:38:32.0860 5104 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:38:32.0925 5104 ebdrv - ok
21:38:32.0949 5104 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
21:38:32.0987 5104 EFS - ok
21:38:33.0047 5104 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:38:33.0073 5104 ehRecvr - ok
21:38:33.0084 5104 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:38:33.0104 5104 ehSched - ok
21:38:33.0136 5104 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:38:33.0143 5104 elxstor - ok
21:38:33.0154 5104 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
21:38:33.0155 5104 ErrDev - ok
21:38:33.0174 5104 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:38:33.0177 5104 EventSystem - ok
21:38:33.0256 5104 [ 8B6C9924B0D333DBF76086B8258A0891 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:38:33.0267 5104 EvtEng - ok
21:38:33.0290 5104 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:38:33.0294 5104 exfat - ok
21:38:33.0300 5104 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:38:33.0304 5104 fastfat - ok
21:38:33.0342 5104 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
21:38:33.0360 5104 Fax - ok
21:38:33.0373 5104 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:38:33.0375 5104 fdc - ok
21:38:33.0390 5104 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:38:33.0391 5104 fdPHost - ok
21:38:33.0402 5104 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:38:33.0404 5104 FDResPub - ok
21:38:33.0416 5104 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:38:33.0419 5104 FileInfo - ok
21:38:33.0430 5104 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:38:33.0432 5104 Filetrace - ok
21:38:33.0449 5104 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:38:33.0451 5104 flpydisk - ok
21:38:33.0465 5104 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:38:33.0473 5104 FltMgr - ok
21:38:33.0510 5104 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
21:38:33.0519 5104 FontCache - ok
21:38:33.0551 5104 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:38:33.0552 5104 FontCache3.0.0.0 - ok
21:38:33.0561 5104 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:38:33.0563 5104 FsDepends - ok
21:38:33.0580 5104 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:38:33.0581 5104 Fs_Rec - ok
21:38:33.0607 5104 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:38:33.0610 5104 fvevol - ok
21:38:33.0639 5104 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:38:33.0641 5104 gagp30kx - ok
21:38:33.0667 5104 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:38:33.0668 5104 GEARAspiWDM - ok
21:38:33.0692 5104 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
21:38:33.0713 5104 gpsvc - ok
21:38:33.0721 5104 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:38:33.0723 5104 hcw85cir - ok
21:38:33.0751 5104 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:38:33.0753 5104 HDAudBus - ok
21:38:33.0765 5104 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:38:33.0767 5104 HidBatt - ok
21:38:33.0785 5104 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:38:33.0787 5104 HidBth - ok
21:38:33.0809 5104 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:38:33.0811 5104 HidIr - ok
21:38:33.0829 5104 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:38:33.0831 5104 hidserv - ok
21:38:33.0853 5104 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:38:33.0855 5104 HidUsb - ok
21:38:33.0869 5104 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:38:33.0875 5104 hkmsvc - ok
21:38:33.0890 5104 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:38:33.0895 5104 HomeGroupListener - ok
21:38:33.0914 5104 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:38:33.0916 5104 HomeGroupProvider - ok
21:38:33.0933 5104 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
21:38:33.0935 5104 HpSAMD - ok
21:38:33.0956 5104 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:38:33.0973 5104 HTTP - ok
21:38:33.0981 5104 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:38:33.0982 5104 hwpolicy - ok
21:38:33.0997 5104 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:38:33.0999 5104 i8042prt - ok
21:38:34.0036 5104 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:38:34.0043 5104 iaStorV - ok
21:38:34.0091 5104 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:38:34.0097 5104 idsvc - ok
21:38:34.0317 5104 [ 66DC0CE2D1867B8178EAA0E11930DBD7 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
21:38:34.0523 5104 igfx - ok
21:38:34.0544 5104 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:38:34.0546 5104 iirsp - ok
21:38:34.0580 5104 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
21:38:34.0614 5104 IKEEXT - ok
21:38:34.0630 5104 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
21:38:34.0633 5104 Impcd - ok
21:38:34.0700 5104 [ D492D3B5A8DDDE1D6621A8C53855EABF ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:38:34.0715 5104 IntcAzAudAddService - ok
21:38:34.0737 5104 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
21:38:34.0742 5104 IntcDAud - ok
21:38:34.0758 5104 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
21:38:34.0760 5104 intelide - ok
21:38:34.0770 5104 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:38:34.0771 5104 intelppm - ok
21:38:34.0784 5104 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:38:34.0787 5104 IPBusEnum - ok
21:38:34.0808 5104 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:38:34.0811 5104 IpFilterDriver - ok
21:38:34.0847 5104 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:38:34.0856 5104 iphlpsvc - ok
21:38:34.0872 5104 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:38:34.0874 5104 IPMIDRV - ok
21:38:34.0887 5104 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:38:34.0890 5104 IPNAT - ok
21:38:34.0932 5104 [ EE4C2A137C7088911A8919EFFC9812E7 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:38:34.0937 5104 iPod Service - ok
21:38:34.0957 5104 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:38:34.0958 5104 IRENUM - ok
21:38:34.0968 5104 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
21:38:34.0970 5104 isapnp - ok
21:38:34.0987 5104 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:38:34.0993 5104 iScsiPrt - ok
21:38:35.0018 5104 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:38:35.0019 5104 kbdclass - ok
21:38:35.0031 5104 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:38:35.0033 5104 kbdhid - ok
21:38:35.0044 5104 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
21:38:35.0082 5104 KeyIso - ok
21:38:35.0097 5104 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:38:35.0098 5104 KSecDD - ok
21:38:35.0118 5104 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:38:35.0121 5104 KSecPkg - ok
21:38:35.0133 5104 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:38:35.0135 5104 ksthunk - ok
21:38:35.0162 5104 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:38:35.0168 5104 KtmRm - ok
21:38:35.0196 5104 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:38:35.0198 5104 LanmanServer - ok
21:38:35.0225 5104 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:38:35.0229 5104 LanmanWorkstation - ok
21:38:35.0246 5104 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:38:35.0248 5104 lltdio - ok
21:38:35.0274 5104 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:38:35.0279 5104 lltdsvc - ok
21:38:35.0292 5104 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:38:35.0294 5104 lmhosts - ok
21:38:35.0338 5104 [ 7F32D4C47A50E7223491E8FB9359907D ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:38:35.0340 5104 LMS - ok
21:38:35.0372 5104 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:38:35.0374 5104 LSI_FC - ok
21:38:35.0389 5104 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:38:35.0390 5104 LSI_SAS - ok
21:38:35.0403 5104 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:38:35.0405 5104 LSI_SAS2 - ok
21:38:35.0416 5104 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:38:35.0419 5104 LSI_SCSI - ok
21:38:35.0436 5104 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:38:35.0438 5104 luafv - ok
21:38:35.0489 5104 [ ACB01BF1A905356AB7F978C7FE852209 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:38:35.0491 5104 McAfee SiteAdvisor Service - ok
21:38:35.0497 5104 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:38:35.0499 5104 McMPFSvc - ok
21:38:35.0512 5104 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:38:35.0514 5104 mcmscsvc - ok
21:38:35.0520 5104 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:38:35.0522 5104 McNaiAnn - ok
21:38:35.0549 5104 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:38:35.0551 5104 McNASvc - ok
21:38:35.0595 5104 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
21:38:35.0598 5104 McODS - ok
21:38:35.0616 5104 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:38:35.0618 5104 McProxy - ok
21:38:35.0659 5104 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
21:38:35.0661 5104 McShield - ok
21:38:35.0678 5104 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:38:35.0682 5104 Mcx2Svc - ok
21:38:35.0697 5104 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:38:35.0698 5104 megasas - ok
21:38:35.0718 5104 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:38:35.0723 5104 MegaSR - ok
21:38:35.0744 5104 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
21:38:35.0745 5104 MEIx64 - ok
21:38:35.0768 5104 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
21:38:35.0769 5104 mfeapfk - ok
21:38:35.0789 5104 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
21:38:35.0830 5104 mfeavfk - ok
21:38:35.0884 5104 mfeavfk01 - ok
21:38:35.0899 5104 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
21:38:35.0901 5104 mfefire - ok
21:38:35.0936 5104 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
21:38:35.0939 5104 mfefirek - ok
21:38:35.0965 5104 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
21:38:35.0981 5104 mfehidk - ok
21:38:35.0990 5104 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
21:38:35.0991 5104 mfenlfk - ok
21:38:36.0007 5104 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
21:38:36.0009 5104 mferkdet - ok
21:38:36.0023 5104 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\Windows\system32\mfevtps.exe
21:38:36.0025 5104 mfevtp - ok
21:38:36.0034 5104 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
21:38:36.0037 5104 mfewfpk - ok
21:38:36.0061 5104 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:38:36.0063 5104 MMCSS - ok
21:38:36.0079 5104 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:38:36.0080 5104 Modem - ok
21:38:36.0114 5104 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:38:36.0115 5104 monitor - ok
21:38:36.0124 5104 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:38:36.0125 5104 mouclass - ok
21:38:36.0141 5104 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:38:36.0142 5104 mouhid - ok
21:38:36.0169 5104 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:38:36.0171 5104 mountmgr - ok
21:38:36.0224 5104 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:38:36.0225 5104 MozillaMaintenance - ok
21:38:36.0259 5104 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
21:38:36.0263 5104 MpFilter - ok
21:38:36.0283 5104 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
21:38:36.0287 5104 mpio - ok
21:38:36.0298 5104 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:38:36.0301 5104 mpsdrv - ok
21:38:36.0330 5104 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:38:36.0350 5104 MpsSvc - ok
21:38:36.0365 5104 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:38:36.0368 5104 MRxDAV - ok
21:38:36.0395 5104 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:38:36.0399 5104 mrxsmb - ok
21:38:36.0413 5104 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:38:36.0417 5104 mrxsmb10 - ok
21:38:36.0425 5104 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:38:36.0427 5104 mrxsmb20 - ok
21:38:36.0439 5104 [ BCCF16D5FB1109162380E3E28DC9E4E5 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
21:38:36.0440 5104 msahci - ok
21:38:36.0458 5104 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
21:38:36.0461 5104 msdsm - ok
21:38:36.0475 5104 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:38:36.0479 5104 MSDTC - ok
21:38:36.0490 5104 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:38:36.0493 5104 Msfs - ok
21:38:36.0518 5104 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:38:36.0520 5104 mshidkmdf - ok
21:38:36.0525 5104 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
21:38:36.0526 5104 msisadrv - ok
21:38:36.0549 5104 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:38:36.0553 5104 MSiSCSI - ok
21:38:36.0556 5104 msiserver - ok
21:38:36.0578 5104 [ ACB01BF1A905356AB7F978C7FE852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:38:36.0580 5104 MSK80Service - ok
21:38:36.0602 5104 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:38:36.0604 5104 MSKSSRV - ok
21:38:36.0669 5104 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
21:38:36.0670 5104 MsMpSvc - ok
21:38:36.0682 5104 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:38:36.0684 5104 MSPCLOCK - ok
21:38:36.0692 5104 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:38:36.0695 5104 MSPQM - ok
21:38:36.0707 5104 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:38:36.0712 5104 MsRPC - ok
21:38:36.0717 5104 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:38:36.0718 5104 mssmbios - ok
21:38:36.0729 5104 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:38:36.0731 5104 MSTEE - ok
21:38:36.0747 5104 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:38:36.0749 5104 MTConfig - ok
21:38:36.0762 5104 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:38:36.0763 5104 Mup - ok
21:38:36.0789 5104 [ 6ED8935257672F4CD04A88A0F3DE093D ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:38:36.0791 5104 MyWiFiDHCPDNS - ok
21:38:36.0818 5104 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
21:38:36.0827 5104 napagent - ok
21:38:36.0857 5104 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:38:36.0862 5104 NativeWifiP - ok
21:38:36.0886 5104 [ A3151B3463EEA7E47F618F115D0D142E ] NDIS C:\Windows\system32\drivers\ndis.sys
21:38:36.0906 5104 NDIS - ok
21:38:36.0922 5104 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:38:36.0924 5104 NdisCap - ok
21:38:36.0945 5104 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:38:36.0947 5104 NdisTapi - ok
21:38:36.0960 5104 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:38:36.0962 5104 Ndisuio - ok
21:38:36.0974 5104 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:38:36.0977 5104 NdisWan - ok
21:38:36.0985 5104 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:38:36.0988 5104 NDProxy - ok
21:38:37.0001 5104 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:38:37.0003 5104 NetBIOS - ok
21:38:37.0016 5104 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:38:37.0020 5104 NetBT - ok
21:38:37.0041 5104 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
21:38:37.0079 5104 Netlogon - ok
21:38:37.0098 5104 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:38:37.0105 5104 Netman - ok
21:38:37.0123 5104 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:38:37.0128 5104 netprofm - ok
21:38:37.0149 5104 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:38:37.0150 5104 NetTcpPortSharing - ok
21:38:37.0300 5104 [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
21:38:37.0453 5104 NETwNs64 - ok
21:38:37.0484 5104 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:38:37.0486 5104 nfrd960 - ok
21:38:37.0523 5104 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:38:37.0525 5104 NisDrv - ok
21:38:37.0592 5104 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
21:38:37.0594 5104 NisSrv - ok
21:38:37.0619 5104 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:38:37.0625 5104 NlaSvc - ok
21:38:37.0717 5104 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
21:38:37.0738 5104 NOBU - ok
21:38:37.0766 5104 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:38:37.0768 5104 Npfs - ok
21:38:37.0777 5104 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:38:37.0780 5104 nsi - ok
21:38:37.0792 5104 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:38:37.0794 5104 nsiproxy - ok
21:38:37.0835 5104 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:38:37.0872 5104 Ntfs - ok
21:38:37.0883 5104 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:38:37.0885 5104 Null - ok
21:38:37.0908 5104 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
21:38:37.0910 5104 nusb3hub - ok
21:38:37.0934 5104 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
21:38:37.0937 5104 nusb3xhc - ok
21:38:37.0972 5104 [ 566F0CFD371304F17000B67DD585E34A ] nvkflt C:\Windows\system32\DRIVERS\nvkflt.sys
21:38:37.0974 5104 nvkflt - ok
21:38:38.0285 5104 [ BF7A24A71E1932200D864BC1CE15E596 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:38:38.0403 5104 nvlddmkm - ok
21:38:38.0425 5104 [ 1891184D09E8C16042E57D5373E4268E ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
21:38:38.0426 5104 nvpciflt - ok
21:38:38.0458 5104 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:38:38.0461 5104 nvraid - ok
21:38:38.0476 5104 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:38:38.0479 5104 nvstor - ok
21:38:38.0510 5104 [ 92D06926C5DA2A2E62E8FB5104F44D92 ] NvStUSB C:\Windows\system32\DRIVERS\nvstusb.sys
21:38:38.0513 5104 NvStUSB - ok
21:38:38.0547 5104 [ 43F91595049DE14C4B61D1E76436164F ] NVSvc C:\Windows\system32\nvvsvc.exe
21:38:38.0555 5104 NVSvc - ok
21:38:38.0615 5104 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:38:38.0623 5104 nvUpdatusService - ok
21:38:38.0646 5104 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
21:38:38.0648 5104 nv_agp - ok
21:38:38.0730 5104 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:38:38.0733 5104 odserv - ok
21:38:38.0747 5104 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:38:38.0749 5104 ohci1394 - ok
21:38:38.0771 5104 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:38:38.0772 5104 ose - ok
21:38:38.0790 5104 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:38:38.0796 5104 p2pimsvc - ok
21:38:38.0812 5104 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:38:38.0819 5104 p2psvc - ok
21:38:38.0823 5104 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:38:38.0824 5104 Parport - ok
21:38:38.0841 5104 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:38:38.0843 5104 partmgr - ok
21:38:38.0852 5104 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:38:38.0856 5104 PcaSvc - ok
21:38:38.0868 5104 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
21:38:38.0871 5104 pci - ok
21:38:38.0881 5104 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
21:38:38.0882 5104 pciide - ok
21:38:38.0904 5104 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:38:38.0908 5104 pcmcia - ok
21:38:38.0924 5104 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:38:38.0925 5104 pcw - ok
21:38:38.0940 5104 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:38:38.0949 5104 PEAUTH - ok
21:38:39.0006 5104 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:38:39.0008 5104 PerfHost - ok
21:38:39.0043 5104 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
21:38:39.0077 5104 pla - ok
21:38:39.0104 5104 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:38:39.0112 5104 PlugPlay - ok
21:38:39.0125 5104 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:38:39.0128 5104 PNRPAutoReg - ok
21:38:39.0145 5104 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:38:39.0148 5104 PNRPsvc - ok
21:38:39.0183 5104 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:38:39.0194 5104 PolicyAgent - ok
21:38:39.0213 5104 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:38:39.0216 5104 Power - ok
21:38:39.0244 5104 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:38:39.0247 5104 PptpMiniport - ok
21:38:39.0259 5104 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:38:39.0261 5104 Processor - ok
21:38:39.0285 5104 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
21:38:39.0290 5104 ProfSvc - ok
21:38:39.0301 5104 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:38:39.0339 5104 ProtectedStorage - ok
21:38:39.0361 5104 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:38:39.0365 5104 Psched - ok
21:38:39.0389 5104 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
21:38:39.0389 5104 PxHlpa64 - ok
21:38:39.0412 5104 [ 0928BD20273625622722FE1DE5BBDE57 ] qicflt C:\Windows\system32\DRIVERS\qicflt.sys
21:38:39.0413 5104 qicflt - ok
21:38:39.0462 5104 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:38:39.0488 5104 ql2300 - ok
21:38:39.0510 5104 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:38:39.0513 5104 ql40xx - ok
21:38:39.0529 5104 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:38:39.0535 5104 QWAVE - ok
21:38:39.0542 5104 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:38:39.0544 5104 QWAVEdrv - ok
21:38:39.0558 5104 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:38:39.0560 5104 RasAcd - ok
21:38:39.0571 5104 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:38:39.0572 5104 RasAgileVpn - ok
21:38:39.0586 5104 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:38:39.0589 5104 RasAuto - ok
21:38:39.0597 5104 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:38:39.0599 5104 Rasl2tp - ok
21:38:39.0609 5104 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
21:38:39.0615 5104 RasMan - ok
21:38:39.0621 5104 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:38:39.0623 5104 RasPppoe - ok
21:38:39.0631 5104 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:38:39.0633 5104 RasSstp - ok
21:38:39.0648 5104 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:38:39.0654 5104 rdbss - ok
21:38:39.0669 5104 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:38:39.0671 5104 rdpbus - ok
21:38:39.0688 5104 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:38:39.0690 5104 RDPCDD - ok
21:38:39.0699 5104 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:38:39.0701 5104 RDPENCDD - ok
21:38:39.0722 5104 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:38:39.0723 5104 RDPREFMP - ok
21:38:39.0752 5104 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:38:39.0756 5104 RDPWD - ok
21:38:39.0775 5104 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:38:39.0778 5104 rdyboost - ok
21:38:39.0835 5104 [ 189C5A8D2098E0AA14FD157A954B34FC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:38:39.0839 5104 RegSrvc - ok
21:38:39.0860 5104 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:38:39.0864 5104 RemoteAccess - ok
21:38:39.0878 5104 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:38:39.0882 5104 RemoteRegistry - ok
21:38:39.0951 5104 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
21:38:39.0958 5104 RoxMediaDB12OEM - ok
21:38:39.0976 5104 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
21:38:39.0978 5104 RoxWatch12 - ok
21:38:39.0995 5104 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:38:39.0998 5104 RpcEptMapper - ok
21:38:40.0020 5104 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:38:40.0022 5104 RpcLocator - ok
21:38:40.0044 5104 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
21:38:40.0049 5104 RpcSs - ok
21:38:40.0060 5104 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:38:40.0063 5104 rspndr - ok
21:38:40.0099 5104 [ A73ED14670220307874AD6BC2F279349 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
21:38:40.0102 5104 RTL8167 - ok
21:38:40.0110 5104 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
21:38:40.0147 5104 SamSs - ok
21:38:40.0162 5104 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
21:38:40.0164 5104 sbp2port - ok
21:38:40.0187 5104 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:38:40.0192 5104 SCardSvr - ok
21:38:40.0201 5104 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:38:40.0207 5104 scfilter - ok
21:38:40.0233 5104 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
21:38:40.0259 5104 Schedule - ok
21:38:40.0275 5104 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:38:40.0276 5104 SCPolicySvc - ok
21:38:40.0286 5104 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:38:40.0291 5104 SDRSVC - ok
21:38:40.0313 5104 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:38:40.0315 5104 secdrv - ok
21:38:40.0326 5104 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
21:38:40.0328 5104 seclogon - ok
21:38:40.0336 5104 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:38:40.0338 5104 SENS - ok
21:38:40.0344 5104 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:38:40.0347 5104 SensrSvc - ok
21:38:40.0363 5104 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:38:40.0365 5104 Serenum - ok
21:38:40.0379 5104 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:38:40.0382 5104 Serial - ok
21:38:40.0396 5104 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:38:40.0398 5104 sermouse - ok
21:38:40.0418 5104 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
21:38:40.0421 5104 SessionEnv - ok
21:38:40.0437 5104 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:38:40.0439 5104 sffdisk - ok
21:38:40.0450 5104 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:38:40.0452 5104 sffp_mmc - ok
21:38:40.0464 5104 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:38:40.0466 5104 sffp_sd - ok
21:38:40.0475 5104 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:38:40.0477 5104 sfloppy - ok
21:38:40.0541 5104 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
21:38:40.0545 5104 SftService - ok
21:38:40.0570 5104 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:38:40.0576 5104 SharedAccess - ok
21:38:40.0586 5104 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:38:40.0592 5104 ShellHWDetection - ok
21:38:40.0616 5104 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:38:40.0618 5104 SiSRaid2 - ok
21:38:40.0629 5104 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:38:40.0632 5104 SiSRaid4 - ok
21:38:40.0679 5104 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:38:40.0680 5104 SkypeUpdate - ok
21:38:40.0706 5104 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:38:40.0709 5104 Smb - ok
21:38:40.0743 5104 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:38:40.0746 5104 SNMPTRAP - ok
21:38:40.0758 5104 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:38:40.0759 5104 spldr - ok
21:38:40.0788 5104 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
21:38:40.0792 5104 Spooler - ok
21:38:40.0862 5104 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
21:38:40.0888 5104 sppsvc - ok
21:38:40.0905 5104 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:38:40.0908 5104 sppuinotify - ok
21:38:40.0939 5104 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:38:40.0945 5104 srv - ok
21:38:40.0963 5104 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:38:40.0969 5104 srv2 - ok
21:38:40.0985 5104 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:38:40.0989 5104 srvnet - ok
21:38:41.0024 5104 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:38:41.0026 5104 SSDPSRV - ok
21:38:41.0037 5104 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:38:41.0040 5104 SstpSvc - ok
21:38:41.0063 5104 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys
21:38:41.0064 5104 stdcfltn - ok
21:38:41.0075 5104 Steam Client Service - ok
21:38:41.0109 5104 [ A766CCAD980235FF34E7F8089D3175A3 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:38:41.0111 5104 Stereo Service - ok
21:38:41.0134 5104 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:38:41.0136 5104 stexstor - ok
21:38:41.0171 5104 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
21:38:41.0188 5104 stisvc - ok
21:38:41.0239 5104 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
21:38:41.0257 5104 stllssvr - ok
21:38:41.0262 5104 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:38:41.0263 5104 swenum - ok
21:38:41.0288 5104 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:38:41.0296 5104 swprv - ok
21:38:41.0343 5104 [ 5E3B232A614339399ACC71FA3AAAAA6B ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:38:41.0352 5104 SynTP - ok
21:38:41.0390 5104 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
21:38:41.0416 5104 SysMain - ok
21:38:41.0424 5104 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:38:41.0428 5104 TabletInputService - ok
21:38:41.0440 5104 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
21:38:41.0446 5104 TapiSrv - ok
21:38:41.0458 5104 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:38:41.0462 5104 TBS - ok
21:38:41.0511 5104 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:38:41.0545 5104 Tcpip - ok
21:38:41.0593 5104 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:38:41.0603 5104 TCPIP6 - ok
21:38:41.0618 5104 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:38:41.0620 5104 tcpipreg - ok
21:38:41.0635 5104 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:38:41.0637 5104 TDPIPE - ok
21:38:41.0663 5104 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:38:41.0665 5104 TDTCP - ok
21:38:41.0680 5104 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:38:41.0683 5104 tdx - ok
21:38:41.0704 5104 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:38:41.0705 5104 TermDD - ok
21:38:41.0722 5104 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
21:38:41.0743 5104 TermService - ok
21:38:41.0755 5104 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:38:41.0758 5104 Themes - ok
21:38:41.0778 5104 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:38:41.0780 5104 THREADORDER - ok
21:38:41.0792 5104 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:38:41.0796 5104 TrkWks - ok
21:38:41.0835 5104 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:38:41.0836 5104 TrustedInstaller - ok
21:38:41.0848 5104 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:38:41.0850 5104 tssecsrv - ok
21:38:41.0879 5104 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:38:41.0882 5104 tunnel - ok
21:38:41.0916 5104 [ FD24F98D2898BE093FE926604BE7DB99 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
21:38:41.0925 5104 TurboB - ok
21:38:41.0951 5104 [ 600B406A04D90F577FEA8A88D7379F08 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
21:38:41.0965 5104 TurboBoost - ok
21:38:41.0985 5104 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:38:41.0987 5104 uagp35 - ok
21:38:42.0011 5104 [ 31BA4A33AFAB6A69EA092B18017F737F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:38:42.0016 5104 udfs - ok
21:38:42.0035 5104 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:38:42.0038 5104 UI0Detect - ok
21:38:42.0055 5104 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
21:38:42.0058 5104 uliagpkx - ok
21:38:42.0079 5104 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:38:42.0080 5104 umbus - ok
21:38:42.0095 5104 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:38:42.0097 5104 UmPass - ok
21:38:42.0180 5104 [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:38:42.0194 5104 UNS - ok
21:38:42.0215 5104 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:38:42.0221 5104 upnphost - ok
21:38:42.0261 5104 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:38:42.0263 5104 USBAAPL64 - ok
21:38:42.0282 5104 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:38:42.0284 5104 usbccgp - ok
21:38:42.0303 5104 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
21:38:42.0305 5104 usbcir - ok
21:38:42.0322 5104 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\drivers\usbehci.sys
21:38:42.0324 5104 usbehci - ok
21:38:42.0341 5104 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:38:42.0346 5104 usbhub - ok
21:38:42.0370 5104 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:38:42.0371 5104 usbohci - ok
21:38:42.0391 5104 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:38:42.0394 5104 usbprint - ok
21:38:42.0406 5104 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:38:42.0408 5104 USBSTOR - ok
21:38:42.0420 5104 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:38:42.0422 5104 usbuhci - ok
21:38:42.0447 5104 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:38:42.0450 5104 usbvideo - ok
21:38:42.0460 5104 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:38:42.0463 5104 UxSms - ok
21:38:42.0469 5104 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
21:38:42.0507 5104 VaultSvc - ok
21:38:42.0530 5104 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
21:38:42.0531 5104 vdrvroot - ok
21:38:42.0546 5104 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
21:38:42.0555 5104 vds - ok
21:38:42.0569 5104 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:38:42.0572 5104 vga - ok
21:38:42.0593 5104 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:38:42.0602 5104 VgaSave - ok
21:38:42.0677 5104 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
21:38:42.0702 5104 vhdmp - ok
21:38:42.0714 5104 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
21:38:42.0716 5104 viaide - ok
21:38:42.0720 5104 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
21:38:42.0721 5104 volmgr - ok
21:38:42.0740 5104 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:38:42.0745 5104 volmgrx - ok
21:38:42.0762 5104 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
21:38:42.0766 5104 volsnap - ok
21:38:42.0787 5104 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:38:42.0790 5104 vsmraid - ok
21:38:42.0829 5104 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
21:38:42.0863 5104 VSS - ok
21:38:42.0874 5104 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:38:42.0876 5104 vwifibus - ok
21:38:42.0897 5104 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:38:42.0900 5104 vwififlt - ok
21:38:42.0923 5104 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
21:38:42.0924 5104 vwifimp - ok
21:38:42.0949 5104 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:38:42.0956 5104 W32Time - ok
21:38:42.0971 5104 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:38:42.0974 5104 WacomPen - ok
21:38:43.0003 5104 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:38:43.0005 5104 WANARP - ok
21:38:43.0008 5104 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:38:43.0009 5104 Wanarpv6 - ok
21:38:43.0053 5104 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:38:43.0079 5104 WatAdminSvc - ok
21:38:43.0119 5104 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
21:38:43.0146 5104 wbengine - ok
21:38:43.0161 5104 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:38:43.0174 5104 WbioSrvc - ok
21:38:43.0222 5104 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:38:43.0231 5104 wcncsvc - ok
21:38:43.0243 5104 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:38:43.0247 5104 WcsPlugInService - ok
21:38:43.0260 5104 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:38:43.0262 5104 Wd - ok
21:38:43.0282 5104 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:38:43.0290 5104 Wdf01000 - ok
21:38:43.0304 5104 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:38:43.0306 5104 WdiServiceHost - ok
21:38:43.0310 5104 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:38:43.0312 5104 WdiSystemHost - ok
21:38:43.0334 5104 [ 94DC2BF6CBAAA95E369C3756D3115A76 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
21:38:43.0335 5104 wdkmd - ok
21:38:43.0342 5104 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
21:38:43.0346 5104 WebClient - ok
21:38:43.0359 5104 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:38:43.0365 5104 Wecsvc - ok
21:38:43.0378 5104 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:38:43.0383 5104 wercplsupport - ok
21:38:43.0407 5104 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:38:43.0411 5104 WerSvc - ok
21:38:43.0429 5104 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:38:43.0431 5104 WfpLwf - ok
21:38:43.0478 5104 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
21:38:43.0482 5104 WimFltr - ok
21:38:43.0511 5104 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:38:43.0513 5104 WIMMount - ok
21:38:43.0523 5104 WinDefend - ok
21:38:43.0527 5104 WinHttpAutoProxySvc - ok
21:38:43.0564 5104 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:38:43.0569 5104 Winmgmt - ok
21:38:43.0608 5104 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
21:38:43.0643 5104 WinRM - ok
21:38:43.0680 5104 [ 4D52C872018AF7E18D078978DCC3F6F2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:38:43.0682 5104 WinUsb - ok
21:38:43.0706 5104 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:38:43.0731 5104 Wlansvc - ok
21:38:43.0767 5104 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:38:43.0768 5104 wlcrasvc - ok
21:38:43.0853 5104 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:38:43.0894 5104 wlidsvc - ok
21:38:43.0915 5104 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:38:43.0916 5104 WmiAcpi - ok
21:38:43.0942 5104 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:38:43.0946 5104 wmiApSrv - ok
21:38:43.0957 5104 WMPNetworkSvc - ok
21:38:43.0969 5104 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:38:43.0972 5104 WPCSvc - ok
21:38:43.0985 5104 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:38:43.0990 5104 WPDBusEnum - ok
21:38:44.0017 5104 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:38:44.0019 5104 ws2ifsl - ok
21:38:44.0038 5104 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\system32\wscsvc.dll
21:38:44.0040 5104 wscsvc - ok
21:38:44.0043 5104 WSearch - ok
21:38:44.0095 5104 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:38:44.0138 5104 wuauserv - ok
21:38:44.0147 5104 [ C63907207B837A5C05CF6D1606AA0008 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:38:44.0150 5104 WudfPf - ok
21:38:44.0181 5104 [ D885A873D733020F8B9B9FF4B1666158 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:38:44.0185 5104 WUDFRd - ok
21:38:44.0197 5104 [ 27B9BEE5AAC00139E3A3AF5D6227A0DC ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:38:44.0200 5104 wudfsvc - ok
21:38:44.0216 5104 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:38:44.0221 5104 WwanSvc - ok
21:38:44.0234 5104 ================ Scan global ===============================
21:38:44.0255 5104 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:38:44.0284 5104 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
21:38:44.0292 5104 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
21:38:44.0304 5104 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:38:44.0333 5104 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:38:44.0337 5104 [Global] - ok
21:38:44.0337 5104 ================ Scan MBR ==================================
21:38:44.0352 5104 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:38:44.0583 5104 \Device\Harddisk0\DR0 - ok
21:38:44.0817 5104 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:38:44.0879 5104 \Device\Harddisk1\DR1 - ok
21:38:44.0879 5104 ================ Scan VBR ==================================
21:38:44.0879 5104 [ 251E18E7BD8C106978596B6F6CA4B8C9 ] \Device\Harddisk0\DR0\Partition1
21:38:44.0879 5104 \Device\Harddisk0\DR0\Partition1 - ok
21:38:44.0895 5104 [ 683C52AD82086AEDC39384B3D0160F54 ] \Device\Harddisk0\DR0\Partition2
21:38:44.0895 5104 \Device\Harddisk0\DR0\Partition2 - ok
21:38:44.0910 5104 [ 29D2D24FCEC075A0FAD6C2561FF6B108 ] \Device\Harddisk1\DR1\Partition1
21:38:44.0910 5104 \Device\Harddisk1\DR1\Partition1 - ok
21:38:44.0910 5104 ============================================================
21:38:44.0910 5104 Scan finished
21:38:44.0910 5104 ============================================================
21:38:44.0926 3024 Detected object count: 0
21:38:44.0926 3024 Actual detected object count: 0
21:39:18.0250 5776 Deinitialize success

ESET didn't find anything.

#4 onetwothree4

onetwothree4
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 01 November 2012 - 11:28 PM

After looking online a bit, I'm starting to think Malwarebytes gave me a false positive. This was the original scan:

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 439153
Time elapsed: 2 hour(s), 12 minute(s), 51 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\Users\Brittni\Music\Music Two\Photoshop\Photoshop\Adobe Photoshop 7.0 Retail\_ISDel.exe (Trojan.Zbot) -> Quarantined and deleted successfully.
C:\WINDOWS\System32\InstallShield\_isdel.exe (Trojan.Zbot) -> Quarantined and deleted successfully.
C:\WINDOWS\winsxs\wow64_microsoft-windows-i..llshield-wow64-main_31bf3856ad364e35_6.1.7600.16385_none_ca61f601a4548b8e\_isdel.exe (Trojan.Zbot) -> Quarantined and deleted successfully.

(end)

Since I deleted the last two files is it going to cause in problems, if it was indeed a false positive?

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:23 PM

Posted 02 November 2012 - 05:43 AM

That may be a false positive.

Edited by narenxp, 02 November 2012 - 05:50 AM.


#6 Quads

Quads

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:CHCH New Zealand
  • Local time:06:23 AM

Posted 03 November 2012 - 12:33 AM

Malwarebytes has fixed the False Positive, Update the Definitions.

Quads




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users