Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Alureon and maybe more?


  • This topic is locked This topic is locked
17 replies to this topic

#1 astrorufus

astrorufus

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 30 November 2012 - 10:13 AM

My Google searches kept redirecting to beesq and live search on Wednesday. I have run TDSS Killer, Microsoft Security Essentials and Malwarebytes to tackle the problem. Malewarebytes has recently found these threats:

Trojan. Agent C:\Windows\svchost.exy
Exploit.Drop.9 C:\Users\new user\App Data\Local\Temp\0.047748360711835525
Trojan Agent C:\Program Data\Microsoft\Windows\DRM\C45A.tmp
Rootkit.0Access C:\Users\newuser\Temp\013aa345c015.exe
Trojan Agent MRGGEN C:\Users\new user\svchost.exe


Last night my Internet Explorer shut down and rebooted on its own. My sign on screen has changed to a blue screen with a white dove.


I use Windows 7 on an HP.


Any help would be appreciated.
Thank you

Edited by astrorufus, 30 November 2012 - 10:54 AM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,923 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:14 PM

Posted 30 November 2012 - 11:55 AM

Hello have you run TDSS like this.
Did yuor TDSS log show anything?

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results



Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 30 November 2012 - 08:31 PM

Hello have you run TDSS like this.
Did yuor TDSS log show anything?


This is what the bottom portion of TDSS log showed on Thursday the 29th before I hit the cure button:

22:34:55.0795 3492 Scan finished
22:34:55.0795 3492 ============================================================
22:34:55.0811 3484 Detected object count: 3
22:34:55.0811 3484 Actual detected object count: 3
22:35:29.0164 3484 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
22:35:29.0164 3484 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:35:29.0803 3484 \Device\Harddisk0\DR0\# - copied to quarantine
22:35:29.0881 3484 \Device\Harddisk0\DR0 - copied to quarantine
22:35:31.0036 3484 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
22:35:31.0207 3484 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
22:35:31.0254 3484 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
22:35:34.0218 3484 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
22:35:34.0249 3484 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
22:35:34.0249 3484 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
22:35:34.0265 3484 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
22:35:34.0437 3484 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
22:35:34.0452 3484 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
22:35:34.0499 3484 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
22:35:34.0499 3484 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
22:35:34.0515 3484 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
22:35:34.0546 3484 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
22:35:34.0546 3484 \Device\Harddisk0\DR0 - ok
22:35:34.0873 3484 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
22:35:34.0873 3484 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
22:35:34.0873 3484 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
22:35:39.0959 2776 Deinitialize success

#4 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 30 November 2012 - 08:39 PM

This is the most recent TDSS scan results:

19:28:39.0478 2528 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
19:28:39.0742 2528 ============================================================
19:28:39.0742 2528 Current date / time: 2012/11/30 19:28:39.0742
19:28:39.0742 2528 SystemInfo:
19:28:39.0742 2528
19:28:39.0743 2528 OS Version: 6.1.7601 ServicePack: 1.0
19:28:39.0743 2528 Product type: Workstation
19:28:39.0743 2528 ComputerName: NEWUSER-PC
19:28:39.0743 2528 UserName: new user
19:28:39.0743 2528 Windows directory: C:\Windows
19:28:39.0743 2528 System windows directory: C:\Windows
19:28:39.0743 2528 Running under WOW64
19:28:39.0743 2528 Processor architecture: Intel x64
19:28:39.0743 2528 Number of processors: 1
19:28:39.0743 2528 Page size: 0x1000
19:28:39.0743 2528 Boot type: Normal boot
19:28:39.0743 2528 ============================================================
19:28:43.0325 2528 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
19:28:43.0328 2528 ============================================================
19:28:43.0328 2528 \Device\Harddisk0\DR0:
19:28:43.0328 2528 MBR partitions:
19:28:43.0328 2528 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:28:43.0328 2528 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38F89800
19:28:43.0328 2528 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38FBC000, BlocksNum 0x13C9800
19:28:43.0328 2528 ============================================================
19:28:43.0368 2528 C: <-> \Device\Harddisk0\DR0\Partition2
19:28:43.0404 2528 D: <-> \Device\Harddisk0\DR0\Partition3
19:28:43.0404 2528 ============================================================
19:28:43.0404 2528 Initialize success
19:28:43.0404 2528 ============================================================
19:29:22.0429 2996 ============================================================
19:29:22.0429 2996 Scan started
19:29:22.0429 2996 Mode: Manual; TDLFS;
19:29:22.0429 2996 ============================================================
19:29:23.0764 2996 ================ Scan system memory ========================
19:29:23.0764 2996 System memory - ok
19:29:23.0770 2996 ================ Scan services =============================
19:29:23.0943 2996 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:29:23.0947 2996 1394ohci - ok
19:29:23.0990 2996 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:29:23.0995 2996 ACPI - ok
19:29:24.0043 2996 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:29:24.0045 2996 AcpiPmi - ok
19:29:24.0082 2996 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:29:24.0089 2996 adp94xx - ok
19:29:24.0125 2996 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:29:24.0130 2996 adpahci - ok
19:29:24.0153 2996 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:29:24.0156 2996 adpu320 - ok
19:29:24.0193 2996 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:29:24.0194 2996 AeLookupSvc - ok
19:29:24.0244 2996 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:29:24.0250 2996 AFD - ok
19:29:24.0289 2996 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:29:24.0290 2996 agp440 - ok
19:29:24.0315 2996 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:29:24.0317 2996 ALG - ok
19:29:24.0335 2996 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:29:24.0337 2996 aliide - ok
19:29:24.0352 2996 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:29:24.0353 2996 amdide - ok
19:29:24.0378 2996 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:29:24.0380 2996 AmdK8 - ok
19:29:24.0411 2996 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:29:24.0411 2996 AmdPPM - ok
19:29:24.0428 2996 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:29:24.0430 2996 amdsata - ok
19:29:24.0460 2996 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:29:24.0464 2996 amdsbs - ok
19:29:24.0478 2996 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:29:24.0479 2996 amdxata - ok
19:29:24.0520 2996 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:29:24.0521 2996 AppID - ok
19:29:24.0551 2996 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:29:24.0552 2996 AppIDSvc - ok
19:29:24.0594 2996 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:29:24.0595 2996 Appinfo - ok
19:29:24.0624 2996 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:29:24.0626 2996 arc - ok
19:29:24.0641 2996 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:29:24.0643 2996 arcsas - ok
19:29:24.0689 2996 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:29:24.0690 2996 AsyncMac - ok
19:29:24.0718 2996 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:29:24.0719 2996 atapi - ok
19:29:24.0763 2996 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:29:24.0771 2996 AudioEndpointBuilder - ok
19:29:24.0786 2996 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:29:24.0791 2996 AudioSrv - ok
19:29:24.0844 2996 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:29:24.0846 2996 AxInstSV - ok
19:29:24.0877 2996 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:29:24.0883 2996 b06bdrv - ok
19:29:24.0928 2996 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:29:24.0932 2996 b57nd60a - ok
19:29:25.0022 2996 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
19:29:25.0024 2996 BBSvc - ok
19:29:25.0082 2996 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
19:29:25.0086 2996 BBUpdate - ok
19:29:25.0118 2996 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:29:25.0120 2996 BDESVC - ok
19:29:25.0165 2996 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:29:25.0166 2996 Beep - ok
19:29:25.0203 2996 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:29:25.0210 2996 BFE - ok
19:29:25.0244 2996 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
19:29:25.0255 2996 BITS - ok
19:29:25.0274 2996 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:29:25.0275 2996 blbdrive - ok
19:29:25.0305 2996 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:29:25.0307 2996 bowser - ok
19:29:25.0338 2996 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:29:25.0340 2996 BrFiltLo - ok
19:29:25.0353 2996 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:29:25.0354 2996 BrFiltUp - ok
19:29:25.0393 2996 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:29:25.0395 2996 Browser - ok
19:29:25.0422 2996 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:29:25.0426 2996 Brserid - ok
19:29:25.0465 2996 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:29:25.0467 2996 BrSerWdm - ok
19:29:25.0484 2996 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:29:25.0486 2996 BrUsbMdm - ok
19:29:25.0500 2996 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:29:25.0502 2996 BrUsbSer - ok
19:29:25.0526 2996 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:29:25.0528 2996 BTHMODEM - ok
19:29:25.0562 2996 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:29:25.0564 2996 bthserv - ok
19:29:25.0594 2996 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:29:25.0596 2996 cdfs - ok
19:29:25.0639 2996 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
19:29:25.0641 2996 cdrom - ok
19:29:25.0697 2996 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:29:25.0699 2996 CertPropSvc - ok
19:29:25.0729 2996 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:29:25.0731 2996 circlass - ok
19:29:25.0759 2996 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:29:25.0765 2996 CLFS - ok
19:29:25.0831 2996 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:29:25.0836 2996 clr_optimization_v2.0.50727_32 - ok
19:29:25.0917 2996 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:29:25.0922 2996 clr_optimization_v2.0.50727_64 - ok
19:29:25.0994 2996 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:29:26.0044 2996 clr_optimization_v4.0.30319_32 - ok
19:29:26.0095 2996 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:29:26.0098 2996 clr_optimization_v4.0.30319_64 - ok
19:29:26.0134 2996 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:29:26.0136 2996 CmBatt - ok
19:29:26.0177 2996 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:29:26.0179 2996 cmdide - ok
19:29:26.0214 2996 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:29:26.0219 2996 CNG - ok
19:29:26.0240 2996 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:29:26.0241 2996 Compbatt - ok
19:29:26.0287 2996 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:29:26.0288 2996 CompositeBus - ok
19:29:26.0307 2996 COMSysApp - ok
19:29:26.0319 2996 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:29:26.0321 2996 crcdisk - ok
19:29:26.0353 2996 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:29:26.0356 2996 CryptSvc - ok
19:29:26.0403 2996 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:29:26.0410 2996 DcomLaunch - ok
19:29:26.0444 2996 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:29:26.0448 2996 defragsvc - ok
19:29:26.0483 2996 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:29:26.0485 2996 DfsC - ok
19:29:26.0515 2996 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:29:26.0524 2996 Dhcp - ok
19:29:26.0548 2996 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:29:26.0550 2996 discache - ok
19:29:26.0581 2996 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:29:26.0583 2996 Disk - ok
19:29:26.0616 2996 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:29:26.0618 2996 Dnscache - ok
19:29:26.0650 2996 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:29:26.0654 2996 dot3svc - ok
19:29:26.0691 2996 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:29:26.0693 2996 DPS - ok
19:29:26.0725 2996 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:29:26.0726 2996 drmkaud - ok
19:29:26.0766 2996 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:29:26.0777 2996 DXGKrnl - ok
19:29:26.0808 2996 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:29:26.0811 2996 EapHost - ok
19:29:26.0883 2996 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:29:26.0957 2996 ebdrv - ok
19:29:26.0988 2996 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:29:26.0990 2996 EFS - ok
19:29:27.0034 2996 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:29:27.0042 2996 ehRecvr - ok
19:29:27.0072 2996 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:29:27.0075 2996 ehSched - ok
19:29:27.0118 2996 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:29:27.0125 2996 elxstor - ok
19:29:27.0172 2996 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:29:27.0173 2996 ErrDev - ok
19:29:27.0228 2996 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:29:27.0233 2996 EventSystem - ok
19:29:27.0259 2996 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:29:27.0263 2996 exfat - ok
19:29:27.0283 2996 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:29:27.0287 2996 fastfat - ok
19:29:27.0336 2996 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:29:27.0344 2996 Fax - ok
19:29:27.0363 2996 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:29:27.0364 2996 fdc - ok
19:29:27.0388 2996 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:29:27.0390 2996 fdPHost - ok
19:29:27.0399 2996 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:29:27.0401 2996 FDResPub - ok
19:29:27.0415 2996 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:29:27.0420 2996 FileInfo - ok
19:29:27.0442 2996 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:29:27.0443 2996 Filetrace - ok
19:29:27.0467 2996 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:29:27.0468 2996 flpydisk - ok
19:29:27.0505 2996 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:29:27.0509 2996 FltMgr - ok
19:29:27.0555 2996 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:29:27.0580 2996 FontCache - ok
19:29:27.0627 2996 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:29:27.0629 2996 FontCache3.0.0.0 - ok
19:29:27.0650 2996 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:29:27.0651 2996 FsDepends - ok
19:29:27.0673 2996 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:29:27.0675 2996 Fs_Rec - ok
19:29:27.0718 2996 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:29:27.0721 2996 fvevol - ok
19:29:27.0751 2996 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:29:27.0753 2996 gagp30kx - ok
19:29:27.0806 2996 [ 551D463E4CCEB5240234DA6718C93A44 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
19:29:27.0810 2996 GameConsoleService - ok
19:29:27.0846 2996 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:29:27.0854 2996 gpsvc - ok
19:29:27.0875 2996 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:29:27.0877 2996 hcw85cir - ok
19:29:27.0921 2996 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:29:27.0928 2996 HDAudBus - ok
19:29:27.0954 2996 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:29:27.0955 2996 HidBatt - ok
19:29:27.0982 2996 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:29:27.0985 2996 HidBth - ok
19:29:27.0999 2996 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:29:28.0001 2996 HidIr - ok
19:29:28.0032 2996 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:29:28.0034 2996 hidserv - ok
19:29:28.0059 2996 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
19:29:28.0060 2996 HidUsb - ok
19:29:28.0089 2996 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:29:28.0091 2996 hkmsvc - ok
19:29:28.0125 2996 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:29:28.0128 2996 HomeGroupListener - ok
19:29:28.0149 2996 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:29:28.0152 2996 HomeGroupProvider - ok
19:29:28.0218 2996 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
19:29:28.0221 2996 HP Support Assistant Service - ok
19:29:28.0321 2996 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
19:29:28.0324 2996 HPDrvMntSvc.exe - ok
19:29:28.0362 2996 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
19:29:28.0379 2996 hpqwmiex - ok
19:29:28.0423 2996 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:29:28.0425 2996 HpSAMD - ok
19:29:28.0471 2996 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:29:28.0496 2996 HTTP - ok
19:29:28.0536 2996 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:29:28.0538 2996 hwpolicy - ok
19:29:28.0589 2996 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:29:28.0592 2996 i8042prt - ok
19:29:28.0628 2996 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:29:28.0634 2996 iaStorV - ok
19:29:28.0676 2996 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:29:28.0687 2996 idsvc - ok
19:29:28.0704 2996 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:29:28.0707 2996 iirsp - ok
19:29:28.0748 2996 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:29:28.0757 2996 IKEEXT - ok
19:29:28.0837 2996 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:29:28.0876 2996 IntcAzAudAddService - ok
19:29:28.0923 2996 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:29:28.0924 2996 intelide - ok
19:29:28.0945 2996 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:29:28.0947 2996 intelppm - ok
19:29:28.0972 2996 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:29:28.0974 2996 IPBusEnum - ok
19:29:28.0996 2996 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:29:29.0002 2996 IpFilterDriver - ok
19:29:29.0040 2996 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:29:29.0046 2996 iphlpsvc - ok
19:29:29.0076 2996 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:29:29.0078 2996 IPMIDRV - ok
19:29:29.0102 2996 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:29:29.0104 2996 IPNAT - ok
19:29:29.0133 2996 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:29:29.0134 2996 IRENUM - ok
19:29:29.0159 2996 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:29:29.0160 2996 isapnp - ok
19:29:29.0180 2996 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:29:29.0185 2996 iScsiPrt - ok
19:29:29.0212 2996 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:29:29.0214 2996 kbdclass - ok
19:29:29.0242 2996 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:29:29.0243 2996 kbdhid - ok
19:29:29.0253 2996 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:29:29.0254 2996 KeyIso - ok
19:29:29.0305 2996 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:29:29.0309 2996 KSecDD - ok
19:29:29.0353 2996 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:29:29.0356 2996 KSecPkg - ok
19:29:29.0384 2996 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:29:29.0386 2996 ksthunk - ok
19:29:29.0414 2996 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:29:29.0419 2996 KtmRm - ok
19:29:29.0468 2996 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:29:29.0472 2996 LanmanServer - ok
19:29:29.0505 2996 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:29:29.0509 2996 LanmanWorkstation - ok
19:29:29.0581 2996 [ 2238B91AC1A12CC6CC4C4FED41258B2A ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:29:29.0584 2996 LightScribeService - ok
19:29:29.0639 2996 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:29:29.0640 2996 lltdio - ok
19:29:29.0679 2996 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:29:29.0684 2996 lltdsvc - ok
19:29:29.0711 2996 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:29:29.0713 2996 lmhosts - ok
19:29:29.0743 2996 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:29:29.0745 2996 LSI_FC - ok
19:29:29.0772 2996 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:29:29.0774 2996 LSI_SAS - ok
19:29:29.0792 2996 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:29:29.0793 2996 LSI_SAS2 - ok
19:29:29.0822 2996 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:29:29.0824 2996 LSI_SCSI - ok
19:29:29.0852 2996 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:29:29.0854 2996 luafv - ok
19:29:29.0886 2996 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:29:29.0888 2996 Mcx2Svc - ok
19:29:29.0916 2996 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:29:29.0917 2996 megasas - ok
19:29:29.0940 2996 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:29:29.0944 2996 MegaSR - ok
19:29:29.0977 2996 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:29:29.0979 2996 MMCSS - ok
19:29:29.0994 2996 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:29:29.0996 2996 Modem - ok
19:29:30.0014 2996 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:29:30.0014 2996 monitor - ok
19:29:30.0038 2996 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
19:29:30.0040 2996 mouclass - ok
19:29:30.0054 2996 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:29:30.0059 2996 mouhid - ok
19:29:30.0091 2996 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:29:30.0092 2996 mountmgr - ok
19:29:30.0146 2996 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:29:30.0148 2996 MozillaMaintenance - ok
19:29:30.0230 2996 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:29:30.0236 2996 MpFilter - ok
19:29:30.0266 2996 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:29:30.0270 2996 mpio - ok
19:29:30.0290 2996 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:29:30.0291 2996 mpsdrv - ok
19:29:30.0330 2996 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:29:30.0340 2996 MpsSvc - ok
19:29:30.0387 2996 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:29:30.0390 2996 MRxDAV - ok
19:29:30.0422 2996 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:29:30.0424 2996 mrxsmb - ok
19:29:30.0461 2996 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:29:30.0465 2996 mrxsmb10 - ok
19:29:30.0485 2996 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:29:30.0487 2996 mrxsmb20 - ok
19:29:30.0521 2996 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:29:30.0523 2996 msahci - ok
19:29:30.0556 2996 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:29:30.0559 2996 msdsm - ok
19:29:30.0581 2996 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:29:30.0584 2996 MSDTC - ok
19:29:30.0626 2996 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:29:30.0628 2996 Msfs - ok
19:29:30.0653 2996 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:29:30.0654 2996 mshidkmdf - ok
19:29:30.0673 2996 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:29:30.0674 2996 msisadrv - ok
19:29:30.0702 2996 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:29:30.0705 2996 MSiSCSI - ok
19:29:30.0714 2996 msiserver - ok
19:29:30.0749 2996 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:29:30.0751 2996 MSKSSRV - ok
19:29:30.0840 2996 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:29:30.0841 2996 MsMpSvc - ok
19:29:30.0883 2996 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:29:30.0885 2996 MSPCLOCK - ok
19:29:30.0916 2996 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:29:30.0918 2996 MSPQM - ok
19:29:30.0956 2996 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:29:30.0962 2996 MsRPC - ok
19:29:31.0001 2996 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:29:31.0002 2996 mssmbios - ok
19:29:31.0023 2996 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:29:31.0025 2996 MSTEE - ok
19:29:31.0039 2996 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:29:31.0040 2996 MTConfig - ok
19:29:31.0055 2996 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:29:31.0056 2996 Mup - ok
19:29:31.0094 2996 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:29:31.0100 2996 napagent - ok
19:29:31.0140 2996 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:29:31.0144 2996 NativeWifiP - ok
19:29:31.0197 2996 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:29:31.0207 2996 NDIS - ok
19:29:31.0223 2996 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:29:31.0224 2996 NdisCap - ok
19:29:31.0249 2996 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:29:31.0252 2996 NdisTapi - ok
19:29:31.0276 2996 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:29:31.0278 2996 Ndisuio - ok
19:29:31.0309 2996 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:29:31.0312 2996 NdisWan - ok
19:29:31.0344 2996 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:29:31.0346 2996 NDProxy - ok
19:29:31.0359 2996 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:29:31.0360 2996 NetBIOS - ok
19:29:31.0399 2996 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:29:31.0402 2996 NetBT - ok
19:29:31.0417 2996 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:29:31.0418 2996 Netlogon - ok
19:29:31.0459 2996 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:29:31.0464 2996 Netman - ok
19:29:31.0504 2996 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:29:31.0521 2996 netprofm - ok
19:29:31.0546 2996 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:29:31.0549 2996 NetTcpPortSharing - ok
19:29:31.0568 2996 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:29:31.0570 2996 nfrd960 - ok
19:29:31.0619 2996 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:29:31.0621 2996 NisDrv - ok
19:29:31.0672 2996 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
19:29:31.0678 2996 NisSrv - ok
19:29:31.0748 2996 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:29:31.0753 2996 NlaSvc - ok
19:29:31.0788 2996 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:29:31.0791 2996 Npfs - ok
19:29:31.0816 2996 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:29:31.0820 2996 nsi - ok
19:29:31.0835 2996 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:29:31.0836 2996 nsiproxy - ok
19:29:31.0904 2996 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:29:31.0930 2996 Ntfs - ok
19:29:31.0950 2996 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:29:31.0952 2996 Null - ok
19:29:32.0177 2996 [ C967514483FA30A0A352E70BB6414D1D ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:29:32.0391 2996 nvlddmkm - ok
19:29:32.0437 2996 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
19:29:32.0441 2996 NVNET - ok
19:29:32.0474 2996 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:29:32.0477 2996 nvraid - ok
19:29:32.0503 2996 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:29:32.0505 2996 nvstor - ok
19:29:32.0539 2996 [ 1E45F96342429D63DC30E0D9117DA3D8 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
19:29:32.0540 2996 nvstor64 - ok
19:29:32.0599 2996 [ E26706A65D97EF9188B1D7BFA23C96C2 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:29:32.0665 2996 nvsvc - ok
19:29:32.0713 2996 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:29:32.0716 2996 nv_agp - ok
19:29:32.0794 2996 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:29:32.0797 2996 ohci1394 - ok
19:29:32.0859 2996 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:29:32.0864 2996 p2pimsvc - ok
19:29:32.0883 2996 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:29:32.0888 2996 p2psvc - ok
19:29:32.0914 2996 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:29:32.0916 2996 Parport - ok
19:29:32.0946 2996 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:29:32.0948 2996 partmgr - ok
19:29:32.0961 2996 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:29:32.0964 2996 PcaSvc - ok
19:29:33.0056 2996 PcdrNdisuio - ok
19:29:33.0124 2996 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:29:33.0129 2996 pci - ok
19:29:33.0171 2996 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:29:33.0177 2996 pciide - ok
19:29:33.0229 2996 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:29:33.0232 2996 pcmcia - ok
19:29:33.0258 2996 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:29:33.0260 2996 pcw - ok
19:29:33.0286 2996 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:29:33.0293 2996 PEAUTH - ok
19:29:33.0318 2996 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:29:33.0320 2996 PerfHost - ok
19:29:33.0391 2996 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:29:33.0417 2996 pla - ok
19:29:33.0461 2996 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:29:33.0470 2996 PlugPlay - ok
19:29:33.0493 2996 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:29:33.0494 2996 PNRPAutoReg - ok
19:29:33.0515 2996 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:29:33.0518 2996 PNRPsvc - ok
19:29:33.0541 2996 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:29:33.0547 2996 PolicyAgent - ok
19:29:33.0589 2996 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:29:33.0592 2996 Power - ok
19:29:33.0615 2996 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:29:33.0619 2996 PptpMiniport - ok
19:29:33.0640 2996 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:29:33.0641 2996 Processor - ok
19:29:33.0672 2996 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:29:33.0675 2996 ProfSvc - ok
19:29:33.0690 2996 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:29:33.0691 2996 ProtectedStorage - ok
19:29:33.0726 2996 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:29:33.0728 2996 Psched - ok
19:29:33.0769 2996 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:29:33.0795 2996 ql2300 - ok
19:29:33.0815 2996 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:29:33.0817 2996 ql40xx - ok
19:29:33.0844 2996 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:29:33.0848 2996 QWAVE - ok
19:29:33.0874 2996 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:29:33.0876 2996 QWAVEdrv - ok
19:29:33.0888 2996 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:29:33.0891 2996 RasAcd - ok
19:29:33.0922 2996 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:29:33.0925 2996 RasAgileVpn - ok
19:29:33.0944 2996 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:29:33.0947 2996 RasAuto - ok
19:29:33.0976 2996 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:29:33.0978 2996 Rasl2tp - ok
19:29:34.0002 2996 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:29:34.0007 2996 RasMan - ok
19:29:34.0024 2996 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:29:34.0027 2996 RasPppoe - ok
19:29:34.0043 2996 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:29:34.0045 2996 RasSstp - ok
19:29:34.0079 2996 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:29:34.0083 2996 rdbss - ok
19:29:34.0100 2996 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:29:34.0102 2996 rdpbus - ok
19:29:34.0122 2996 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:29:34.0124 2996 RDPCDD - ok
19:29:34.0155 2996 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:29:34.0156 2996 RDPENCDD - ok
19:29:34.0179 2996 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:29:34.0180 2996 RDPREFMP - ok
19:29:34.0212 2996 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:29:34.0215 2996 RDPWD - ok
19:29:34.0249 2996 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:29:34.0252 2996 rdyboost - ok
19:29:34.0277 2996 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:29:34.0279 2996 RemoteAccess - ok
19:29:34.0309 2996 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:29:34.0312 2996 RemoteRegistry - ok
19:29:34.0361 2996 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:29:34.0367 2996 RpcEptMapper - ok
19:29:34.0385 2996 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:29:34.0387 2996 RpcLocator - ok
19:29:34.0419 2996 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:29:34.0423 2996 RpcSs - ok
19:29:34.0448 2996 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:29:34.0451 2996 rspndr - ok
19:29:34.0502 2996 [ 3641E624C8C5D5EA089AE9B5340B5B79 ] rt70x64 C:\Windows\system32\DRIVERS\netr7064.sys
19:29:34.0506 2996 rt70x64 - ok
19:29:34.0522 2996 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:29:34.0523 2996 SamSs - ok
19:29:34.0558 2996 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:29:34.0561 2996 sbp2port - ok
19:29:34.0586 2996 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:29:34.0589 2996 SCardSvr - ok
19:29:34.0618 2996 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:29:34.0620 2996 scfilter - ok
19:29:34.0662 2996 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:29:34.0680 2996 Schedule - ok
19:29:34.0712 2996 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:29:34.0713 2996 SCPolicySvc - ok
19:29:34.0729 2996 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:29:34.0736 2996 SDRSVC - ok
19:29:34.0763 2996 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:29:34.0764 2996 secdrv - ok
19:29:34.0785 2996 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:29:34.0787 2996 seclogon - ok
19:29:34.0812 2996 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:29:34.0814 2996 SENS - ok
19:29:34.0843 2996 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:29:34.0845 2996 SensrSvc - ok
19:29:34.0873 2996 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:29:34.0874 2996 Serenum - ok
19:29:34.0892 2996 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:29:34.0896 2996 Serial - ok
19:29:34.0911 2996 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:29:34.0913 2996 sermouse - ok
19:29:34.0960 2996 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:29:34.0963 2996 SessionEnv - ok
19:29:34.0993 2996 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:29:34.0996 2996 sffdisk - ok
19:29:35.0015 2996 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:29:35.0017 2996 sffp_mmc - ok
19:29:35.0034 2996 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:29:35.0035 2996 sffp_sd - ok
19:29:35.0053 2996 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:29:35.0055 2996 sfloppy - ok
19:29:35.0079 2996 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:29:35.0083 2996 SharedAccess - ok
19:29:35.0106 2996 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:29:35.0111 2996 ShellHWDetection - ok
19:29:35.0133 2996 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:29:35.0135 2996 SiSRaid2 - ok
19:29:35.0151 2996 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:29:35.0153 2996 SiSRaid4 - ok
19:29:35.0191 2996 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:29:35.0193 2996 Smb - ok
19:29:35.0240 2996 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:29:35.0242 2996 SNMPTRAP - ok
19:29:35.0261 2996 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:29:35.0263 2996 spldr - ok
19:29:35.0303 2996 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:29:35.0310 2996 Spooler - ok
19:29:35.0415 2996 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:29:35.0467 2996 sppsvc - ok
19:29:35.0500 2996 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:29:35.0502 2996 sppuinotify - ok
19:29:35.0539 2996 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:29:35.0544 2996 srv - ok
19:29:35.0564 2996 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:29:35.0569 2996 srv2 - ok
19:29:35.0591 2996 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:29:35.0594 2996 srvnet - ok
19:29:35.0636 2996 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:29:35.0639 2996 SSDPSRV - ok
19:29:35.0655 2996 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:29:35.0657 2996 SstpSvc - ok
19:29:35.0675 2996 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:29:35.0677 2996 stexstor - ok
19:29:35.0719 2996 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:29:35.0726 2996 stisvc - ok
19:29:35.0754 2996 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:29:35.0755 2996 swenum - ok
19:29:35.0776 2996 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:29:35.0783 2996 swprv - ok
19:29:35.0838 2996 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:29:35.0872 2996 SysMain - ok
19:29:35.0895 2996 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:29:35.0898 2996 TabletInputService - ok
19:29:35.0920 2996 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:29:35.0924 2996 TapiSrv - ok
19:29:35.0949 2996 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:29:35.0952 2996 TBS - ok
19:29:35.0999 2996 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:29:36.0035 2996 Tcpip - ok
19:29:36.0082 2996 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:29:36.0093 2996 TCPIP6 - ok
19:29:36.0127 2996 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:29:36.0128 2996 tcpipreg - ok
19:29:36.0156 2996 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:29:36.0158 2996 TDPIPE - ok
19:29:36.0189 2996 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:29:36.0190 2996 TDTCP - ok
19:29:36.0228 2996 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:29:36.0231 2996 tdx - ok
19:29:36.0266 2996 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:29:36.0268 2996 TermDD - ok
19:29:36.0306 2996 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:29:36.0314 2996 TermService - ok
19:29:36.0347 2996 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:29:36.0350 2996 Themes - ok
19:29:36.0364 2996 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:29:36.0376 2996 THREADORDER - ok
19:29:36.0396 2996 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:29:36.0399 2996 TrkWks - ok
19:29:36.0438 2996 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:29:36.0441 2996 TrustedInstaller - ok
19:29:36.0474 2996 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:29:36.0476 2996 tssecsrv - ok
19:29:36.0518 2996 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:29:36.0521 2996 TsUsbFlt - ok
19:29:36.0564 2996 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:29:36.0567 2996 tunnel - ok
19:29:36.0596 2996 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:29:36.0598 2996 uagp35 - ok
19:29:36.0638 2996 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:29:36.0642 2996 udfs - ok
19:29:36.0682 2996 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:29:36.0684 2996 UI0Detect - ok
19:29:36.0717 2996 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:29:36.0719 2996 uliagpkx - ok
19:29:36.0741 2996 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:29:36.0744 2996 umbus - ok
19:29:36.0774 2996 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:29:36.0777 2996 UmPass - ok
19:29:36.0803 2996 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:29:36.0808 2996 upnphost - ok
19:29:36.0820 2996 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:29:36.0822 2996 usbccgp - ok
19:29:36.0855 2996 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:29:36.0858 2996 usbcir - ok
19:29:36.0876 2996 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:29:36.0878 2996 usbehci - ok
19:29:36.0897 2996 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:29:36.0902 2996 usbhub - ok
19:29:36.0919 2996 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:29:36.0921 2996 usbohci - ok
19:29:36.0948 2996 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:29:36.0949 2996 usbprint - ok
19:29:36.0970 2996 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:29:36.0973 2996 USBSTOR - ok
19:29:36.0991 2996 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:29:36.0992 2996 usbuhci - ok
19:29:37.0025 2996 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:29:37.0027 2996 UxSms - ok
19:29:37.0044 2996 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:29:37.0045 2996 VaultSvc - ok
19:29:37.0062 2996 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:29:37.0065 2996 vdrvroot - ok
19:29:37.0091 2996 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:29:37.0098 2996 vds - ok
19:29:37.0130 2996 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:29:37.0133 2996 vga - ok
19:29:37.0151 2996 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:29:37.0153 2996 VgaSave - ok
19:29:37.0189 2996 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:29:37.0192 2996 vhdmp - ok
19:29:37.0211 2996 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:29:37.0213 2996 viaide - ok
19:29:37.0231 2996 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:29:37.0233 2996 volmgr - ok
19:29:37.0250 2996 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:29:37.0254 2996 volmgrx - ok
19:29:37.0274 2996 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:29:37.0277 2996 volsnap - ok
19:29:37.0309 2996 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:29:37.0312 2996 vsmraid - ok
19:29:37.0382 2996 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:29:37.0414 2996 VSS - ok
19:29:37.0442 2996 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:29:37.0443 2996 vwifibus - ok
19:29:37.0482 2996 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:29:37.0487 2996 W32Time - ok
19:29:37.0510 2996 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:29:37.0512 2996 WacomPen - ok
19:29:37.0561 2996 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:29:37.0564 2996 WANARP - ok
19:29:37.0573 2996 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:29:37.0574 2996 Wanarpv6 - ok
19:29:37.0615 2996 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:29:37.0641 2996 WatAdminSvc - ok
19:29:37.0684 2996 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:29:37.0711 2996 wbengine - ok
19:29:37.0740 2996 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:29:37.0743 2996 WbioSrvc - ok
19:29:37.0775 2996 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:29:37.0784 2996 wcncsvc - ok
19:29:37.0799 2996 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:29:37.0801 2996 WcsPlugInService - ok
19:29:37.0823 2996 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:29:37.0825 2996 Wd - ok
19:29:37.0864 2996 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:29:37.0873 2996 Wdf01000 - ok
19:29:37.0909 2996 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:29:37.0911 2996 WdiServiceHost - ok
19:29:37.0920 2996 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:29:37.0921 2996 WdiSystemHost - ok
19:29:37.0955 2996 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:29:37.0959 2996 WebClient - ok
19:29:37.0980 2996 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:29:37.0985 2996 Wecsvc - ok
19:29:38.0005 2996 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:29:38.0008 2996 wercplsupport - ok
19:29:38.0035 2996 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:29:38.0037 2996 WerSvc - ok
19:29:38.0067 2996 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:29:38.0068 2996 WfpLwf - ok
19:29:38.0084 2996 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:29:38.0086 2996 WIMMount - ok
19:29:38.0117 2996 WinDefend - ok
19:29:38.0128 2996 WinHttpAutoProxySvc - ok
19:29:38.0185 2996 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:29:38.0194 2996 Winmgmt - ok
19:29:38.0267 2996 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:29:38.0311 2996 WinRM - ok
19:29:38.0355 2996 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:29:38.0365 2996 Wlansvc - ok
19:29:38.0485 2996 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:29:38.0534 2996 wlidsvc - ok
19:29:38.0572 2996 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:29:38.0581 2996 WmiAcpi - ok
19:29:38.0631 2996 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:29:38.0635 2996 wmiApSrv - ok
19:29:38.0655 2996 WMPNetworkSvc - ok
19:29:38.0686 2996 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:29:38.0688 2996 WPCSvc - ok
19:29:38.0723 2996 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:29:38.0727 2996 WPDBusEnum - ok
19:29:38.0751 2996 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:29:38.0753 2996 ws2ifsl - ok
19:29:38.0785 2996 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
19:29:38.0788 2996 wscsvc - ok
19:29:38.0798 2996 WSearch - ok
19:29:38.0899 2996 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:29:38.0949 2996 wuauserv - ok
19:29:38.0992 2996 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:29:38.0994 2996 WudfPf - ok
19:29:39.0282 2996 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:29:39.0302 2996 WUDFRd - ok
19:29:39.0351 2996 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:29:39.0370 2996 wudfsvc - ok
19:29:39.0423 2996 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:29:39.0428 2996 WwanSvc - ok
19:29:39.0471 2996 ================ Scan global ===============================
19:29:39.0514 2996 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:29:39.0543 2996 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
19:29:39.0555 2996 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
19:29:39.0573 2996 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:29:39.0595 2996 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:29:39.0600 2996 [Global] - ok
19:29:39.0604 2996 ================ Scan MBR ==================================
19:29:39.0616 2996 [ B9E42F49ABAFA9C9635A9DA88DCEB8D1 ] \Device\Harddisk0\DR0
19:29:39.0815 2996 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:29:39.0815 2996 \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:29:39.0822 2996 ================ Scan VBR ==================================
19:29:39.0826 2996 [ AE2D469C0209A75CEF687DD492171F56 ] \Device\Harddisk0\DR0\Partition1
19:29:39.0828 2996 \Device\Harddisk0\DR0\Partition1 - ok
19:29:39.0867 2996 [ 62991F3502DFCF86711FD2DAC2DA3D4A ] \Device\Harddisk0\DR0\Partition2
19:29:39.0868 2996 \Device\Harddisk0\DR0\Partition2 - ok
19:29:39.0900 2996 [ 35501E0F5BC1821551F719FA4CE36F2C ] \Device\Harddisk0\DR0\Partition3
19:29:39.0901 2996 \Device\Harddisk0\DR0\Partition3 - ok
19:29:39.0904 2996 ============================================================
19:29:39.0905 2996 Scan finished
19:29:39.0905 2996 ============================================================
19:29:39.0918 3564 Detected object count: 1
19:29:39.0918 3564 Actual detected object count: 1
19:29:59.0947 3564 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:29:59.0947 3564 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
19:30:33.0098 2840 Deinitialize success

#5 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 30 November 2012 - 08:41 PM

This is the aswMBR scan:

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-30 19:34:21
-----------------------------
19:34:21.760 OS Version: Windows x64 6.1.7601 Service Pack 1
19:34:21.760 Number of processors: 1 586 0x602
19:34:21.764 ComputerName: NEWUSER-PC UserName: new user
19:34:23.783 Initialize success
19:37:45.404 AVAST engine defs: 12113001
19:37:58.703 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000053
19:37:58.707 Disk 0 Vendor: ST350041 HP34 Size: 476940MB BusType: 3
19:37:58.711 Disk 0 MBR read successfully
19:37:58.713 Disk 0 MBR scan
19:37:58.718 Disk 0 unknown MBR code
19:37:58.735 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
19:37:58.771 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 466707 MB offset 206848
19:37:58.820 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 10131 MB offset 956022784
19:37:58.914 Disk 0 scanning C:\Windows\system32\drivers
19:38:12.597 Service scanning
19:38:38.932 Modules scanning
19:38:38.956 Disk 0 trace - called modules:
19:38:38.986 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll nvstor64.sys
19:38:38.995 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8002691190]
19:38:39.240 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa8001f81c20]
19:38:39.259 5 ACPI.sys[fffff88000f9c7a1] -> nt!IofCallDriver -> \Device\00000053[0xfffffa800217b9c0]
19:38:41.605 AVAST engine scan C:\Windows
19:38:44.452 AVAST engine scan C:\Windows\system32
19:43:24.599 AVAST engine scan C:\Windows\system32\drivers
19:43:40.636 AVAST engine scan C:\Users\new user
20:07:02.444 AVAST engine scan C:\ProgramData
20:11:00.453 File: C:\ProgramData\Microsoft\Windows\DRM\EB15.tmp **INFECTED** Win32:Malware-gen
20:12:49.575 Scan finished successfully
20:13:34.473 Disk 0 MBR has been saved successfully to "C:\Users\new user\Desktop\MBR.dat"
20:13:34.551 The log file has been saved successfully to "C:\Users\new user\Desktop\aswMBR.txt"

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,923 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:14 PM

Posted 30 November 2012 - 09:06 PM

Hello, please run TDSS again and change the option on these to Cure or Delete..
19:29:59.0947 3564 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:29:59.0947 3564 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip


On completion of the aswMBR scan, was there a choice to click the FIXMBR or FIX buttons?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 30 November 2012 - 09:19 PM

Here is the TDSS log after changing the option to delete:

21:13:08.0579 4012 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:13:09.0188 4012 ============================================================
21:13:09.0188 4012 Current date / time: 2012/11/30 21:13:09.0188
21:13:09.0188 4012 SystemInfo:
21:13:09.0188 4012
21:13:09.0188 4012 OS Version: 6.1.7601 ServicePack: 1.0
21:13:09.0188 4012 Product type: Workstation
21:13:09.0188 4012 ComputerName: NEWUSER-PC
21:13:09.0188 4012 UserName: new user
21:13:09.0188 4012 Windows directory: C:\Windows
21:13:09.0188 4012 System windows directory: C:\Windows
21:13:09.0188 4012 Running under WOW64
21:13:09.0188 4012 Processor architecture: Intel x64
21:13:09.0188 4012 Number of processors: 1
21:13:09.0188 4012 Page size: 0x1000
21:13:09.0188 4012 Boot type: Normal boot
21:13:09.0188 4012 ============================================================
21:13:11.0216 4012 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
21:13:11.0231 4012 ============================================================
21:13:11.0231 4012 \Device\Harddisk0\DR0:
21:13:11.0247 4012 MBR partitions:
21:13:11.0247 4012 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:13:11.0247 4012 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38F89800
21:13:11.0247 4012 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38FBC000, BlocksNum 0x13C9800
21:13:11.0247 4012 ============================================================
21:13:11.0278 4012 C: <-> \Device\Harddisk0\DR0\Partition2
21:13:11.0325 4012 D: <-> \Device\Harddisk0\DR0\Partition3
21:13:11.0325 4012 ============================================================
21:13:11.0325 4012 Initialize success
21:13:11.0325 4012 ============================================================
21:13:34.0818 0192 ============================================================
21:13:34.0818 0192 Scan started
21:13:34.0818 0192 Mode: Manual; TDLFS;
21:13:34.0818 0192 ============================================================
21:13:35.0255 0192 ================ Scan system memory ========================
21:13:35.0255 0192 System memory - ok
21:13:35.0271 0192 ================ Scan services =============================
21:13:35.0411 0192 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:13:35.0427 0192 1394ohci - ok
21:13:35.0474 0192 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:13:35.0489 0192 ACPI - ok
21:13:35.0505 0192 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:13:35.0505 0192 AcpiPmi - ok
21:13:35.0552 0192 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:13:35.0552 0192 adp94xx - ok
21:13:35.0567 0192 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:13:35.0583 0192 adpahci - ok
21:13:35.0598 0192 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:13:35.0598 0192 adpu320 - ok
21:13:35.0645 0192 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:13:35.0645 0192 AeLookupSvc - ok
21:13:35.0692 0192 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:13:35.0692 0192 AFD - ok
21:13:35.0723 0192 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:13:35.0723 0192 agp440 - ok
21:13:35.0754 0192 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:13:35.0754 0192 ALG - ok
21:13:35.0770 0192 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:13:35.0770 0192 aliide - ok
21:13:35.0786 0192 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:13:35.0786 0192 amdide - ok
21:13:35.0832 0192 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:13:35.0832 0192 AmdK8 - ok
21:13:35.0848 0192 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:13:35.0848 0192 AmdPPM - ok
21:13:35.0879 0192 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:13:35.0879 0192 amdsata - ok
21:13:35.0910 0192 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:13:35.0926 0192 amdsbs - ok
21:13:35.0942 0192 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:13:35.0942 0192 amdxata - ok
21:13:35.0973 0192 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:13:35.0973 0192 AppID - ok
21:13:36.0004 0192 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:13:36.0004 0192 AppIDSvc - ok
21:13:36.0035 0192 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:13:36.0035 0192 Appinfo - ok
21:13:36.0066 0192 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:13:36.0066 0192 arc - ok
21:13:36.0082 0192 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:13:36.0082 0192 arcsas - ok
21:13:36.0113 0192 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:13:36.0113 0192 AsyncMac - ok
21:13:36.0129 0192 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:13:36.0129 0192 atapi - ok
21:13:36.0176 0192 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:13:36.0176 0192 AudioEndpointBuilder - ok
21:13:36.0191 0192 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:13:36.0207 0192 AudioSrv - ok
21:13:36.0238 0192 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:13:36.0238 0192 AxInstSV - ok
21:13:36.0269 0192 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:13:36.0285 0192 b06bdrv - ok
21:13:36.0300 0192 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:13:36.0300 0192 b57nd60a - ok
21:13:36.0394 0192 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
21:13:36.0410 0192 BBSvc - ok
21:13:36.0456 0192 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
21:13:36.0472 0192 BBUpdate - ok
21:13:36.0503 0192 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:13:36.0503 0192 BDESVC - ok
21:13:36.0534 0192 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:13:36.0534 0192 Beep - ok
21:13:36.0581 0192 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:13:36.0581 0192 BFE - ok
21:13:36.0628 0192 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
21:13:36.0644 0192 BITS - ok
21:13:36.0659 0192 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:13:36.0659 0192 blbdrive - ok
21:13:36.0690 0192 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:13:36.0690 0192 bowser - ok
21:13:36.0722 0192 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:13:36.0737 0192 BrFiltLo - ok
21:13:36.0737 0192 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:13:36.0737 0192 BrFiltUp - ok
21:13:36.0784 0192 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:13:36.0784 0192 Browser - ok
21:13:36.0815 0192 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:13:36.0815 0192 Brserid - ok
21:13:36.0831 0192 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:13:36.0831 0192 BrSerWdm - ok
21:13:36.0846 0192 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:13:36.0846 0192 BrUsbMdm - ok
21:13:36.0862 0192 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:13:36.0862 0192 BrUsbSer - ok
21:13:36.0893 0192 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:13:36.0893 0192 BTHMODEM - ok
21:13:36.0924 0192 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:13:36.0924 0192 bthserv - ok
21:13:36.0956 0192 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:13:36.0956 0192 cdfs - ok
21:13:36.0987 0192 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
21:13:36.0987 0192 cdrom - ok
21:13:37.0018 0192 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:13:37.0018 0192 CertPropSvc - ok
21:13:37.0049 0192 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:13:37.0049 0192 circlass - ok
21:13:37.0080 0192 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:13:37.0080 0192 CLFS - ok
21:13:37.0127 0192 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:13:37.0127 0192 clr_optimization_v2.0.50727_32 - ok
21:13:37.0174 0192 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:13:37.0190 0192 clr_optimization_v2.0.50727_64 - ok
21:13:37.0252 0192 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:13:37.0268 0192 clr_optimization_v4.0.30319_32 - ok
21:13:37.0299 0192 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:13:37.0299 0192 clr_optimization_v4.0.30319_64 - ok
21:13:37.0346 0192 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:13:37.0346 0192 CmBatt - ok
21:13:37.0377 0192 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:13:37.0392 0192 cmdide - ok
21:13:37.0424 0192 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:13:37.0439 0192 CNG - ok
21:13:37.0455 0192 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:13:37.0470 0192 Compbatt - ok
21:13:37.0486 0192 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:13:37.0502 0192 CompositeBus - ok
21:13:37.0517 0192 COMSysApp - ok
21:13:37.0533 0192 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:13:37.0533 0192 crcdisk - ok
21:13:37.0564 0192 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:13:37.0564 0192 CryptSvc - ok
21:13:37.0595 0192 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:13:37.0611 0192 DcomLaunch - ok
21:13:37.0642 0192 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:13:37.0642 0192 defragsvc - ok
21:13:37.0673 0192 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:13:37.0673 0192 DfsC - ok
21:13:37.0704 0192 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:13:37.0704 0192 Dhcp - ok
21:13:37.0736 0192 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:13:37.0736 0192 discache - ok
21:13:37.0767 0192 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:13:37.0767 0192 Disk - ok
21:13:37.0798 0192 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:13:37.0814 0192 Dnscache - ok
21:13:37.0845 0192 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:13:37.0845 0192 dot3svc - ok
21:13:37.0876 0192 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:13:37.0876 0192 DPS - ok
21:13:37.0907 0192 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:13:37.0907 0192 drmkaud - ok
21:13:37.0938 0192 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:13:37.0954 0192 DXGKrnl - ok
21:13:37.0985 0192 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:13:37.0985 0192 EapHost - ok
21:13:38.0063 0192 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:13:38.0126 0192 ebdrv - ok
21:13:38.0157 0192 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:13:38.0157 0192 EFS - ok
21:13:38.0204 0192 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:13:38.0219 0192 ehRecvr - ok
21:13:38.0250 0192 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:13:38.0250 0192 ehSched - ok
21:13:38.0297 0192 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:13:38.0313 0192 elxstor - ok
21:13:38.0344 0192 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:13:38.0344 0192 ErrDev - ok
21:13:38.0391 0192 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:13:38.0391 0192 EventSystem - ok
21:13:38.0422 0192 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:13:38.0422 0192 exfat - ok
21:13:38.0453 0192 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:13:38.0453 0192 fastfat - ok
21:13:38.0484 0192 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:13:38.0500 0192 Fax - ok
21:13:38.0516 0192 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:13:38.0516 0192 fdc - ok
21:13:38.0547 0192 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:13:38.0547 0192 fdPHost - ok
21:13:38.0562 0192 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:13:38.0562 0192 FDResPub - ok
21:13:38.0578 0192 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:13:38.0578 0192 FileInfo - ok
21:13:38.0594 0192 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:13:38.0594 0192 Filetrace - ok
21:13:38.0625 0192 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:13:38.0625 0192 flpydisk - ok
21:13:38.0656 0192 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:13:38.0656 0192 FltMgr - ok
21:13:38.0703 0192 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
21:13:38.0734 0192 FontCache - ok
21:13:38.0781 0192 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:13:38.0781 0192 FontCache3.0.0.0 - ok
21:13:38.0812 0192 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:13:38.0812 0192 FsDepends - ok
21:13:38.0843 0192 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:13:38.0843 0192 Fs_Rec - ok
21:13:38.0874 0192 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:13:38.0874 0192 fvevol - ok
21:13:38.0906 0192 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:13:38.0906 0192 gagp30kx - ok
21:13:38.0952 0192 [ 551D463E4CCEB5240234DA6718C93A44 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
21:13:38.0952 0192 GameConsoleService - ok
21:13:38.0999 0192 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:13:39.0015 0192 gpsvc - ok
21:13:39.0030 0192 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:13:39.0030 0192 hcw85cir - ok
21:13:39.0077 0192 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:13:39.0077 0192 HDAudBus - ok
21:13:39.0108 0192 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:13:39.0108 0192 HidBatt - ok
21:13:39.0124 0192 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:13:39.0140 0192 HidBth - ok
21:13:39.0155 0192 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:13:39.0155 0192 HidIr - ok
21:13:39.0186 0192 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:13:39.0186 0192 hidserv - ok
21:13:39.0202 0192 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
21:13:39.0202 0192 HidUsb - ok
21:13:39.0233 0192 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:13:39.0233 0192 hkmsvc - ok
21:13:39.0249 0192 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:13:39.0264 0192 HomeGroupListener - ok
21:13:39.0280 0192 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:13:39.0296 0192 HomeGroupProvider - ok
21:13:39.0374 0192 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
21:13:39.0374 0192 HP Support Assistant Service - ok
21:13:39.0452 0192 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
21:13:39.0452 0192 HPDrvMntSvc.exe - ok
21:13:39.0498 0192 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:13:39.0498 0192 hpqwmiex - ok
21:13:39.0561 0192 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:13:39.0561 0192 HpSAMD - ok
21:13:39.0608 0192 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:13:39.0608 0192 HTTP - ok
21:13:39.0654 0192 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:13:39.0654 0192 hwpolicy - ok
21:13:39.0701 0192 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:13:39.0701 0192 i8042prt - ok
21:13:39.0732 0192 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:13:39.0732 0192 iaStorV - ok
21:13:39.0779 0192 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:13:39.0795 0192 idsvc - ok
21:13:39.0810 0192 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:13:39.0810 0192 iirsp - ok
21:13:39.0857 0192 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:13:39.0873 0192 IKEEXT - ok
21:13:39.0982 0192 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:13:40.0029 0192 IntcAzAudAddService - ok
21:13:40.0060 0192 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:13:40.0060 0192 intelide - ok
21:13:40.0076 0192 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:13:40.0076 0192 intelppm - ok
21:13:40.0107 0192 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:13:40.0107 0192 IPBusEnum - ok
21:13:40.0122 0192 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:13:40.0122 0192 IpFilterDriver - ok
21:13:40.0154 0192 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:13:40.0154 0192 iphlpsvc - ok
21:13:40.0185 0192 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:13:40.0185 0192 IPMIDRV - ok
21:13:40.0216 0192 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:13:40.0216 0192 IPNAT - ok
21:13:40.0232 0192 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:13:40.0247 0192 IRENUM - ok
21:13:40.0263 0192 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:13:40.0263 0192 isapnp - ok
21:13:40.0278 0192 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:13:40.0278 0192 iScsiPrt - ok
21:13:40.0310 0192 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
21:13:40.0310 0192 kbdclass - ok
21:13:40.0325 0192 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
21:13:40.0341 0192 kbdhid - ok
21:13:40.0341 0192 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:13:40.0341 0192 KeyIso - ok
21:13:40.0372 0192 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:13:40.0388 0192 KSecDD - ok
21:13:40.0419 0192 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:13:40.0419 0192 KSecPkg - ok
21:13:40.0434 0192 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:13:40.0434 0192 ksthunk - ok
21:13:40.0466 0192 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:13:40.0466 0192 KtmRm - ok
21:13:40.0497 0192 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:13:40.0497 0192 LanmanServer - ok
21:13:40.0544 0192 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:13:40.0544 0192 LanmanWorkstation - ok
21:13:40.0622 0192 [ 2238B91AC1A12CC6CC4C4FED41258B2A ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
21:13:40.0622 0192 LightScribeService - ok
21:13:40.0668 0192 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:13:40.0668 0192 lltdio - ok
21:13:40.0700 0192 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:13:40.0715 0192 lltdsvc - ok
21:13:40.0746 0192 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:13:40.0746 0192 lmhosts - ok
21:13:40.0778 0192 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:13:40.0778 0192 LSI_FC - ok
21:13:40.0809 0192 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:13:40.0809 0192 LSI_SAS - ok
21:13:40.0824 0192 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:13:40.0824 0192 LSI_SAS2 - ok
21:13:40.0856 0192 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:13:40.0856 0192 LSI_SCSI - ok
21:13:40.0887 0192 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:13:40.0887 0192 luafv - ok
21:13:40.0918 0192 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:13:40.0918 0192 Mcx2Svc - ok
21:13:40.0934 0192 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:13:40.0934 0192 megasas - ok
21:13:40.0965 0192 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:13:40.0980 0192 MegaSR - ok
21:13:41.0012 0192 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:13:41.0012 0192 MMCSS - ok
21:13:41.0027 0192 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:13:41.0027 0192 Modem - ok
21:13:41.0043 0192 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:13:41.0043 0192 monitor - ok
21:13:41.0074 0192 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
21:13:41.0074 0192 mouclass - ok
21:13:41.0090 0192 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:13:41.0090 0192 mouhid - ok
21:13:41.0121 0192 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:13:41.0121 0192 mountmgr - ok
21:13:41.0183 0192 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:13:41.0183 0192 MozillaMaintenance - ok
21:13:41.0246 0192 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
21:13:41.0246 0192 MpFilter - ok
21:13:41.0277 0192 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:13:41.0277 0192 mpio - ok
21:13:41.0308 0192 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:13:41.0308 0192 mpsdrv - ok
21:13:41.0339 0192 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:13:41.0355 0192 MpsSvc - ok
21:13:41.0386 0192 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:13:41.0386 0192 MRxDAV - ok
21:13:41.0417 0192 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:13:41.0417 0192 mrxsmb - ok
21:13:41.0464 0192 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:13:41.0464 0192 mrxsmb10 - ok
21:13:41.0480 0192 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:13:41.0480 0192 mrxsmb20 - ok
21:13:41.0511 0192 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:13:41.0511 0192 msahci - ok
21:13:41.0542 0192 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:13:41.0542 0192 msdsm - ok
21:13:41.0558 0192 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:13:41.0558 0192 MSDTC - ok
21:13:41.0604 0192 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:13:41.0604 0192 Msfs - ok
21:13:41.0620 0192 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:13:41.0636 0192 mshidkmdf - ok
21:13:41.0651 0192 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:13:41.0651 0192 msisadrv - ok
21:13:41.0682 0192 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:13:41.0682 0192 MSiSCSI - ok
21:13:41.0698 0192 msiserver - ok
21:13:41.0729 0192 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:13:41.0729 0192 MSKSSRV - ok
21:13:41.0807 0192 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:13:41.0807 0192 MsMpSvc - ok
21:13:41.0838 0192 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:13:41.0838 0192 MSPCLOCK - ok
21:13:41.0870 0192 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:13:41.0870 0192 MSPQM - ok
21:13:41.0901 0192 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:13:41.0916 0192 MsRPC - ok
21:13:41.0932 0192 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:13:41.0948 0192 mssmbios - ok
21:13:41.0963 0192 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:13:41.0963 0192 MSTEE - ok
21:13:41.0979 0192 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:13:41.0979 0192 MTConfig - ok
21:13:41.0994 0192 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:13:41.0994 0192 Mup - ok
21:13:42.0041 0192 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:13:42.0057 0192 napagent - ok
21:13:42.0088 0192 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:13:42.0088 0192 NativeWifiP - ok
21:13:42.0150 0192 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:13:42.0166 0192 NDIS - ok
21:13:42.0182 0192 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:13:42.0197 0192 NdisCap - ok
21:13:42.0213 0192 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:13:42.0213 0192 NdisTapi - ok
21:13:42.0244 0192 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:13:42.0244 0192 Ndisuio - ok
21:13:42.0275 0192 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:13:42.0275 0192 NdisWan - ok
21:13:42.0306 0192 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:13:42.0306 0192 NDProxy - ok
21:13:42.0322 0192 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:13:42.0322 0192 NetBIOS - ok
21:13:42.0369 0192 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:13:42.0369 0192 NetBT - ok
21:13:42.0384 0192 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:13:42.0384 0192 Netlogon - ok
21:13:42.0431 0192 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:13:42.0447 0192 Netman - ok
21:13:42.0478 0192 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:13:42.0494 0192 netprofm - ok
21:13:42.0509 0192 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:13:42.0509 0192 NetTcpPortSharing - ok
21:13:42.0540 0192 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:13:42.0540 0192 nfrd960 - ok
21:13:42.0587 0192 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:13:42.0587 0192 NisDrv - ok
21:13:42.0618 0192 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
21:13:42.0618 0192 NisSrv - ok
21:13:42.0665 0192 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:13:42.0681 0192 NlaSvc - ok
21:13:42.0728 0192 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:13:42.0728 0192 Npfs - ok
21:13:42.0759 0192 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:13:42.0759 0192 nsi - ok
21:13:42.0774 0192 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:13:42.0774 0192 nsiproxy - ok
21:13:42.0852 0192 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:13:42.0899 0192 Ntfs - ok
21:13:42.0930 0192 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:13:42.0930 0192 Null - ok
21:13:43.0164 0192 [ C967514483FA30A0A352E70BB6414D1D ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:13:43.0383 0192 nvlddmkm - ok
21:13:43.0414 0192 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
21:13:43.0414 0192 NVNET - ok
21:13:43.0430 0192 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:13:43.0445 0192 nvraid - ok
21:13:43.0461 0192 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:13:43.0461 0192 nvstor - ok
21:13:43.0492 0192 [ 1E45F96342429D63DC30E0D9117DA3D8 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
21:13:43.0492 0192 nvstor64 - ok
21:13:43.0539 0192 [ E26706A65D97EF9188B1D7BFA23C96C2 ] nvsvc C:\Windows\system32\nvvsvc.exe
21:13:43.0539 0192 nvsvc - ok
21:13:43.0554 0192 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:13:43.0570 0192 nv_agp - ok
21:13:43.0586 0192 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:13:43.0586 0192 ohci1394 - ok
21:13:43.0617 0192 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:13:43.0632 0192 p2pimsvc - ok
21:13:43.0648 0192 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:13:43.0648 0192 p2psvc - ok
21:13:43.0679 0192 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:13:43.0679 0192 Parport - ok
21:13:43.0726 0192 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:13:43.0726 0192 partmgr - ok
21:13:43.0742 0192 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:13:43.0742 0192 PcaSvc - ok
21:13:43.0804 0192 PcdrNdisuio - ok
21:13:43.0835 0192 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:13:43.0835 0192 pci - ok
21:13:43.0851 0192 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:13:43.0851 0192 pciide - ok
21:13:43.0882 0192 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:13:43.0882 0192 pcmcia - ok
21:13:43.0913 0192 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:13:43.0913 0192 pcw - ok
21:13:43.0944 0192 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:13:43.0944 0192 PEAUTH - ok
21:13:43.0991 0192 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:13:43.0991 0192 PerfHost - ok
21:13:44.0069 0192 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:13:44.0100 0192 pla - ok
21:13:44.0147 0192 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:13:44.0147 0192 PlugPlay - ok
21:13:44.0178 0192 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:13:44.0178 0192 PNRPAutoReg - ok
21:13:44.0210 0192 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:13:44.0210 0192 PNRPsvc - ok
21:13:44.0225 0192 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:13:44.0241 0192 PolicyAgent - ok
21:13:44.0272 0192 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:13:44.0288 0192 Power - ok
21:13:44.0303 0192 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:13:44.0303 0192 PptpMiniport - ok
21:13:44.0334 0192 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:13:44.0334 0192 Processor - ok
21:13:44.0366 0192 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:13:44.0366 0192 ProfSvc - ok
21:13:44.0381 0192 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:13:44.0381 0192 ProtectedStorage - ok
21:13:44.0412 0192 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:13:44.0412 0192 Psched - ok
21:13:44.0459 0192 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:13:44.0490 0192 ql2300 - ok
21:13:44.0522 0192 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:13:44.0522 0192 ql40xx - ok
21:13:44.0553 0192 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:13:44.0553 0192 QWAVE - ok
21:13:44.0584 0192 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:13:44.0584 0192 QWAVEdrv - ok
21:13:44.0600 0192 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:13:44.0600 0192 RasAcd - ok
21:13:44.0615 0192 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:13:44.0631 0192 RasAgileVpn - ok
21:13:44.0646 0192 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:13:44.0646 0192 RasAuto - ok
21:13:44.0678 0192 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:13:44.0678 0192 Rasl2tp - ok
21:13:44.0709 0192 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:13:44.0709 0192 RasMan - ok
21:13:44.0724 0192 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:13:44.0740 0192 RasPppoe - ok
21:13:44.0756 0192 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:13:44.0756 0192 RasSstp - ok
21:13:44.0802 0192 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:13:44.0802 0192 rdbss - ok
21:13:44.0818 0192 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:13:44.0818 0192 rdpbus - ok
21:13:44.0834 0192 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:13:44.0834 0192 RDPCDD - ok
21:13:44.0865 0192 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:13:44.0865 0192 RDPENCDD - ok
21:13:44.0896 0192 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:13:44.0896 0192 RDPREFMP - ok
21:13:44.0927 0192 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:13:44.0927 0192 RDPWD - ok
21:13:44.0958 0192 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:13:44.0974 0192 rdyboost - ok
21:13:45.0005 0192 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:13:45.0005 0192 RemoteAccess - ok
21:13:45.0036 0192 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:13:45.0052 0192 RemoteRegistry - ok
21:13:45.0099 0192 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:13:45.0099 0192 RpcEptMapper - ok
21:13:45.0114 0192 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:13:45.0114 0192 RpcLocator - ok
21:13:45.0146 0192 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:13:45.0161 0192 RpcSs - ok
21:13:45.0192 0192 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:13:45.0192 0192 rspndr - ok
21:13:45.0239 0192 [ 3641E624C8C5D5EA089AE9B5340B5B79 ] rt70x64 C:\Windows\system32\DRIVERS\netr7064.sys
21:13:45.0239 0192 rt70x64 - ok
21:13:45.0270 0192 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:13:45.0270 0192 SamSs - ok
21:13:45.0302 0192 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:13:45.0302 0192 sbp2port - ok
21:13:45.0333 0192 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:13:45.0333 0192 SCardSvr - ok
21:13:45.0364 0192 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:13:45.0364 0192 scfilter - ok
21:13:45.0411 0192 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:13:45.0426 0192 Schedule - ok
21:13:45.0458 0192 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:13:45.0458 0192 SCPolicySvc - ok
21:13:45.0489 0192 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:13:45.0489 0192 SDRSVC - ok
21:13:45.0520 0192 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:13:45.0520 0192 secdrv - ok
21:13:45.0536 0192 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:13:45.0551 0192 seclogon - ok
21:13:45.0582 0192 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:13:45.0582 0192 SENS - ok
21:13:45.0598 0192 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:13:45.0598 0192 SensrSvc - ok
21:13:45.0629 0192 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:13:45.0629 0192 Serenum - ok
21:13:45.0645 0192 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:13:45.0660 0192 Serial - ok
21:13:45.0692 0192 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:13:45.0692 0192 sermouse - ok
21:13:45.0738 0192 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:13:45.0738 0192 SessionEnv - ok
21:13:45.0770 0192 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:13:45.0770 0192 sffdisk - ok
21:13:45.0785 0192 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:13:45.0785 0192 sffp_mmc - ok
21:13:45.0801 0192 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:13:45.0816 0192 sffp_sd - ok
21:13:45.0832 0192 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:13:45.0832 0192 sfloppy - ok
21:13:45.0848 0192 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:13:45.0863 0192 SharedAccess - ok
21:13:45.0879 0192 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:13:45.0879 0192 ShellHWDetection - ok
21:13:45.0910 0192 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:13:45.0910 0192 SiSRaid2 - ok
21:13:45.0926 0192 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:13:45.0926 0192 SiSRaid4 - ok
21:13:45.0972 0192 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:13:45.0972 0192 Smb - ok
21:13:46.0004 0192 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:13:46.0004 0192 SNMPTRAP - ok
21:13:46.0019 0192 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:13:46.0019 0192 spldr - ok
21:13:46.0066 0192 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:13:46.0082 0192 Spooler - ok
21:13:46.0191 0192 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:13:46.0253 0192 sppsvc - ok
21:13:46.0284 0192 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:13:46.0300 0192 sppuinotify - ok
21:13:46.0331 0192 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:13:46.0347 0192 srv - ok
21:13:46.0378 0192 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:13:46.0378 0192 srv2 - ok
21:13:46.0394 0192 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:13:46.0394 0192 srvnet - ok
21:13:46.0440 0192 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:13:46.0440 0192 SSDPSRV - ok
21:13:46.0456 0192 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:13:46.0472 0192 SstpSvc - ok
21:13:46.0487 0192 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:13:46.0487 0192 stexstor - ok
21:13:46.0534 0192 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:13:46.0534 0192 stisvc - ok
21:13:46.0565 0192 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:13:46.0565 0192 swenum - ok
21:13:46.0596 0192 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:13:46.0596 0192 swprv - ok
21:13:46.0659 0192 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:13:46.0690 0192 SysMain - ok
21:13:46.0721 0192 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:13:46.0721 0192 TabletInputService - ok
21:13:46.0737 0192 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:13:46.0752 0192 TapiSrv - ok
21:13:46.0784 0192 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:13:46.0784 0192 TBS - ok
21:13:46.0830 0192 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:13:46.0862 0192 Tcpip - ok
21:13:46.0908 0192 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:13:46.0924 0192 TCPIP6 - ok
21:13:46.0955 0192 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:13:46.0955 0192 tcpipreg - ok
21:13:46.0986 0192 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:13:46.0986 0192 TDPIPE - ok
21:13:47.0002 0192 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:13:47.0002 0192 TDTCP - ok
21:13:47.0049 0192 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:13:47.0049 0192 tdx - ok
21:13:47.0080 0192 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:13:47.0080 0192 TermDD - ok
21:13:47.0127 0192 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:13:47.0127 0192 TermService - ok
21:13:47.0158 0192 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:13:47.0158 0192 Themes - ok
21:13:47.0174 0192 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:13:47.0174 0192 THREADORDER - ok
21:13:47.0189 0192 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:13:47.0205 0192 TrkWks - ok
21:13:47.0236 0192 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:13:47.0236 0192 TrustedInstaller - ok
21:13:47.0267 0192 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:13:47.0267 0192 tssecsrv - ok
21:13:47.0314 0192 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:13:47.0314 0192 TsUsbFlt - ok
21:13:47.0361 0192 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:13:47.0361 0192 tunnel - ok
21:13:47.0392 0192 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:13:47.0392 0192 uagp35 - ok
21:13:47.0423 0192 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:13:47.0439 0192 udfs - ok
21:13:47.0470 0192 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:13:47.0470 0192 UI0Detect - ok
21:13:47.0501 0192 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:13:47.0501 0192 uliagpkx - ok
21:13:47.0532 0192 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
21:13:47.0532 0192 umbus - ok
21:13:47.0564 0192 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:13:47.0564 0192 UmPass - ok
21:13:47.0579 0192 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:13:47.0595 0192 upnphost - ok
21:13:47.0610 0192 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:13:47.0610 0192 usbccgp - ok
21:13:47.0657 0192 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:13:47.0657 0192 usbcir - ok
21:13:47.0688 0192 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:13:47.0688 0192 usbehci - ok
21:13:47.0720 0192 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:13:47.0720 0192 usbhub - ok
21:13:47.0735 0192 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:13:47.0735 0192 usbohci - ok
21:13:47.0766 0192 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:13:47.0766 0192 usbprint - ok
21:13:47.0798 0192 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:13:47.0798 0192 USBSTOR - ok
21:13:47.0813 0192 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:13:47.0813 0192 usbuhci - ok
21:13:47.0844 0192 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:13:47.0844 0192 UxSms - ok
21:13:47.0876 0192 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:13:47.0876 0192 VaultSvc - ok
21:13:47.0891 0192 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:13:47.0891 0192 vdrvroot - ok
21:13:47.0922 0192 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:13:47.0922 0192 vds - ok
21:13:47.0954 0192 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:13:47.0954 0192 vga - ok
21:13:47.0969 0192 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:13:47.0969 0192 VgaSave - ok
21:13:48.0016 0192 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:13:48.0016 0192 vhdmp - ok
21:13:48.0032 0192 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:13:48.0032 0192 viaide - ok
21:13:48.0063 0192 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:13:48.0063 0192 volmgr - ok
21:13:48.0078 0192 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:13:48.0078 0192 volmgrx - ok
21:13:48.0094 0192 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:13:48.0094 0192 volsnap - ok
21:13:48.0141 0192 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:13:48.0141 0192 vsmraid - ok
21:13:48.0188 0192 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:13:48.0219 0192 VSS - ok
21:13:48.0250 0192 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
21:13:48.0250 0192 vwifibus - ok
21:13:48.0281 0192 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:13:48.0281 0192 W32Time - ok
21:13:48.0312 0192 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:13:48.0312 0192 WacomPen - ok
21:13:48.0359 0192 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:13:48.0359 0192 WANARP - ok
21:13:48.0375 0192 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:13:48.0375 0192 Wanarpv6 - ok
21:13:48.0422 0192 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:13:48.0453 0192 WatAdminSvc - ok
21:13:48.0484 0192 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:13:48.0515 0192 wbengine - ok
21:13:48.0546 0192 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:13:48.0546 0192 WbioSrvc - ok
21:13:48.0593 0192 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:13:48.0593 0192 wcncsvc - ok
21:13:48.0609 0192 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:13:48.0624 0192 WcsPlugInService - ok
21:13:48.0640 0192 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:13:48.0640 0192 Wd - ok
21:13:48.0687 0192 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:13:48.0687 0192 Wdf01000 - ok
21:13:48.0718 0192 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:13:48.0734 0192 WdiServiceHost - ok
21:13:48.0734 0192 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:13:48.0734 0192 WdiSystemHost - ok
21:13:48.0780 0192 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:13:48.0780 0192 WebClient - ok
21:13:48.0796 0192 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:13:48.0812 0192 Wecsvc - ok
21:13:48.0827 0192 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:13:48.0827 0192 wercplsupport - ok
21:13:48.0858 0192 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:13:48.0858 0192 WerSvc - ok
21:13:48.0890 0192 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:13:48.0890 0192 WfpLwf - ok
21:13:48.0921 0192 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:13:48.0921 0192 WIMMount - ok
21:13:48.0952 0192 WinDefend - ok
21:13:48.0968 0192 WinHttpAutoProxySvc - ok
21:13:49.0014 0192 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:13:49.0030 0192 Winmgmt - ok
21:13:49.0108 0192 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:13:49.0139 0192 WinRM - ok
21:13:49.0186 0192 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:13:49.0202 0192 Wlansvc - ok
21:13:49.0311 0192 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:13:49.0358 0192 wlidsvc - ok
21:13:49.0389 0192 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:13:49.0404 0192 WmiAcpi - ok
21:13:49.0436 0192 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:13:49.0436 0192 wmiApSrv - ok
21:13:49.0451 0192 WMPNetworkSvc - ok
21:13:49.0482 0192 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:13:49.0482 0192 WPCSvc - ok
21:13:49.0498 0192 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:13:49.0514 0192 WPDBusEnum - ok
21:13:49.0529 0192 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:13:49.0529 0192 ws2ifsl - ok
21:13:49.0560 0192 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
21:13:49.0576 0192 wscsvc - ok
21:13:49.0576 0192 WSearch - ok
21:13:49.0670 0192 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:13:49.0716 0192 wuauserv - ok
21:13:49.0748 0192 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:13:49.0748 0192 WudfPf - ok
21:13:49.0779 0192 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:13:49.0779 0192 WUDFRd - ok
21:13:49.0810 0192 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:13:49.0810 0192 wudfsvc - ok
21:13:49.0841 0192 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:13:49.0857 0192 WwanSvc - ok
21:13:49.0888 0192 ================ Scan global ===============================
21:13:49.0935 0192 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:13:49.0950 0192 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:13:49.0966 0192 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:13:49.0982 0192 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:13:49.0997 0192 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:13:50.0013 0192 [Global] - ok
21:13:50.0013 0192 ================ Scan MBR ==================================
21:13:50.0028 0192 [ B9E42F49ABAFA9C9635A9DA88DCEB8D1 ] \Device\Harddisk0\DR0
21:13:50.0231 0192 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
21:13:50.0231 0192 \Device\Harddisk0\DR0 - detected TDSS File System (1)
21:13:50.0231 0192 ================ Scan VBR ==================================
21:13:50.0247 0192 [ AE2D469C0209A75CEF687DD492171F56 ] \Device\Harddisk0\DR0\Partition1
21:13:50.0247 0192 \Device\Harddisk0\DR0\Partition1 - ok
21:13:50.0262 0192 [ 62991F3502DFCF86711FD2DAC2DA3D4A ] \Device\Harddisk0\DR0\Partition2
21:13:50.0262 0192 \Device\Harddisk0\DR0\Partition2 - ok
21:13:50.0294 0192 [ 35501E0F5BC1821551F719FA4CE36F2C ] \Device\Harddisk0\DR0\Partition3
21:13:50.0294 0192 \Device\Harddisk0\DR0\Partition3 - ok
21:13:50.0309 0192 ============================================================
21:13:50.0309 0192 Scan finished
21:13:50.0309 0192 ============================================================
21:13:50.0325 1572 Detected object count: 1
21:13:50.0325 1572 Actual detected object count: 1
21:14:54.0566 1572 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
21:14:55.0112 1572 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
21:14:55.0287 1572 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
21:14:58.0596 1572 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
21:14:58.0689 1572 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
21:14:58.0710 1572 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
21:14:58.0735 1572 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
21:14:58.0910 1572 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
21:14:58.0946 1572 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
21:14:58.0997 1572 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
21:14:59.0003 1572 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
21:14:59.0006 1572 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
21:14:59.0029 1572 \Device\Harddisk0\DR0\TDLFS - deleted
21:14:59.0029 1572 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
21:15:29.0484 3640 Deinitialize success

On completion of the aswMBR scan, was there a choice to click the FIXMBR or FIX buttons?


Yes, FIXMBR was an option.
Would you like me to run it again and choose the FIX button?

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,923 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:14 PM

Posted 30 November 2012 - 09:24 PM

Yes and yes on aswMBR..

Please download TFC (Temp File Cleaner) by Old Timer and save it to your desktop.
alternate download link
  • Save any unsaved work. TFC will close ALL open programs including your browser!
  • Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • TFC will clear out all temp folders for all user accounts (temp, IE temp, Java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
Note: It is normal for the computer to be slow to boot after running TFC cleaner the first time.

Then run RKILL and MBAM..

Please download Rkill by Grinler and save it to your desktop.Link 1
Link 2
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot the computer, you will need to run the application again.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.

Please ask any needed questions,post logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 30 November 2012 - 10:53 PM

Okay, here is the MBAM log that came up after the scan:

www.malwarebytes.org

Database version: v2012.12.01.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
new user :: NEWUSER-PC [administrator]

11/30/2012 10:45:05 PM
mbam-log-2012-11-30 (22-45-05).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 204587
Time elapsed: 4 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#10 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 30 November 2012 - 11:05 PM

This is the RKill Log:


Program started at: 11/30/2012 10:42:57 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 11/30/2012 10:43:02 PM
Execution time: 0 hours(s), 0 minute(s), and 4 seconds(s)

#11 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 30 November 2012 - 11:20 PM

After scan click Remove Selected, Post new scan log and Reboot into normal mode.

Please ask any needed questions,post logs and Let us know how the PC is running now.


MBam did not ask me to remove selected because it did not find anything on the quick scan.
I cannot seem to find the log from the TFC scan. How does all of this look to you? Did I do this correctly?


I still have this pop-up box at start up that "There was a problem starting C:\Users\NEWUSE~1\AppData\Local\Temp\
I have had this error message come up for awhile now. I do not know if I need this module or not?

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,923 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:14 PM

Posted 02 December 2012 - 08:36 PM

Sorry,i missed this..

MBam did not ask me to remove selected because it did not find anything on the quick scan.
I cannot seem to find the log from the TFC scan. How does all of this look to you? Did I do this correctly?


Yes this is correct.. TFC makes no log just cleans out the TEMP folder.

Clean ONLY the contents of the Appdata Temp File..

deleting the Appdata file itself will cause major issues.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 03 December 2012 - 08:42 AM

How do I know if I deleted the temp app data?

IE crashed again Saturday evening, almost immediately after starting to use it. A full MBAM scan revealed the following:


Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 376379
Time elapsed: 1 hour(s), 2 minute(s), 53 second(s)

Memory Processes Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> 3472 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 6
C:\ProgramData\Microsoft\Windows\DRM\EB04.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\DRM\EB15.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\29.11.2012_22.33.48\mbr0000\tdlfs0000\tsk0002.dta (Trojan.Agent.MRGGen) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\30.11.2012_21.13.09\tdlfs0000\tsk0002.dta (Trojan.Agent.MRGGen) -> Quarantined and deleted successfully.
C:\Users\new user\AppData\Local\Temp\4.tmp (Trojan.Agent.MRGGen) -> Quarantined and deleted successfully.
C:\Windows\svchost.exe (Trojan.Agent) -> Delete on reboot.

(end)

I ran MBAM again on Sunday. The svchost.exe was still there. I rebooted and scanned again and it was still there.

#14 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 03 December 2012 - 08:44 AM

I also ran TDSS Killer again:

17:07:39.0062 2588 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:07:39.0078 2588 ============================================================
17:07:39.0078 2588 Current date / time: 2012/12/02 17:07:39.0078
17:07:39.0078 2588 SystemInfo:
17:07:39.0078 2588
17:07:39.0078 2588 OS Version: 6.1.7601 ServicePack: 1.0
17:07:39.0078 2588 Product type: Workstation
17:07:39.0078 2588 ComputerName: NEWUSER-PC
17:07:39.0078 2588 UserName: new user
17:07:39.0078 2588 Windows directory: C:\Windows
17:07:39.0078 2588 System windows directory: C:\Windows
17:07:39.0078 2588 Running under WOW64
17:07:39.0078 2588 Processor architecture: Intel x64
17:07:39.0078 2588 Number of processors: 1
17:07:39.0078 2588 Page size: 0x1000
17:07:39.0078 2588 Boot type: Normal boot
17:07:39.0078 2588 ============================================================
17:07:40.0342 2588 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
17:07:40.0342 2588 ============================================================
17:07:40.0342 2588 \Device\Harddisk0\DR0:
17:07:40.0342 2588 MBR partitions:
17:07:40.0342 2588 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:07:40.0342 2588 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38F89800
17:07:40.0342 2588 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38FBC000, BlocksNum 0x13C9800
17:07:40.0342 2588 ============================================================
17:07:40.0373 2588 C: <-> \Device\Harddisk0\DR0\Partition2
17:07:40.0404 2588 D: <-> \Device\Harddisk0\DR0\Partition3
17:07:40.0404 2588 ============================================================
17:07:40.0404 2588 Initialize success
17:07:40.0404 2588 ============================================================
17:07:43.0025 2024 ============================================================
17:07:43.0025 2024 Scan started
17:07:43.0025 2024 Mode: Manual;
17:07:43.0025 2024 ============================================================
17:07:43.0664 2024 ================ Scan system memory ========================
17:07:43.0664 2024 System memory - ok
17:07:43.0664 2024 ================ Scan services =============================
17:07:43.0836 2024 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:07:43.0836 2024 1394ohci - ok
17:07:43.0883 2024 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:07:43.0883 2024 ACPI - ok
17:07:43.0914 2024 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:07:43.0914 2024 AcpiPmi - ok
17:07:43.0976 2024 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:07:43.0992 2024 adp94xx - ok
17:07:44.0008 2024 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:07:44.0008 2024 adpahci - ok
17:07:44.0023 2024 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:07:44.0023 2024 adpu320 - ok
17:07:44.0054 2024 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:07:44.0070 2024 AeLookupSvc - ok
17:07:44.0132 2024 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:07:44.0132 2024 AFD - ok
17:07:44.0164 2024 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:07:44.0164 2024 agp440 - ok
17:07:44.0195 2024 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:07:44.0195 2024 ALG - ok
17:07:44.0210 2024 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:07:44.0210 2024 aliide - ok
17:07:44.0242 2024 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:07:44.0242 2024 amdide - ok
17:07:44.0273 2024 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:07:44.0273 2024 AmdK8 - ok
17:07:44.0288 2024 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:07:44.0288 2024 AmdPPM - ok
17:07:44.0320 2024 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:07:44.0320 2024 amdsata - ok
17:07:44.0351 2024 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:07:44.0351 2024 amdsbs - ok
17:07:44.0366 2024 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:07:44.0366 2024 amdxata - ok
17:07:44.0398 2024 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:07:44.0398 2024 AppID - ok
17:07:44.0413 2024 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:07:44.0413 2024 AppIDSvc - ok
17:07:44.0460 2024 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:07:44.0476 2024 Appinfo - ok
17:07:44.0507 2024 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:07:44.0507 2024 arc - ok
17:07:44.0538 2024 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:07:44.0538 2024 arcsas - ok
17:07:44.0569 2024 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:07:44.0569 2024 AsyncMac - ok
17:07:44.0616 2024 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:07:44.0616 2024 atapi - ok
17:07:44.0647 2024 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:07:44.0678 2024 AudioEndpointBuilder - ok
17:07:44.0694 2024 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:07:44.0694 2024 AudioSrv - ok
17:07:44.0725 2024 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:07:44.0725 2024 AxInstSV - ok
17:07:44.0756 2024 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:07:44.0772 2024 b06bdrv - ok
17:07:44.0819 2024 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:07:44.0819 2024 b57nd60a - ok
17:07:44.0944 2024 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
17:07:44.0944 2024 BBSvc - ok
17:07:45.0068 2024 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:07:45.0068 2024 BBUpdate - ok
17:07:45.0100 2024 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:07:45.0100 2024 BDESVC - ok
17:07:45.0131 2024 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:07:45.0131 2024 Beep - ok
17:07:45.0178 2024 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:07:45.0193 2024 BFE - ok
17:07:45.0256 2024 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:07:45.0287 2024 BITS - ok
17:07:45.0318 2024 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:07:45.0318 2024 blbdrive - ok
17:07:45.0349 2024 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:07:45.0349 2024 bowser - ok
17:07:45.0380 2024 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:07:45.0380 2024 BrFiltLo - ok
17:07:45.0412 2024 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:07:45.0412 2024 BrFiltUp - ok
17:07:45.0443 2024 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:07:45.0443 2024 Browser - ok
17:07:45.0458 2024 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:07:45.0474 2024 Brserid - ok
17:07:45.0490 2024 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:07:45.0490 2024 BrSerWdm - ok
17:07:45.0505 2024 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:07:45.0505 2024 BrUsbMdm - ok
17:07:45.0521 2024 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:07:45.0521 2024 BrUsbSer - ok
17:07:45.0552 2024 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:07:45.0552 2024 BTHMODEM - ok
17:07:45.0583 2024 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:07:45.0583 2024 bthserv - ok
17:07:45.0614 2024 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:07:45.0630 2024 cdfs - ok
17:07:45.0677 2024 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:07:45.0677 2024 cdrom - ok
17:07:45.0708 2024 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:07:45.0724 2024 CertPropSvc - ok
17:07:45.0739 2024 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:07:45.0739 2024 circlass - ok
17:07:45.0755 2024 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:07:45.0770 2024 CLFS - ok
17:07:45.0817 2024 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:07:45.0817 2024 clr_optimization_v2.0.50727_32 - ok
17:07:45.0880 2024 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:07:45.0880 2024 clr_optimization_v2.0.50727_64 - ok
17:07:45.0958 2024 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:07:45.0973 2024 clr_optimization_v4.0.30319_32 - ok
17:07:46.0020 2024 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:07:46.0020 2024 clr_optimization_v4.0.30319_64 - ok
17:07:46.0067 2024 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:07:46.0067 2024 CmBatt - ok
17:07:46.0098 2024 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:07:46.0098 2024 cmdide - ok
17:07:46.0129 2024 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:07:46.0145 2024 CNG - ok
17:07:46.0160 2024 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:07:46.0160 2024 Compbatt - ok
17:07:46.0192 2024 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:07:46.0192 2024 CompositeBus - ok
17:07:46.0223 2024 COMSysApp - ok
17:07:46.0238 2024 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:07:46.0238 2024 crcdisk - ok
17:07:46.0270 2024 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:07:46.0270 2024 CryptSvc - ok
17:07:46.0316 2024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:07:46.0316 2024 DcomLaunch - ok
17:07:46.0348 2024 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:07:46.0348 2024 defragsvc - ok
17:07:46.0379 2024 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:07:46.0394 2024 DfsC - ok
17:07:46.0410 2024 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:07:46.0426 2024 Dhcp - ok
17:07:46.0457 2024 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:07:46.0457 2024 discache - ok
17:07:46.0488 2024 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:07:46.0488 2024 Disk - ok
17:07:46.0519 2024 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:07:46.0535 2024 Dnscache - ok
17:07:46.0566 2024 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:07:46.0566 2024 dot3svc - ok
17:07:46.0597 2024 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:07:46.0597 2024 DPS - ok
17:07:46.0628 2024 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:07:46.0644 2024 drmkaud - ok
17:07:46.0675 2024 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:07:46.0691 2024 DXGKrnl - ok
17:07:46.0706 2024 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:07:46.0706 2024 EapHost - ok
17:07:46.0784 2024 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:07:46.0862 2024 ebdrv - ok
17:07:46.0894 2024 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:07:46.0894 2024 EFS - ok
17:07:46.0940 2024 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:07:46.0940 2024 ehRecvr - ok
17:07:46.0972 2024 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:07:46.0972 2024 ehSched - ok
17:07:47.0034 2024 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:07:47.0050 2024 elxstor - ok
17:07:47.0081 2024 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:07:47.0081 2024 ErrDev - ok
17:07:47.0128 2024 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:07:47.0128 2024 EventSystem - ok
17:07:47.0174 2024 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:07:47.0174 2024 exfat - ok
17:07:47.0206 2024 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:07:47.0206 2024 fastfat - ok
17:07:47.0252 2024 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:07:47.0252 2024 Fax - ok
17:07:47.0268 2024 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:07:47.0268 2024 fdc - ok
17:07:47.0315 2024 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:07:47.0315 2024 fdPHost - ok
17:07:47.0330 2024 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:07:47.0330 2024 FDResPub - ok
17:07:47.0346 2024 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:07:47.0346 2024 FileInfo - ok
17:07:47.0362 2024 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:07:47.0377 2024 Filetrace - ok
17:07:47.0393 2024 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:07:47.0393 2024 flpydisk - ok
17:07:47.0424 2024 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:07:47.0424 2024 FltMgr - ok
17:07:47.0471 2024 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:07:47.0486 2024 FontCache - ok
17:07:47.0533 2024 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:07:47.0533 2024 FontCache3.0.0.0 - ok
17:07:47.0564 2024 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:07:47.0564 2024 FsDepends - ok
17:07:47.0580 2024 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:07:47.0580 2024 Fs_Rec - ok
17:07:47.0627 2024 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:07:47.0627 2024 fvevol - ok
17:07:47.0658 2024 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:07:47.0658 2024 gagp30kx - ok
17:07:47.0720 2024 [ 551D463E4CCEB5240234DA6718C93A44 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:07:47.0720 2024 GameConsoleService - ok
17:07:47.0767 2024 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:07:47.0783 2024 gpsvc - ok
17:07:47.0798 2024 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:07:47.0798 2024 hcw85cir - ok
17:07:47.0845 2024 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:07:47.0845 2024 HDAudBus - ok
17:07:47.0861 2024 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:07:47.0861 2024 HidBatt - ok
17:07:47.0892 2024 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:07:47.0892 2024 HidBth - ok
17:07:47.0908 2024 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:07:47.0908 2024 HidIr - ok
17:07:47.0939 2024 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:07:47.0939 2024 hidserv - ok
17:07:47.0954 2024 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:07:47.0954 2024 HidUsb - ok
17:07:47.0986 2024 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:07:48.0001 2024 hkmsvc - ok
17:07:48.0017 2024 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:07:48.0017 2024 HomeGroupListener - ok
17:07:48.0048 2024 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:07:48.0048 2024 HomeGroupProvider - ok
17:07:48.0126 2024 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:07:48.0126 2024 HP Support Assistant Service - ok
17:07:48.0188 2024 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:07:48.0188 2024 HPDrvMntSvc.exe - ok
17:07:48.0235 2024 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:07:48.0235 2024 hpqwmiex - ok
17:07:48.0298 2024 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:07:48.0298 2024 HpSAMD - ok
17:07:48.0329 2024 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:07:48.0344 2024 HTTP - ok
17:07:48.0376 2024 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:07:48.0376 2024 hwpolicy - ok
17:07:48.0407 2024 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:07:48.0407 2024 i8042prt - ok
17:07:48.0485 2024 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:07:48.0516 2024 iaStorV - ok
17:07:48.0656 2024 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:07:48.0672 2024 idsvc - ok
17:07:48.0719 2024 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:07:48.0719 2024 iirsp - ok
17:07:48.0766 2024 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:07:48.0781 2024 IKEEXT - ok
17:07:48.0859 2024 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:07:48.0906 2024 IntcAzAudAddService - ok
17:07:48.0937 2024 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:07:48.0937 2024 intelide - ok
17:07:48.0968 2024 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:07:48.0968 2024 intelppm - ok
17:07:49.0000 2024 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:07:49.0000 2024 IPBusEnum - ok
17:07:49.0015 2024 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:07:49.0015 2024 IpFilterDriver - ok
17:07:49.0046 2024 [ 08C2957BB30058E663720C5606885653 ] IpHlpSvc C:\Windows\System32\iphlpsvc.dll
17:07:49.0062 2024 IpHlpSvc - ok
17:07:49.0093 2024 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:07:49.0093 2024 IPMIDRV - ok
17:07:49.0124 2024 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:07:49.0124 2024 IPNAT - ok
17:07:49.0156 2024 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:07:49.0156 2024 IRENUM - ok
17:07:49.0171 2024 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:07:49.0171 2024 isapnp - ok
17:07:49.0202 2024 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:07:49.0202 2024 iScsiPrt - ok
17:07:49.0234 2024 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:07:49.0234 2024 kbdclass - ok
17:07:49.0265 2024 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:07:49.0265 2024 kbdhid - ok
17:07:49.0280 2024 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:07:49.0280 2024 KeyIso - ok
17:07:49.0312 2024 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:07:49.0312 2024 KSecDD - ok
17:07:49.0358 2024 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:07:49.0358 2024 KSecPkg - ok
17:07:49.0390 2024 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:07:49.0390 2024 ksthunk - ok
17:07:49.0421 2024 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:07:49.0421 2024 KtmRm - ok
17:07:49.0468 2024 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:07:49.0468 2024 LanmanServer - ok
17:07:49.0499 2024 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:07:49.0499 2024 LanmanWorkstation - ok
17:07:49.0577 2024 [ 2238B91AC1A12CC6CC4C4FED41258B2A ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:07:49.0577 2024 LightScribeService - ok
17:07:49.0624 2024 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:07:49.0624 2024 lltdio - ok
17:07:49.0686 2024 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:07:49.0686 2024 lltdsvc - ok
17:07:49.0717 2024 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:07:49.0717 2024 lmhosts - ok
17:07:49.0764 2024 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:07:49.0764 2024 LSI_FC - ok
17:07:49.0780 2024 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:07:49.0780 2024 LSI_SAS - ok
17:07:49.0795 2024 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:07:49.0811 2024 LSI_SAS2 - ok
17:07:49.0826 2024 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:07:49.0842 2024 LSI_SCSI - ok
17:07:49.0858 2024 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:07:49.0858 2024 luafv - ok
17:07:49.0889 2024 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:07:49.0904 2024 Mcx2Svc - ok
17:07:49.0920 2024 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:07:49.0920 2024 megasas - ok
17:07:49.0936 2024 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:07:49.0951 2024 MegaSR - ok
17:07:49.0967 2024 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:07:49.0967 2024 MMCSS - ok
17:07:49.0998 2024 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:07:49.0998 2024 Modem - ok
17:07:50.0029 2024 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:07:50.0029 2024 monitor - ok
17:07:50.0045 2024 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
17:07:50.0045 2024 mouclass - ok
17:07:50.0076 2024 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:07:50.0076 2024 mouhid - ok
17:07:50.0107 2024 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:07:50.0107 2024 mountmgr - ok
17:07:50.0170 2024 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:07:50.0170 2024 MozillaMaintenance - ok
17:07:50.0263 2024 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:07:50.0263 2024 MpFilter - ok
17:07:50.0294 2024 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:07:50.0294 2024 mpio - ok
17:07:50.0419 2024 [ 0EBB390B7AEEC45EC061D9870A34FD42 ] MpKsla30261bf c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6916E0D0-CA19-48CD-9129-C0A91F21DF06}\MpKsla30261bf.sys
17:07:50.0419 2024 MpKsla30261bf - ok
17:07:50.0482 2024 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:07:50.0482 2024 mpsdrv - ok
17:07:50.0513 2024 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:07:50.0528 2024 MpsSvc - ok
17:07:50.0560 2024 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:07:50.0560 2024 MRxDAV - ok
17:07:50.0591 2024 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:07:50.0606 2024 mrxsmb - ok
17:07:50.0622 2024 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:07:50.0638 2024 mrxsmb10 - ok
17:07:50.0653 2024 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:07:50.0653 2024 mrxsmb20 - ok
17:07:50.0684 2024 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:07:50.0684 2024 msahci - ok
17:07:50.0731 2024 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:07:50.0731 2024 msdsm - ok
17:07:50.0747 2024 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:07:50.0747 2024 MSDTC - ok
17:07:50.0794 2024 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:07:50.0794 2024 Msfs - ok
17:07:50.0809 2024 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:07:50.0809 2024 mshidkmdf - ok
17:07:50.0825 2024 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:07:50.0840 2024 msisadrv - ok
17:07:50.0856 2024 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:07:50.0872 2024 MSiSCSI - ok
17:07:50.0887 2024 msiserver - ok
17:07:50.0918 2024 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:07:50.0918 2024 MSKSSRV - ok
17:07:51.0012 2024 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:07:51.0012 2024 MsMpSvc - ok
17:07:51.0028 2024 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:07:51.0043 2024 MSPCLOCK - ok
17:07:51.0074 2024 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:07:51.0074 2024 MSPQM - ok
17:07:51.0106 2024 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:07:51.0106 2024 MsRPC - ok
17:07:51.0137 2024 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:07:51.0137 2024 mssmbios - ok
17:07:51.0168 2024 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:07:51.0168 2024 MSTEE - ok
17:07:51.0184 2024 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:07:51.0199 2024 MTConfig - ok
17:07:51.0199 2024 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:07:51.0215 2024 Mup - ok
17:07:51.0246 2024 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:07:51.0246 2024 napagent - ok
17:07:51.0277 2024 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:07:51.0293 2024 NativeWifiP - ok
17:07:51.0355 2024 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:07:51.0355 2024 NDIS - ok
17:07:51.0386 2024 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:07:51.0386 2024 NdisCap - ok
17:07:51.0402 2024 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:07:51.0418 2024 NdisTapi - ok
17:07:51.0449 2024 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:07:51.0449 2024 Ndisuio - ok
17:07:51.0480 2024 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:07:51.0480 2024 NdisWan - ok
17:07:51.0511 2024 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:07:51.0511 2024 NDProxy - ok
17:07:51.0542 2024 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:07:51.0542 2024 NetBIOS - ok
17:07:51.0574 2024 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:07:51.0574 2024 NetBT - ok
17:07:51.0589 2024 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:07:51.0589 2024 Netlogon - ok
17:07:51.0652 2024 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:07:51.0652 2024 Netman - ok
17:07:51.0683 2024 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:07:51.0698 2024 netprofm - ok
17:07:51.0730 2024 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:07:51.0730 2024 NetTcpPortSharing - ok
17:07:51.0761 2024 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:07:51.0761 2024 nfrd960 - ok
17:07:51.0792 2024 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:07:51.0792 2024 NisDrv - ok
17:07:51.0854 2024 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:07:51.0854 2024 NisSrv - ok
17:07:51.0901 2024 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:07:51.0917 2024 NlaSvc - ok
17:07:51.0932 2024 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:07:51.0948 2024 Npfs - ok
17:07:51.0964 2024 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:07:51.0964 2024 nsi - ok
17:07:51.0979 2024 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:07:51.0995 2024 nsiproxy - ok
17:07:52.0057 2024 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:07:52.0104 2024 Ntfs - ok
17:07:52.0135 2024 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:07:52.0135 2024 Null - ok
17:07:52.0385 2024 [ C967514483FA30A0A352E70BB6414D1D ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:07:52.0603 2024 nvlddmkm - ok
17:07:52.0634 2024 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
17:07:52.0634 2024 NVNET - ok
17:07:52.0666 2024 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:07:52.0666 2024 nvraid - ok
17:07:52.0681 2024 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:07:52.0681 2024 nvstor - ok
17:07:52.0712 2024 [ 1E45F96342429D63DC30E0D9117DA3D8 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
17:07:52.0712 2024 nvstor64 - ok
17:07:52.0744 2024 [ E26706A65D97EF9188B1D7BFA23C96C2 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:07:52.0744 2024 nvsvc - ok
17:07:52.0775 2024 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:07:52.0775 2024 nv_agp - ok
17:07:52.0790 2024 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:07:52.0790 2024 ohci1394 - ok
17:07:52.0837 2024 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:07:52.0837 2024 p2pimsvc - ok
17:07:52.0853 2024 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:07:52.0868 2024 p2psvc - ok
17:07:52.0884 2024 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:07:52.0900 2024 Parport - ok
17:07:52.0915 2024 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:07:52.0931 2024 partmgr - ok
17:07:52.0931 2024 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:07:52.0946 2024 PcaSvc - ok
17:07:52.0993 2024 PcdrNdisuio - ok
17:07:53.0040 2024 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:07:53.0040 2024 pci - ok
17:07:53.0071 2024 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:07:53.0071 2024 pciide - ok
17:07:53.0102 2024 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:07:53.0102 2024 pcmcia - ok
17:07:53.0134 2024 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:07:53.0134 2024 pcw - ok
17:07:53.0149 2024 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:07:53.0165 2024 PEAUTH - ok
17:07:53.0196 2024 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:07:53.0196 2024 PerfHost - ok
17:07:53.0258 2024 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:07:53.0290 2024 pla - ok
17:07:53.0321 2024 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:07:53.0321 2024 PlugPlay - ok
17:07:53.0352 2024 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:07:53.0352 2024 PNRPAutoReg - ok
17:07:53.0368 2024 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:07:53.0383 2024 PNRPsvc - ok
17:07:53.0399 2024 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:07:53.0414 2024 PolicyAgent - ok
17:07:53.0446 2024 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:07:53.0446 2024 Power - ok
17:07:53.0477 2024 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:07:53.0477 2024 PptpMiniport - ok
17:07:53.0492 2024 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:07:53.0508 2024 Processor - ok
17:07:53.0524 2024 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:07:53.0524 2024 ProfSvc - ok
17:07:53.0539 2024 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:07:53.0539 2024 ProtectedStorage - ok
17:07:53.0586 2024 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:07:53.0586 2024 Psched - ok
17:07:53.0617 2024 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:07:53.0648 2024 ql2300 - ok
17:07:53.0695 2024 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:07:53.0695 2024 ql40xx - ok
17:07:53.0742 2024 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:07:53.0742 2024 QWAVE - ok
17:07:53.0773 2024 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:07:53.0773 2024 QWAVEdrv - ok
17:07:53.0804 2024 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:07:53.0804 2024 RasAcd - ok
17:07:53.0836 2024 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:07:53.0836 2024 RasAgileVpn - ok
17:07:53.0851 2024 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:07:53.0851 2024 RasAuto - ok
17:07:53.0882 2024 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:07:53.0882 2024 Rasl2tp - ok
17:07:53.0914 2024 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:07:53.0929 2024 RasMan - ok
17:07:53.0945 2024 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:07:53.0945 2024 RasPppoe - ok
17:07:53.0976 2024 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:07:53.0976 2024 RasSstp - ok
17:07:54.0007 2024 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:07:54.0007 2024 rdbss - ok
17:07:54.0023 2024 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:07:54.0023 2024 rdpbus - ok
17:07:54.0054 2024 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:07:54.0054 2024 RDPCDD - ok
17:07:54.0085 2024 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:07:54.0085 2024 RDPENCDD - ok
17:07:54.0101 2024 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:07:54.0101 2024 RDPREFMP - ok
17:07:54.0132 2024 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:07:54.0132 2024 RDPWD - ok
17:07:54.0163 2024 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:07:54.0163 2024 rdyboost - ok
17:07:54.0210 2024 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:07:54.0210 2024 RemoteAccess - ok
17:07:54.0241 2024 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:07:54.0241 2024 RemoteRegistry - ok
17:07:54.0272 2024 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:07:54.0272 2024 RpcEptMapper - ok
17:07:54.0288 2024 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:07:54.0304 2024 RpcLocator - ok
17:07:54.0335 2024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:07:54.0335 2024 RpcSs - ok
17:07:54.0366 2024 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:07:54.0366 2024 rspndr - ok
17:07:54.0413 2024 [ 3641E624C8C5D5EA089AE9B5340B5B79 ] rt70x64 C:\Windows\system32\DRIVERS\netr7064.sys
17:07:54.0413 2024 rt70x64 - ok
17:07:54.0428 2024 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:07:54.0428 2024 SamSs - ok
17:07:54.0475 2024 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:07:54.0475 2024 sbp2port - ok
17:07:54.0506 2024 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:07:54.0506 2024 SCardSvr - ok
17:07:54.0538 2024 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:07:54.0538 2024 scfilter - ok
17:07:54.0584 2024 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:07:54.0600 2024 Schedule - ok
17:07:54.0631 2024 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:07:54.0631 2024 SCPolicySvc - ok
17:07:54.0662 2024 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:07:54.0662 2024 SDRSVC - ok
17:07:54.0694 2024 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:07:54.0694 2024 secdrv - ok
17:07:54.0709 2024 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:07:54.0709 2024 seclogon - ok
17:07:54.0740 2024 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:07:54.0740 2024 SENS - ok
17:07:54.0756 2024 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:07:54.0756 2024 SensrSvc - ok
17:07:54.0787 2024 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:07:54.0787 2024 Serenum - ok
17:07:54.0818 2024 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:07:54.0818 2024 Serial - ok
17:07:54.0834 2024 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:07:54.0834 2024 sermouse - ok
17:07:54.0881 2024 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:07:54.0881 2024 SessionEnv - ok
17:07:54.0912 2024 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:07:54.0912 2024 sffdisk - ok
17:07:54.0928 2024 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:07:54.0928 2024 sffp_mmc - ok
17:07:54.0959 2024 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:07:54.0959 2024 sffp_sd - ok
17:07:54.0974 2024 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:07:54.0974 2024 sfloppy - ok
17:07:54.0990 2024 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:07:55.0006 2024 SharedAccess - ok
17:07:55.0037 2024 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:07:55.0052 2024 ShellHWDetection - ok
17:07:55.0084 2024 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:07:55.0084 2024 SiSRaid2 - ok
17:07:55.0099 2024 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:07:55.0099 2024 SiSRaid4 - ok
17:07:55.0130 2024 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:07:55.0130 2024 Smb - ok
17:07:55.0177 2024 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:07:55.0177 2024 SNMPTRAP - ok
17:07:55.0193 2024 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:07:55.0193 2024 spldr - ok
17:07:55.0224 2024 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:07:55.0224 2024 Spooler - ok
17:07:55.0302 2024 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:07:55.0380 2024 sppsvc - ok
17:07:55.0396 2024 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:07:55.0411 2024 sppuinotify - ok
17:07:55.0442 2024 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:07:55.0442 2024 srv - ok
17:07:55.0474 2024 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:07:55.0474 2024 srv2 - ok
17:07:55.0489 2024 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:07:55.0489 2024 srvnet - ok
17:07:55.0552 2024 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:07:55.0552 2024 SSDPSRV - ok
17:07:55.0614 2024 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:07:55.0614 2024 SstpSvc - ok
17:07:55.0630 2024 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:07:55.0630 2024 stexstor - ok
17:07:55.0692 2024 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:07:55.0692 2024 stisvc - ok
17:07:55.0708 2024 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:07:55.0708 2024 swenum - ok
17:07:55.0739 2024 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:07:55.0739 2024 swprv - ok
17:07:55.0801 2024 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:07:55.0817 2024 SysMain - ok
17:07:55.0848 2024 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:07:55.0848 2024 TabletInputService - ok
17:07:55.0879 2024 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:07:55.0879 2024 TapiSrv - ok
17:07:55.0910 2024 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:07:55.0910 2024 TBS - ok
17:07:55.0957 2024 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:07:55.0988 2024 Tcpip - ok
17:07:56.0035 2024 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:07:56.0051 2024 TCPIP6 - ok
17:07:56.0082 2024 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:07:56.0082 2024 tcpipreg - ok
17:07:56.0113 2024 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:07:56.0113 2024 TDPIPE - ok
17:07:56.0144 2024 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:07:56.0144 2024 TDTCP - ok
17:07:56.0176 2024 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:07:56.0176 2024 tdx - ok
17:07:56.0207 2024 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:07:56.0207 2024 TermDD - ok
17:07:56.0254 2024 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:07:56.0254 2024 TermService - ok
17:07:56.0285 2024 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:07:56.0300 2024 Themes - ok
17:07:56.0300 2024 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:07:56.0300 2024 THREADORDER - ok
17:07:56.0316 2024 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:07:56.0332 2024 TrkWks - ok
17:07:56.0363 2024 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:07:56.0363 2024 TrustedInstaller - ok
17:07:56.0394 2024 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:07:56.0410 2024 tssecsrv - ok
17:07:56.0441 2024 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:07:56.0441 2024 TsUsbFlt - ok
17:07:56.0503 2024 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:07:56.0503 2024 tunnel - ok
17:07:56.0519 2024 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:07:56.0519 2024 uagp35 - ok
17:07:56.0566 2024 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:07:56.0566 2024 udfs - ok
17:07:56.0612 2024 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:07:56.0612 2024 UI0Detect - ok
17:07:56.0628 2024 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:07:56.0644 2024 uliagpkx - ok
17:07:56.0659 2024 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:07:56.0659 2024 umbus - ok
17:07:56.0690 2024 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:07:56.0690 2024 UmPass - ok
17:07:56.0706 2024 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:07:56.0706 2024 upnphost - ok
17:07:56.0737 2024 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:07:56.0737 2024 usbccgp - ok
17:07:56.0768 2024 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:07:56.0768 2024 usbcir - ok
17:07:56.0800 2024 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:07:56.0800 2024 usbehci - ok
17:07:56.0815 2024 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:07:56.0815 2024 usbhub - ok
17:07:56.0831 2024 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:07:56.0846 2024 usbohci - ok
17:07:56.0862 2024 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:07:56.0862 2024 usbprint - ok
17:07:56.0893 2024 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:07:56.0893 2024 USBSTOR - ok
17:07:56.0909 2024 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:07:56.0909 2024 usbuhci - ok
17:07:56.0940 2024 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:07:56.0940 2024 UxSms - ok
17:07:56.0956 2024 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:07:56.0971 2024 VaultSvc - ok
17:07:56.0987 2024 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:07:56.0987 2024 vdrvroot - ok
17:07:57.0002 2024 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:07:57.0018 2024 vds - ok
17:07:57.0049 2024 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:07:57.0065 2024 vga - ok
17:07:57.0080 2024 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:07:57.0080 2024 VgaSave - ok
17:07:57.0127 2024 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:07:57.0127 2024 vhdmp - ok
17:07:57.0158 2024 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:07:57.0158 2024 viaide - ok
17:07:57.0190 2024 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:07:57.0190 2024 volmgr - ok
17:07:57.0221 2024 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:07:57.0221 2024 volmgrx - ok
17:07:57.0236 2024 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:07:57.0236 2024 volsnap - ok
17:07:57.0283 2024 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:07:57.0283 2024 vsmraid - ok
17:07:57.0346 2024 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:07:57.0392 2024 VSS - ok
17:07:57.0424 2024 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:07:57.0424 2024 vwifibus - ok
17:07:57.0470 2024 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:07:57.0470 2024 W32Time - ok
17:07:57.0502 2024 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:07:57.0502 2024 WacomPen - ok
17:07:57.0548 2024 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:07:57.0548 2024 WANARP - ok
17:07:57.0564 2024 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:07:57.0564 2024 Wanarpv6 - ok
17:07:57.0642 2024 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:07:57.0673 2024 WatAdminSvc - ok
17:07:57.0720 2024 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:07:57.0751 2024 wbengine - ok
17:07:57.0798 2024 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:07:57.0798 2024 WbioSrvc - ok
17:07:57.0829 2024 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:07:57.0829 2024 wcncsvc - ok
17:07:57.0845 2024 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:07:57.0860 2024 WcsPlugInService - ok
17:07:57.0876 2024 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:07:57.0876 2024 Wd - ok
17:07:57.0923 2024 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:07:57.0923 2024 Wdf01000 - ok
17:07:57.0954 2024 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:07:57.0970 2024 WdiServiceHost - ok
17:07:57.0970 2024 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:07:57.0970 2024 WdiSystemHost - ok
17:07:58.0016 2024 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:07:58.0016 2024 WebClient - ok
17:07:58.0032 2024 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:07:58.0048 2024 Wecsvc - ok
17:07:58.0063 2024 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:07:58.0063 2024 wercplsupport - ok
17:07:58.0079 2024 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:07:58.0094 2024 WerSvc - ok
17:07:58.0126 2024 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:07:58.0126 2024 WfpLwf - ok
17:07:58.0141 2024 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:07:58.0141 2024 WIMMount - ok
17:07:58.0172 2024 WinDefend - ok
17:07:58.0188 2024 WinHttpAutoProxySvc - ok
17:07:58.0250 2024 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:07:58.0266 2024 Winmgmt - ok
17:07:58.0328 2024 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:07:58.0360 2024 WinRM - ok
17:07:58.0406 2024 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:07:58.0422 2024 Wlansvc - ok
17:07:58.0531 2024 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:07:58.0578 2024 wlidsvc - ok
17:07:58.0609 2024 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:07:58.0609 2024 WmiAcpi - ok
17:07:58.0656 2024 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:07:58.0656 2024 wmiApSrv - ok
17:07:58.0687 2024 WMPNetworkSvc - ok
17:07:58.0718 2024 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:07:58.0718 2024 WPCSvc - ok
17:07:58.0734 2024 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:07:58.0734 2024 WPDBusEnum - ok
17:07:58.0765 2024 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:07:58.0765 2024 ws2ifsl - ok
17:07:58.0796 2024 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:07:58.0796 2024 wscsvc - ok
17:07:58.0812 2024 WSearch - ok
17:07:58.0874 2024 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:07:58.0906 2024 wuauserv - ok
17:07:58.0937 2024 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:07:58.0952 2024 WudfPf - ok
17:07:58.0968 2024 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:07:58.0984 2024 WUDFRd - ok
17:07:59.0015 2024 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:07:59.0015 2024 wudfsvc - ok
17:07:59.0046 2024 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:07:59.0046 2024 WwanSvc - ok
17:07:59.0093 2024 ================ Scan global ===============================
17:07:59.0124 2024 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:07:59.0155 2024 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:07:59.0171 2024 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:07:59.0186 2024 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:07:59.0202 2024 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:07:59.0202 2024 [Global] - ok
17:07:59.0202 2024 ================ Scan MBR ==================================
17:07:59.0202 2024 [ AF00FC1920E1CF861B39B90A4375EDF3 ] \Device\Harddisk0\DR0
17:07:59.0218 2024 Suspicious mbr (Forged): \Device\Harddisk0\DR0
17:07:59.0264 2024 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
17:07:59.0264 2024 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
17:07:59.0264 2024 ================ Scan VBR ==================================
17:07:59.0280 2024 [ AE2D469C0209A75CEF687DD492171F56 ] \Device\Harddisk0\DR0\Partition1
17:07:59.0280 2024 \Device\Harddisk0\DR0\Partition1 - ok
17:07:59.0296 2024 [ 62991F3502DFCF86711FD2DAC2DA3D4A ] \Device\Harddisk0\DR0\Partition2
17:07:59.0311 2024 \Device\Harddisk0\DR0\Partition2 - ok
17:07:59.0342 2024 [ 35501E0F5BC1821551F719FA4CE36F2C ] \Device\Harddisk0\DR0\Partition3
17:07:59.0342 2024 \Device\Harddisk0\DR0\Partition3 - ok
17:07:59.0358 2024 ============================================================
17:07:59.0358 2024 Scan finished
17:07:59.0358 2024 ============================================================
17:07:59.0374 0908 Detected object count: 1
17:07:59.0374 0908 Actual detected object count: 1
17:08:21.0713 0908 \Device\Harddisk0\DR0\# - copied to quarantine
17:08:21.0775 0908 \Device\Harddisk0\DR0 - copied to quarantine
17:08:23.0148 0908 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
17:08:23.0413 0908 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
17:08:23.0554 0908 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
17:08:26.0393 0908 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
17:08:26.0424 0908 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
17:08:26.0455 0908 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
17:08:26.0455 0908 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
17:08:26.0627 0908 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
17:08:26.0658 0908 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
17:08:26.0689 0908 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
17:08:26.0689 0908 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
17:08:26.0689 0908 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
17:08:26.0720 0908 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
17:08:26.0736 0908 \Device\Harddisk0\DR0 - ok
17:08:27.0844 0908 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
17:08:33.0085 4020 Deinitialize success

#15 astrorufus

astrorufus
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 03 December 2012 - 08:46 AM

This is the follow up TDSS scan:

17:10:23.0553 2724 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:10:23.0834 2724 ============================================================
17:10:23.0834 2724 Current date / time: 2012/12/02 17:10:23.0834
17:10:23.0834 2724 SystemInfo:
17:10:23.0834 2724
17:10:23.0834 2724 OS Version: 6.1.7601 ServicePack: 1.0
17:10:23.0834 2724 Product type: Workstation
17:10:23.0834 2724 ComputerName: NEWUSER-PC
17:10:23.0834 2724 UserName: new user
17:10:23.0834 2724 Windows directory: C:\Windows
17:10:23.0834 2724 System windows directory: C:\Windows
17:10:23.0834 2724 Running under WOW64
17:10:23.0834 2724 Processor architecture: Intel x64
17:10:23.0834 2724 Number of processors: 1
17:10:23.0834 2724 Page size: 0x1000
17:10:23.0834 2724 Boot type: Normal boot
17:10:23.0834 2724 ============================================================
17:10:28.0776 2724 BG loaded
17:10:30.0149 2724 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
17:10:30.0164 2724 ============================================================
17:10:30.0164 2724 \Device\Harddisk0\DR0:
17:10:30.0180 2724 MBR partitions:
17:10:30.0180 2724 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:10:30.0180 2724 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38F89800
17:10:30.0180 2724 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38FBC000, BlocksNum 0x13C9800
17:10:30.0180 2724 ============================================================
17:10:30.0227 2724 C: <-> \Device\Harddisk0\DR0\Partition2
17:10:30.0274 2724 D: <-> \Device\Harddisk0\DR0\Partition3
17:10:30.0274 2724 ============================================================
17:10:30.0274 2724 Initialize success
17:10:30.0274 2724 ============================================================
17:10:51.0330 1084 ============================================================
17:10:51.0330 1084 Scan started
17:10:51.0330 1084 Mode: Manual; TDLFS;
17:10:51.0330 1084 ============================================================
17:10:53.0545 1084 ================ Scan system memory ========================
17:10:53.0545 1084 System memory - ok
17:10:53.0560 1084 ================ Scan services =============================
17:10:53.0966 1084 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:10:53.0997 1084 1394ohci - ok
17:10:54.0091 1084 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:10:54.0091 1084 ACPI - ok
17:10:54.0153 1084 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:10:54.0153 1084 AcpiPmi - ok
17:10:54.0200 1084 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:10:54.0216 1084 adp94xx - ok
17:10:54.0262 1084 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:10:54.0262 1084 adpahci - ok
17:10:54.0294 1084 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:10:54.0294 1084 adpu320 - ok
17:10:54.0340 1084 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:10:54.0340 1084 AeLookupSvc - ok
17:10:54.0403 1084 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:10:54.0403 1084 AFD - ok
17:10:54.0450 1084 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:10:54.0450 1084 agp440 - ok
17:10:54.0481 1084 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:10:54.0481 1084 ALG - ok
17:10:54.0512 1084 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:10:54.0512 1084 aliide - ok
17:10:54.0543 1084 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:10:54.0543 1084 amdide - ok
17:10:54.0590 1084 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:10:54.0590 1084 AmdK8 - ok
17:10:54.0606 1084 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:10:54.0606 1084 AmdPPM - ok
17:10:54.0637 1084 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:10:54.0637 1084 amdsata - ok
17:10:54.0668 1084 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:10:54.0668 1084 amdsbs - ok
17:10:54.0684 1084 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:10:54.0699 1084 amdxata - ok
17:10:54.0746 1084 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:10:54.0746 1084 AppID - ok
17:10:54.0793 1084 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:10:54.0793 1084 AppIDSvc - ok
17:10:54.0840 1084 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:10:54.0840 1084 Appinfo - ok
17:10:54.0902 1084 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:10:54.0918 1084 arc - ok
17:10:54.0949 1084 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:10:54.0949 1084 arcsas - ok
17:10:54.0996 1084 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:10:54.0996 1084 AsyncMac - ok
17:10:55.0042 1084 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:10:55.0042 1084 atapi - ok
17:10:55.0105 1084 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:10:55.0136 1084 AudioEndpointBuilder - ok
17:10:55.0152 1084 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:10:55.0167 1084 AudioSrv - ok
17:10:55.0276 1084 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:10:55.0276 1084 AxInstSV - ok
17:10:55.0354 1084 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:10:55.0354 1084 b06bdrv - ok
17:10:55.0417 1084 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:10:55.0432 1084 b57nd60a - ok
17:10:55.0557 1084 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
17:10:55.0557 1084 BBSvc - ok
17:10:55.0651 1084 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:10:55.0651 1084 BBUpdate - ok
17:10:55.0698 1084 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:10:55.0698 1084 BDESVC - ok
17:10:55.0729 1084 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:10:55.0729 1084 Beep - ok
17:10:55.0791 1084 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:10:55.0807 1084 BFE - ok
17:10:55.0916 1084 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:10:55.0947 1084 BITS - ok
17:10:55.0978 1084 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:10:55.0978 1084 blbdrive - ok
17:10:56.0010 1084 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:10:56.0010 1084 bowser - ok
17:10:56.0041 1084 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:10:56.0056 1084 BrFiltLo - ok
17:10:56.0072 1084 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:10:56.0088 1084 BrFiltUp - ok
17:10:56.0134 1084 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:10:56.0134 1084 Browser - ok
17:10:56.0150 1084 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:10:56.0181 1084 Brserid - ok
17:10:56.0197 1084 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:10:56.0212 1084 BrSerWdm - ok
17:10:56.0228 1084 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:10:56.0259 1084 BrUsbMdm - ok
17:10:56.0275 1084 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:10:56.0275 1084 BrUsbSer - ok
17:10:56.0290 1084 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:10:56.0290 1084 BTHMODEM - ok
17:10:56.0337 1084 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:10:56.0337 1084 bthserv - ok
17:10:56.0368 1084 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:10:56.0368 1084 cdfs - ok
17:10:56.0431 1084 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:10:56.0431 1084 cdrom - ok
17:10:56.0493 1084 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:10:56.0509 1084 CertPropSvc - ok
17:10:56.0540 1084 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:10:56.0556 1084 circlass - ok
17:10:56.0587 1084 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:10:56.0587 1084 CLFS - ok
17:10:56.0649 1084 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:10:56.0665 1084 clr_optimization_v2.0.50727_32 - ok
17:10:56.0712 1084 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:10:56.0712 1084 clr_optimization_v2.0.50727_64 - ok
17:10:56.0805 1084 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:10:56.0852 1084 clr_optimization_v4.0.30319_32 - ok
17:10:56.0883 1084 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:10:56.0883 1084 clr_optimization_v4.0.30319_64 - ok
17:10:56.0914 1084 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:10:56.0914 1084 CmBatt - ok
17:10:56.0961 1084 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:10:56.0961 1084 cmdide - ok
17:10:56.0992 1084 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:10:57.0008 1084 CNG - ok
17:10:57.0008 1084 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:10:57.0024 1084 Compbatt - ok
17:10:57.0055 1084 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:10:57.0055 1084 CompositeBus - ok
17:10:57.0070 1084 COMSysApp - ok
17:10:57.0086 1084 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:10:57.0086 1084 crcdisk - ok
17:10:57.0133 1084 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:10:57.0133 1084 CryptSvc - ok
17:10:57.0148 1084 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:10:57.0164 1084 DcomLaunch - ok
17:10:57.0211 1084 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:10:57.0226 1084 defragsvc - ok
17:10:57.0267 1084 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:10:57.0269 1084 DfsC - ok
17:10:57.0303 1084 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:10:57.0319 1084 Dhcp - ok
17:10:57.0365 1084 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:10:57.0365 1084 discache - ok
17:10:57.0397 1084 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:10:57.0443 1084 Disk - ok
17:10:57.0475 1084 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:10:57.0475 1084 Dnscache - ok
17:10:57.0506 1084 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:10:57.0521 1084 dot3svc - ok
17:10:57.0553 1084 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:10:57.0553 1084 DPS - ok
17:10:57.0599 1084 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:10:57.0599 1084 drmkaud - ok
17:10:57.0646 1084 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:10:57.0662 1084 DXGKrnl - ok
17:10:57.0693 1084 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:10:57.0693 1084 EapHost - ok
17:10:57.0849 1084 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:10:57.0974 1084 ebdrv - ok
17:10:58.0005 1084 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:10:58.0021 1084 EFS - ok
17:10:58.0130 1084 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:10:58.0145 1084 ehRecvr - ok
17:10:58.0177 1084 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:10:58.0177 1084 ehSched - ok
17:10:58.0223 1084 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:10:58.0239 1084 elxstor - ok
17:10:58.0270 1084 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:10:58.0270 1084 ErrDev - ok
17:10:58.0333 1084 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:10:58.0333 1084 EventSystem - ok
17:10:58.0379 1084 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:10:58.0395 1084 exfat - ok
17:10:58.0411 1084 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:10:58.0504 1084 fastfat - ok
17:10:58.0567 1084 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:10:58.0567 1084 Fax - ok
17:10:58.0582 1084 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:10:58.0598 1084 fdc - ok
17:10:58.0660 1084 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:10:58.0660 1084 fdPHost - ok
17:10:58.0660 1084 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:10:58.0660 1084 FDResPub - ok
17:10:58.0691 1084 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:10:58.0691 1084 FileInfo - ok
17:10:58.0707 1084 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:10:58.0707 1084 Filetrace - ok
17:10:58.0738 1084 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:10:58.0738 1084 flpydisk - ok
17:10:58.0832 1084 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:10:58.0847 1084 FltMgr - ok
17:10:58.0910 1084 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:10:58.0957 1084 FontCache - ok
17:10:59.0019 1084 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:10:59.0019 1084 FontCache3.0.0.0 - ok
17:10:59.0050 1084 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:10:59.0050 1084 FsDepends - ok
17:10:59.0081 1084 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:10:59.0081 1084 Fs_Rec - ok
17:10:59.0128 1084 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:10:59.0128 1084 fvevol - ok
17:10:59.0159 1084 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:10:59.0159 1084 gagp30kx - ok
17:10:59.0222 1084 [ 551D463E4CCEB5240234DA6718C93A44 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:10:59.0222 1084 GameConsoleService - ok
17:10:59.0269 1084 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:10:59.0269 1084 gpsvc - ok
17:10:59.0300 1084 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:10:59.0300 1084 hcw85cir - ok
17:10:59.0347 1084 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:10:59.0347 1084 HDAudBus - ok
17:10:59.0378 1084 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:10:59.0378 1084 HidBatt - ok
17:10:59.0409 1084 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:10:59.0409 1084 HidBth - ok
17:10:59.0425 1084 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:10:59.0425 1084 HidIr - ok
17:10:59.0456 1084 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:10:59.0456 1084 hidserv - ok
17:10:59.0487 1084 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:10:59.0487 1084 HidUsb - ok
17:10:59.0518 1084 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:10:59.0518 1084 hkmsvc - ok
17:10:59.0549 1084 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:10:59.0549 1084 HomeGroupListener - ok
17:10:59.0565 1084 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:10:59.0565 1084 HomeGroupProvider - ok
17:10:59.0643 1084 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:10:59.0643 1084 HP Support Assistant Service - ok
17:10:59.0721 1084 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:10:59.0737 1084 HPDrvMntSvc.exe - ok
17:10:59.0783 1084 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:10:59.0799 1084 hpqwmiex - ok
17:10:59.0846 1084 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:10:59.0846 1084 HpSAMD - ok
17:10:59.0893 1084 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:10:59.0908 1084 HTTP - ok
17:10:59.0939 1084 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:10:59.0955 1084 hwpolicy - ok
17:10:59.0986 1084 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:10:59.0986 1084 i8042prt - ok
17:11:00.0017 1084 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:11:00.0017 1084 iaStorV - ok
17:11:00.0064 1084 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:11:00.0080 1084 idsvc - ok
17:11:00.0111 1084 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:11:00.0111 1084 iirsp - ok
17:11:00.0158 1084 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:11:00.0173 1084 IKEEXT - ok
17:11:00.0267 1084 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:11:00.0283 1084 IntcAzAudAddService - ok
17:11:00.0329 1084 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:11:00.0329 1084 intelide - ok
17:11:00.0361 1084 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:11:00.0361 1084 intelppm - ok
17:11:00.0376 1084 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:11:00.0376 1084 IPBusEnum - ok
17:11:00.0423 1084 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:11:00.0423 1084 IpFilterDriver - ok
17:11:00.0454 1084 [ 08C2957BB30058E663720C5606885653 ] IpHlpSvc C:\Windows\System32\iphlpsvc.dll
17:11:00.0454 1084 IpHlpSvc - ok
17:11:00.0470 1084 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:11:00.0485 1084 IPMIDRV - ok
17:11:00.0517 1084 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:11:00.0517 1084 IPNAT - ok
17:11:00.0548 1084 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:11:00.0548 1084 IRENUM - ok
17:11:00.0563 1084 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:11:00.0563 1084 isapnp - ok
17:11:00.0579 1084 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:11:00.0579 1084 iScsiPrt - ok
17:11:00.0610 1084 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:11:00.0610 1084 kbdclass - ok
17:11:00.0657 1084 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:11:00.0657 1084 kbdhid - ok
17:11:00.0657 1084 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:11:00.0657 1084 KeyIso - ok
17:11:00.0704 1084 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:11:00.0704 1084 KSecDD - ok
17:11:00.0735 1084 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:11:00.0735 1084 KSecPkg - ok
17:11:00.0766 1084 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:11:00.0766 1084 ksthunk - ok
17:11:00.0813 1084 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:11:00.0813 1084 KtmRm - ok
17:11:00.0860 1084 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:11:00.0860 1084 LanmanServer - ok
17:11:00.0891 1084 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:11:00.0907 1084 LanmanWorkstation - ok
17:11:00.0985 1084 [ 2238B91AC1A12CC6CC4C4FED41258B2A ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:11:00.0985 1084 LightScribeService - ok
17:11:01.0016 1084 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:11:01.0016 1084 lltdio - ok
17:11:01.0063 1084 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:11:01.0063 1084 lltdsvc - ok
17:11:01.0094 1084 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:11:01.0094 1084 lmhosts - ok
17:11:01.0141 1084 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:11:01.0141 1084 LSI_FC - ok
17:11:01.0172 1084 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:11:01.0172 1084 LSI_SAS - ok
17:11:01.0203 1084 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:11:01.0203 1084 LSI_SAS2 - ok
17:11:01.0234 1084 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:11:01.0250 1084 LSI_SCSI - ok
17:11:01.0281 1084 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:11:01.0297 1084 luafv - ok
17:11:01.0328 1084 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:11:01.0359 1084 Mcx2Svc - ok
17:11:01.0390 1084 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:11:01.0406 1084 megasas - ok
17:11:01.0437 1084 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:11:01.0468 1084 MegaSR - ok
17:11:01.0499 1084 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:11:01.0515 1084 MMCSS - ok
17:11:01.0531 1084 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:11:01.0546 1084 Modem - ok
17:11:01.0577 1084 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:11:01.0577 1084 monitor - ok
17:11:01.0609 1084 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
17:11:01.0609 1084 mouclass - ok
17:11:01.0640 1084 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:11:01.0640 1084 mouhid - ok
17:11:01.0702 1084 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:11:01.0702 1084 mountmgr - ok
17:11:01.0765 1084 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:11:01.0780 1084 MozillaMaintenance - ok
17:11:01.0843 1084 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:11:01.0843 1084 MpFilter - ok
17:11:01.0874 1084 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:11:01.0874 1084 mpio - ok
17:11:01.0905 1084 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:11:01.0905 1084 mpsdrv - ok
17:11:01.0936 1084 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:11:01.0936 1084 MpsSvc - ok
17:11:01.0983 1084 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:11:01.0983 1084 MRxDAV - ok
17:11:02.0030 1084 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:11:02.0030 1084 mrxsmb - ok
17:11:02.0061 1084 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:11:02.0077 1084 mrxsmb10 - ok
17:11:02.0108 1084 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:11:02.0108 1084 mrxsmb20 - ok
17:11:02.0139 1084 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:11:02.0139 1084 msahci - ok
17:11:02.0170 1084 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:11:02.0170 1084 msdsm - ok
17:11:02.0201 1084 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:11:02.0201 1084 MSDTC - ok
17:11:02.0248 1084 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:11:02.0248 1084 Msfs - ok
17:11:02.0264 1084 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:11:02.0264 1084 mshidkmdf - ok
17:11:02.0295 1084 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:11:02.0295 1084 msisadrv - ok
17:11:02.0326 1084 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:11:02.0326 1084 MSiSCSI - ok
17:11:02.0342 1084 msiserver - ok
17:11:02.0373 1084 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:11:02.0373 1084 MSKSSRV - ok
17:11:02.0498 1084 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:11:02.0498 1084 MsMpSvc - ok
17:11:02.0529 1084 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:11:02.0529 1084 MSPCLOCK - ok
17:11:02.0560 1084 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:11:02.0560 1084 MSPQM - ok
17:11:02.0607 1084 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:11:02.0607 1084 MsRPC - ok
17:11:02.0638 1084 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:11:02.0638 1084 mssmbios - ok
17:11:02.0669 1084 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:11:02.0669 1084 MSTEE - ok
17:11:02.0685 1084 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:11:02.0685 1084 MTConfig - ok
17:11:02.0701 1084 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:11:02.0701 1084 Mup - ok
17:11:02.0763 1084 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:11:02.0763 1084 napagent - ok
17:11:02.0810 1084 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:11:02.0810 1084 NativeWifiP - ok
17:11:02.0857 1084 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:11:02.0872 1084 NDIS - ok
17:11:02.0888 1084 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:11:02.0888 1084 NdisCap - ok
17:11:02.0919 1084 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:11:02.0919 1084 NdisTapi - ok
17:11:02.0950 1084 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:11:02.0950 1084 Ndisuio - ok
17:11:02.0981 1084 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:11:02.0981 1084 NdisWan - ok
17:11:03.0013 1084 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:11:03.0013 1084 NDProxy - ok
17:11:03.0028 1084 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:11:03.0028 1084 NetBIOS - ok
17:11:03.0075 1084 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:11:03.0075 1084 NetBT - ok
17:11:03.0091 1084 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:11:03.0091 1084 Netlogon - ok
17:11:03.0137 1084 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:11:03.0153 1084 Netman - ok
17:11:03.0169 1084 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:11:03.0169 1084 netprofm - ok
17:11:03.0200 1084 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:11:03.0200 1084 NetTcpPortSharing - ok
17:11:03.0231 1084 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:11:03.0231 1084 nfrd960 - ok
17:11:03.0262 1084 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:11:03.0278 1084 NisDrv - ok
17:11:03.0325 1084 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:11:03.0340 1084 NisSrv - ok
17:11:03.0387 1084 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:11:03.0387 1084 NlaSvc - ok
17:11:03.0418 1084 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:11:03.0418 1084 Npfs - ok
17:11:03.0449 1084 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:11:03.0449 1084 nsi - ok
17:11:03.0465 1084 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:11:03.0465 1084 nsiproxy - ok
17:11:03.0605 1084 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:11:03.0652 1084 Ntfs - ok
17:11:03.0683 1084 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:11:03.0683 1084 Null - ok
17:11:04.0120 1084 [ C967514483FA30A0A352E70BB6414D1D ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:11:04.0198 1084 nvlddmkm - ok
17:11:04.0245 1084 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
17:11:04.0261 1084 NVNET - ok
17:11:04.0307 1084 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:11:04.0323 1084 nvraid - ok
17:11:04.0354 1084 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:11:04.0354 1084 nvstor - ok
17:11:04.0385 1084 [ 1E45F96342429D63DC30E0D9117DA3D8 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
17:11:04.0385 1084 nvstor64 - ok
17:11:04.0417 1084 [ E26706A65D97EF9188B1D7BFA23C96C2 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:11:04.0417 1084 nvsvc - ok
17:11:04.0432 1084 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:11:04.0432 1084 nv_agp - ok
17:11:04.0479 1084 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:11:04.0479 1084 ohci1394 - ok
17:11:04.0526 1084 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:11:04.0526 1084 p2pimsvc - ok
17:11:04.0557 1084 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:11:04.0573 1084 p2psvc - ok
17:11:04.0604 1084 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:11:04.0619 1084 Parport - ok
17:11:04.0651 1084 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:11:04.0651 1084 partmgr - ok
17:11:04.0666 1084 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:11:04.0666 1084 PcaSvc - ok
17:11:04.0729 1084 PcdrNdisuio - ok
17:11:04.0775 1084 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:11:04.0775 1084 pci - ok
17:11:04.0791 1084 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:11:04.0791 1084 pciide - ok
17:11:04.0822 1084 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:11:04.0822 1084 pcmcia - ok
17:11:04.0853 1084 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:11:04.0853 1084 pcw - ok
17:11:04.0885 1084 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:11:04.0885 1084 PEAUTH - ok
17:11:04.0916 1084 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:11:04.0931 1084 PerfHost - ok
17:11:04.0994 1084 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:11:05.0009 1084 pla - ok
17:11:05.0041 1084 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:11:05.0056 1084 PlugPlay - ok
17:11:05.0072 1084 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:11:05.0072 1084 PNRPAutoReg - ok
17:11:05.0103 1084 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:11:05.0103 1084 PNRPsvc - ok
17:11:05.0134 1084 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:11:05.0134 1084 PolicyAgent - ok
17:11:05.0181 1084 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:11:05.0181 1084 Power - ok
17:11:05.0212 1084 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:11:05.0212 1084 PptpMiniport - ok
17:11:05.0243 1084 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:11:05.0243 1084 Processor - ok
17:11:05.0259 1084 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:11:05.0275 1084 ProfSvc - ok
17:11:05.0290 1084 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:11:05.0290 1084 ProtectedStorage - ok
17:11:05.0321 1084 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:11:05.0321 1084 Psched - ok
17:11:05.0368 1084 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:11:05.0399 1084 ql2300 - ok
17:11:05.0431 1084 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:11:05.0431 1084 ql40xx - ok
17:11:05.0446 1084 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:11:05.0462 1084 QWAVE - ok
17:11:05.0477 1084 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:11:05.0477 1084 QWAVEdrv - ok
17:11:05.0509 1084 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:11:05.0509 1084 RasAcd - ok
17:11:05.0540 1084 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:11:05.0540 1084 RasAgileVpn - ok
17:11:05.0555 1084 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:11:05.0571 1084 RasAuto - ok
17:11:05.0587 1084 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:11:05.0587 1084 Rasl2tp - ok
17:11:05.0633 1084 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:11:05.0633 1084 RasMan - ok
17:11:05.0665 1084 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:11:05.0665 1084 RasPppoe - ok
17:11:05.0680 1084 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:11:05.0680 1084 RasSstp - ok
17:11:05.0727 1084 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:11:05.0743 1084 rdbss - ok
17:11:05.0774 1084 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:11:05.0774 1084 rdpbus - ok
17:11:05.0789 1084 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:11:05.0789 1084 RDPCDD - ok
17:11:05.0821 1084 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:11:05.0821 1084 RDPENCDD - ok
17:11:05.0836 1084 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:11:05.0836 1084 RDPREFMP - ok
17:11:05.0867 1084 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:11:05.0867 1084 RDPWD - ok
17:11:05.0945 1084 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:11:05.0961 1084 rdyboost - ok
17:11:06.0008 1084 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:11:06.0008 1084 RemoteAccess - ok
17:11:06.0055 1084 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:11:06.0055 1084 RemoteRegistry - ok
17:11:06.0101 1084 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:11:06.0101 1084 RpcEptMapper - ok
17:11:06.0133 1084 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:11:06.0133 1084 RpcLocator - ok
17:11:06.0164 1084 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:11:06.0179 1084 RpcSs - ok
17:11:06.0211 1084 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:11:06.0211 1084 rspndr - ok
17:11:06.0289 1084 [ 3641E624C8C5D5EA089AE9B5340B5B79 ] rt70x64 C:\Windows\system32\DRIVERS\netr7064.sys
17:11:06.0289 1084 rt70x64 - ok
17:11:06.0320 1084 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:11:06.0320 1084 SamSs - ok
17:11:06.0367 1084 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:11:06.0367 1084 sbp2port - ok
17:11:06.0398 1084 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:11:06.0398 1084 SCardSvr - ok
17:11:06.0429 1084 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:11:06.0429 1084 scfilter - ok
17:11:06.0476 1084 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:11:06.0476 1084 Schedule - ok
17:11:06.0507 1084 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:11:06.0507 1084 SCPolicySvc - ok
17:11:06.0538 1084 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:11:06.0538 1084 SDRSVC - ok
17:11:06.0585 1084 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:11:06.0585 1084 secdrv - ok
17:11:06.0601 1084 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:11:06.0601 1084 seclogon - ok
17:11:06.0632 1084 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:11:06.0632 1084 SENS - ok
17:11:06.0647 1084 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:11:06.0647 1084 SensrSvc - ok
17:11:06.0679 1084 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:11:06.0694 1084 Serenum - ok
17:11:06.0710 1084 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:11:06.0710 1084 Serial - ok
17:11:06.0725 1084 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:11:06.0725 1084 sermouse - ok
17:11:06.0788 1084 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:11:06.0850 1084 SessionEnv - ok
17:11:06.0881 1084 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:11:06.0881 1084 sffdisk - ok
17:11:06.0928 1084 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:11:06.0928 1084 sffp_mmc - ok
17:11:06.0944 1084 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:11:06.0959 1084 sffp_sd - ok
17:11:06.0975 1084 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:11:06.0975 1084 sfloppy - ok
17:11:07.0006 1084 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:11:07.0006 1084 SharedAccess - ok
17:11:07.0053 1084 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:11:07.0053 1084 ShellHWDetection - ok
17:11:07.0069 1084 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:11:07.0084 1084 SiSRaid2 - ok
17:11:07.0100 1084 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:11:07.0100 1084 SiSRaid4 - ok
17:11:07.0147 1084 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:11:07.0147 1084 Smb - ok
17:11:07.0193 1084 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:11:07.0193 1084 SNMPTRAP - ok
17:11:07.0209 1084 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:11:07.0209 1084 spldr - ok
17:11:07.0240 1084 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:11:07.0240 1084 Spooler - ok
17:11:07.0318 1084 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:11:07.0396 1084 sppsvc - ok
17:11:07.0412 1084 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:11:07.0427 1084 sppuinotify - ok
17:11:07.0459 1084 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:11:07.0474 1084 srv - ok
17:11:07.0490 1084 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:11:07.0490 1084 srv2 - ok
17:11:07.0537 1084 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:11:07.0537 1084 srvnet - ok
17:11:07.0583 1084 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:11:07.0599 1084 SSDPSRV - ok
17:11:07.0630 1084 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:11:07.0630 1084 SstpSvc - ok
17:11:07.0661 1084 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:11:07.0661 1084 stexstor - ok
17:11:07.0708 1084 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:11:07.0708 1084 stisvc - ok
17:11:07.0724 1084 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:11:07.0724 1084 swenum - ok
17:11:07.0802 1084 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:11:07.0802 1084 swprv - ok
17:11:07.0864 1084 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:11:07.0880 1084 SysMain - ok
17:11:07.0911 1084 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:11:07.0927 1084 TabletInputService - ok
17:11:07.0942 1084 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:11:07.0942 1084 TapiSrv - ok
17:11:07.0973 1084 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:11:07.0973 1084 TBS - ok
17:11:08.0036 1084 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:11:08.0067 1084 Tcpip - ok
17:11:08.0114 1084 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:11:08.0129 1084 TCPIP6 - ok
17:11:08.0161 1084 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:11:08.0161 1084 tcpipreg - ok
17:11:08.0192 1084 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:11:08.0192 1084 TDPIPE - ok
17:11:08.0223 1084 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:11:08.0239 1084 TDTCP - ok
17:11:08.0254 1084 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:11:08.0270 1084 tdx - ok
17:11:08.0285 1084 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:11:08.0285 1084 TermDD - ok
17:11:08.0395 1084 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:11:08.0410 1084 TermService - ok
17:11:08.0441 1084 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:11:08.0441 1084 Themes - ok
17:11:08.0473 1084 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:11:08.0473 1084 THREADORDER - ok
17:11:08.0488 1084 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:11:08.0504 1084 TrkWks - ok
17:11:08.0551 1084 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:11:08.0551 1084 TrustedInstaller - ok
17:11:08.0597 1084 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:11:08.0597 1084 tssecsrv - ok
17:11:08.0644 1084 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:11:08.0660 1084 TsUsbFlt - ok
17:11:08.0707 1084 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:11:08.0707 1084 tunnel - ok
17:11:08.0722 1084 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:11:08.0738 1084 uagp35 - ok
17:11:08.0769 1084 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:11:08.0769 1084 udfs - ok
17:11:08.0816 1084 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:11:08.0831 1084 UI0Detect - ok
17:11:08.0863 1084 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:11:08.0863 1084 uliagpkx - ok
17:11:08.0909 1084 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:11:08.0909 1084 umbus - ok
17:11:08.0941 1084 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:11:08.0956 1084 UmPass - ok
17:11:08.0987 1084 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:11:08.0987 1084 upnphost - ok
17:11:09.0019 1084 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:11:09.0019 1084 usbccgp - ok
17:11:09.0050 1084 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:11:09.0050 1084 usbcir - ok
17:11:09.0081 1084 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:11:09.0081 1084 usbehci - ok
17:11:09.0097 1084 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:11:09.0097 1084 usbhub - ok
17:11:09.0112 1084 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:11:09.0112 1084 usbohci - ok
17:11:09.0159 1084 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:11:09.0159 1084 usbprint - ok
17:11:09.0175 1084 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:11:09.0175 1084 USBSTOR - ok
17:11:09.0206 1084 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:11:09.0206 1084 usbuhci - ok
17:11:09.0237 1084 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:11:09.0237 1084 UxSms - ok
17:11:09.0237 1084 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:11:09.0253 1084 VaultSvc - ok
17:11:09.0268 1084 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:11:09.0268 1084 vdrvroot - ok
17:11:09.0299 1084 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:11:09.0299 1084 vds - ok
17:11:09.0346 1084 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:11:09.0346 1084 vga - ok
17:11:09.0362 1084 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:11:09.0362 1084 VgaSave - ok
17:11:09.0424 1084 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:11:09.0455 1084 vhdmp - ok
17:11:09.0471 1084 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:11:09.0471 1084 viaide - ok
17:11:09.0487 1084 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:11:09.0487 1084 volmgr - ok
17:11:09.0502 1084 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:11:09.0518 1084 volmgrx - ok
17:11:09.0533 1084 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:11:09.0533 1084 volsnap - ok
17:11:09.0580 1084 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:11:09.0580 1084 vsmraid - ok
17:11:09.0658 1084 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:11:09.0705 1084 VSS - ok
17:11:09.0736 1084 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:11:09.0736 1084 vwifibus - ok
17:11:09.0767 1084 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:11:09.0783 1084 W32Time - ok
17:11:09.0799 1084 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:11:09.0799 1084 WacomPen - ok
17:11:09.0845 1084 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:11:09.0845 1084 WANARP - ok
17:11:09.0861 1084 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:11:09.0861 1084 Wanarpv6 - ok
17:11:09.0892 1084 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:11:09.0923 1084 WatAdminSvc - ok
17:11:09.0970 1084 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:11:10.0001 1084 wbengine - ok
17:11:10.0017 1084 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:11:10.0033 1084 WbioSrvc - ok
17:11:10.0064 1084 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:11:10.0064 1084 wcncsvc - ok
17:11:10.0095 1084 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:11:10.0095 1084 WcsPlugInService - ok
17:11:10.0111 1084 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:11:10.0111 1084 Wd - ok
17:11:10.0142 1084 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:11:10.0157 1084 Wdf01000 - ok
17:11:10.0189 1084 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:11:10.0189 1084 WdiServiceHost - ok
17:11:10.0204 1084 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:11:10.0204 1084 WdiSystemHost - ok
17:11:10.0235 1084 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:11:10.0235 1084 WebClient - ok
17:11:10.0267 1084 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:11:10.0267 1084 Wecsvc - ok
17:11:10.0282 1084 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:11:10.0298 1084 wercplsupport - ok
17:11:10.0313 1084 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:11:10.0313 1084 WerSvc - ok
17:11:10.0345 1084 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:11:10.0345 1084 WfpLwf - ok
17:11:10.0360 1084 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:11:10.0360 1084 WIMMount - ok
17:11:10.0423 1084 WinDefend - ok
17:11:10.0438 1084 WinHttpAutoProxySvc - ok
17:11:10.0532 1084 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:11:10.0532 1084 Winmgmt - ok
17:11:10.0735 1084 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:11:10.0781 1084 WinRM - ok
17:11:10.0859 1084 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:11:10.0875 1084 Wlansvc - ok
17:11:11.0047 1084 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:11:11.0062 1084 wlidsvc - ok
17:11:11.0109 1084 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:11:11.0109 1084 WmiAcpi - ok
17:11:11.0140 1084 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:11:11.0156 1084 wmiApSrv - ok
17:11:11.0203 1084 WMPNetworkSvc - ok
17:11:11.0234 1084 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:11:11.0234 1084 WPCSvc - ok
17:11:11.0281 1084 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:11:11.0281 1084 WPDBusEnum - ok
17:11:11.0296 1084 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:11:11.0296 1084 ws2ifsl - ok
17:11:11.0343 1084 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:11:11.0343 1084 wscsvc - ok
17:11:11.0359 1084 WSearch - ok
17:11:11.0530 1084 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:11:11.0577 1084 wuauserv - ok
17:11:11.0624 1084 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:11:11.0624 1084 WudfPf - ok
17:11:11.0639 1084 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:11:11.0655 1084 WUDFRd - ok
17:11:11.0686 1084 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:11:11.0686 1084 wudfsvc - ok
17:11:11.0733 1084 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:11:11.0780 1084 WwanSvc - ok
17:11:11.0811 1084 ================ Scan global ===============================
17:11:11.0842 1084 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:11:11.0951 1084 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:11:11.0983 1084 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:11:11.0998 1084 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:11:12.0092 1084 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:11:12.0092 1084 [Global] - ok
17:11:12.0092 1084 ================ Scan MBR ==================================
17:11:12.0107 1084 [ AF00FC1920E1CF861B39B90A4375EDF3 ] \Device\Harddisk0\DR0
17:11:12.0357 1084 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:11:12.0357 1084 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:11:12.0373 1084 ================ Scan VBR ==================================
17:11:12.0373 1084 [ AE2D469C0209A75CEF687DD492171F56 ] \Device\Harddisk0\DR0\Partition1
17:11:12.0373 1084 \Device\Harddisk0\DR0\Partition1 - ok
17:11:12.0404 1084 [ 62991F3502DFCF86711FD2DAC2DA3D4A ] \Device\Harddisk0\DR0\Partition2
17:11:12.0404 1084 \Device\Harddisk0\DR0\Partition2 - ok
17:11:12.0435 1084 [ 35501E0F5BC1821551F719FA4CE36F2C ] \Device\Harddisk0\DR0\Partition3
17:11:12.0435 1084 \Device\Harddisk0\DR0\Partition3 - ok
17:11:12.0435 1084 ============================================================
17:11:12.0435 1084 Scan finished
17:11:12.0435 1084 ============================================================
17:11:12.0451 1500 Detected object count: 1
17:11:12.0451 1500 Actual detected object count: 1
17:12:07.0378 1500 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
17:12:07.0612 1500 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
17:12:07.0706 1500 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
17:12:10.0685 1500 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
17:12:10.0748 1500 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
17:12:10.0779 1500 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
17:12:10.0779 1500 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
17:12:10.0951 1500 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
17:12:10.0982 1500 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
17:12:10.0997 1500 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
17:12:11.0013 1500 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
17:12:11.0013 1500 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
17:12:11.0029 1500 \Device\Harddisk0\DR0\TDLFS - deleted
17:12:11.0029 1500 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
17:12:26.0519 4044 ============================================================
17:12:26.0519 4044 Scan started
17:12:26.0519 4044 Mode: Manual; TDLFS;
17:12:26.0519 4044 ============================================================
17:12:27.0580 4044 ================ Scan system memory ========================
17:12:27.0580 4044 System memory - ok
17:12:27.0580 4044 ================ Scan services =============================
17:12:27.0705 4044 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:12:27.0705 4044 1394ohci - ok
17:12:27.0736 4044 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:12:27.0752 4044 ACPI - ok
17:12:27.0783 4044 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:12:27.0783 4044 AcpiPmi - ok
17:12:27.0814 4044 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:12:27.0814 4044 adp94xx - ok
17:12:27.0861 4044 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:12:27.0861 4044 adpahci - ok
17:12:27.0877 4044 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:12:27.0892 4044 adpu320 - ok
17:12:27.0923 4044 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:12:27.0923 4044 AeLookupSvc - ok
17:12:27.0970 4044 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:12:27.0970 4044 AFD - ok
17:12:28.0001 4044 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:12:28.0001 4044 agp440 - ok
17:12:28.0033 4044 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:12:28.0033 4044 ALG - ok
17:12:28.0064 4044 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:12:28.0064 4044 aliide - ok
17:12:28.0079 4044 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:12:28.0079 4044 amdide - ok
17:12:28.0126 4044 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:12:28.0126 4044 AmdK8 - ok
17:12:28.0142 4044 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:12:28.0142 4044 AmdPPM - ok
17:12:28.0173 4044 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:12:28.0173 4044 amdsata - ok
17:12:28.0204 4044 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:12:28.0204 4044 amdsbs - ok
17:12:28.0220 4044 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:12:28.0220 4044 amdxata - ok
17:12:28.0235 4044 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:12:28.0235 4044 AppID - ok
17:12:28.0267 4044 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:12:28.0267 4044 AppIDSvc - ok
17:12:28.0313 4044 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:12:28.0313 4044 Appinfo - ok
17:12:28.0345 4044 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:12:28.0345 4044 arc - ok
17:12:28.0376 4044 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:12:28.0376 4044 arcsas - ok
17:12:28.0423 4044 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:12:28.0423 4044 AsyncMac - ok
17:12:28.0438 4044 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:12:28.0454 4044 atapi - ok
17:12:28.0547 4044 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:12:28.0547 4044 AudioEndpointBuilder - ok
17:12:28.0625 4044 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:12:28.0625 4044 AudioSrv - ok
17:12:28.0657 4044 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:12:28.0657 4044 AxInstSV - ok
17:12:28.0766 4044 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:12:28.0781 4044 b06bdrv - ok
17:12:28.0813 4044 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:12:28.0813 4044 b57nd60a - ok
17:12:28.0937 4044 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
17:12:28.0937 4044 BBSvc - ok
17:12:29.0015 4044 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:12:29.0031 4044 BBUpdate - ok
17:12:29.0078 4044 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:12:29.0078 4044 BDESVC - ok
17:12:29.0093 4044 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:12:29.0093 4044 Beep - ok
17:12:29.0187 4044 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:12:29.0203 4044 BFE - ok
17:12:29.0281 4044 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:12:29.0296 4044 BITS - ok
17:12:29.0343 4044 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:12:29.0343 4044 blbdrive - ok
17:12:29.0374 4044 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:12:29.0374 4044 bowser - ok
17:12:29.0405 4044 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:12:29.0405 4044 BrFiltLo - ok
17:12:29.0437 4044 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:12:29.0437 4044 BrFiltUp - ok
17:12:29.0468 4044 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:12:29.0468 4044 Browser - ok
17:12:29.0499 4044 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:12:29.0499 4044 Brserid - ok
17:12:29.0515 4044 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:12:29.0515 4044 BrSerWdm - ok
17:12:29.0561 4044 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:12:29.0561 4044 BrUsbMdm - ok
17:12:29.0593 4044 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:12:29.0593 4044 BrUsbSer - ok
17:12:29.0608 4044 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:12:29.0608 4044 BTHMODEM - ok
17:12:29.0639 4044 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:12:29.0639 4044 bthserv - ok
17:12:29.0686 4044 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:12:29.0686 4044 cdfs - ok
17:12:29.0733 4044 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:12:29.0733 4044 cdrom - ok
17:12:29.0764 4044 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:12:29.0764 4044 CertPropSvc - ok
17:12:29.0780 4044 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:12:29.0780 4044 circlass - ok
17:12:29.0811 4044 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:12:29.0811 4044 CLFS - ok
17:12:29.0858 4044 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:12:29.0858 4044 clr_optimization_v2.0.50727_32 - ok
17:12:29.0936 4044 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:12:29.0936 4044 clr_optimization_v2.0.50727_64 - ok
17:12:30.0029 4044 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:12:30.0029 4044 clr_optimization_v4.0.30319_32 - ok
17:12:30.0107 4044 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:12:30.0107 4044 clr_optimization_v4.0.30319_64 - ok
17:12:30.0154 4044 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:12:30.0154 4044 CmBatt - ok
17:12:30.0185 4044 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:12:30.0185 4044 cmdide - ok
17:12:30.0263 4044 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:12:30.0263 4044 CNG - ok
17:12:30.0295 4044 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:12:30.0295 4044 Compbatt - ok
17:12:30.0326 4044 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:12:30.0326 4044 CompositeBus - ok
17:12:30.0357 4044 COMSysApp - ok
17:12:30.0388 4044 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:12:30.0388 4044 crcdisk - ok
17:12:30.0451 4044 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:12:30.0451 4044 CryptSvc - ok
17:12:30.0513 4044 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:12:30.0529 4044 DcomLaunch - ok
17:12:30.0560 4044 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:12:30.0560 4044 defragsvc - ok
17:12:30.0591 4044 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:12:30.0591 4044 DfsC - ok
17:12:30.0638 4044 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:12:30.0638 4044 Dhcp - ok
17:12:30.0669 4044 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:12:30.0669 4044 discache - ok
17:12:30.0700 4044 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:12:30.0700 4044 Disk - ok
17:12:30.0731 4044 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:12:30.0731 4044 Dnscache - ok
17:12:30.0794 4044 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:12:30.0794 4044 dot3svc - ok
17:12:30.0841 4044 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:12:30.0841 4044 DPS - ok
17:12:30.0872 4044 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:12:30.0872 4044 drmkaud - ok
17:12:30.0981 4044 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:12:30.0997 4044 DXGKrnl - ok
17:12:31.0043 4044 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:12:31.0043 4044 EapHost - ok
17:12:31.0184 4044 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:12:31.0199 4044 ebdrv - ok
17:12:31.0246 4044 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:12:31.0246 4044 EFS - ok
17:12:31.0402 4044 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:12:31.0418 4044 ehRecvr - ok
17:12:31.0480 4044 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:12:31.0480 4044 ehSched - ok
17:12:31.0574 4044 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:12:31.0589 4044 elxstor - ok
17:12:31.0621 4044 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:12:31.0621 4044 ErrDev - ok
17:12:31.0683 4044 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:12:31.0683 4044 EventSystem - ok
17:12:31.0714 4044 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:12:31.0714 4044 exfat - ok
17:12:31.0777 4044 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:12:31.0777 4044 fastfat - ok
17:12:31.0839 4044 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:12:31.0855 4044 Fax - ok
17:12:31.0870 4044 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:12:31.0870 4044 fdc - ok
17:12:31.0901 4044 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:12:31.0901 4044 fdPHost - ok
17:12:31.0917 4044 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:12:31.0917 4044 FDResPub - ok
17:12:31.0948 4044 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:12:31.0948 4044 FileInfo - ok
17:12:31.0964 4044 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:12:31.0964 4044 Filetrace - ok
17:12:31.0995 4044 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:12:31.0995 4044 flpydisk - ok
17:12:32.0026 4044 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:12:32.0042 4044 FltMgr - ok
17:12:32.0104 4044 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:12:32.0120 4044 FontCache - ok
17:12:32.0182 4044 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:12:32.0198 4044 FontCache3.0.0.0 - ok
17:12:32.0229 4044 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:12:32.0229 4044 FsDepends - ok
17:12:32.0276 4044 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:12:32.0276 4044 Fs_Rec - ok
17:12:32.0307 4044 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:12:32.0323 4044 fvevol - ok
17:12:32.0354 4044 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:12:32.0354 4044 gagp30kx - ok
17:12:32.0416 4044 [ 551D463E4CCEB5240234DA6718C93A44 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:12:32.0432 4044 GameConsoleService - ok
17:12:32.0494 4044 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:12:32.0510 4044 gpsvc - ok
17:12:32.0541 4044 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:12:32.0541 4044 hcw85cir - ok
17:12:32.0588 4044 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:12:32.0588 4044 HDAudBus - ok
17:12:32.0619 4044 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:12:32.0619 4044 HidBatt - ok
17:12:32.0650 4044 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:12:32.0650 4044 HidBth - ok
17:12:32.0666 4044 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:12:32.0666 4044 HidIr - ok
17:12:32.0713 4044 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:12:32.0713 4044 hidserv - ok
17:12:32.0744 4044 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:12:32.0775 4044 HidUsb - ok
17:12:32.0822 4044 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:12:32.0822 4044 hkmsvc - ok
17:12:32.0900 4044 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:12:32.0900 4044 HomeGroupListener - ok
17:12:32.0931 4044 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:12:32.0931 4044 HomeGroupProvider - ok
17:12:33.0056 4044 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:12:33.0071 4044 HP Support Assistant Service - ok
17:12:33.0118 4044 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:12:33.0149 4044 HPDrvMntSvc.exe - ok
17:12:33.0243 4044 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:12:33.0274 4044 hpqwmiex - ok
17:12:33.0321 4044 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:12:33.0321 4044 HpSAMD - ok
17:12:33.0399 4044 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:12:33.0399 4044 HTTP - ok
17:12:33.0446 4044 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:12:33.0446 4044 hwpolicy - ok
17:12:33.0461 4044 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:12:33.0461 4044 i8042prt - ok
17:12:33.0493 4044 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:12:33.0493 4044 iaStorV - ok
17:12:33.0555 4044 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:12:33.0586 4044 idsvc - ok
17:12:33.0602 4044 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:12:33.0602 4044 iirsp - ok
17:12:33.0649 4044 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:12:33.0649 4044 IKEEXT - ok
17:12:33.0898 4044 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:12:33.0914 4044 IntcAzAudAddService - ok
17:12:33.0945 4044 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:12:33.0945 4044 intelide - ok
17:12:34.0007 4044 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:12:34.0007 4044 intelppm - ok
17:12:34.0054 4044 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:12:34.0054 4044 IPBusEnum - ok
17:12:34.0085 4044 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:12:34.0085 4044 IpFilterDriver - ok
17:12:34.0148 4044 [ 08C2957BB30058E663720C5606885653 ] IpHlpSvc C:\Windows\System32\iphlpsvc.dll
17:12:34.0148 4044 IpHlpSvc - ok
17:12:34.0195 4044 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:12:34.0195 4044 IPMIDRV - ok
17:12:34.0226 4044 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:12:34.0226 4044 IPNAT - ok
17:12:34.0257 4044 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:12:34.0257 4044 IRENUM - ok
17:12:34.0273 4044 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:12:34.0273 4044 isapnp - ok
17:12:34.0319 4044 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:12:34.0319 4044 iScsiPrt - ok
17:12:34.0335 4044 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:12:34.0335 4044 kbdclass - ok
17:12:34.0382 4044 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:12:34.0397 4044 kbdhid - ok
17:12:34.0413 4044 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:12:34.0413 4044 KeyIso - ok
17:12:34.0460 4044 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:12:34.0460 4044 KSecDD - ok
17:12:34.0507 4044 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:12:34.0507 4044 KSecPkg - ok
17:12:34.0569 4044 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:12:34.0569 4044 ksthunk - ok
17:12:34.0616 4044 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:12:34.0616 4044 KtmRm - ok
17:12:34.0647 4044 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:12:34.0663 4044 LanmanServer - ok
17:12:34.0694 4044 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:12:34.0694 4044 LanmanWorkstation - ok
17:12:34.0787 4044 [ 2238B91AC1A12CC6CC4C4FED41258B2A ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:12:34.0787 4044 LightScribeService - ok
17:12:34.0819 4044 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:12:34.0819 4044 lltdio - ok
17:12:34.0881 4044 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:12:34.0881 4044 lltdsvc - ok
17:12:34.0928 4044 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:12:34.0928 4044 lmhosts - ok
17:12:34.0959 4044 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:12:34.0959 4044 LSI_FC - ok
17:12:34.0990 4044 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:12:34.0990 4044 LSI_SAS - ok
17:12:35.0006 4044 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:12:35.0006 4044 LSI_SAS2 - ok
17:12:35.0037 4044 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:12:35.0037 4044 LSI_SCSI - ok
17:12:35.0068 4044 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:12:35.0068 4044 luafv - ok
17:12:35.0099 4044 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:12:35.0099 4044 Mcx2Svc - ok
17:12:35.0131 4044 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:12:35.0131 4044 megasas - ok
17:12:35.0193 4044 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:12:35.0209 4044 MegaSR - ok
17:12:35.0255 4044 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:12:35.0255 4044 MMCSS - ok
17:12:35.0302 4044 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:12:35.0302 4044 Modem - ok
17:12:35.0333 4044 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:12:35.0333 4044 monitor - ok
17:12:35.0365 4044 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
17:12:35.0365 4044 mouclass - ok
17:12:35.0380 4044 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:12:35.0380 4044 mouhid - ok
17:12:35.0427 4044 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:12:35.0427 4044 mountmgr - ok
17:12:35.0489 4044 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:12:35.0505 4044 MozillaMaintenance - ok
17:12:35.0536 4044 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:12:35.0536 4044 MpFilter - ok
17:12:35.0583 4044 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:12:35.0583 4044 mpio - ok
17:12:35.0599 4044 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:12:35.0599 4044 mpsdrv - ok
17:12:35.0645 4044 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:12:35.0661 4044 MpsSvc - ok
17:12:35.0708 4044 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:12:35.0708 4044 MRxDAV - ok
17:12:35.0755 4044 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:12:35.0755 4044 mrxsmb - ok
17:12:35.0801 4044 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:12:35.0801 4044 mrxsmb10 - ok
17:12:35.0833 4044 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:12:35.0833 4044 mrxsmb20 - ok
17:12:35.0879 4044 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:12:35.0879 4044 msahci - ok
17:12:35.0926 4044 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:12:35.0926 4044 msdsm - ok
17:12:35.0957 4044 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:12:35.0957 4044 MSDTC - ok
17:12:36.0020 4044 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:12:36.0020 4044 Msfs - ok
17:12:36.0051 4044 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:12:36.0051 4044 mshidkmdf - ok
17:12:36.0082 4044 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:12:36.0082 4044 msisadrv - ok
17:12:36.0145 4044 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:12:36.0160 4044 MSiSCSI - ok
17:12:36.0191 4044 msiserver - ok
17:12:36.0207 4044 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:12:36.0207 4044 MSKSSRV - ok
17:12:36.0285 4044 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:12:36.0301 4044 MsMpSvc - ok
17:12:36.0316 4044 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:12:36.0316 4044 MSPCLOCK - ok
17:12:36.0347 4044 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:12:36.0347 4044 MSPQM - ok
17:12:36.0410 4044 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:12:36.0410 4044 MsRPC - ok
17:12:36.0441 4044 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:12:36.0441 4044 mssmbios - ok
17:12:36.0472 4044 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:12:36.0472 4044 MSTEE - ok
17:12:36.0488 4044 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:12:36.0488 4044 MTConfig - ok
17:12:36.0503 4044 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:12:36.0503 4044 Mup - ok
17:12:36.0535 4044 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:12:36.0550 4044 napagent - ok
17:12:36.0581 4044 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:12:36.0597 4044 NativeWifiP - ok
17:12:36.0659 4044 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:12:36.0659 4044 NDIS - ok
17:12:36.0691 4044 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:12:36.0691 4044 NdisCap - ok
17:12:36.0706 4044 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:12:36.0706 4044 NdisTapi - ok
17:12:36.0753 4044 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:12:36.0753 4044 Ndisuio - ok
17:12:36.0800 4044 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:12:36.0800 4044 NdisWan - ok
17:12:36.0862 4044 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:12:36.0862 4044 NDProxy - ok
17:12:36.0925 4044 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:12:36.0925 4044 NetBIOS - ok
17:12:36.0971 4044 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:12:36.0971 4044 NetBT - ok
17:12:37.0018 4044 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:12:37.0018 4044 Netlogon - ok
17:12:37.0049 4044 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:12:37.0049 4044 Netman - ok
17:12:37.0081 4044 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:12:37.0081 4044 netprofm - ok
17:12:37.0112 4044 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:12:37.0112 4044 NetTcpPortSharing - ok
17:12:37.0127 4044 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:12:37.0127 4044 nfrd960 - ok
17:12:37.0174 4044 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:12:37.0174 4044 NisDrv - ok
17:12:37.0252 4044 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:12:37.0252 4044 NisSrv - ok
17:12:37.0315 4044 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:12:37.0330 4044 NlaSvc - ok
17:12:37.0361 4044 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:12:37.0361 4044 Npfs - ok
17:12:37.0408 4044 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:12:37.0408 4044 nsi - ok
17:12:37.0424 4044 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:12:37.0424 4044 nsiproxy - ok
17:12:37.0502 4044 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:12:37.0517 4044 Ntfs - ok
17:12:37.0549 4044 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:12:37.0549 4044 Null - ok
17:12:38.0141 4044 [ C967514483FA30A0A352E70BB6414D1D ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:12:38.0360 4044 nvlddmkm - ok
17:12:38.0391 4044 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
17:12:38.0407 4044 NVNET - ok
17:12:38.0469 4044 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:12:38.0469 4044 nvraid - ok
17:12:38.0516 4044 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:12:38.0516 4044 nvstor - ok
17:12:38.0547 4044 [ 1E45F96342429D63DC30E0D9117DA3D8 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
17:12:38.0547 4044 nvstor64 - ok
17:12:38.0578 4044 [ E26706A65D97EF9188B1D7BFA23C96C2 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:12:38.0578 4044 nvsvc - ok
17:12:38.0609 4044 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:12:38.0609 4044 nv_agp - ok
17:12:38.0641 4044 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:12:38.0641 4044 ohci1394 - ok
17:12:38.0703 4044 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:12:38.0703 4044 p2pimsvc - ok
17:12:38.0750 4044 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:12:38.0765 4044 p2psvc - ok
17:12:38.0812 4044 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:12:38.0812 4044 Parport - ok
17:12:38.0843 4044 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:12:38.0843 4044 partmgr - ok
17:12:38.0859 4044 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:12:38.0859 4044 PcaSvc - ok
17:12:39.0265 4044 PcdrNdisuio - ok
17:12:39.0311 4044 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:12:39.0311 4044 pci - ok
17:12:39.0358 4044 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:12:39.0358 4044 pciide - ok
17:12:39.0389 4044 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:12:39.0389 4044 pcmcia - ok
17:12:39.0436 4044 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:12:39.0436 4044 pcw - ok
17:12:39.0467 4044 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:12:39.0467 4044 PEAUTH - ok
17:12:39.0499 4044 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:12:39.0499 4044 PerfHost - ok
17:12:39.0577 4044 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:12:39.0577 4044 pla - ok
17:12:39.0623 4044 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:12:39.0623 4044 PlugPlay - ok
17:12:39.0655 4044 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:12:39.0655 4044 PNRPAutoReg - ok
17:12:39.0686 4044 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:12:39.0686 4044 PNRPsvc - ok
17:12:39.0717 4044 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:12:39.0717 4044 PolicyAgent - ok
17:12:39.0764 4044 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:12:39.0764 4044 Power - ok
17:12:39.0779 4044 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:12:39.0779 4044 PptpMiniport - ok
17:12:39.0811 4044 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:12:39.0811 4044 Processor - ok
17:12:39.0857 4044 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:12:39.0873 4044 ProfSvc - ok
17:12:39.0904 4044 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:12:39.0904 4044 ProtectedStorage - ok
17:12:39.0935 4044 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:12:39.0935 4044 Psched - ok
17:12:39.0967 4044 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:12:39.0982 4044 ql2300 - ok
17:12:40.0029 4044 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:12:40.0029 4044 ql40xx - ok
17:12:40.0091 4044 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:12:40.0107 4044 QWAVE - ok
17:12:40.0138 4044 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:12:40.0138 4044 QWAVEdrv - ok
17:12:40.0169 4044 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:12:40.0169 4044 RasAcd - ok
17:12:40.0201 4044 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:12:40.0201 4044 RasAgileVpn - ok
17:12:40.0216 4044 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:12:40.0216 4044 RasAuto - ok
17:12:40.0247 4044 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:12:40.0247 4044 Rasl2tp - ok
17:12:40.0294 4044 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:12:40.0294 4044 RasMan - ok
17:12:40.0325 4044 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:12:40.0325 4044 RasPppoe - ok
17:12:40.0341 4044 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:12:40.0341 4044 RasSstp - ok
17:12:40.0388 4044 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:12:40.0388 4044 rdbss - ok
17:12:40.0403 4044 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:12:40.0403 4044 rdpbus - ok
17:12:40.0435 4044 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:12:40.0435 4044 RDPCDD - ok
17:12:40.0450 4044 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:12:40.0450 4044 RDPENCDD - ok
17:12:40.0466 4044 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:12:40.0466 4044 RDPREFMP - ok
17:12:40.0513 4044 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:12:40.0528 4044 RDPWD - ok
17:12:40.0559 4044 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:12:40.0559 4044 rdyboost - ok
17:12:40.0591 4044 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:12:40.0591 4044 RemoteAccess - ok
17:12:40.0622 4044 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:12:40.0637 4044 RemoteRegistry - ok
17:12:40.0669 4044 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:12:40.0669 4044 RpcEptMapper - ok
17:12:40.0684 4044 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:12:40.0684 4044 RpcLocator - ok
17:12:40.0715 4044 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:12:40.0715 4044 RpcSs - ok
17:12:40.0762 4044 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:12:40.0762 4044 rspndr - ok
17:12:40.0793 4044 [ 3641E624C8C5D5EA089AE9B5340B5B79 ] rt70x64 C:\Windows\system32\DRIVERS\netr7064.sys
17:12:40.0793 4044 rt70x64 - ok
17:12:40.0809 4044 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:12:40.0809 4044 SamSs - ok
17:12:40.0856 4044 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:12:40.0856 4044 sbp2port - ok
17:12:40.0887 4044 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:12:40.0934 4044 SCardSvr - ok
17:12:40.0981 4044 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:12:40.0981 4044 scfilter - ok
17:12:41.0043 4044 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:12:41.0090 4044 Schedule - ok
17:12:41.0121 4044 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:12:41.0121 4044 SCPolicySvc - ok
17:12:41.0152 4044 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:12:41.0152 4044 SDRSVC - ok
17:12:41.0183 4044 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:12:41.0183 4044 secdrv - ok
17:12:41.0199 4044 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:12:41.0199 4044 seclogon - ok
17:12:41.0230 4044 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:12:41.0230 4044 SENS - ok
17:12:41.0261 4044 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:12:41.0277 4044 SensrSvc - ok
17:12:41.0308 4044 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:12:41.0308 4044 Serenum - ok
17:12:41.0324 4044 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:12:41.0324 4044 Serial - ok
17:12:41.0339 4044 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:12:41.0339 4044 sermouse - ok
17:12:41.0402 4044 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:12:41.0480 4044 SessionEnv - ok
17:12:41.0511 4044 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:12:41.0511 4044 sffdisk - ok
17:12:41.0527 4044 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:12:41.0527 4044 sffp_mmc - ok
17:12:41.0558 4044 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:12:41.0558 4044 sffp_sd - ok
17:12:41.0573 4044 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:12:41.0573 4044 sfloppy - ok
17:12:41.0605 4044 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:12:41.0605 4044 SharedAccess - ok
17:12:41.0620 4044 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:12:41.0620 4044 ShellHWDetection - ok
17:12:41.0636 4044 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:12:41.0651 4044 SiSRaid2 - ok
17:12:41.0667 4044 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:12:41.0667 4044 SiSRaid4 - ok
17:12:41.0698 4044 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:12:41.0698 4044 Smb - ok
17:12:41.0729 4044 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:12:41.0729 4044 SNMPTRAP - ok
17:12:41.0776 4044 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:12:41.0776 4044 spldr - ok
17:12:41.0823 4044 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:12:41.0823 4044 Spooler - ok
17:12:41.0979 4044 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:12:42.0010 4044 sppsvc - ok
17:12:42.0057 4044 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:12:42.0057 4044 sppuinotify - ok
17:12:42.0135 4044 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:12:42.0166 4044 srv - ok
17:12:42.0213 4044 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:12:42.0213 4044 srv2 - ok
17:12:42.0244 4044 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:12:42.0244 4044 srvnet - ok
17:12:42.0291 4044 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:12:42.0291 4044 SSDPSRV - ok
17:12:42.0322 4044 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:12:42.0322 4044 SstpSvc - ok
17:12:42.0338 4044 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:12:42.0338 4044 stexstor - ok
17:12:42.0385 4044 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:12:42.0400 4044 stisvc - ok
17:12:42.0416 4044 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:12:42.0416 4044 swenum - ok
17:12:42.0447 4044 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:12:42.0447 4044 swprv - ok
17:12:42.0603 4044 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:12:42.0650 4044 SysMain - ok
17:12:42.0665 4044 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:12:42.0665 4044 TabletInputService - ok
17:12:42.0681 4044 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:12:42.0697 4044 TapiSrv - ok
17:12:42.0728 4044 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:12:42.0728 4044 TBS - ok
17:12:42.0962 4044 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:12:43.0009 4044 Tcpip - ok
17:12:43.0055 4044 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:12:43.0071 4044 TCPIP6 - ok
17:12:43.0087 4044 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:12:43.0102 4044 tcpipreg - ok
17:12:43.0118 4044 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:12:43.0118 4044 TDPIPE - ok
17:12:43.0149 4044 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:12:43.0165 4044 TDTCP - ok
17:12:43.0180 4044 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:12:43.0196 4044 tdx - ok
17:12:43.0211 4044 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:12:43.0211 4044 TermDD - ok
17:12:43.0258 4044 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:12:43.0274 4044 TermService - ok
17:12:43.0305 4044 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:12:43.0305 4044 Themes - ok
17:12:43.0336 4044 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:12:43.0336 4044 THREADORDER - ok
17:12:43.0352 4044 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:12:43.0352 4044 TrkWks - ok
17:12:43.0383 4044 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:12:43.0383 4044 TrustedInstaller - ok
17:12:43.0430 4044 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:12:43.0430 4044 tssecsrv - ok
17:12:43.0477 4044 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:12:43.0477 4044 TsUsbFlt - ok
17:12:43.0508 4044 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:12:43.0508 4044 tunnel - ok
17:12:43.0539 4044 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:12:43.0539 4044 uagp35 - ok
17:12:43.0586 4044 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:12:43.0633 4044 udfs - ok
17:12:43.0695 4044 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:12:43.0695 4044 UI0Detect - ok
17:12:43.0711 4044 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:12:43.0726 4044 uliagpkx - ok
17:12:43.0742 4044 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:12:43.0742 4044 umbus - ok
17:12:43.0789 4044 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:12:43.0789 4044 UmPass - ok
17:12:43.0835 4044 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:12:43.0851 4044 upnphost - ok
17:12:43.0882 4044 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:12:43.0882 4044 usbccgp - ok
17:12:43.0929 4044 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:12:43.0929 4044 usbcir - ok
17:12:43.0945 4044 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:12:43.0960 4044 usbehci - ok
17:12:43.0976 4044 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:12:43.0976 4044 usbhub - ok
17:12:43.0991 4044 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:12:43.0991 4044 usbohci - ok
17:12:44.0023 4044 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:12:44.0023 4044 usbprint - ok
17:12:44.0069 4044 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:12:44.0069 4044 USBSTOR - ok
17:12:44.0085 4044 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:12:44.0085 4044 usbuhci - ok
17:12:44.0132 4044 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:12:44.0132 4044 UxSms - ok
17:12:44.0147 4044 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:12:44.0147 4044 VaultSvc - ok
17:12:44.0163 4044 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:12:44.0163 4044 vdrvroot - ok
17:12:44.0210 4044 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:12:44.0225 4044 vds - ok
17:12:44.0257 4044 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:12:44.0257 4044 vga - ok
17:12:44.0272 4044 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:12:44.0272 4044 VgaSave - ok
17:12:44.0319 4044 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:12:44.0350 4044 vhdmp - ok
17:12:44.0381 4044 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:12:44.0381 4044 viaide - ok
17:12:44.0397 4044 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:12:44.0397 4044 volmgr - ok
17:12:44.0428 4044 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:12:44.0428 4044 volmgrx - ok
17:12:44.0459 4044 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:12:44.0459 4044 volsnap - ok
17:12:44.0506 4044 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:12:44.0506 4044 vsmraid - ok
17:12:44.0569 4044 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:12:44.0584 4044 VSS - ok
17:12:44.0615 4044 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:12:44.0615 4044 vwifibus - ok
17:12:44.0647 4044 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:12:44.0662 4044 W32Time - ok
17:12:44.0693 4044 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:12:44.0693 4044 WacomPen - ok
17:12:44.0725 4044 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:12:44.0725 4044 WANARP - ok
17:12:44.0725 4044 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:12:44.0725 4044 Wanarpv6 - ok
17:12:44.0787 4044 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:12:44.0803 4044 WatAdminSvc - ok
17:12:44.0865 4044 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:12:44.0881 4044 wbengine - ok
17:12:44.0912 4044 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:12:44.0912 4044 WbioSrvc - ok
17:12:44.0959 4044 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:12:44.0959 4044 wcncsvc - ok
17:12:44.0990 4044 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:12:44.0990 4044 WcsPlugInService - ok
17:12:45.0005 4044 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:12:45.0005 4044 Wd - ok
17:12:45.0052 4044 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:12:45.0052 4044 Wdf01000 - ok
17:12:45.0099 4044 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:12:45.0099 4044 WdiServiceHost - ok
17:12:45.0115 4044 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:12:45.0115 4044 WdiSystemHost - ok
17:12:45.0161 4044 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:12:45.0161 4044 WebClient - ok
17:12:45.0208 4044 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:12:45.0224 4044 Wecsvc - ok
17:12:45.0239 4044 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:12:45.0239 4044 wercplsupport - ok
17:12:45.0255 4044 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:12:45.0255 4044 WerSvc - ok
17:12:45.0286 4044 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:12:45.0286 4044 WfpLwf - ok
17:12:45.0317 4044 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:12:45.0317 4044 WIMMount - ok
17:12:45.0349 4044 WinDefend - ok
17:12:45.0364 4044 WinHttpAutoProxySvc - ok
17:12:45.0442 4044 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:12:45.0442 4044 Winmgmt - ok
17:12:45.0520 4044 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:12:45.0536 4044 WinRM - ok
17:12:45.0583 4044 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:12:45.0598 4044 Wlansvc - ok
17:12:45.0707 4044 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:12:45.0723 4044 wlidsvc - ok
17:12:45.0770 4044 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:12:45.0770 4044 WmiAcpi - ok
17:12:45.0801 4044 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:12:45.0817 4044 wmiApSrv - ok
17:12:45.0832 4044 WMPNetworkSvc - ok
17:12:45.0863 4044 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:12:45.0863 4044 WPCSvc - ok
17:12:45.0879 4044 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:12:45.0879 4044 WPDBusEnum - ok
17:12:45.0910 4044 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:12:45.0910 4044 ws2ifsl - ok
17:12:45.0941 4044 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:12:45.0941 4044 wscsvc - ok
17:12:45.0941 4044 WSearch - ok
17:12:46.0035 4044 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:12:46.0066 4044 wuauserv - ok
17:12:46.0097 4044 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:12:46.0097 4044 WudfPf - ok
17:12:46.0113 4044 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:12:46.0113 4044 WUDFRd - ok
17:12:46.0144 4044 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:12:46.0144 4044 wudfsvc - ok
17:12:46.0175 4044 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:12:46.0191 4044 WwanSvc - ok
17:12:46.0222 4044 ================ Scan global ===============================
17:12:46.0253 4044 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:12:46.0269 4044 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:12:46.0285 4044 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:12:46.0300 4044 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:12:46.0316 4044 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:12:46.0316 4044 [Global] - ok
17:12:46.0316 4044 ================ Scan MBR ==================================
17:12:46.0331 4044 [ AF00FC1920E1CF861B39B90A4375EDF3 ] \Device\Harddisk0\DR0
17:12:47.0174 4044 \Device\Harddisk0\DR0 - ok
17:12:47.0174 4044 ================ Scan VBR ==================================
17:12:47.0189 4044 [ AE2D469C0209A75CEF687DD492171F56 ] \Device\Harddisk0\DR0\Partition1
17:12:47.0189 4044 \Device\Harddisk0\DR0\Partition1 - ok
17:12:47.0221 4044 [ 62991F3502DFCF86711FD2DAC2DA3D4A ] \Device\Harddisk0\DR0\Partition2
17:12:47.0221 4044 \Device\Harddisk0\DR0\Partition2 - ok
17:12:47.0252 4044 [ 35501E0F5BC1821551F719FA4CE36F2C ] \Device\Harddisk0\DR0\Partition3
17:12:47.0252 4044 \Device\Harddisk0\DR0\Partition3 - ok
17:12:47.0252 4044 ============================================================
17:12:47.0252 4044 Scan finished
17:12:47.0252 4044 ============================================================
17:12:47.0267 4036 Detected object count: 0
17:12:47.0267 4036 Actual detected object count: 0
17:12:52.0519 2708 Deinitialize success




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users