Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Semi-Failed Cleaning of Live Security Platinum Infection


  • Please log in to reply
23 replies to this topic

#1 DBricker

DBricker

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 29 November 2012 - 09:25 PM

I have W7 SP1 64 bit that is not doing well. In Sept, it picked up the Platinum Live Security and my first run through MBAM gave me these results -

Registry Keys Detected: 1
HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Live Security Platinum (Rogue.LiveSecurityPlatinum) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.

Folders Detected: 1
C:\Users\John\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live Security Platinum (Rogue.LiveSecurityPlatinum) -> Quarantined and deleted successfully.

Files Detected: 3
C:\Users\John\0.5950122542458212.exe (Exploit.Drop.UR.2) -> Quarantined and deleted successfully.
C:\Users\John\Desktop\Live Security Platinum.lnk (Rogue.LiveSecurityPlatinum) -> Quarantined and deleted successfully.
C:\Users\John\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live Security Platinum\Live Security Platinum.lnk (Rogue.LiveSecurityPlatinum) -> Quarantined and deleted successfully.

I looked it up and followed the information I found about removing it, including rkill, tdsskiller, etc... I also ran the Kaspersky virus removal software and everything came up clean. ...or so I thought. Since then, I've started experiencing browser redirects, explorer paying a random news radio station through the soundcard, and random fits of extreme processor usage.

MBAM, Rkill, and Kaspersky are coming up clean. I'm at a loss and am hoping for new ideas.

Thanks in advance for any help - I'm a moron and didn't make my recovery disks when my PC was new, and it won't make them now, so doing a clean install in going to cost me some money, and more time than I have to spare.

Thanks again,

DJ

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:15 PM

Posted 30 November 2012 - 09:56 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 30 November 2012 - 02:07 PM

Thank you for your help. TDSSkiller won't run as itself; nor the names "iexplore.exe" and "french.com"; in safe mode or normal mode. Would you like me to continue to the other two or change directions?

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:15 PM

Posted 30 November 2012 - 03:03 PM

Download Listparts from here

For 32 bit

List parts 32

For 64 bit

List parts 64

Launch it,click on SCAN,post the log

#5 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 02 December 2012 - 06:56 AM

Sorry for the delay, I was out of town for a minute.

ListParts by Farbar Version: 30-10-2012
Ran by John (administrator) on 02-12-2012 at 05:50:33
Windows 7 (X64)
Running From: C:\Users\John\AppData\Local\Temp\yc4sraym.tmp
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 44%
Total physical RAM: 5991.3 MB
Available physical RAM: 3335.07 MB
Total Pagefile: 11980.79 MB
Available Pagefile: 8038.84 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:916.75 GB) (Free:29.25 GB) NTFS
2 Drive d: (EXTERNAL) (Fixed) (Total:931.28 GB) (Free:304.09 GB) FAT32
4 Drive f: (My Book) (Fixed) (Total:2794.49 GB) (Free:1357.66 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 931 GB 0 B
Disk 1 Online 2794 GB 0 B
Disk 2 Online 931 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Recovery 14 GB 1024 KB
Partition 2 Primary 100 MB 14 GB
Partition 3 Primary 916 GB 14 GB
Partition 4 Primary 10 MB 931 GB

======================================================================================================

Disk: 0
Partition 1
Type : 27
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 Recovery NTFS Partition 14 GB Healthy Hidden

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 System Rese NTFS Partition 100 MB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C NTFS Partition 916 GB Healthy Boot

======================================================================================================

Disk: 0
Partition 4
Type : 17 (Suspicious Type)
Hidden: Yes
Active: Yes

There is no volume associated with this partition.

======================================================================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 2794 GB 1024 KB

======================================================================================================

Disk: 1
Partition 1
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 F My Book NTFS Partition 2794 GB Healthy

======================================================================================================

Partitions of Disk 2:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 931 GB 31 KB

======================================================================================================

Disk: 2
Partition 1
Type : 0C
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 5 D EXTERNAL FAT32 Partition 931 GB Healthy

======================================================================================================

****** End Of Log ******

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:15 PM

Posted 02 December 2012 - 11:15 AM

Restart the PC and run the tools mentioned in initial post.

Edited by narenxp, 02 December 2012 - 01:04 PM.


#7 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 02 December 2012 - 11:50 AM

Log of TDSSfix


10:26:56.0130 4732 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
10:26:58.0131 4732 ============================================================
10:26:58.0131 4732 Current date / time: 2012/12/02 10:26:58.0131
10:26:58.0131 4732 SystemInfo:
10:26:58.0131 4732
10:26:58.0131 4732 OS Version: 6.1.7601 ServicePack: 1.0
10:26:58.0131 4732 Product type: Workstation
10:26:58.0131 4732 ComputerName: FLIPPO-HOME
10:26:58.0131 4732 UserName: John
10:26:58.0131 4732 Windows directory: C:\Windows
10:26:58.0131 4732 System windows directory: C:\Windows
10:26:58.0132 4732 Running under WOW64
10:26:58.0132 4732 Processor architecture: Intel x64
10:26:58.0132 4732 Number of processors: 4
10:26:58.0132 4732 Page size: 0x1000
10:26:58.0132 4732 Boot type: Normal boot
10:26:58.0132 4732 ============================================================
10:26:58.0243 4732 BG loaded
10:26:58.0651 4732 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x000000A0
10:26:58.0654 4732 Drive \Device\Harddisk1\DR1 - Size: 0x2BA9F400000 (2794.49 Gb), SectorSize: 0x1000, Cylinders: 0xB21F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:26:58.0655 4732 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:26:59.0121 4732 ============================================================
10:26:59.0121 4732 \Device\Harddisk0\DR0:
10:26:59.0123 4732 MBR partitions:
10:26:59.0123 4732 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D4D000, BlocksNum 0x32000
10:26:59.0123 4732 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7F000, BlocksNum 0x729805B0
10:26:59.0123 4732 \Device\Harddisk1\DR1:
10:26:59.0123 4732 MBR partitions:
10:26:59.0123 4732 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x100, BlocksNum 0x2BA9F300
10:26:59.0123 4732 \Device\Harddisk2\DR2:
10:26:59.0124 4732 MBR partitions:
10:26:59.0124 4732 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x74705982
10:26:59.0124 4732 ============================================================
10:26:59.0157 4732 C: <-> \Device\Harddisk0\DR0\Partition2
10:26:59.0157 4732 D: <-> \Device\Harddisk2\DR2\Partition1
10:26:59.0585 4732 F: <-> \Device\Harddisk1\DR1\Partition1
10:26:59.0585 4732 ============================================================
10:26:59.0585 4732 Initialize success
10:26:59.0585 4732 ============================================================
10:27:10.0929 6108 ============================================================
10:27:10.0929 6108 Scan started
10:27:10.0929 6108 Mode: Manual;
10:27:10.0929 6108 ============================================================
10:27:12.0540 6108 ================ Scan system memory ========================
10:27:12.0540 6108 System memory - ok
10:27:12.0540 6108 ================ Scan services =============================
10:27:12.0830 6108 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:27:12.0831 6108 1394ohci - ok
10:27:12.0874 6108 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
10:27:12.0929 6108 ACDaemon - ok
10:27:12.0995 6108 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:27:12.0999 6108 ACPI - ok
10:27:13.0067 6108 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:27:13.0102 6108 AcpiPmi - ok
10:27:13.0167 6108 [ 4451CC2275B04043EC2BCC757AF97291 ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
10:27:13.0225 6108 AdobeActiveFileMonitor8.0 - ok
10:27:13.0361 6108 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:27:13.0363 6108 AdobeARMservice - ok
10:27:13.0434 6108 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:27:13.0438 6108 AdobeFlashPlayerUpdateSvc - ok
10:27:13.0472 6108 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:27:13.0485 6108 adp94xx - ok
10:27:13.0504 6108 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:27:13.0516 6108 adpahci - ok
10:27:13.0536 6108 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:27:13.0541 6108 adpu320 - ok
10:27:13.0570 6108 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:27:13.0572 6108 AeLookupSvc - ok
10:27:13.0690 6108 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:27:13.0695 6108 AFD - ok
10:27:13.0776 6108 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:27:13.0781 6108 agp440 - ok
10:27:13.0806 6108 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:27:13.0810 6108 ALG - ok
10:27:13.0828 6108 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:27:13.0833 6108 aliide - ok
10:27:13.0874 6108 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:27:13.0877 6108 amdide - ok
10:27:13.0890 6108 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:27:13.0894 6108 AmdK8 - ok
10:27:13.0909 6108 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:27:13.0913 6108 AmdPPM - ok
10:27:13.0990 6108 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:27:14.0035 6108 amdsata - ok
10:27:14.0066 6108 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:27:14.0081 6108 amdsbs - ok
10:27:14.0107 6108 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:27:14.0111 6108 amdxata - ok
10:27:14.0163 6108 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:27:14.0197 6108 AppID - ok
10:27:14.0231 6108 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:27:14.0234 6108 AppIDSvc - ok
10:27:14.0290 6108 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:27:14.0291 6108 Appinfo - ok
10:27:14.0446 6108 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:27:14.0448 6108 Apple Mobile Device - ok
10:27:14.0528 6108 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:27:14.0536 6108 arc - ok
10:27:14.0551 6108 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:27:14.0557 6108 arcsas - ok
10:27:14.0579 6108 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
10:27:14.0615 6108 ArcSoftKsUFilter - ok
10:27:14.0719 6108 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:27:14.0788 6108 aspnet_state - ok
10:27:14.0839 6108 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:27:14.0845 6108 AsyncMac - ok
10:27:14.0910 6108 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:27:14.0911 6108 atapi - ok
10:27:14.0993 6108 [ A5E770426D18F8EF332A593F3289DA91 ] athr C:\Windows\system32\DRIVERS\athrx.sys
10:27:15.0044 6108 athr - ok
10:27:15.0218 6108 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:27:15.0222 6108 AudioEndpointBuilder - ok
10:27:15.0235 6108 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:27:15.0239 6108 AudioSrv - ok
10:27:15.0315 6108 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:27:15.0343 6108 AxInstSV - ok
10:27:15.0419 6108 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:27:15.0464 6108 b06bdrv - ok
10:27:15.0485 6108 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:27:15.0492 6108 b57nd60a - ok
10:27:15.0563 6108 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:27:15.0569 6108 BDESVC - ok
10:27:15.0604 6108 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:27:15.0608 6108 Beep - ok
10:27:15.0674 6108 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
10:27:15.0704 6108 BFE - ok
10:27:15.0748 6108 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
10:27:15.0753 6108 BITS - ok
10:27:15.0760 6108 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:27:15.0763 6108 blbdrive - ok
10:27:15.0839 6108 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:27:15.0842 6108 Bonjour Service - ok
10:27:15.0897 6108 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:27:15.0898 6108 bowser - ok
10:27:15.0929 6108 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:27:15.0934 6108 BrFiltLo - ok
10:27:15.0946 6108 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:27:15.0951 6108 BrFiltUp - ok
10:27:15.0982 6108 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
10:27:15.0986 6108 BridgeMP - ok
10:27:16.0042 6108 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:27:16.0044 6108 Browser - ok
10:27:16.0066 6108 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:27:16.0072 6108 Brserid - ok
10:27:16.0094 6108 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:27:16.0099 6108 BrSerWdm - ok
10:27:16.0133 6108 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:27:16.0137 6108 BrUsbMdm - ok
10:27:16.0149 6108 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:27:16.0152 6108 BrUsbSer - ok
10:27:16.0183 6108 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
10:27:16.0185 6108 BthEnum - ok
10:27:16.0233 6108 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:27:16.0236 6108 BTHMODEM - ok
10:27:16.0262 6108 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
10:27:16.0263 6108 BthPan - ok
10:27:16.0282 6108 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
10:27:16.0308 6108 BTHPORT - ok
10:27:16.0337 6108 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:27:16.0339 6108 bthserv - ok
10:27:16.0398 6108 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
10:27:16.0432 6108 BTHUSB - ok
10:27:16.0507 6108 [ 7A2CE8C1BF4DAA1F2766E21E9CA11078 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
10:27:16.0544 6108 btwampfl - ok
10:27:16.0611 6108 [ A75BF6802A967F5AACECC3C67FEBDF55 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
10:27:16.0646 6108 btwaudio - ok
10:27:16.0696 6108 [ D895DC213EDBDA5FCC53AAD1F1E0E63B ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
10:27:16.0747 6108 btwavdt - ok
10:27:16.0860 6108 [ 692F8648D7686D91E34A65AC698019D8 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
10:27:16.0869 6108 btwdins - ok
10:27:16.0884 6108 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
10:27:16.0918 6108 btwl2cap - ok
10:27:16.0929 6108 [ 6D7AA2BDE0135599C5F230D69DB3B420 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
10:27:16.0973 6108 btwrchid - ok
10:27:17.0086 6108 catchme - ok
10:27:17.0106 6108 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:27:17.0114 6108 cdfs - ok
10:27:17.0167 6108 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
10:27:17.0227 6108 cdrom - ok
10:27:17.0297 6108 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:27:17.0324 6108 CertPropSvc - ok
10:27:17.0377 6108 [ 7C6B5BE2696DFD2D0BF6C9EE20326EF8 ] cfwids C:\Windows\system32\drivers\cfwids.sys
10:27:17.0440 6108 cfwids - ok
10:27:17.0705 6108 [ 65E7EFF134D909FC219770F577729615 ] chromoting C:\Program Files (x86)\Google\Chrome Remote Desktop\24.0.1312.25\remoting_daemon.exe
10:27:17.0707 6108 chromoting - ok
10:27:17.0732 6108 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:27:17.0736 6108 circlass - ok
10:27:17.0768 6108 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:27:17.0772 6108 CLFS - ok
10:27:17.0812 6108 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:27:17.0817 6108 clr_optimization_v2.0.50727_32 - ok
10:27:17.0873 6108 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:27:17.0879 6108 clr_optimization_v2.0.50727_64 - ok
10:27:17.0957 6108 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:27:18.0214 6108 clr_optimization_v4.0.30319_32 - ok
10:27:18.0263 6108 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:27:18.0420 6108 clr_optimization_v4.0.30319_64 - ok
10:27:18.0426 6108 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:27:18.0430 6108 CmBatt - ok
10:27:18.0485 6108 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:27:18.0497 6108 cmdide - ok
10:27:18.0563 6108 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
10:27:18.0568 6108 CNG - ok
10:27:18.0577 6108 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:27:18.0579 6108 Compbatt - ok
10:27:18.0634 6108 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:27:18.0670 6108 CompositeBus - ok
10:27:18.0673 6108 COMSysApp - ok
10:27:18.0679 6108 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:27:18.0682 6108 crcdisk - ok
10:27:18.0748 6108 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:27:18.0751 6108 CryptSvc - ok
10:27:18.0983 6108 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
10:27:18.0987 6108 cvhsvc - ok
10:27:19.0100 6108 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:27:19.0104 6108 DcomLaunch - ok
10:27:19.0131 6108 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:27:19.0138 6108 defragsvc - ok
10:27:19.0189 6108 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:27:19.0190 6108 DfsC - ok
10:27:19.0212 6108 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:27:19.0214 6108 Dhcp - ok
10:27:19.0224 6108 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:27:19.0226 6108 discache - ok
10:27:19.0238 6108 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:27:19.0241 6108 Disk - ok
10:27:19.0289 6108 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:27:19.0291 6108 Dnscache - ok
10:27:19.0347 6108 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:27:19.0378 6108 dot3svc - ok
10:27:19.0445 6108 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
10:27:19.0451 6108 Dot4 - ok
10:27:19.0463 6108 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:27:19.0497 6108 Dot4Print - ok
10:27:19.0565 6108 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
10:27:19.0578 6108 dot4usb - ok
10:27:19.0644 6108 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:27:19.0670 6108 DPS - ok
10:27:19.0700 6108 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:27:19.0704 6108 drmkaud - ok
10:27:19.0731 6108 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:27:19.0779 6108 DXGKrnl - ok
10:27:19.0809 6108 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
10:27:19.0816 6108 e1yexpress - ok
10:27:19.0844 6108 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:27:19.0845 6108 EapHost - ok
10:27:19.0920 6108 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:27:20.0056 6108 ebdrv - ok
10:27:20.0124 6108 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:27:20.0126 6108 EFS - ok
10:27:20.0192 6108 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:27:20.0236 6108 ehRecvr - ok
10:27:20.0253 6108 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:27:20.0257 6108 ehSched - ok
10:27:20.0283 6108 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:27:20.0293 6108 elxstor - ok
10:27:20.0311 6108 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:27:20.0315 6108 ErrDev - ok
10:27:20.0358 6108 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:27:20.0360 6108 EventSystem - ok
10:27:20.0366 6108 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:27:20.0372 6108 exfat - ok
10:27:20.0390 6108 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:27:20.0391 6108 fastfat - ok
10:27:20.0447 6108 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:27:20.0486 6108 Fax - ok
10:27:20.0492 6108 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:27:20.0495 6108 fdc - ok
10:27:20.0533 6108 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:27:20.0535 6108 fdPHost - ok
10:27:20.0545 6108 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:27:20.0546 6108 FDResPub - ok
10:27:20.0554 6108 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:27:20.0557 6108 FileInfo - ok
10:27:20.0564 6108 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:27:20.0568 6108 Filetrace - ok
10:27:20.0598 6108 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:27:20.0681 6108 FLEXnet Licensing Service - ok
10:27:20.0685 6108 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:27:20.0688 6108 flpydisk - ok
10:27:20.0702 6108 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:27:20.0704 6108 FltMgr - ok
10:27:20.0773 6108 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
10:27:20.0779 6108 FontCache - ok
10:27:20.0855 6108 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:27:20.0913 6108 FontCache3.0.0.0 - ok
10:27:20.0920 6108 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:27:20.0923 6108 FsDepends - ok
10:27:20.0944 6108 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
10:27:20.0978 6108 fssfltr - ok
10:27:21.0122 6108 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:27:21.0228 6108 fsssvc - ok
10:27:21.0305 6108 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:27:21.0369 6108 Fs_Rec - ok
10:27:21.0529 6108 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:27:21.0538 6108 fvevol - ok
10:27:21.0571 6108 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:27:21.0586 6108 gagp30kx - ok
10:27:21.0658 6108 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:27:21.0723 6108 GEARAspiWDM - ok
10:27:21.0791 6108 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:27:21.0805 6108 gpsvc - ok
10:27:21.0953 6108 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:21.0956 6108 gupdate - ok
10:27:21.0981 6108 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:21.0984 6108 gupdatem - ok
10:27:22.0093 6108 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:27:22.0175 6108 gusvc - ok
10:27:22.0215 6108 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:27:22.0221 6108 hcw85cir - ok
10:27:22.0299 6108 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:27:22.0362 6108 HdAudAddService - ok
10:27:22.0398 6108 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:27:22.0399 6108 HDAudBus - ok
10:27:22.0403 6108 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:27:22.0407 6108 HidBatt - ok
10:27:22.0412 6108 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:27:22.0416 6108 HidBth - ok
10:27:22.0420 6108 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:27:22.0427 6108 HidIr - ok
10:27:22.0470 6108 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
10:27:22.0471 6108 hidserv - ok
10:27:22.0486 6108 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
10:27:22.0519 6108 HidUsb - ok
10:27:22.0622 6108 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
10:27:22.0669 6108 HipShieldK - ok
10:27:22.0734 6108 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:27:22.0762 6108 hkmsvc - ok
10:27:22.0820 6108 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:27:22.0822 6108 HomeGroupListener - ok
10:27:22.0890 6108 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:27:22.0892 6108 HomeGroupProvider - ok
10:27:23.0086 6108 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
10:27:23.0088 6108 hpqcxs08 - ok
10:27:23.0098 6108 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
10:27:23.0099 6108 hpqddsvc - ok
10:27:23.0114 6108 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:27:23.0152 6108 HpSAMD - ok
10:27:23.0339 6108 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
10:27:23.0344 6108 HPSLPSVC - ok
10:27:23.0462 6108 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:27:23.0467 6108 HTTP - ok
10:27:23.0477 6108 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:27:23.0480 6108 hwpolicy - ok
10:27:23.0491 6108 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
10:27:23.0496 6108 i8042prt - ok
10:27:23.0571 6108 [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
10:27:23.0575 6108 iaStor - ok
10:27:23.0668 6108 [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:27:23.0670 6108 IAStorDataMgrSvc - ok
10:27:23.0730 6108 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:27:23.0781 6108 iaStorV - ok
10:27:23.0835 6108 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:27:23.0888 6108 idsvc - ok
10:27:24.0096 6108 [ 0AC9E321D604BE48A0D72B69BA484BDC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:27:24.0171 6108 igfx - ok
10:27:24.0210 6108 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:27:24.0215 6108 iirsp - ok
10:27:24.0238 6108 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:27:24.0243 6108 IKEEXT - ok
10:27:24.0291 6108 [ 589B94A9B73A0E819FF873743A480834 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:27:24.0344 6108 IntcAzAudAddService - ok
10:27:24.0384 6108 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
10:27:24.0418 6108 IntcDAud - ok
10:27:24.0465 6108 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:27:24.0468 6108 intelide - ok
10:27:24.0505 6108 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:27:24.0506 6108 intelppm - ok
10:27:24.0522 6108 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:27:24.0536 6108 IPBusEnum - ok
10:27:24.0660 6108 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:27:24.0664 6108 iphlpsvc - ok
10:27:24.0715 6108 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:27:24.0761 6108 IPMIDRV - ok
10:27:24.0785 6108 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:27:24.0791 6108 IPNAT - ok
10:27:24.0864 6108 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:27:24.0870 6108 iPod Service - ok
10:27:24.0881 6108 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:27:24.0885 6108 IRENUM - ok
10:27:24.0936 6108 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:27:24.0949 6108 isapnp - ok
10:27:25.0031 6108 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:27:25.0070 6108 iScsiPrt - ok
10:27:25.0105 6108 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
10:27:25.0109 6108 kbdclass - ok
10:27:25.0118 6108 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:27:25.0159 6108 kbdhid - ok
10:27:25.0168 6108 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:27:25.0170 6108 KeyIso - ok
10:27:25.0231 6108 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:27:25.0233 6108 KSecDD - ok
10:27:25.0245 6108 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:27:25.0247 6108 KSecPkg - ok
10:27:25.0258 6108 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:27:25.0262 6108 ksthunk - ok
10:27:25.0290 6108 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:27:25.0300 6108 KtmRm - ok
10:27:25.0356 6108 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
10:27:25.0358 6108 LanmanServer - ok
10:27:25.0436 6108 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:27:25.0438 6108 LanmanWorkstation - ok
10:27:25.0458 6108 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:27:25.0462 6108 lltdio - ok
10:27:25.0510 6108 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:27:25.0555 6108 lltdsvc - ok
10:27:25.0588 6108 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:27:25.0589 6108 lmhosts - ok
10:27:25.0719 6108 [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:27:25.0721 6108 LMS - ok
10:27:25.0770 6108 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:27:25.0775 6108 LSI_FC - ok
10:27:25.0810 6108 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:27:25.0817 6108 LSI_SAS - ok
10:27:25.0831 6108 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:27:25.0835 6108 LSI_SAS2 - ok
10:27:25.0845 6108 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:27:25.0850 6108 LSI_SCSI - ok
10:27:25.0873 6108 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:27:25.0874 6108 luafv - ok
10:27:25.0985 6108 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:27:25.0986 6108 McAfee SiteAdvisor Service - ok
10:27:26.0135 6108 [ 98E19D3FCAAE0236816E4942C5771F89 ] McComponentHostServiceSony C:\Program Files (x86)\Sony\MSS\3.0.271\McCHSvc.exe
10:27:26.0198 6108 McComponentHostServiceSony - ok
10:27:26.0231 6108 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:27:26.0233 6108 McMPFSvc - ok
10:27:26.0245 6108 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:27:26.0246 6108 mcmscsvc - ok
10:27:26.0254 6108 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:27:26.0255 6108 McNaiAnn - ok
10:27:26.0262 6108 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:27:26.0265 6108 McNASvc - ok
10:27:26.0384 6108 [ BE7C8C3F8FE52D8F7826E14CF11DE949 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
10:27:26.0386 6108 McODS - ok
10:27:26.0393 6108 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:27:26.0394 6108 McProxy - ok
10:27:26.0434 6108 [ D4F9C8CE2D7D5B9A1F739AADEBFFCA6F ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
10:27:26.0435 6108 McShield - ok
10:27:26.0488 6108 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:27:26.0523 6108 Mcx2Svc - ok
10:27:26.0558 6108 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:27:26.0562 6108 megasas - ok
10:27:26.0586 6108 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:27:26.0594 6108 MegaSR - ok
10:27:26.0622 6108 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
10:27:26.0658 6108 MEIx64 - ok
10:27:26.0759 6108 [ C73B93FED17829F11273459DA05E1976 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
10:27:26.0800 6108 mfeapfk - ok
10:27:26.0838 6108 [ 298C065BB9E09D5F14CCD9E8244DE4A0 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
10:27:26.0877 6108 mfeavfk - ok
10:27:26.0946 6108 mfeavfk01 - ok
10:27:27.0019 6108 [ AB66AF840EF1667AA73DDA6CE987D0E1 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
10:27:27.0021 6108 mfefire - ok
10:27:27.0075 6108 [ 4D604F0B85E98C5AD99B89AF72A4E28A ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
10:27:27.0112 6108 mfefirek - ok
10:27:27.0143 6108 [ 85AFDEAD1366BED11A84A5C6FC0A65D2 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
10:27:27.0150 6108 mfehidk - ok
10:27:27.0171 6108 [ 1B08579938FD72626D92F3C2219903EA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
10:27:27.0213 6108 mferkdet - ok
10:27:27.0273 6108 [ 984BBBB9BE02EF838DABDF3F3126A91B ] mfevtp C:\Windows\system32\mfevtps.exe
10:27:27.0275 6108 mfevtp - ok
10:27:27.0330 6108 [ 6251BE428073704FF1002231520C8F16 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
10:27:27.0333 6108 mfewfpk - ok
10:27:27.0354 6108 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:27:27.0356 6108 MMCSS - ok
10:27:27.0369 6108 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:27:27.0372 6108 Modem - ok
10:27:27.0397 6108 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:27:27.0398 6108 monitor - ok
10:27:27.0455 6108 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
10:27:27.0459 6108 mouclass - ok
10:27:27.0493 6108 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:27:27.0497 6108 mouhid - ok
10:27:27.0554 6108 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:27:27.0556 6108 mountmgr - ok
10:27:27.0580 6108 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:27:27.0616 6108 mpio - ok
10:27:27.0644 6108 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:27:27.0648 6108 mpsdrv - ok
10:27:27.0715 6108 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:27:27.0752 6108 MpsSvc - ok
10:27:27.0818 6108 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:27:27.0863 6108 MRxDAV - ok
10:27:27.0946 6108 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:27:27.0948 6108 mrxsmb - ok
10:27:28.0059 6108 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:27:28.0063 6108 mrxsmb10 - ok
10:27:28.0098 6108 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:27:28.0099 6108 mrxsmb20 - ok
10:27:28.0119 6108 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:27:28.0158 6108 msahci - ok
10:27:28.0224 6108 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:27:28.0271 6108 msdsm - ok
10:27:28.0310 6108 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:27:28.0315 6108 MSDTC - ok
10:27:28.0339 6108 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:27:28.0339 6108 Msfs - ok
10:27:28.0350 6108 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:27:28.0356 6108 mshidkmdf - ok
10:27:28.0374 6108 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:27:28.0376 6108 msisadrv - ok
10:27:28.0396 6108 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:27:28.0403 6108 MSiSCSI - ok
10:27:28.0413 6108 msiserver - ok
10:27:28.0430 6108 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:27:28.0434 6108 MSKSSRV - ok
10:27:28.0453 6108 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:27:28.0459 6108 MSPCLOCK - ok
10:27:28.0470 6108 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:27:28.0473 6108 MSPQM - ok
10:27:28.0536 6108 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:27:28.0539 6108 MsRPC - ok
10:27:28.0558 6108 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:27:28.0559 6108 mssmbios - ok
10:27:28.0585 6108 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:27:28.0588 6108 MSTEE - ok
10:27:28.0602 6108 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:27:28.0608 6108 MTConfig - ok
10:27:28.0629 6108 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:27:28.0631 6108 Mup - ok
10:27:28.0685 6108 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:27:28.0688 6108 napagent - ok
10:27:28.0709 6108 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:27:28.0717 6108 NativeWifiP - ok
10:27:28.0977 6108 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:27:28.0987 6108 NDIS - ok
10:27:29.0003 6108 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:27:29.0017 6108 NdisCap - ok
10:27:29.0088 6108 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:27:29.0090 6108 NdisTapi - ok
10:27:29.0151 6108 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:27:29.0185 6108 Ndisuio - ok
10:27:29.0241 6108 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:27:29.0274 6108 NdisWan - ok
10:27:29.0339 6108 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:27:29.0377 6108 NDProxy - ok
10:27:29.0478 6108 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:27:29.0479 6108 Net Driver HPZ12 - ok
10:27:29.0491 6108 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:27:29.0493 6108 NetBIOS - ok
10:27:29.0512 6108 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:27:29.0513 6108 NetBT - ok
10:27:29.0523 6108 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:27:29.0524 6108 Netlogon - ok
10:27:29.0551 6108 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:27:29.0554 6108 Netman - ok
10:27:29.0589 6108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:29.0676 6108 NetMsmqActivator - ok
10:27:29.0716 6108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:29.0717 6108 NetPipeActivator - ok
10:27:29.0740 6108 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:27:29.0744 6108 netprofm - ok
10:27:29.0755 6108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:29.0757 6108 NetTcpActivator - ok
10:27:29.0765 6108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:29.0766 6108 NetTcpPortSharing - ok
10:27:29.0904 6108 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
10:27:29.0976 6108 netw5v64 - ok
10:27:30.0003 6108 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:27:30.0006 6108 nfrd960 - ok
10:27:30.0068 6108 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:27:30.0070 6108 NlaSvc - ok
10:27:30.0112 6108 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:27:30.0112 6108 Npfs - ok
10:27:30.0121 6108 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:27:30.0124 6108 nsi - ok
10:27:30.0154 6108 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:27:30.0155 6108 nsiproxy - ok
10:27:30.0242 6108 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:27:30.0272 6108 Ntfs - ok
10:27:30.0289 6108 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:27:30.0293 6108 Null - ok
10:27:30.0313 6108 [ 786DB821BFD57C0551DBBE4F75384A7D ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
10:27:30.0346 6108 nusb3hub - ok
10:27:30.0372 6108 [ DAA8005CAF745042BB427A1ED7433354 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
10:27:30.0406 6108 nusb3xhc - ok
10:27:30.0483 6108 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:27:30.0526 6108 nvraid - ok
10:27:30.0572 6108 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:27:30.0616 6108 nvstor - ok
10:27:30.0670 6108 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:27:30.0676 6108 nv_agp - ok
10:27:30.0721 6108 [ 062682C906DBB3E653994105C359A273 ] NWLowRider C:\Windows\system32\DRIVERS\NWLowRider.sys
10:27:30.0766 6108 NWLowRider - ok
10:27:30.0792 6108 [ DAAFEACB4F13A301988E390D25C2C7A7 ] NWWakeFilterLR C:\Windows\system32\DRIVERS\NWWakeFilterLR.sys
10:27:30.0827 6108 NWWakeFilterLR - ok
10:27:30.0906 6108 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:27:30.0919 6108 ohci1394 - ok
10:27:31.0020 6108 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:27:31.0065 6108 ose - ok
10:27:31.0289 6108 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:27:31.0482 6108 osppsvc - ok
10:27:31.0553 6108 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:27:31.0560 6108 p2pimsvc - ok
10:27:31.0603 6108 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:27:31.0607 6108 p2psvc - ok
10:27:31.0632 6108 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:27:31.0637 6108 Parport - ok
10:27:31.0688 6108 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:27:31.0690 6108 partmgr - ok
10:27:31.0766 6108 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:27:31.0768 6108 PcaSvc - ok
10:27:31.0823 6108 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:27:31.0826 6108 pci - ok
10:27:31.0883 6108 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:27:31.0887 6108 pciide - ok
10:27:31.0923 6108 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:27:31.0929 6108 pcmcia - ok
10:27:31.0946 6108 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:27:31.0949 6108 pcw - ok
10:27:31.0967 6108 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:27:31.0977 6108 PEAUTH - ok
10:27:32.0036 6108 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:27:32.0039 6108 PerfHost - ok
10:27:32.0130 6108 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:27:32.0225 6108 pla - ok
10:27:32.0307 6108 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:27:32.0318 6108 PlugPlay - ok
10:27:32.0383 6108 [ 63694C307273062A2167AE4CE80730EF ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
10:27:32.0404 6108 PMBDeviceInfoProvider - ok
10:27:32.0471 6108 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:27:32.0476 6108 Pml Driver HPZ12 - ok
10:27:32.0543 6108 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:27:32.0551 6108 PNRPAutoReg - ok
10:27:32.0590 6108 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:27:32.0592 6108 PNRPsvc - ok
10:27:32.0674 6108 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:27:32.0728 6108 PolicyAgent - ok
10:27:32.0839 6108 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:27:32.0846 6108 Power - ok
10:27:32.0924 6108 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:27:32.0991 6108 PptpMiniport - ok
10:27:33.0047 6108 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:27:33.0051 6108 Processor - ok
10:27:33.0108 6108 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:27:33.0114 6108 ProfSvc - ok
10:27:33.0135 6108 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:27:33.0139 6108 ProtectedStorage - ok
10:27:33.0206 6108 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:27:33.0210 6108 Psched - ok
10:27:33.0250 6108 [ FBF4DB6D53585437E41A113300002A2B ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:27:33.0253 6108 PxHlpa64 - ok
10:27:33.0295 6108 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:27:33.0324 6108 ql2300 - ok
10:27:33.0349 6108 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:27:33.0353 6108 ql40xx - ok
10:27:33.0431 6108 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:27:33.0447 6108 QWAVE - ok
10:27:33.0475 6108 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:27:33.0484 6108 QWAVEdrv - ok
10:27:33.0508 6108 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:27:33.0513 6108 RasAcd - ok
10:27:33.0540 6108 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:27:33.0543 6108 RasAgileVpn - ok
10:27:33.0561 6108 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:27:33.0570 6108 RasAuto - ok
10:27:33.0593 6108 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:27:33.0637 6108 Rasl2tp - ok
10:27:33.0661 6108 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:27:33.0663 6108 RasMan - ok
10:27:33.0700 6108 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:27:33.0705 6108 RasPppoe - ok
10:27:33.0761 6108 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:27:33.0764 6108 RasSstp - ok
10:27:33.0840 6108 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:27:33.0842 6108 rdbss - ok
10:27:33.0864 6108 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:27:33.0870 6108 rdpbus - ok
10:27:33.0889 6108 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:27:33.0890 6108 RDPCDD - ok
10:27:33.0902 6108 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:27:33.0902 6108 RDPENCDD - ok
10:27:33.0931 6108 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:27:33.0931 6108 RDPREFMP - ok
10:27:33.0994 6108 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:27:34.0040 6108 RDPWD - ok
10:27:34.0117 6108 [ A115F49BEA840A5F049BC6310F35F776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:27:34.0124 6108 rdyboost - ok
10:27:34.0164 6108 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:27:34.0173 6108 RemoteAccess - ok
10:27:34.0259 6108 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:27:34.0267 6108 RemoteRegistry - ok
10:27:34.0324 6108 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
10:27:34.0338 6108 RFCOMM - ok
10:27:34.0363 6108 [ FF71ECB1B121C6273EC4C45EDDBC4FE4 ] rimspci C:\Windows\system32\DRIVERS\rimssne64.sys
10:27:34.0399 6108 rimspci - ok
10:27:34.0421 6108 [ E33075C22C14C57095F037253F936BB8 ] risdsnpe C:\Windows\system32\DRIVERS\risdsnxc64.sys
10:27:34.0454 6108 risdsnpe - ok
10:27:34.0468 6108 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:27:34.0476 6108 RpcEptMapper - ok
10:27:34.0517 6108 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:27:34.0522 6108 RpcLocator - ok
10:27:34.0600 6108 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
10:27:34.0604 6108 RpcSs - ok
10:27:34.0618 6108 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:27:34.0621 6108 rspndr - ok
10:27:34.0725 6108 [ 4FE1CEF69D36E913738234303986FBB3 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:27:34.0764 6108 RTL8167 - ok
10:27:34.0842 6108 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:27:34.0843 6108 SamSs - ok
10:27:34.0902 6108 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:27:34.0973 6108 sbp2port - ok
10:27:35.0012 6108 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:27:35.0018 6108 SCardSvr - ok
10:27:35.0081 6108 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:27:35.0125 6108 scfilter - ok
10:27:35.0193 6108 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:27:35.0199 6108 Schedule - ok
10:27:35.0253 6108 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:27:35.0253 6108 SCPolicySvc - ok
10:27:35.0319 6108 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
10:27:35.0354 6108 sdbus - ok
10:27:35.0426 6108 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:27:35.0452 6108 SDRSVC - ok
10:27:35.0487 6108 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:27:35.0490 6108 secdrv - ok
10:27:35.0507 6108 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:27:35.0508 6108 seclogon - ok
10:27:35.0523 6108 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
10:27:35.0525 6108 SENS - ok
10:27:35.0566 6108 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:27:35.0570 6108 SensrSvc - ok
10:27:35.0596 6108 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:27:35.0600 6108 Serenum - ok
10:27:35.0618 6108 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:27:35.0622 6108 Serial - ok
10:27:35.0643 6108 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:27:35.0648 6108 sermouse - ok
10:27:35.0735 6108 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:27:35.0775 6108 SessionEnv - ok
10:27:35.0826 6108 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
10:27:35.0862 6108 SFEP - ok
10:27:35.0901 6108 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:27:35.0906 6108 sffdisk - ok
10:27:35.0956 6108 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:27:35.0965 6108 sffp_mmc - ok
10:27:35.0993 6108 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:27:36.0027 6108 sffp_sd - ok
10:27:36.0053 6108 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:27:36.0056 6108 sfloppy - ok
10:27:36.0231 6108 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
10:27:36.0275 6108 Sftfs - ok
10:27:36.0400 6108 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
10:27:36.0403 6108 sftlist - ok
10:27:36.0449 6108 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
10:27:36.0518 6108 Sftplay - ok
10:27:36.0544 6108 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
10:27:36.0544 6108 Sftredir - ok
10:27:36.0642 6108 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
10:27:36.0690 6108 Sftvol - ok
10:27:36.0815 6108 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
10:27:36.0816 6108 sftvsa - ok
10:27:36.0922 6108 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:27:36.0929 6108 SharedAccess - ok
10:27:37.0050 6108 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:27:37.0053 6108 ShellHWDetection - ok
10:27:37.0165 6108 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:27:37.0170 6108 SiSRaid2 - ok
10:27:37.0231 6108 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:27:37.0235 6108 SiSRaid4 - ok
10:27:37.0398 6108 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:27:41.0564 6108 SkypeUpdate - ok
10:27:41.0614 6108 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:27:41.0619 6108 Smb - ok
10:27:41.0700 6108 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:27:41.0708 6108 SNMPTRAP - ok
10:27:41.0862 6108 [ C3E69DB0A4E59564230E053232F39AC7 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
10:27:41.0910 6108 SOHCImp - ok
10:27:42.0082 6108 [ 65CC4779A29C3E82B987BD4961790DFF ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
10:27:42.0183 6108 SOHDms - ok
10:27:42.0215 6108 [ F47D75CEE1844EEF4A9EA6EE768828FB ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
10:27:42.0263 6108 SOHDs - ok
10:27:42.0467 6108 [ B8047E776E50FC2384801083A77900E0 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
10:27:42.0468 6108 SpfService - ok
10:27:42.0571 6108 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:27:42.0575 6108 spldr - ok
10:27:42.0706 6108 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:27:42.0732 6108 Spooler - ok
10:27:43.0179 6108 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:27:43.0235 6108 sppsvc - ok
10:27:43.0276 6108 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:27:43.0282 6108 sppuinotify - ok
10:27:43.0379 6108 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:27:43.0381 6108 srv - ok
10:27:43.0489 6108 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:27:43.0491 6108 srv2 - ok
10:27:43.0547 6108 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
10:27:43.0582 6108 SrvHsfHDA - ok
10:27:44.0030 6108 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
10:27:44.0233 6108 SrvHsfV92 - ok
10:27:44.0396 6108 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
10:27:44.0483 6108 SrvHsfWinac - ok
10:27:44.0558 6108 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:27:44.0560 6108 srvnet - ok
10:27:44.0637 6108 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:27:44.0639 6108 SSDPSRV - ok
10:27:44.0671 6108 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:27:44.0675 6108 SstpSvc - ok
10:27:44.0724 6108 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:27:44.0730 6108 stexstor - ok
10:27:44.0827 6108 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
10:27:44.0829 6108 StillCam - ok
10:27:44.0971 6108 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:27:45.0016 6108 stisvc - ok
10:27:45.0094 6108 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:27:45.0097 6108 swenum - ok
10:27:45.0195 6108 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:27:45.0295 6108 swprv - ok
10:27:45.0614 6108 [ 7BE4CDEA6BC7832BFE3112A350D8B9EA ] SysMain C:\Windows\system32\sysmain.dll
10:27:45.0627 6108 SysMain - ok
10:27:45.0702 6108 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:27:45.0732 6108 TabletInputService - ok
10:27:45.0921 6108 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:27:45.0924 6108 TapiSrv - ok
10:27:45.0957 6108 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:27:45.0960 6108 TBS - ok
10:27:46.0302 6108 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:27:46.0361 6108 Tcpip - ok
10:27:46.0801 6108 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:27:46.0810 6108 TCPIP6 - ok
10:27:46.0921 6108 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:27:46.0954 6108 tcpipreg - ok
10:27:47.0047 6108 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:27:47.0058 6108 TDPIPE - ok
10:27:47.0149 6108 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:27:47.0185 6108 TDTCP - ok
10:27:47.0279 6108 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:27:47.0314 6108 tdx - ok
10:27:47.0407 6108 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:27:47.0437 6108 TermDD - ok
10:27:47.0534 6108 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:27:47.0539 6108 TermService - ok
10:27:47.0591 6108 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:27:47.0594 6108 Themes - ok
10:27:47.0616 6108 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:27:47.0617 6108 THREADORDER - ok
10:27:47.0650 6108 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys
10:27:47.0654 6108 TPM - ok
10:27:47.0713 6108 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:27:47.0714 6108 TrkWks - ok
10:27:47.0871 6108 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:27:47.0873 6108 TrustedInstaller - ok
10:27:47.0984 6108 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:27:48.0022 6108 tssecsrv - ok
10:27:48.0104 6108 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:27:48.0150 6108 TsUsbFlt - ok
10:27:48.0253 6108 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:27:48.0301 6108 tunnel - ok
10:27:48.0336 6108 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:27:48.0340 6108 uagp35 - ok
10:27:48.0542 6108 [ 63F6D08C54D5B3C1B12A6172032055C7 ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
10:27:48.0544 6108 uCamMonitor - ok
10:27:48.0670 6108 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:27:48.0918 6108 udfs - ok
10:27:49.0018 6108 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:27:49.0024 6108 UI0Detect - ok
10:27:49.0110 6108 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:27:49.0113 6108 uliagpkx - ok
10:27:49.0217 6108 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
10:27:49.0268 6108 umbus - ok
10:27:49.0324 6108 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:27:49.0331 6108 UmPass - ok
10:27:49.0928 6108 [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:27:49.0940 6108 UNS - ok
10:27:50.0052 6108 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:27:50.0064 6108 upnphost - ok
10:27:50.0195 6108 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:27:50.0234 6108 USBAAPL64 - ok
10:27:50.0367 6108 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:27:50.0423 6108 usbccgp - ok
10:27:50.0517 6108 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:27:50.0530 6108 usbcir - ok
10:27:50.0597 6108 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:27:50.0628 6108 usbehci - ok
10:27:50.0741 6108 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:27:50.0779 6108 usbhub - ok
10:27:50.0901 6108 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:27:50.0935 6108 usbohci - ok
10:27:50.0975 6108 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:27:50.0978 6108 usbprint - ok
10:27:51.0081 6108 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:27:51.0092 6108 usbscan - ok
10:27:51.0166 6108 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:27:51.0196 6108 USBSTOR - ok
10:27:51.0294 6108 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:27:51.0346 6108 usbuhci - ok
10:27:51.0391 6108 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
10:27:51.0449 6108 usbvideo - ok
10:27:51.0517 6108 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:27:51.0522 6108 UxSms - ok
10:27:51.0868 6108 [ 2C9732B39F81395CC9FE40F181CD3433 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
10:27:51.0871 6108 VAIO Event Service - ok
10:27:52.0098 6108 [ C994F2B3B45C9987049CA511EE1F2768 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
10:27:52.0108 6108 VAIO Power Management - ok
10:27:52.0165 6108 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:27:52.0167 6108 VaultSvc - ok
10:27:52.0528 6108 [ 6888526AEB8DDABDE6F778FD40FC0693 ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
10:27:52.0538 6108 VCFw - ok
10:27:52.0803 6108 [ 07F47A1DF726537313C1023515175532 ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
10:27:52.0972 6108 VcmIAlzMgr - ok
10:27:53.0234 6108 [ CBB9F0D1017E0BED4CB5BBC0EBF26DC1 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
10:27:53.0315 6108 VcmINSMgr - ok
10:27:53.0410 6108 [ C8E3BA694CC5EACEC4C01660ACE40D56 ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
10:27:53.0448 6108 VcmXmlIfHelper - ok
10:27:53.0646 6108 [ 8F0840FF3A11D6B3F767AD6C79AC2A40 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
10:27:53.0649 6108 VCService - ok
10:27:53.0722 6108 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:27:53.0723 6108 vdrvroot - ok
10:27:53.0886 6108 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:27:53.0952 6108 vds - ok
10:27:54.0017 6108 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:27:54.0021 6108 vga - ok
10:27:54.0084 6108 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:27:54.0087 6108 VgaSave - ok
10:27:54.0187 6108 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:27:54.0229 6108 vhdmp - ok
10:27:54.0264 6108 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:27:54.0269 6108 viaide - ok
10:27:54.0301 6108 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:27:54.0305 6108 volmgr - ok
10:27:54.0391 6108 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:27:54.0396 6108 volmgrx - ok
10:27:54.0430 6108 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:27:54.0434 6108 volsnap - ok
10:27:54.0466 6108 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:27:54.0473 6108 vsmraid - ok
10:27:54.0715 6108 [ 028E420B12654492D25625688055108C ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
10:27:54.0719 6108 VSNService - ok
10:27:55.0192 6108 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:27:55.0284 6108 VSS - ok
10:27:55.0604 6108 [ FB4A1695D2D74F9C92CA5E84795CDBE1 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
10:27:55.0609 6108 VUAgent - ok
10:27:55.0642 6108 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:27:55.0644 6108 vwifibus - ok
10:27:55.0689 6108 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:27:55.0693 6108 vwififlt - ok
10:27:55.0855 6108 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:27:55.0900 6108 W32Time - ok
10:27:55.0964 6108 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:27:55.0968 6108 WacomPen - ok
10:27:56.0049 6108 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:27:56.0080 6108 WANARP - ok
10:27:56.0088 6108 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:27:56.0089 6108 Wanarpv6 - ok
10:27:56.0335 6108 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:27:56.0741 6108 WatAdminSvc - ok
10:27:57.0066 6108 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:27:57.0255 6108 wbengine - ok
10:27:57.0471 6108 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:27:57.0478 6108 WbioSrvc - ok
10:27:57.0593 6108 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:27:57.0644 6108 wcncsvc - ok
10:27:57.0682 6108 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:27:57.0686 6108 WcsPlugInService - ok
10:27:57.0787 6108 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:27:57.0793 6108 Wd - ok
10:27:57.0936 6108 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
10:27:57.0970 6108 WDC_SAM - ok
10:27:58.0169 6108 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:27:58.0220 6108 Wdf01000 - ok
10:27:58.0307 6108 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:27:58.0309 6108 WdiServiceHost - ok
10:27:58.0317 6108 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:27:58.0319 6108 WdiSystemHost - ok
10:27:58.0546 6108 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:27:58.0575 6108 WebClient - ok
10:27:58.0639 6108 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:27:58.0726 6108 Wecsvc - ok
10:27:58.0833 6108 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:27:58.0837 6108 wercplsupport - ok
10:27:58.0885 6108 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:27:58.0888 6108 WerSvc - ok
10:27:58.0999 6108 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:27:59.0002 6108 WfpLwf - ok
10:27:59.0042 6108 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:27:59.0046 6108 WIMMount - ok
10:27:59.0225 6108 WinDefend - ok
10:27:59.0249 6108 WinHttpAutoProxySvc - ok
10:27:59.0543 6108 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:27:59.0545 6108 Winmgmt - ok
10:27:59.0935 6108 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:28:00.0099 6108 WinRM - ok
10:28:00.0207 6108 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:28:00.0242 6108 WinUsb - ok
10:28:00.0530 6108 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:28:00.0538 6108 Wlansvc - ok
10:28:00.0633 6108 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:28:00.0674 6108 wlcrasvc - ok
10:28:01.0367 6108 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:28:01.0376 6108 wlidsvc - ok
10:28:01.0464 6108 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:28:01.0468 6108 WmiAcpi - ok
10:28:01.0570 6108 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:28:01.0578 6108 wmiApSrv - ok
10:28:01.0629 6108 WMPNetworkSvc - ok
10:28:01.0676 6108 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:28:01.0710 6108 WPCSvc - ok
10:28:01.0807 6108 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:28:01.0842 6108 WPDBusEnum - ok
10:28:02.0007 6108 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:28:02.0008 6108 ws2ifsl - ok
10:28:02.0075 6108 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
10:28:02.0080 6108 wscsvc - ok
10:28:02.0104 6108 WSearch - ok
10:28:02.0329 6108 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:28:02.0340 6108 wuauserv - ok
10:28:02.0445 6108 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:28:02.0481 6108 WudfPf - ok
10:28:02.0526 6108 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:28:02.0569 6108 WUDFRd - ok
10:28:02.0806 6108 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:28:02.0809 6108 wudfsvc - ok
10:28:02.0932 6108 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:28:02.0941 6108 WwanSvc - ok
10:28:02.0970 6108 ================ Scan global ===============================
10:28:03.0016 6108 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:28:03.0130 6108 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:28:03.0138 6108 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:28:03.0181 6108 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:28:03.0262 6108 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:28:03.0266 6108 [Global] - ok
10:28:03.0267 6108 ================ Scan MBR ==================================
10:28:03.0325 6108 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:28:03.0327 6108 Suspicious mbr (Forged): \Device\Harddisk0\DR0
10:28:03.0381 6108 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - infected
10:28:03.0381 6108 \Device\Harddisk0\DR0 - detected Rootkit.Boot.SST.b (0)
10:28:03.0386 6108 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
10:28:03.0391 6108 \Device\Harddisk1\DR1 - ok
10:28:03.0862 6108 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
10:28:03.0866 6108 \Device\Harddisk2\DR2 - ok
10:28:03.0866 6108 ================ Scan VBR ==================================
10:28:03.0940 6108 [ 0FB2C1C3383496DB70E650779DEE5063 ] \Device\Harddisk0\DR0\Partition1
10:28:03.0944 6108 \Device\Harddisk0\DR0\Partition1 - ok
10:28:03.0960 6108 [ E50E881012ED1929AE55EC4F64FAF60D ] \Device\Harddisk0\DR0\Partition2
10:28:03.0961 6108 \Device\Harddisk0\DR0\Partition2 - ok
10:28:03.0963 6108 [ 56A94F02C80039E90636552A3370E776 ] \Device\Harddisk1\DR1\Partition1
10:28:03.0965 6108 \Device\Harddisk1\DR1\Partition1 - ok
10:28:03.0967 6108 [ 9893FC6F4498798C9D564ACA9F5EB999 ] \Device\Harddisk2\DR2\Partition1
10:28:03.0968 6108 \Device\Harddisk2\DR2\Partition1 - ok
10:28:03.0971 6108 ============================================================
10:28:03.0972 6108 Scan finished
10:28:03.0972 6108 ============================================================
10:28:03.0978 0644 Detected object count: 1
10:28:03.0978 0644 Actual detected object count: 1
10:28:19.0340 0644 \Device\Harddisk0\DR0\# - copied to quarantine
10:28:19.0342 0644 \Device\Harddisk0\DR0 - copied to quarantine
10:28:21.0066 0644 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
10:28:21.0068 0644 \Device\Harddisk0\DR0\TDLFS\vbr - copied to quarantine
10:28:21.0092 0644 \Device\Harddisk0\DR0\TDLFS\bid - copied to quarantine
10:28:21.0094 0644 \Device\Harddisk0\DR0\TDLFS\affid - copied to quarantine
10:28:21.0095 0644 \Device\Harddisk0\DR0\TDLFS\boot - copied to quarantine
10:28:21.0097 0644 \Device\Harddisk0\DR0\TDLFS\cmd32 - copied to quarantine
10:28:21.0099 0644 \Device\Harddisk0\DR0\TDLFS\cmd64 - copied to quarantine
10:28:21.0100 0644 \Device\Harddisk0\DR0\TDLFS\dbg32 - copied to quarantine
10:28:21.0103 0644 \Device\Harddisk0\DR0\TDLFS\dbg64 - copied to quarantine
10:28:21.0171 0644 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
10:28:21.0179 0644 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
10:28:21.0185 0644 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
10:28:21.0186 0644 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
10:28:21.0187 0644 \Device\Harddisk0\DR0\TDLFS\subid - copied to quarantine
10:28:21.0190 0644 \Device\Harddisk0\DR0\TDLFS\tdi32 - copied to quarantine
10:28:21.0193 0644 \Device\Harddisk0\DR0\TDLFS\tdi64 - copied to quarantine
10:28:21.0194 0644 \Device\Harddisk0\DR0\TDLFS\main1 - copied to quarantine
10:28:21.0196 0644 \Device\Harddisk0\DR0\TDLFS\info - copied to quarantine
10:28:21.0198 0644 \Device\Harddisk0\DR0\TDLFS\main - copied to quarantine
10:28:21.0199 0644 \Device\Harddisk0\DR0\TDLFS\mainfb.script - copied to quarantine
10:28:21.0226 0644 \Device\Harddisk0\DR0\TDLFS\com64 - copied to quarantine
10:28:21.0260 0644 \Device\Harddisk0\DR0\TDLFS\bbr232 - copied to quarantine
10:28:21.0355 0644 \Device\Harddisk0\DR0\TDLFS\bbr264 - copied to quarantine
10:28:23.0014 0644 \Device\Harddisk0\DR0\TDLFS\bbr_conf - copied to quarantine
10:28:23.0257 0644 \Device\Harddisk0\DR0\TDLFS\serf332 - copied to quarantine
10:28:23.0450 0644 \Device\Harddisk0\DR0\TDLFS\serf364 - copied to quarantine
10:28:23.0498 0644 \Device\Harddisk0\DR0\TDLFS\serf_conf - copied to quarantine
10:28:23.0620 0644 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - will be cured on reboot
10:28:23.0688 0644 \Device\Harddisk0\DR0 - ok
10:28:24.0574 0644 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - User select action: Cure
10:28:30.0941 4948 Deinitialize success

Log of TDSkiller


10:37:50.0573 1348 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:37:52.0574 1348 ============================================================
10:37:52.0574 1348 Current date / time: 2012/12/02 10:37:52.0574
10:37:52.0574 1348 SystemInfo:
10:37:52.0574 1348
10:37:52.0574 1348 OS Version: 6.1.7601 ServicePack: 1.0
10:37:52.0574 1348 Product type: Workstation
10:37:52.0574 1348 ComputerName: FLIPPO-HOME
10:37:52.0574 1348 UserName: John
10:37:52.0575 1348 Windows directory: C:\Windows
10:37:52.0575 1348 System windows directory: C:\Windows
10:37:52.0575 1348 Running under WOW64
10:37:52.0575 1348 Processor architecture: Intel x64
10:37:52.0575 1348 Number of processors: 4
10:37:52.0575 1348 Page size: 0x1000
10:37:52.0575 1348 Boot type: Normal boot
10:37:52.0575 1348 ============================================================
10:37:52.0694 1348 BG loaded
10:37:53.0395 1348 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:37:53.0399 1348 Drive \Device\Harddisk1\DR1 - Size: 0x2BA9F400000 (2794.49 Gb), SectorSize: 0x1000, Cylinders: 0xB21F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:37:53.0399 1348 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:37:53.0853 1348 ============================================================
10:37:53.0853 1348 \Device\Harddisk0\DR0:
10:37:53.0853 1348 MBR partitions:
10:37:53.0853 1348 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D4D000, BlocksNum 0x32000
10:37:53.0853 1348 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7F000, BlocksNum 0x729805B0
10:37:53.0853 1348 \Device\Harddisk1\DR1:
10:37:53.0853 1348 MBR partitions:
10:37:53.0853 1348 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x100, BlocksNum 0x2BA9F300
10:37:53.0853 1348 \Device\Harddisk2\DR2:
10:37:53.0854 1348 MBR partitions:
10:37:53.0854 1348 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x74705982
10:37:53.0854 1348 ============================================================
10:37:53.0950 1348 C: <-> \Device\Harddisk0\DR0\Partition2
10:37:53.0950 1348 D: <-> \Device\Harddisk2\DR2\Partition1
10:37:54.0374 1348 F: <-> \Device\Harddisk1\DR1\Partition1
10:37:54.0374 1348 ============================================================
10:37:54.0374 1348 Initialize success
10:37:54.0374 1348 ============================================================
10:38:37.0214 6284 ============================================================
10:38:37.0214 6284 Scan started
10:38:37.0214 6284 Mode: Manual; TDLFS;
10:38:37.0215 6284 ============================================================
10:38:38.0334 6284 ================ Scan system memory ========================
10:38:38.0334 6284 System memory - ok
10:38:38.0334 6284 ================ Scan services =============================
10:38:39.0524 6284 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:38:39.0527 6284 1394ohci - ok
10:38:39.0751 6284 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
10:38:39.0758 6284 ACDaemon - ok
10:38:39.0967 6284 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:38:39.0975 6284 ACPI - ok
10:38:40.0010 6284 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:38:40.0012 6284 AcpiPmi - ok
10:38:40.0146 6284 [ 4451CC2275B04043EC2BCC757AF97291 ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
10:38:40.0152 6284 AdobeActiveFileMonitor8.0 - ok
10:38:40.0304 6284 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:38:40.0305 6284 AdobeARMservice - ok
10:38:40.0479 6284 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:38:40.0484 6284 AdobeFlashPlayerUpdateSvc - ok
10:38:40.0643 6284 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:38:40.0685 6284 adp94xx - ok
10:38:40.0731 6284 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:38:40.0737 6284 adpahci - ok
10:38:40.0762 6284 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:38:40.0765 6284 adpu320 - ok
10:38:40.0804 6284 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:38:40.0805 6284 AeLookupSvc - ok
10:38:40.0919 6284 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:38:40.0928 6284 AFD - ok
10:38:40.0994 6284 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:38:40.0996 6284 agp440 - ok
10:38:41.0015 6284 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:38:41.0019 6284 ALG - ok
10:38:41.0037 6284 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:38:41.0039 6284 aliide - ok
10:38:41.0050 6284 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:38:41.0052 6284 amdide - ok
10:38:41.0066 6284 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:38:41.0069 6284 AmdK8 - ok
10:38:41.0085 6284 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:38:41.0087 6284 AmdPPM - ok
10:38:41.0166 6284 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:38:41.0170 6284 amdsata - ok
10:38:41.0217 6284 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:38:41.0222 6284 amdsbs - ok
10:38:41.0233 6284 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:38:41.0236 6284 amdxata - ok
10:38:41.0323 6284 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:38:41.0327 6284 AppID - ok
10:38:41.0353 6284 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:38:41.0361 6284 AppIDSvc - ok
10:38:41.0450 6284 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:38:41.0452 6284 Appinfo - ok
10:38:41.0670 6284 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:38:41.0673 6284 Apple Mobile Device - ok
10:38:41.0721 6284 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:38:41.0725 6284 arc - ok
10:38:41.0738 6284 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:38:41.0741 6284 arcsas - ok
10:38:41.0763 6284 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
10:38:41.0763 6284 ArcSoftKsUFilter - ok
10:38:41.0895 6284 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:38:41.0899 6284 aspnet_state - ok
10:38:41.0931 6284 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:38:41.0933 6284 AsyncMac - ok
10:38:41.0977 6284 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:38:41.0979 6284 atapi - ok
10:38:42.0068 6284 [ A5E770426D18F8EF332A593F3289DA91 ] athr C:\Windows\system32\DRIVERS\athrx.sys
10:38:42.0091 6284 athr - ok
10:38:42.0153 6284 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:38:42.0156 6284 AudioEndpointBuilder - ok
10:38:42.0203 6284 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:38:42.0206 6284 AudioSrv - ok
10:38:42.0274 6284 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:38:42.0276 6284 AxInstSV - ok
10:38:42.0325 6284 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:38:42.0335 6284 b06bdrv - ok
10:38:42.0363 6284 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:38:42.0367 6284 b57nd60a - ok
10:38:42.0398 6284 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:38:42.0401 6284 BDESVC - ok
10:38:42.0406 6284 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:38:42.0406 6284 Beep - ok
10:38:42.0474 6284 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
10:38:42.0489 6284 BFE - ok
10:38:42.0518 6284 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
10:38:42.0526 6284 BITS - ok
10:38:42.0536 6284 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:38:42.0537 6284 blbdrive - ok
10:38:42.0720 6284 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:38:42.0728 6284 Bonjour Service - ok
10:38:42.0799 6284 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:38:42.0801 6284 bowser - ok
10:38:42.0897 6284 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:38:42.0899 6284 BrFiltLo - ok
10:38:42.0948 6284 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:38:42.0950 6284 BrFiltUp - ok
10:38:42.0975 6284 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
10:38:42.0978 6284 BridgeMP - ok
10:38:43.0035 6284 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:38:43.0037 6284 Browser - ok
10:38:43.0086 6284 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:38:43.0089 6284 Brserid - ok
10:38:43.0120 6284 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:38:43.0122 6284 BrSerWdm - ok
10:38:43.0134 6284 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:38:43.0137 6284 BrUsbMdm - ok
10:38:43.0150 6284 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:38:43.0153 6284 BrUsbSer - ok
10:38:43.0176 6284 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
10:38:43.0177 6284 BthEnum - ok
10:38:43.0201 6284 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:38:43.0203 6284 BTHMODEM - ok
10:38:43.0247 6284 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
10:38:43.0248 6284 BthPan - ok
10:38:43.0267 6284 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
10:38:43.0270 6284 BTHPORT - ok
10:38:43.0330 6284 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:38:43.0331 6284 bthserv - ok
10:38:43.0383 6284 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
10:38:43.0384 6284 BTHUSB - ok
10:38:43.0438 6284 [ 7A2CE8C1BF4DAA1F2766E21E9CA11078 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
10:38:43.0444 6284 btwampfl - ok
10:38:43.0479 6284 [ A75BF6802A967F5AACECC3C67FEBDF55 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
10:38:43.0480 6284 btwaudio - ok
10:38:43.0533 6284 [ D895DC213EDBDA5FCC53AAD1F1E0E63B ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
10:38:43.0536 6284 btwavdt - ok
10:38:43.0755 6284 [ 692F8648D7686D91E34A65AC698019D8 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
10:38:43.0765 6284 btwdins - ok
10:38:43.0835 6284 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
10:38:43.0836 6284 btwl2cap - ok
10:38:43.0847 6284 [ 6D7AA2BDE0135599C5F230D69DB3B420 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
10:38:43.0848 6284 btwrchid - ok
10:38:44.0154 6284 catchme - ok
10:38:44.0166 6284 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:38:44.0168 6284 cdfs - ok
10:38:44.0226 6284 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
10:38:44.0227 6284 cdrom - ok
10:38:44.0289 6284 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:38:44.0291 6284 CertPropSvc - ok
10:38:44.0345 6284 [ 7C6B5BE2696DFD2D0BF6C9EE20326EF8 ] cfwids C:\Windows\system32\drivers\cfwids.sys
10:38:44.0345 6284 cfwids - ok
10:38:44.0536 6284 [ 65E7EFF134D909FC219770F577729615 ] chromoting C:\Program Files (x86)\Google\Chrome Remote Desktop\24.0.1312.25\remoting_daemon.exe
10:38:44.0543 6284 chromoting - ok
10:38:44.0592 6284 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:38:44.0599 6284 circlass - ok
10:38:44.0648 6284 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:38:44.0653 6284 CLFS - ok
10:38:44.0722 6284 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:38:44.0727 6284 clr_optimization_v2.0.50727_32 - ok
10:38:44.0742 6284 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:38:44.0746 6284 clr_optimization_v2.0.50727_64 - ok
10:38:44.0793 6284 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:38:44.0796 6284 clr_optimization_v4.0.30319_32 - ok
10:38:44.0848 6284 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:38:44.0850 6284 clr_optimization_v4.0.30319_64 - ok
10:38:44.0855 6284 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:38:44.0856 6284 CmBatt - ok
10:38:44.0911 6284 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:38:44.0921 6284 cmdide - ok
10:38:45.0105 6284 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
10:38:45.0116 6284 CNG - ok
10:38:45.0162 6284 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:38:45.0164 6284 Compbatt - ok
10:38:45.0236 6284 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:38:45.0237 6284 CompositeBus - ok
10:38:45.0242 6284 COMSysApp - ok
10:38:45.0248 6284 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:38:45.0249 6284 crcdisk - ok
10:38:45.0300 6284 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:38:45.0301 6284 CryptSvc - ok
10:38:45.0641 6284 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
10:38:45.0650 6284 cvhsvc - ok
10:38:45.0747 6284 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:38:45.0756 6284 DcomLaunch - ok
10:38:45.0783 6284 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:38:45.0788 6284 defragsvc - ok
10:38:45.0857 6284 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:38:45.0858 6284 DfsC - ok
10:38:45.0965 6284 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:38:45.0967 6284 Dhcp - ok
10:38:45.0977 6284 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:38:45.0978 6284 discache - ok
10:38:46.0032 6284 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:38:46.0039 6284 Disk - ok
10:38:46.0092 6284 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:38:46.0094 6284 Dnscache - ok
10:38:46.0150 6284 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:38:46.0155 6284 dot3svc - ok
10:38:46.0323 6284 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
10:38:46.0433 6284 Dot4 - ok
10:38:46.0498 6284 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:38:46.0504 6284 Dot4Print - ok
10:38:46.0559 6284 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
10:38:46.0563 6284 dot4usb - ok
10:38:46.0622 6284 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:38:46.0625 6284 DPS - ok
10:38:46.0660 6284 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:38:46.0663 6284 drmkaud - ok
10:38:46.0744 6284 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:38:46.0751 6284 DXGKrnl - ok
10:38:46.0776 6284 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
10:38:46.0780 6284 e1yexpress - ok
10:38:46.0805 6284 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:38:46.0806 6284 EapHost - ok
10:38:46.0863 6284 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:38:46.0944 6284 ebdrv - ok
10:38:47.0001 6284 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:38:47.0005 6284 EFS - ok
10:38:47.0193 6284 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:38:47.0219 6284 ehRecvr - ok
10:38:47.0248 6284 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:38:47.0251 6284 ehSched - ok
10:38:47.0296 6284 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:38:47.0312 6284 elxstor - ok
10:38:47.0330 6284 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:38:47.0332 6284 ErrDev - ok
10:38:47.0370 6284 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:38:47.0375 6284 EventSystem - ok
10:38:47.0384 6284 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:38:47.0388 6284 exfat - ok
10:38:47.0426 6284 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:38:47.0429 6284 fastfat - ok
10:38:47.0595 6284 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:38:47.0605 6284 Fax - ok
10:38:47.0615 6284 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:38:47.0617 6284 fdc - ok
10:38:47.0635 6284 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:38:47.0636 6284 fdPHost - ok
10:38:47.0647 6284 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:38:47.0648 6284 FDResPub - ok
10:38:47.0656 6284 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:38:47.0659 6284 FileInfo - ok
10:38:47.0666 6284 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:38:47.0668 6284 Filetrace - ok
10:38:47.0700 6284 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:38:47.0709 6284 FLEXnet Licensing Service - ok
10:38:47.0713 6284 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:38:47.0714 6284 flpydisk - ok
10:38:47.0773 6284 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:38:47.0779 6284 FltMgr - ok
10:38:47.0903 6284 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
10:38:47.0920 6284 FontCache - ok
10:38:48.0016 6284 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:38:48.0021 6284 FontCache3.0.0.0 - ok
10:38:48.0053 6284 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:38:48.0056 6284 FsDepends - ok
10:38:48.0080 6284 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
10:38:48.0083 6284 fssfltr - ok
10:38:48.0153 6284 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:38:48.0186 6284 fsssvc - ok
10:38:48.0240 6284 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:38:48.0245 6284 Fs_Rec - ok
10:38:48.0264 6284 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:38:48.0268 6284 fvevol - ok
10:38:48.0290 6284 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:38:48.0293 6284 gagp30kx - ok
10:38:48.0344 6284 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:38:48.0346 6284 GEARAspiWDM - ok
10:38:48.0569 6284 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:38:48.0582 6284 gpsvc - ok
10:38:48.0756 6284 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:38:48.0759 6284 gupdate - ok
10:38:48.0810 6284 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:38:48.0812 6284 gupdatem - ok
10:38:48.0904 6284 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:38:48.0921 6284 gusvc - ok
10:38:48.0951 6284 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:38:48.0954 6284 hcw85cir - ok
10:38:49.0075 6284 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:38:49.0084 6284 HdAudAddService - ok
10:38:49.0160 6284 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:38:49.0162 6284 HDAudBus - ok
10:38:49.0180 6284 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:38:49.0182 6284 HidBatt - ok
10:38:49.0194 6284 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:38:49.0197 6284 HidBth - ok
10:38:49.0204 6284 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:38:49.0206 6284 HidIr - ok
10:38:49.0223 6284 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
10:38:49.0224 6284 hidserv - ok
10:38:49.0289 6284 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
10:38:49.0289 6284 HidUsb - ok
10:38:49.0358 6284 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
10:38:49.0362 6284 HipShieldK - ok
10:38:49.0429 6284 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:38:49.0436 6284 hkmsvc - ok
10:38:49.0498 6284 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:38:49.0502 6284 HomeGroupListener - ok
10:38:49.0644 6284 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:38:49.0650 6284 HomeGroupProvider - ok
10:38:50.0041 6284 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
10:38:50.0046 6284 hpqcxs08 - ok
10:38:50.0066 6284 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
10:38:50.0068 6284 hpqddsvc - ok
10:38:50.0134 6284 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:38:50.0138 6284 HpSAMD - ok
10:38:50.0263 6284 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
10:38:50.0281 6284 HPSLPSVC - ok
10:38:50.0438 6284 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:38:50.0446 6284 HTTP - ok
10:38:50.0471 6284 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:38:50.0475 6284 hwpolicy - ok
10:38:50.0502 6284 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
10:38:50.0503 6284 i8042prt - ok
10:38:50.0577 6284 [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
10:38:50.0585 6284 iaStor - ok
10:38:50.0679 6284 [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:38:50.0680 6284 IAStorDataMgrSvc - ok
10:38:50.0792 6284 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:38:50.0799 6284 iaStorV - ok
10:38:50.0882 6284 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:38:50.0892 6284 idsvc - ok
10:38:51.0327 6284 [ 0AC9E321D604BE48A0D72B69BA484BDC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:38:51.0376 6284 igfx - ok
10:38:51.0395 6284 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:38:51.0400 6284 iirsp - ok
10:38:51.0481 6284 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:38:51.0491 6284 IKEEXT - ok
10:38:51.0549 6284 [ 589B94A9B73A0E819FF873743A480834 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:38:51.0560 6284 IntcAzAudAddService - ok
10:38:51.0663 6284 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
10:38:51.0666 6284 IntcDAud - ok
10:38:51.0758 6284 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:38:51.0762 6284 intelide - ok
10:38:51.0799 6284 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:38:51.0800 6284 intelppm - ok
10:38:51.0816 6284 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:38:51.0823 6284 IPBusEnum - ok
10:38:51.0891 6284 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:38:51.0896 6284 iphlpsvc - ok
10:38:51.0950 6284 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:38:51.0953 6284 IPMIDRV - ok
10:38:51.0970 6284 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:38:51.0974 6284 IPNAT - ok
10:38:52.0198 6284 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:38:52.0206 6284 iPod Service - ok
10:38:52.0258 6284 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:38:52.0260 6284 IRENUM - ok
10:38:52.0321 6284 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:38:52.0325 6284 isapnp - ok
10:38:52.0385 6284 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:38:52.0389 6284 iScsiPrt - ok
10:38:52.0407 6284 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
10:38:52.0409 6284 kbdclass - ok
10:38:52.0470 6284 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:38:52.0471 6284 kbdhid - ok
10:38:52.0487 6284 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:38:52.0488 6284 KeyIso - ok
10:38:52.0567 6284 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:38:52.0576 6284 KSecDD - ok
10:38:52.0639 6284 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:38:52.0644 6284 KSecPkg - ok
10:38:52.0660 6284 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:38:52.0661 6284 ksthunk - ok
10:38:52.0708 6284 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:38:52.0712 6284 KtmRm - ok
10:38:52.0766 6284 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
10:38:52.0769 6284 LanmanServer - ok
10:38:52.0831 6284 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:38:52.0837 6284 LanmanWorkstation - ok
10:38:52.0860 6284 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:38:52.0861 6284 lltdio - ok
10:38:53.0072 6284 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:38:53.0121 6284 lltdsvc - ok
10:38:53.0173 6284 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:38:53.0177 6284 lmhosts - ok
10:38:53.0256 6284 [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:38:53.0258 6284 LMS - ok
10:38:53.0296 6284 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:38:53.0298 6284 LSI_FC - ok
10:38:53.0320 6284 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:38:53.0322 6284 LSI_SAS - ok
10:38:53.0341 6284 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:38:53.0344 6284 LSI_SAS2 - ok
10:38:53.0355 6284 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:38:53.0358 6284 LSI_SCSI - ok
10:38:53.0374 6284 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:38:53.0376 6284 luafv - ok
10:38:53.0480 6284 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:38:53.0485 6284 McAfee SiteAdvisor Service - ok
10:38:53.0722 6284 [ 98E19D3FCAAE0236816E4942C5771F89 ] McComponentHostServiceSony C:\Program Files (x86)\Sony\MSS\3.0.271\McCHSvc.exe
10:38:53.0733 6284 McComponentHostServiceSony - ok
10:38:53.0760 6284 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:38:53.0763 6284 McMPFSvc - ok
10:38:53.0782 6284 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:38:53.0784 6284 mcmscsvc - ok
10:38:53.0797 6284 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:38:53.0799 6284 McNaiAnn - ok
10:38:53.0807 6284 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:38:53.0808 6284 McNASvc - ok
10:38:53.0956 6284 [ BE7C8C3F8FE52D8F7826E14CF11DE949 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
10:38:53.0963 6284 McODS - ok
10:38:53.0981 6284 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
10:38:53.0984 6284 McProxy - ok
10:38:54.0119 6284 [ D4F9C8CE2D7D5B9A1F739AADEBFFCA6F ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
10:38:54.0122 6284 McShield - ok
10:38:54.0241 6284 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:38:54.0246 6284 Mcx2Svc - ok
10:38:54.0276 6284 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:38:54.0280 6284 megasas - ok
10:38:54.0312 6284 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:38:54.0315 6284 MegaSR - ok
10:38:54.0340 6284 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
10:38:54.0341 6284 MEIx64 - ok
10:38:54.0361 6284 [ C73B93FED17829F11273459DA05E1976 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
10:38:54.0362 6284 mfeapfk - ok
10:38:54.0374 6284 [ 298C065BB9E09D5F14CCD9E8244DE4A0 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
10:38:54.0375 6284 mfeavfk - ok
10:38:54.0398 6284 mfeavfk01 - ok
10:38:54.0480 6284 [ AB66AF840EF1667AA73DDA6CE987D0E1 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
10:38:54.0485 6284 mfefire - ok
10:38:54.0576 6284 [ 4D604F0B85E98C5AD99B89AF72A4E28A ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
10:38:54.0579 6284 mfefirek - ok
10:38:54.0649 6284 [ 85AFDEAD1366BED11A84A5C6FC0A65D2 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
10:38:54.0663 6284 mfehidk - ok
10:38:54.0688 6284 [ 1B08579938FD72626D92F3C2219903EA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
10:38:54.0692 6284 mferkdet - ok
10:38:54.0758 6284 [ 984BBBB9BE02EF838DABDF3F3126A91B ] mfevtp C:\Windows\system32\mfevtps.exe
10:38:54.0761 6284 mfevtp - ok
10:38:54.0864 6284 [ 6251BE428073704FF1002231520C8F16 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
10:38:54.0871 6284 mfewfpk - ok
10:38:54.0896 6284 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:38:54.0898 6284 MMCSS - ok
10:38:54.0911 6284 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:38:54.0913 6284 Modem - ok
10:38:54.0948 6284 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:38:54.0948 6284 monitor - ok
10:38:55.0006 6284 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
10:38:55.0007 6284 mouclass - ok
10:38:55.0035 6284 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:38:55.0036 6284 mouhid - ok
10:38:55.0096 6284 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:38:55.0097 6284 mountmgr - ok
10:38:55.0122 6284 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:38:55.0124 6284 mpio - ok
10:38:55.0153 6284 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:38:55.0154 6284 mpsdrv - ok
10:38:55.0223 6284 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:38:55.0240 6284 MpsSvc - ok
10:38:55.0319 6284 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:38:55.0322 6284 MRxDAV - ok
10:38:55.0463 6284 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:38:55.0466 6284 mrxsmb - ok
10:38:55.0583 6284 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:38:55.0586 6284 mrxsmb10 - ok
10:38:55.0616 6284 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:38:55.0618 6284 mrxsmb20 - ok
10:38:55.0711 6284 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:38:55.0713 6284 msahci - ok
10:38:55.0784 6284 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:38:55.0787 6284 msdsm - ok
10:38:55.0811 6284 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:38:55.0814 6284 MSDTC - ok
10:38:55.0873 6284 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:38:55.0875 6284 Msfs - ok
10:38:55.0917 6284 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:38:55.0919 6284 mshidkmdf - ok
10:38:55.0933 6284 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:38:55.0935 6284 msisadrv - ok
10:38:55.0963 6284 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:38:55.0966 6284 MSiSCSI - ok
10:38:55.0974 6284 msiserver - ok
10:38:55.0997 6284 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:38:55.0999 6284 MSKSSRV - ok
10:38:56.0012 6284 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:38:56.0014 6284 MSPCLOCK - ok
10:38:56.0029 6284 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:38:56.0031 6284 MSPQM - ok
10:38:56.0120 6284 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:38:56.0128 6284 MsRPC - ok
10:38:56.0142 6284 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:38:56.0143 6284 mssmbios - ok
10:38:56.0160 6284 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:38:56.0163 6284 MSTEE - ok
10:38:56.0177 6284 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:38:56.0180 6284 MTConfig - ok
10:38:56.0196 6284 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:38:56.0199 6284 Mup - ok
10:38:56.0219 6284 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:38:56.0223 6284 napagent - ok
10:38:56.0242 6284 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:38:56.0244 6284 NativeWifiP - ok
10:38:56.0366 6284 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:38:56.0379 6284 NDIS - ok
10:38:56.0404 6284 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:38:56.0411 6284 NdisCap - ok
10:38:56.0463 6284 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:38:56.0464 6284 NdisTapi - ok
10:38:56.0672 6284 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:38:56.0675 6284 Ndisuio - ok
10:38:56.0767 6284 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:38:56.0768 6284 NdisWan - ok
10:38:56.0840 6284 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:38:56.0842 6284 NDProxy - ok
10:38:56.0921 6284 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:38:56.0925 6284 Net Driver HPZ12 - ok
10:38:56.0958 6284 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:38:56.0960 6284 NetBIOS - ok
10:38:57.0031 6284 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:38:57.0037 6284 NetBT - ok
10:38:57.0066 6284 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:38:57.0069 6284 Netlogon - ok
10:38:57.0095 6284 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:38:57.0098 6284 Netman - ok
10:38:57.0156 6284 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:38:57.0159 6284 NetMsmqActivator - ok
10:38:57.0192 6284 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:38:57.0194 6284 NetPipeActivator - ok
10:38:57.0216 6284 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:38:57.0220 6284 netprofm - ok
10:38:57.0240 6284 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:38:57.0242 6284 NetTcpActivator - ok
10:38:57.0250 6284 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:38:57.0251 6284 NetTcpPortSharing - ok
10:38:57.0766 6284 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
10:38:57.0876 6284 netw5v64 - ok
10:38:57.0911 6284 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:38:57.0913 6284 nfrd960 - ok
10:38:57.0967 6284 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:38:57.0974 6284 NlaSvc - ok
10:38:58.0004 6284 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:38:58.0005 6284 Npfs - ok
10:38:58.0021 6284 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:38:58.0024 6284 nsi - ok
10:38:58.0054 6284 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:38:58.0055 6284 nsiproxy - ok
10:38:58.0306 6284 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:38:58.0333 6284 Ntfs - ok
10:38:58.0347 6284 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:38:58.0348 6284 Null - ok
10:38:58.0396 6284 [ 786DB821BFD57C0551DBBE4F75384A7D ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
10:38:58.0397 6284 nusb3hub - ok
10:38:58.0430 6284 [ DAA8005CAF745042BB427A1ED7433354 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
10:38:58.0432 6284 nusb3xhc - ok
10:38:58.0510 6284 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:38:58.0512 6284 nvraid - ok
10:38:58.0539 6284 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:38:58.0540 6284 nvstor - ok
10:38:58.0595 6284 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:38:58.0599 6284 nv_agp - ok
10:38:58.0638 6284 [ 062682C906DBB3E653994105C359A273 ] NWLowRider C:\Windows\system32\DRIVERS\NWLowRider.sys
10:38:58.0640 6284 NWLowRider - ok
10:38:58.0659 6284 [ DAAFEACB4F13A301988E390D25C2C7A7 ] NWWakeFilterLR C:\Windows\system32\DRIVERS\NWWakeFilterLR.sys
10:38:58.0662 6284 NWWakeFilterLR - ok
10:38:58.0749 6284 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:38:58.0760 6284 ohci1394 - ok
10:38:58.0839 6284 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:38:58.0844 6284 ose - ok
10:38:59.0070 6284 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:38:59.0199 6284 osppsvc - ok
10:38:59.0234 6284 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:38:59.0237 6284 p2pimsvc - ok
10:38:59.0333 6284 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:38:59.0343 6284 p2psvc - ok
10:38:59.0433 6284 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:38:59.0437 6284 Parport - ok
10:38:59.0497 6284 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:38:59.0498 6284 partmgr - ok
10:38:59.0517 6284 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:38:59.0520 6284 PcaSvc - ok
10:38:59.0597 6284 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:38:59.0602 6284 pci - ok
10:38:59.0617 6284 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:38:59.0619 6284 pciide - ok
10:38:59.0641 6284 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:38:59.0644 6284 pcmcia - ok
10:38:59.0664 6284 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:38:59.0666 6284 pcw - ok
10:38:59.0699 6284 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:38:59.0703 6284 PEAUTH - ok
10:38:59.0786 6284 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:38:59.0790 6284 PerfHost - ok
10:38:59.0964 6284 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:38:59.0999 6284 pla - ok
10:39:00.0097 6284 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:39:00.0104 6284 PlugPlay - ok
10:39:00.0362 6284 [ 63694C307273062A2167AE4CE80730EF ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
10:39:00.0369 6284 PMBDeviceInfoProvider - ok
10:39:00.0420 6284 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:39:00.0421 6284 Pml Driver HPZ12 - ok
10:39:00.0516 6284 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:39:00.0530 6284 PNRPAutoReg - ok
10:39:00.0592 6284 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:39:00.0597 6284 PNRPsvc - ok
10:39:00.0691 6284 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:39:00.0695 6284 PolicyAgent - ok
10:39:00.0771 6284 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:39:00.0774 6284 Power - ok
10:39:00.0840 6284 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:39:00.0841 6284 PptpMiniport - ok
10:39:00.0872 6284 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:39:00.0874 6284 Processor - ok
10:39:00.0932 6284 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:39:00.0935 6284 ProfSvc - ok
10:39:00.0960 6284 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:39:00.0962 6284 ProtectedStorage - ok
10:39:01.0044 6284 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:39:01.0046 6284 Psched - ok
10:39:01.0084 6284 [ FBF4DB6D53585437E41A113300002A2B ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:39:01.0086 6284 PxHlpa64 - ok
10:39:01.0128 6284 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:39:01.0164 6284 ql2300 - ok
10:39:01.0216 6284 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:39:01.0219 6284 ql40xx - ok
10:39:01.0238 6284 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:39:01.0241 6284 QWAVE - ok
10:39:01.0250 6284 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:39:01.0253 6284 QWAVEdrv - ok
10:39:01.0267 6284 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:39:01.0269 6284 RasAcd - ok
10:39:01.0290 6284 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:39:01.0291 6284 RasAgileVpn - ok
10:39:01.0303 6284 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:39:01.0307 6284 RasAuto - ok
10:39:01.0377 6284 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:39:01.0378 6284 Rasl2tp - ok
10:39:01.0500 6284 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:39:01.0509 6284 RasMan - ok
10:39:01.0575 6284 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:39:01.0576 6284 RasPppoe - ok
10:39:01.0628 6284 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:39:01.0629 6284 RasSstp - ok
10:39:01.0783 6284 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:39:01.0785 6284 rdbss - ok
10:39:01.0814 6284 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:39:01.0817 6284 rdpbus - ok
10:39:01.0831 6284 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:39:01.0832 6284 RDPCDD - ok
10:39:01.0887 6284 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:39:01.0888 6284 RDPENCDD - ok
10:39:01.0906 6284 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:39:01.0906 6284 RDPREFMP - ok
10:39:01.0985 6284 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:39:01.0990 6284 RDPWD - ok
10:39:02.0101 6284 [ A115F49BEA840A5F049BC6310F35F776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:39:02.0107 6284 rdyboost - ok
10:39:02.0140 6284 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:39:02.0144 6284 RemoteAccess - ok
10:39:02.0179 6284 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:39:02.0182 6284 RemoteRegistry - ok
10:39:02.0206 6284 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
10:39:02.0208 6284 RFCOMM - ok
10:39:02.0234 6284 [ FF71ECB1B121C6273EC4C45EDDBC4FE4 ] rimspci C:\Windows\system32\DRIVERS\rimssne64.sys
10:39:02.0235 6284 rimspci - ok
10:39:02.0255 6284 [ E33075C22C14C57095F037253F936BB8 ] risdsnpe C:\Windows\system32\DRIVERS\risdsnxc64.sys
10:39:02.0256 6284 risdsnpe - ok
10:39:02.0267 6284 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:39:02.0269 6284 RpcEptMapper - ok
10:39:02.0284 6284 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:39:02.0286 6284 RpcLocator - ok
10:39:02.0388 6284 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
10:39:02.0401 6284 RpcSs - ok
10:39:02.0434 6284 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:39:02.0435 6284 rspndr - ok
10:39:02.0524 6284 [ 4FE1CEF69D36E913738234303986FBB3 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:39:02.0531 6284 RTL8167 - ok
10:39:02.0600 6284 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:39:02.0602 6284 SamSs - ok
10:39:02.0685 6284 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:39:02.0703 6284 sbp2port - ok
10:39:02.0788 6284 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:39:02.0798 6284 SCardSvr - ok
10:39:02.0843 6284 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:39:02.0845 6284 scfilter - ok
10:39:02.0897 6284 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:39:02.0907 6284 Schedule - ok
10:39:02.0961 6284 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:39:02.0962 6284 SCPolicySvc - ok
10:39:03.0028 6284 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
10:39:03.0046 6284 sdbus - ok
10:39:03.0127 6284 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:39:03.0133 6284 SDRSVC - ok
10:39:03.0154 6284 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:39:03.0155 6284 secdrv - ok
10:39:03.0207 6284 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:39:03.0208 6284 seclogon - ok
10:39:03.0224 6284 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
10:39:03.0225 6284 SENS - ok
10:39:03.0241 6284 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:39:03.0244 6284 SensrSvc - ok
10:39:03.0263 6284 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:39:03.0265 6284 Serenum - ok
10:39:03.0285 6284 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:39:03.0288 6284 Serial - ok
10:39:03.0302 6284 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:39:03.0306 6284 sermouse - ok
10:39:03.0378 6284 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:39:03.0381 6284 SessionEnv - ok
10:39:03.0444 6284 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
10:39:03.0445 6284 SFEP - ok
10:39:03.0461 6284 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:39:03.0463 6284 sffdisk - ok
10:39:03.0474 6284 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:39:03.0476 6284 sffp_mmc - ok
10:39:03.0487 6284 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:39:03.0489 6284 sffp_sd - ok
10:39:03.0504 6284 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:39:03.0507 6284 sfloppy - ok
10:39:03.0601 6284 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
10:39:03.0608 6284 Sftfs - ok
10:39:03.0699 6284 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
10:39:03.0708 6284 sftlist - ok
10:39:03.0758 6284 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
10:39:03.0759 6284 Sftplay - ok
10:39:03.0779 6284 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
10:39:03.0779 6284 Sftredir - ok
10:39:03.0812 6284 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
10:39:03.0813 6284 Sftvol - ok
10:39:03.0952 6284 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
10:39:03.0958 6284 sftvsa - ok
10:39:04.0039 6284 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:39:04.0043 6284 SharedAccess - ok
10:39:04.0162 6284 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:39:04.0172 6284 ShellHWDetection - ok
10:39:04.0201 6284 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:39:04.0204 6284 SiSRaid2 - ok
10:39:04.0225 6284 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:39:04.0227 6284 SiSRaid4 - ok
10:39:04.0276 6284 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:39:04.0277 6284 SkypeUpdate - ok
10:39:04.0295 6284 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:39:04.0298 6284 Smb - ok
10:39:04.0349 6284 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:39:04.0350 6284 SNMPTRAP - ok
10:39:04.0395 6284 [ C3E69DB0A4E59564230E053232F39AC7 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
10:39:04.0400 6284 SOHCImp - ok
10:39:04.0440 6284 [ 65CC4779A29C3E82B987BD4961790DFF ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
10:39:04.0446 6284 SOHDms - ok
10:39:04.0473 6284 [ F47D75CEE1844EEF4A9EA6EE768828FB ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
10:39:04.0475 6284 SOHDs - ok
10:39:04.0506 6284 [ B8047E776E50FC2384801083A77900E0 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
10:39:04.0508 6284 SpfService - ok
10:39:04.0521 6284 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:39:04.0522 6284 spldr - ok
10:39:04.0617 6284 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:39:04.0629 6284 Spooler - ok
10:39:04.0756 6284 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:39:04.0783 6284 sppsvc - ok
10:39:04.0802 6284 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:39:04.0808 6284 sppuinotify - ok
10:39:04.0870 6284 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:39:04.0872 6284 srv - ok
10:39:04.0943 6284 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:39:04.0945 6284 srv2 - ok
10:39:05.0004 6284 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
10:39:05.0008 6284 SrvHsfHDA - ok
10:39:05.0194 6284 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
10:39:05.0237 6284 SrvHsfV92 - ok
10:39:05.0303 6284 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
10:39:05.0320 6284 SrvHsfWinac - ok
10:39:05.0349 6284 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:39:05.0350 6284 srvnet - ok
10:39:05.0369 6284 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:39:05.0371 6284 SSDPSRV - ok
10:39:05.0387 6284 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:39:05.0389 6284 SstpSvc - ok
10:39:05.0416 6284 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:39:05.0419 6284 stexstor - ok
10:39:05.0477 6284 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
10:39:05.0477 6284 StillCam - ok
10:39:05.0556 6284 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:39:05.0560 6284 stisvc - ok
10:39:05.0644 6284 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:39:05.0645 6284 swenum - ok
10:39:05.0701 6284 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:39:05.0747 6284 swprv - ok
10:39:05.0874 6284 [ 7BE4CDEA6BC7832BFE3112A350D8B9EA ] SysMain C:\Windows\system32\sysmain.dll
10:39:05.0889 6284 SysMain - ok
10:39:05.0911 6284 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:39:05.0914 6284 TabletInputService - ok
10:39:06.0005 6284 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:39:06.0010 6284 TapiSrv - ok
10:39:06.0041 6284 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:39:06.0043 6284 TBS - ok
10:39:06.0263 6284 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:39:06.0296 6284 Tcpip - ok
10:39:06.0462 6284 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:39:06.0470 6284 TCPIP6 - ok
10:39:06.0539 6284 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:39:06.0542 6284 tcpipreg - ok
10:39:06.0598 6284 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:39:06.0600 6284 TDPIPE - ok
10:39:06.0659 6284 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:39:06.0661 6284 TDTCP - ok
10:39:06.0765 6284 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:39:06.0769 6284 tdx - ok
10:39:06.0850 6284 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:39:06.0852 6284 TermDD - ok
10:39:06.0941 6284 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:39:06.0948 6284 TermService - ok
10:39:06.0976 6284 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:39:06.0977 6284 Themes - ok
10:39:07.0017 6284 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:39:07.0019 6284 THREADORDER - ok
10:39:07.0043 6284 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys
10:39:07.0045 6284 TPM - ok
10:39:07.0064 6284 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:39:07.0066 6284 TrkWks - ok
10:39:07.0157 6284 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:39:07.0161 6284 TrustedInstaller - ok
10:39:07.0243 6284 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:39:07.0248 6284 tssecsrv - ok
10:39:07.0289 6284 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:39:07.0293 6284 TsUsbFlt - ok
10:39:07.0373 6284 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:39:07.0376 6284 tunnel - ok
10:39:07.0412 6284 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:39:07.0415 6284 uagp35 - ok
10:39:07.0544 6284 [ 63F6D08C54D5B3C1B12A6172032055C7 ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
10:39:07.0547 6284 uCamMonitor - ok
10:39:07.0647 6284 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:39:07.0656 6284 udfs - ok
10:39:07.0712 6284 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:39:07.0716 6284 UI0Detect - ok
10:39:07.0737 6284 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:39:07.0739 6284 uliagpkx - ok
10:39:07.0794 6284 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
10:39:07.0795 6284 umbus - ok
10:39:07.0810 6284 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:39:07.0812 6284 UmPass - ok
10:39:07.0906 6284 [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:39:07.0926 6284 UNS - ok
10:39:07.0969 6284 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:39:07.0974 6284 upnphost - ok
10:39:08.0032 6284 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:39:08.0034 6284 USBAAPL64 - ok
10:39:08.0095 6284 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:39:08.0096 6284 usbccgp - ok
10:39:08.0161 6284 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:39:08.0164 6284 usbcir - ok
10:39:08.0217 6284 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:39:08.0218 6284 usbehci - ok
10:39:08.0303 6284 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:39:08.0307 6284 usbhub - ok
10:39:08.0480 6284 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:39:08.0484 6284 usbohci - ok
10:39:08.0553 6284 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:39:08.0554 6284 usbprint - ok
10:39:08.0635 6284 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:39:08.0638 6284 usbscan - ok
10:39:08.0736 6284 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:39:08.0739 6284 USBSTOR - ok
10:39:08.0781 6284 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:39:08.0788 6284 usbuhci - ok
10:39:08.0809 6284 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
10:39:08.0811 6284 usbvideo - ok
10:39:08.0837 6284 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:39:08.0838 6284 UxSms - ok
10:39:08.0921 6284 [ 2C9732B39F81395CC9FE40F181CD3433 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
10:39:08.0922 6284 VAIO Event Service - ok
10:39:08.0990 6284 [ C994F2B3B45C9987049CA511EE1F2768 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
10:39:09.0000 6284 VAIO Power Management - ok
10:39:09.0027 6284 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:39:09.0029 6284 VaultSvc - ok
10:39:09.0136 6284 [ 6888526AEB8DDABDE6F778FD40FC0693 ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
10:39:09.0151 6284 VCFw - ok
10:39:09.0261 6284 [ 07F47A1DF726537313C1023515175532 ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
10:39:09.0276 6284 VcmIAlzMgr - ok
10:39:09.0315 6284 [ CBB9F0D1017E0BED4CB5BBC0EBF26DC1 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
10:39:09.0321 6284 VcmINSMgr - ok
10:39:09.0357 6284 [ C8E3BA694CC5EACEC4C01660ACE40D56 ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
10:39:09.0360 6284 VcmXmlIfHelper - ok
10:39:09.0393 6284 [ 8F0840FF3A11D6B3F767AD6C79AC2A40 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
10:39:09.0395 6284 VCService - ok
10:39:09.0452 6284 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:39:09.0460 6284 vdrvroot - ok
10:39:09.0595 6284 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:39:09.0607 6284 vds - ok
10:39:09.0640 6284 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:39:09.0641 6284 vga - ok
10:39:09.0673 6284 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:39:09.0674 6284 VgaSave - ok
10:39:09.0770 6284 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:39:09.0776 6284 vhdmp - ok
10:39:09.0811 6284 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:39:09.0814 6284 viaide - ok
10:39:09.0857 6284 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:39:09.0860 6284 volmgr - ok
10:39:09.0949 6284 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:39:09.0956 6284 volmgrx - ok
10:39:09.0997 6284 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:39:10.0003 6284 volsnap - ok
10:39:10.0031 6284 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:39:10.0034 6284 vsmraid - ok
10:39:10.0074 6284 [ 028E420B12654492D25625688055108C ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
10:39:10.0082 6284 VSNService - ok
10:39:10.0264 6284 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:39:10.0323 6284 VSS - ok
10:39:10.0479 6284 [ FB4A1695D2D74F9C92CA5E84795CDBE1 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
10:39:10.0499 6284 VUAgent - ok
10:39:10.0531 6284 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:39:10.0532 6284 vwifibus - ok
10:39:10.0546 6284 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:39:10.0547 6284 vwififlt - ok
10:39:10.0593 6284 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:39:10.0597 6284 W32Time - ok
10:39:10.0646 6284 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:39:10.0649 6284 WacomPen - ok
10:39:10.0805 6284 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:39:10.0808 6284 WANARP - ok
10:39:10.0820 6284 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:39:10.0822 6284 Wanarpv6 - ok
10:39:11.0053 6284 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:39:11.0096 6284 WatAdminSvc - ok
10:39:11.0346 6284 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:39:11.0398 6284 wbengine - ok
10:39:11.0420 6284 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:39:11.0424 6284 WbioSrvc - ok
10:39:11.0527 6284 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:39:11.0541 6284 wcncsvc - ok
10:39:11.0565 6284 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:39:11.0569 6284 WcsPlugInService - ok
10:39:11.0678 6284 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:39:11.0680 6284 Wd - ok
10:39:11.0769 6284 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
10:39:11.0771 6284 WDC_SAM - ok
10:39:11.0864 6284 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:39:11.0885 6284 Wdf01000 - ok
10:39:11.0915 6284 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:39:11.0919 6284 WdiServiceHost - ok
10:39:11.0930 6284 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:39:11.0932 6284 WdiSystemHost - ok
10:39:12.0015 6284 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:39:12.0026 6284 WebClient - ok
10:39:12.0123 6284 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:39:12.0128 6284 Wecsvc - ok
10:39:12.0150 6284 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:39:12.0153 6284 wercplsupport - ok
10:39:12.0168 6284 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:39:12.0170 6284 WerSvc - ok
10:39:12.0190 6284 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:39:12.0191 6284 WfpLwf - ok
10:39:12.0209 6284 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:39:12.0211 6284 WIMMount - ok
10:39:12.0234 6284 WinDefend - ok
10:39:12.0257 6284 WinHttpAutoProxySvc - ok
10:39:12.0703 6284 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:39:12.0708 6284 Winmgmt - ok
10:39:12.0927 6284 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:39:12.0972 6284 WinRM - ok
10:39:13.0066 6284 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:39:13.0070 6284 WinUsb - ok
10:39:13.0262 6284 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:39:13.0273 6284 Wlansvc - ok
10:39:13.0376 6284 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:39:13.0381 6284 wlcrasvc - ok
10:39:13.0478 6284 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:39:13.0487 6284 wlidsvc - ok
10:39:13.0582 6284 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:39:13.0585 6284 WmiAcpi - ok
10:39:13.0647 6284 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:39:13.0649 6284 wmiApSrv - ok
10:39:13.0657 6284 WMPNetworkSvc - ok
10:39:13.0694 6284 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:39:13.0697 6284 WPCSvc - ok
10:39:13.0767 6284 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:39:13.0769 6284 WPDBusEnum - ok
10:39:13.0808 6284 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:39:13.0808 6284 ws2ifsl - ok
10:39:13.0876 6284 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
10:39:13.0879 6284 wscsvc - ok
10:39:13.0895 6284 WSearch - ok
10:39:14.0146 6284 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:39:14.0169 6284 wuauserv - ok
10:39:14.0271 6284 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:39:14.0274 6284 WudfPf - ok
10:39:14.0443 6284 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:39:14.0446 6284 WUDFRd - ok
10:39:14.0515 6284 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:39:14.0517 6284 wudfsvc - ok
10:39:14.0633 6284 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:39:14.0640 6284 WwanSvc - ok
10:39:14.0686 6284 ================ Scan global ===============================
10:39:14.0742 6284 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:39:14.0814 6284 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:39:14.0820 6284 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:39:14.0840 6284 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:39:14.0905 6284 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:39:14.0907 6284 [Global] - ok
10:39:14.0908 6284 ================ Scan MBR ==================================
10:39:14.0918 6284 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:39:17.0226 6284 \Device\Harddisk0\DR0 - ok
10:39:17.0235 6284 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
10:39:17.0804 6284 \Device\Harddisk1\DR1 - ok
10:39:18.0274 6284 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
10:39:18.0411 6284 \Device\Harddisk2\DR2 - ok
10:39:18.0411 6284 ================ Scan VBR ==================================
10:39:18.0446 6284 [ 0FB2C1C3383496DB70E650779DEE5063 ] \Device\Harddisk0\DR0\Partition1
10:39:18.0448 6284 \Device\Harddisk0\DR0\Partition1 - ok
10:39:18.0490 6284 [ E50E881012ED1929AE55EC4F64FAF60D ] \Device\Harddisk0\DR0\Partition2
10:39:18.0493 6284 \Device\Harddisk0\DR0\Partition2 - ok
10:39:18.0495 6284 [ 56A94F02C80039E90636552A3370E776 ] \Device\Harddisk1\DR1\Partition1
10:39:18.0497 6284 \Device\Harddisk1\DR1\Partition1 - ok
10:39:18.0500 6284 [ 9893FC6F4498798C9D564ACA9F5EB999 ] \Device\Harddisk2\DR2\Partition1
10:39:18.0501 6284 \Device\Harddisk2\DR2\Partition1 - ok
10:39:18.0501 6284 ============================================================
10:39:18.0501 6284 Scan finished
10:39:18.0501 6284 ============================================================
10:39:18.0510 6304 Detected object count: 0
10:39:18.0510 6304 Actual detected object count: 0

#8 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 02 December 2012 - 12:21 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-02 10:51:43
-----------------------------
10:51:43.394 OS Version: Windows x64 6.1.7601 Service Pack 1
10:51:43.395 Number of processors: 4 586 0x2A07
10:51:43.395 ComputerName: FLIPPO-HOME UserName: John
10:51:48.740 Initialize success
11:00:59.276 AVAST engine defs: 12120101
11:02:01.314 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:02:01.315 Disk 0 Vendor: ST310005 CC46 Size: 953869MB BusType: 3
11:02:01.330 Disk 0 MBR read successfully
11:02:01.332 Disk 0 MBR scan
11:02:01.335 Disk 0 Windows 7 default MBR code
11:02:01.344 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15001 MB offset 2048
11:02:01.362 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 30724096
11:02:01.372 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 938752 MB offset 30928896
11:02:01.393 Disk 0 scanning C:\Windows\system32\drivers
11:02:16.794 Service scanning
11:02:43.353 Modules scanning
11:02:43.375 Disk 0 trace - called modules:
11:02:43.402 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
11:02:43.409 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007897060]
11:02:43.417 3 CLASSPNP.SYS[fffff88001d9643f] -> nt!IofCallDriver -> [0xfffffa8005965940]
11:02:43.422 5 ACPI.sys[fffff880010f97a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800596b050]
11:02:47.698 AVAST engine scan C:\Windows
11:02:55.906 AVAST engine scan C:\Windows\system32
11:07:39.755 AVAST engine scan C:\Windows\system32\drivers
11:07:58.637 AVAST engine scan C:\Users\John
11:12:01.139 Disk 0 MBR has been saved successfully to "C:\Users\John\Desktop\MBR.dat"
11:12:01.143 The log file has been saved successfully to "C:\Users\John\Desktop\aswMBR.txt"

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:15 PM

Posted 03 December 2012 - 01:39 AM

ESET log?

#10 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 03 December 2012 - 07:32 AM

It was still running as of 4 hours ago. I'll be back to it in about 5 hours. It has found 8 infections, all listed as trojans, if I remember correctly.

#11 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 03 December 2012 - 12:41 PM

I got back to the PC annd it was all locked up. Screen black, CPU fan at max RPM. Had to cut power to get it shut off. Restarted, then restarted eSet. eSet looks like it started where it left off, but I'm not sure. There are no infected files listed. When it's done, I'll post the results.

#12 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 03 December 2012 - 05:02 PM

When the scan finished, I got this screen...

Posted Image

When I click on manage quarantine files, I get this screen...

Posted Image

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:15 PM

Posted 03 December 2012 - 11:57 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#14 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 04 December 2012 - 04:43 PM

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.12.04.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
John :: FLIPPO-HOME [administrator]

12/4/2012 12:07:54 PM
mbam-log-2012-12-04 (12-07-54).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 805123
Time elapsed: 3 hour(s), 30 minute(s), 15 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\Users\John\AppData\Local\Temp\BF36F98C-6E9F-433E-9BEA-2A3B35ECFCB6.exe (Heuristics.Shuriken) -> Quarantined and deleted successfully.
C:\Users\John\AppData\Local\Temp\E482A777-0156-4D48-A3AA-B2288880008D.exe (Heuristics.Shuriken) -> Quarantined and deleted successfully.
C:\Users\John\AppData\Local\Temp\96r1fqyq.tmp\tdssfix.exe (Heuristics.Shuriken) -> Quarantined and deleted successfully.

(end)

#15 DBricker

DBricker
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:15 PM

Posted 04 December 2012 - 05:12 PM

MiniToolBox by Farbar Version: 25-11-2012
Ran by John (administrator) on 04-12-2012 at 16:11:23
Running from "C:\Users\John\AppData\Local\Temp\nqpawpsn.tmp"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
set subinterface interface=? subinterface=ethernet_6 mtu=1477


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Flippo-Home
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F0-BF-97-5A-B8-37
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : C0-F8-DA-F3-01-B6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 90-00-4E-BD-A2-15
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5e:abe:d6e4:83dd%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.106(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, December 04, 2012 3:46:26 PM
Lease Expires . . . . . . . . . . : Wednesday, December 05, 2012 3:46:27 PM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 244318286
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-88-F7-0C-90-00-4E-BD-A2-15
DNS Servers . . . . . . . . . . . : 10.0.0.2
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.gateway.2wire.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:1435:3a26:b90d:7c12(Preferred)
Link-local IPv6 Address . . . . . : fe80::1435:3a26:b90d:7c12%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{86AFA951-0DBD-4324-9D7C-3B2A9A704A8A}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 10.0.0.2

Name: google.com
Addresses: 2607:f8b0:4009:801::1009
74.125.225.68
74.125.225.69
74.125.225.70
74.125.225.71
74.125.225.72
74.125.225.73
74.125.225.78
74.125.225.64
74.125.225.65
74.125.225.66
74.125.225.67


Pinging google.com [74.125.225.136] with 32 bytes of data:
Reply from 74.125.225.136: bytes=32 time=1276ms TTL=53
Reply from 74.125.225.136: bytes=32 time=73ms TTL=53

Ping statistics for 74.125.225.136:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 73ms, Maximum = 1276ms, Average = 674ms
Server: UnKnown
Address: 10.0.0.2

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=151ms TTL=50
Reply from 72.30.38.140: bytes=32 time=76ms TTL=50

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 76ms, Maximum = 151ms, Average = 113ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...f0 bf 97 5a b8 37 ......Realtek PCIe GBE Family Controller
12...c0 f8 da f3 01 b6 ......Bluetooth Device (Personal Area Network)
10...90 00 4e bd a2 15 ......Atheros AR9285 Wireless Network Adapter
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.106 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.106 281
192.168.2.106 255.255.255.255 On-link 192.168.2.106 281
192.168.2.255 255.255.255.255 On-link 192.168.2.106 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.106 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.106 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 58 ::/0 On-link
1 306 ::1/128 On-link
14 58 2001::/32 On-link
14 306 2001:0:9d38:6ab8:1435:3a26:b90d:7c12/128
On-link
10 281 fe80::/64 On-link
14 306 fe80::/64 On-link
10 281 fe80::5e:abe:d6e4:83dd/128
On-link
14 306 fe80::1435:3a26:b90d:7c12/128
On-link
1 306 ff00::/8 On-link
14 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/04/2012 00:05:31 PM) (Source: chromoting) (User: )
Description: Access denied for client: 2h7u0jy0xc2sh@id.talk.google.com/TalkGadgetEF2218D6.

Error: (12/04/2012 11:17:47 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/04/2012 11:16:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/03/2012 02:40:09 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/03/2012 11:22:57 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/03/2012 11:22:54 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/03/2012 11:22:54 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/03/2012 11:05:06 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {550d91ad-b11a-42d6-b0e3-bd2faa010938}

Error: (12/02/2012 03:47:07 PM) (Source: chromoting) (User: )
Description: Access denied for client: 2h7u0jy0xc2sh@id.talk.google.com/TalkGadget198FD133.

Error: (12/02/2012 11:13:57 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (12/03/2012 10:54:25 AM) (Source: BugCheck) (User: )
Description: 0x0000007e (0xffffffffc0000005, 0xfffff88001242643, 0xfffff8800391e918, 0xfffff8800391e170)C:\Windows\MEMORY.DMP120312-35599-01

Error: (12/03/2012 10:54:04 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:44:36 PM on ?12/?2/?2012 was unexpected.

Error: (12/02/2012 10:35:51 AM) (Source: DCOM) (User: )
Description: {3A185DDE-E020-4985-A8F2-E27CDC4A0F3A}

Error: (12/02/2012 10:29:05 AM) (Source: DCOM) (User: )
Description: {51FA2736-5DEE-11D4-98E8-006008BF430C}

Error: (12/02/2012 10:19:57 AM) (Source: DCOM) (User: )
Description: {51FA2736-5DEE-11D4-98E8-006008BF430C}

Error: (11/30/2012 00:39:26 PM) (Source: DCOM) (User: )
Description: 1084McNaiAnn{DC7EF8E1-824F-4110-AB43-1604DA9B4F40}

Error: (11/30/2012 00:35:49 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (11/30/2012 00:35:49 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{D3DCB472-7261-43CE-924B-0704BD730D5F}

Error: (11/30/2012 00:35:49 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (11/30/2012 00:35:46 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (12/04/2012 00:05:31 PM) (Source: chromoting)(User: )
Description: 2h7u0jy0xc2sh@id.talk.google.com/TalkGadgetEF2218D6

Error: (12/04/2012 11:17:47 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\John\downloads\esetsmartinstaller_enu.exe

Error: (12/04/2012 11:16:59 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (12/03/2012 02:40:09 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (12/03/2012 11:22:57 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\John\Downloads\esetsmartinstaller_enu.exe

Error: (12/03/2012 11:22:54 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\John\Downloads\esetsmartinstaller_enu.exe

Error: (12/03/2012 11:22:54 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\John\Downloads\esetsmartinstaller_enu.exe

Error: (12/03/2012 11:05:06 AM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {550d91ad-b11a-42d6-b0e3-bd2faa010938}

Error: (12/02/2012 03:47:07 PM) (Source: chromoting)(User: )
Description: 2h7u0jy0xc2sh@id.talk.google.com/TalkGadget198FD133

Error: (12/02/2012 11:13:57 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\John\Downloads\esetsmartinstaller_enu.exe


CodeIntegrity Errors:
===================================
Date: 2012-12-04 12:08:18.627
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-04 12:08:18.627
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-04 12:08:18.627
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-28 20:04:39.575
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-28 20:04:39.565
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-28 20:04:39.565
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-09-11 21:54:19.367
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-09-11 21:54:19.317
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-09-11 21:54:19.277
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-09-11 21:54:19.227
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 7.2.8)
Adobe Acrobat 9 Standard (Version: 9.5.2)
Adobe Acrobat 9.5.2 - CPSID_83708
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.5.502.110)
Adobe Photoshop Elements 8.0 (Version: 8.0)
Adobe Premiere Elements 8.0 (Version: 8.0)
Adobe Premiere Elements 8.0 (Version: 8.0.1)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
Apple Application Support (Version: 2.3)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Application Manager for VAIO
ArcSoft Magic-i Visual Effects 2 (Version: 2.0.1.134)
ArcSoft WebCam Companion 4 (Version: 4.0.21.369)
ArcSoft WebCam Message Board (Version: 1.1.1.79)
Atheros WiFi Driver Installation (Version: 3.0)
Bing Maps 3D (Version: 4.0.903.16005)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 140.0.212.000)
Chrome Remote Desktop Host (Version: 24.0.1312.25)
Coupon Printer for Windows (Version: 5.0.0.0)
CyberLink YouPaint (Version: 1.2.0.2101)
D110 (Version: 140.0.283.000)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
ESET Online Scanner v3
Evernote (Version: 3.5.7.2910)
Google Chrome (Version: 23.0.1271.95)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
GPBaseService2 (Version: 140.0.211.000)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart C4600 All-In-One Driver 14.0 Rel. 5 (Version: 14.0)
HP Photosmart D110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Product Detection (Version: 11.14.0001)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPAppStudio (Version: 140.0.95.000)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
iCloud (Version: 2.0.2.187)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2253)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 22 (64-bit) (Version: 6.0.220)
Java™ 6 Update 27 (Version: 6.0.270)
Junk Mail filter update (Version: 15.4.3502.0922)
Last.fm 1.5.4.27091
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MarketResearch (Version: 140.0.212.000)
McAfee SecurityCenter (Version: 11.6.435)
Media Gallery (Version: 1.4.0.11300)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft PowerPoint Viewer (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft Touch Pack for Windows 7 (Version: 1.0.40517.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft XNA Framework Redistributable 3.0 (Version: 3.0.11010.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
Oasis2Service (Version: 1.0.1)
OOBE (Version: 3.20.1018)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PMB (Version: 5.5.00.11260)
PMB VAIO Edition Plug-in (Version: 1.4.00.09190)
PMB VAIO Edition Plug-in (Version: 1.4.01.11290)
PS_AIO_05_C4600_Software_Min (Version: 140.0.690.000)
PS_AIO_07_D110_SW_Min (Version: 140.0.142.000)
QuickTime (Version: 7.73.80.64)
QuickTransfer (Version: 140.0.98.000)
Realtek High Definition Audio Driver (Version: 6.0.1.6251)
Remote Keyboard (Version: 1.1.1.07060)
Remote Play with PlayStation 3 (Version: 1.1.0.15071)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.26.0)
Safari (Version: 5.34.57.2)
Scan (Version: 140.0.80.000)
Shared C Run-time for x64 (Version: 10.0.0)
Shop for HP Supplies (Version: 14.0)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.10 (Version: 5.10.116)
SmartSound Quicktracks for Premiere Elements 8.0 (Version: 3.11.3090)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.214.000)
Status (Version: 140.0.256.000)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VAIO - Media Gallery (Version: 1.4.0.11300)
VAIO - PMB VAIO Edition Guide (Version: 1.4.00.10090)
VAIO - PMB VAIO Edition Plug-in (Version: 1.4.01.11300)
VAIO - Remote Keyboard (Version: 1.1.0.07060)
VAIO - Remote Play with PlayStation®3 (Version: 1.1.0.15071)
VAIO Care (Version: 8.1.0.10120)
VAIO Control Center (Version: 4.4.0.11260)
VAIO Data Restore Tool (Version: 1.5.0.10140)
VAIO Gate (Version: 2.4.2.02200)
VAIO Gate Default (Version: 2.3.0.11220)
VAIO Hardware Diagnostics (Version: 4.1.0.10120)
VAIO Help and Support (Version: 13.00.0927)
VAIO Manual (Version: 1.2.0.11040)
VAIO Media plus (Version: 2.1.0.23300)
VAIO Media plus Opening Movie (Version: 2.1.0.14080)
VAIO Messenger (Version: 2.0.424.0)
VAIO Quick Web Access (Version: 1.4.4.8)
VAIO Sample Contents (Version: 1.4.0.09010)
VAIO Satisfaction Survey. (Version: 3.0)
VAIO Smart Network (Version: 3.4.0.12090)
VAIO Transfer Support (Version: 1.3.0.11250)
VAIO Update (Version: 5.6.1.02150)
VAIO Update Merge Module x64 (Version: 5.5.19220)
VAIO Update Merge Module x64 (Version: 5.6.10270)
VAIO Update Merge Module x64 (Version: 5.7.13130)
VAIO Wireless Wizard (Version: 4.0.0.01080)
VGClientX64 (Version: 1.0.0)
VGClientX86 (Version: 1.0.0)
VU5x64 (Version: 1.0.0)
VU5x86 (Version: 1.0.0)
Web Assistant 2.0.0.439
WebReg (Version: 140.0.212.017)
WIDCOMM Bluetooth Software (Version: 6.3.0.6300)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinZip 16.0 (Version: 16.0.9715)

========================= Memory info: ===================================

Percentage of memory in use: 24%
Total physical RAM: 5991.3 MB
Available physical RAM: 4550.6 MB
Total Pagefile: 11980.79 MB
Available Pagefile: 9790.7 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.06 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:916.75 GB) (Free:35.45 GB) NTFS

========================= Users: ========================================

User accounts for \\FLIPPO-HOME

Administrator boinc_master boinc_project
Guest John Shelly

========================= Restore Points ==================================

28-11-2012 09:00:12 Windows Update
03-12-2012 17:05:07 Removed service pack backup files
04-12-2012 17:19:06 Windows Update

**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users