Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

SVChost.exe Trojan.Agent Virus


  • Please log in to reply
4 replies to this topic

#1 kechandler

kechandler

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:19 AM

Posted 05 February 2013 - 08:33 PM

Apparently for a few months this computer was run without virus protection. My computer used to crash to the blue screen, had google results deflected and in the background with the volume on random commercials will start running. I have to go into Windows Task Manager and close svchost.exe*32 to get the ads to stop playing. I now have Norton 360 on but it didn't detect the issue during a scan. A couple of days ago I downloaded Malwarebytes and ran it. It detected the issue and now I get constant notifications that it has quarantined a threat C:Windows\svchost.exe Trojan.Agent. None of the issues are occuring with it but I want to clean this off my computer, however I have no experience, am not very tech savy and have no idea where to start. Any help would be greatly appreciated.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:19 PM

Posted 05 February 2013 - 08:35 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log(Do not click on FIXMBR)

Post the log results here.If you get crashes in normal mode,run it in safemode with networking


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply.Ignore it if there are no detected threats.

#3 kechandler

kechandler
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:19 AM

Posted 05 February 2013 - 09:12 PM

20:07:17.0204 6108 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:07:17.0719 6108 ============================================================
20:07:17.0719 6108 Current date / time: 2013/02/05 20:07:17.0719
20:07:17.0719 6108 SystemInfo:
20:07:17.0719 6108
20:07:17.0719 6108 OS Version: 6.1.7601 ServicePack: 1.0
20:07:17.0719 6108 Product type: Workstation
20:07:17.0719 6108 ComputerName: USER-VAIO
20:07:17.0719 6108 UserName: User
20:07:17.0719 6108 Windows directory: C:\Windows
20:07:17.0719 6108 System windows directory: C:\Windows
20:07:17.0719 6108 Running under WOW64
20:07:17.0719 6108 Processor architecture: Intel x64
20:07:17.0719 6108 Number of processors: 8
20:07:17.0719 6108 Page size: 0x1000
20:07:17.0719 6108 Boot type: Normal boot
20:07:17.0719 6108 ============================================================
20:07:18.0250 6108 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:07:18.0250 6108 ============================================================
20:07:18.0250 6108 \Device\Harddisk0\DR0:
20:07:18.0250 6108 MBR partitions:
20:07:18.0250 6108 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18A5000, BlocksNum 0x32000
20:07:18.0250 6108 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x18D7000, BlocksNum 0x55C6EEF0
20:07:18.0250 6108 ============================================================
20:07:18.0296 6108 C: <-> \Device\Harddisk0\DR0\Partition2
20:07:18.0296 6108 ============================================================
20:07:18.0296 6108 Initialize success
20:07:18.0296 6108 ============================================================
20:07:27.0752 2684 ============================================================
20:07:27.0752 2684 Scan started
20:07:27.0752 2684 Mode: Manual;
20:07:27.0752 2684 ============================================================
20:07:30.0373 2684 ================ Scan system memory ========================
20:07:30.0373 2684 System memory - ok
20:07:30.0373 2684 ================ Scan services =============================
20:07:31.0278 2684 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:07:31.0294 2684 1394ohci - ok
20:07:31.0418 2684 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
20:07:31.0418 2684 ACDaemon - ok
20:07:31.0465 2684 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:07:31.0481 2684 ACPI - ok
20:07:31.0512 2684 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:07:31.0528 2684 AcpiPmi - ok
20:07:31.0590 2684 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:07:31.0621 2684 adp94xx - ok
20:07:31.0668 2684 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:07:31.0668 2684 adpahci - ok
20:07:31.0730 2684 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:07:31.0746 2684 adpu320 - ok
20:07:31.0777 2684 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:07:31.0777 2684 AeLookupSvc - ok
20:07:31.0840 2684 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:07:31.0855 2684 AFD - ok
20:07:31.0996 2684 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:07:32.0058 2684 agp440 - ok
20:07:32.0152 2684 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:07:32.0167 2684 ALG - ok
20:07:32.0214 2684 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:07:32.0214 2684 aliide - ok
20:07:32.0230 2684 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:07:32.0230 2684 amdide - ok
20:07:32.0276 2684 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:07:32.0276 2684 AmdK8 - ok
20:07:32.0292 2684 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
20:07:32.0292 2684 AmdPPM - ok
20:07:32.0339 2684 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:07:32.0339 2684 amdsata - ok
20:07:32.0401 2684 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
20:07:32.0417 2684 amdsbs - ok
20:07:32.0432 2684 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:07:32.0432 2684 amdxata - ok
20:07:32.0479 2684 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:07:32.0479 2684 AppID - ok
20:07:32.0510 2684 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:07:32.0526 2684 AppIDSvc - ok
20:07:32.0542 2684 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:07:32.0542 2684 Appinfo - ok
20:07:32.0651 2684 [ BF0652894634E7681C8C30F06514DE6E ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:07:32.0666 2684 Apple Mobile Device - ok
20:07:32.0713 2684 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
20:07:32.0729 2684 arc - ok
20:07:32.0776 2684 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:07:32.0791 2684 arcsas - ok
20:07:32.0916 2684 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:07:32.0916 2684 aspnet_state - ok
20:07:32.0978 2684 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:07:32.0978 2684 AsyncMac - ok
20:07:33.0025 2684 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:07:33.0025 2684 atapi - ok
20:07:33.0103 2684 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
20:07:33.0166 2684 athr - ok
20:07:33.0244 2684 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:07:33.0259 2684 AudioEndpointBuilder - ok
20:07:33.0290 2684 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:07:33.0290 2684 AudioSrv - ok
20:07:33.0353 2684 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:07:33.0353 2684 AxInstSV - ok
20:07:33.0446 2684 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
20:07:33.0462 2684 b06bdrv - ok
20:07:33.0524 2684 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:07:33.0524 2684 b57nd60a - ok
20:07:33.0571 2684 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:07:33.0571 2684 BDESVC - ok
20:07:33.0634 2684 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:07:33.0634 2684 Beep - ok
20:07:33.0696 2684 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:07:33.0727 2684 BFE - ok
20:07:33.0930 2684 [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.1.5\Definitions\BASHDefs\20130116.013\BHDrvx64.sys
20:07:33.0946 2684 BHDrvx64 - ok
20:07:34.0024 2684 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:07:34.0055 2684 BITS - ok
20:07:34.0102 2684 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
20:07:34.0117 2684 blbdrive - ok
20:07:34.0195 2684 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:07:34.0211 2684 Bonjour Service - ok
20:07:34.0258 2684 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:07:34.0273 2684 bowser - ok
20:07:34.0304 2684 [ 56E4345F392F17D66683225E214840CB ] bpenum C:\Windows\system32\DRIVERS\bpenum.sys
20:07:34.0320 2684 bpenum - ok
20:07:34.0367 2684 [ D50B07C4D7AFEC4CA6AC8FCB72583C5B ] bpmp C:\Windows\system32\DRIVERS\bpmp.sys
20:07:34.0382 2684 bpmp - ok
20:07:34.0414 2684 [ A85BA55E4FE9CB2F342F281AAF7DE810 ] bpusb C:\Windows\system32\Drivers\bpusb.sys
20:07:34.0429 2684 bpusb - ok
20:07:34.0476 2684 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
20:07:34.0476 2684 BrFiltLo - ok
20:07:34.0476 2684 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
20:07:34.0476 2684 BrFiltUp - ok
20:07:34.0523 2684 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:07:34.0523 2684 Browser - ok
20:07:34.0538 2684 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:07:34.0554 2684 Brserid - ok
20:07:34.0585 2684 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:07:34.0585 2684 BrSerWdm - ok
20:07:34.0616 2684 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:07:34.0632 2684 BrUsbMdm - ok
20:07:34.0648 2684 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:07:34.0679 2684 BrUsbSer - ok
20:07:34.0726 2684 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:07:34.0726 2684 BthEnum - ok
20:07:34.0741 2684 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
20:07:34.0741 2684 BTHMODEM - ok
20:07:34.0772 2684 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:07:34.0772 2684 BthPan - ok
20:07:34.0850 2684 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:07:34.0882 2684 BTHPORT - ok
20:07:34.0944 2684 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:07:34.0944 2684 bthserv - ok
20:07:34.0960 2684 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:07:34.0975 2684 BTHUSB - ok
20:07:35.0053 2684 [ F8CFAFBD5BF8B3DDB0D3C2943A5AF8CE ] BTWAMPFL C:\Windows\system32\DRIVERS\btwampfl.sys
20:07:35.0069 2684 BTWAMPFL - ok
20:07:35.0131 2684 [ 44770A3C07EBD5D6D7CD7DBA915B49BC ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
20:07:35.0147 2684 btwaudio - ok
20:07:35.0194 2684 [ 75B59923087AE6EB064D13D8F58A02B6 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
20:07:35.0194 2684 btwavdt - ok
20:07:35.0303 2684 [ E1C1BCC8211E3AE2B524DEEF071FAF2A ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
20:07:35.0318 2684 btwdins - ok
20:07:35.0350 2684 [ B9354F9F111C64F2495B60F1E24CB453 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
20:07:35.0350 2684 btwl2cap - ok
20:07:35.0381 2684 [ 9555E15F828760341751E9183BD34E60 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
20:07:35.0381 2684 btwrchid - ok
20:07:35.0521 2684 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\0604000.009\ccSetx64.sys
20:07:35.0537 2684 ccSet_N360 - ok
20:07:35.0568 2684 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:07:35.0568 2684 cdfs - ok
20:07:35.0615 2684 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:07:35.0615 2684 cdrom - ok
20:07:35.0662 2684 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:07:35.0662 2684 CertPropSvc - ok
20:07:35.0662 2684 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
20:07:35.0677 2684 circlass - ok
20:07:35.0708 2684 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:07:35.0724 2684 CLFS - ok
20:07:35.0802 2684 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:07:35.0818 2684 clr_optimization_v2.0.50727_32 - ok
20:07:35.0849 2684 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:07:35.0864 2684 clr_optimization_v2.0.50727_64 - ok
20:07:35.0942 2684 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:07:36.0005 2684 clr_optimization_v4.0.30319_32 - ok
20:07:36.0036 2684 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:07:36.0036 2684 clr_optimization_v4.0.30319_64 - ok
20:07:36.0083 2684 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
20:07:36.0098 2684 CmBatt - ok
20:07:36.0130 2684 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:07:36.0130 2684 cmdide - ok
20:07:36.0192 2684 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:07:36.0223 2684 CNG - ok
20:07:36.0270 2684 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
20:07:36.0286 2684 Compbatt - ok
20:07:36.0348 2684 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:07:36.0364 2684 CompositeBus - ok
20:07:36.0395 2684 COMSysApp - ok
20:07:36.0426 2684 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:07:36.0442 2684 crcdisk - ok
20:07:36.0520 2684 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:07:36.0520 2684 CryptSvc - ok
20:07:36.0566 2684 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:07:36.0582 2684 DcomLaunch - ok
20:07:36.0613 2684 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:07:36.0613 2684 defragsvc - ok
20:07:36.0644 2684 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:07:36.0644 2684 DfsC - ok
20:07:36.0691 2684 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:07:36.0691 2684 Dhcp - ok
20:07:36.0691 2684 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:07:36.0691 2684 discache - ok
20:07:36.0754 2684 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
20:07:36.0769 2684 Disk - ok
20:07:36.0832 2684 [ E7B489FA5B15D2FEC3E52066E015B788 ] DMAgent C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
20:07:36.0847 2684 DMAgent - ok
20:07:36.0878 2684 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:07:36.0878 2684 Dnscache - ok
20:07:36.0894 2684 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:07:36.0910 2684 dot3svc - ok
20:07:36.0925 2684 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:07:36.0925 2684 DPS - ok
20:07:36.0972 2684 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:07:36.0988 2684 drmkaud - ok
20:07:37.0019 2684 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:07:37.0034 2684 DXGKrnl - ok
20:07:37.0081 2684 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
20:07:37.0081 2684 e1yexpress - ok
20:07:37.0112 2684 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:07:37.0112 2684 EapHost - ok
20:07:37.0206 2684 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
20:07:37.0300 2684 ebdrv - ok
20:07:37.0424 2684 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
20:07:37.0424 2684 eeCtrl - ok
20:07:37.0471 2684 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:07:37.0471 2684 EFS - ok
20:07:37.0565 2684 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:07:37.0596 2684 ehRecvr - ok
20:07:37.0643 2684 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:07:37.0643 2684 ehSched - ok
20:07:37.0690 2684 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:07:37.0705 2684 elxstor - ok
20:07:37.0768 2684 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
20:07:37.0768 2684 EraserUtilRebootDrv - ok
20:07:37.0783 2684 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:07:37.0783 2684 ErrDev - ok
20:07:37.0846 2684 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:07:37.0846 2684 EventSystem - ok
20:07:37.0970 2684 [ 57E61DC4F7980D57C0B162FC5B9F0B38 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:07:38.0017 2684 EvtEng - ok
20:07:38.0080 2684 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:07:38.0095 2684 exfat - ok
20:07:38.0126 2684 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:07:38.0126 2684 fastfat - ok
20:07:38.0189 2684 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:07:38.0204 2684 Fax - ok
20:07:38.0267 2684 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
20:07:38.0267 2684 fdc - ok
20:07:38.0314 2684 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:07:38.0314 2684 fdPHost - ok
20:07:38.0329 2684 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:07:38.0329 2684 FDResPub - ok
20:07:38.0376 2684 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:07:38.0376 2684 FileInfo - ok
20:07:38.0392 2684 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:07:38.0407 2684 Filetrace - ok
20:07:38.0445 2684 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
20:07:38.0461 2684 flpydisk - ok
20:07:38.0480 2684 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:07:38.0484 2684 FltMgr - ok
20:07:38.0520 2684 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:07:38.0540 2684 FontCache - ok
20:07:38.0592 2684 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:07:38.0593 2684 FontCache3.0.0.0 - ok
20:07:38.0610 2684 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:07:38.0612 2684 FsDepends - ok
20:07:38.0668 2684 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:07:38.0677 2684 Fs_Rec - ok
20:07:38.0731 2684 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:07:38.0735 2684 fvevol - ok
20:07:38.0779 2684 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:07:38.0781 2684 gagp30kx - ok
20:07:38.0832 2684 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:07:38.0838 2684 gpsvc - ok
20:07:38.0868 2684 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:07:38.0868 2684 hcw85cir - ok
20:07:38.0900 2684 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:07:38.0931 2684 HdAudAddService - ok
20:07:38.0962 2684 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:07:38.0962 2684 HDAudBus - ok
20:07:39.0009 2684 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
20:07:39.0024 2684 HidBatt - ok
20:07:39.0056 2684 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:07:39.0071 2684 HidBth - ok
20:07:39.0118 2684 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
20:07:39.0118 2684 HidIr - ok
20:07:39.0134 2684 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:07:39.0149 2684 hidserv - ok
20:07:39.0196 2684 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:07:39.0196 2684 HidUsb - ok
20:07:39.0227 2684 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:07:39.0227 2684 hkmsvc - ok
20:07:39.0274 2684 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:07:39.0290 2684 HomeGroupListener - ok
20:07:39.0321 2684 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:07:39.0336 2684 HomeGroupProvider - ok
20:07:39.0383 2684 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:07:39.0383 2684 HpSAMD - ok
20:07:39.0446 2684 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:07:39.0461 2684 HTTP - ok
20:07:39.0492 2684 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:07:39.0492 2684 hwpolicy - ok
20:07:39.0539 2684 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:07:39.0539 2684 i8042prt - ok
20:07:39.0602 2684 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\drivers\iaStor.sys
20:07:39.0602 2684 iaStor - ok
20:07:39.0680 2684 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:07:39.0680 2684 IAStorDataMgrSvc - ok
20:07:39.0742 2684 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:07:39.0742 2684 iaStorV - ok
20:07:39.0804 2684 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:07:39.0851 2684 idsvc - ok
20:07:40.0038 2684 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.1.5\Definitions\IPSDefs\20130202.001\IDSvia64.sys
20:07:40.0054 2684 IDSVia64 - ok
20:07:40.0101 2684 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:07:40.0101 2684 iirsp - ok
20:07:40.0148 2684 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:07:40.0179 2684 IKEEXT - ok
20:07:40.0304 2684 [ 65F70696BE5ABC11634FCF96AF7D7896 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:07:40.0335 2684 IntcAzAudAddService - ok
20:07:40.0382 2684 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:07:40.0397 2684 intelide - ok
20:07:40.0444 2684 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
20:07:40.0460 2684 intelppm - ok
20:07:40.0506 2684 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:07:40.0506 2684 IPBusEnum - ok
20:07:40.0538 2684 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:07:40.0538 2684 IpFilterDriver - ok
20:07:40.0631 2684 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:07:40.0631 2684 iphlpsvc - ok
20:07:40.0662 2684 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:07:40.0678 2684 IPMIDRV - ok
20:07:40.0709 2684 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:07:40.0709 2684 IPNAT - ok
20:07:40.0756 2684 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:07:40.0756 2684 IRENUM - ok
20:07:40.0787 2684 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:07:40.0803 2684 isapnp - ok
20:07:40.0834 2684 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:07:40.0850 2684 iScsiPrt - ok
20:07:40.0928 2684 [ F415A88162D23977B5EDAE4F0410E903 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
20:07:40.0928 2684 IviRegMgr - ok
20:07:40.0990 2684 [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
20:07:40.0990 2684 jhi_service - ok
20:07:41.0037 2684 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:07:41.0037 2684 kbdclass - ok
20:07:41.0068 2684 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:07:41.0068 2684 kbdhid - ok
20:07:41.0115 2684 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:07:41.0115 2684 KeyIso - ok
20:07:41.0146 2684 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:07:41.0146 2684 KSecDD - ok
20:07:41.0162 2684 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:07:41.0162 2684 KSecPkg - ok
20:07:41.0193 2684 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:07:41.0193 2684 ksthunk - ok
20:07:41.0240 2684 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:07:41.0240 2684 KtmRm - ok
20:07:41.0302 2684 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:07:41.0318 2684 LanmanServer - ok
20:07:41.0411 2684 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:07:41.0411 2684 LanmanWorkstation - ok
20:07:41.0567 2684 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:07:41.0583 2684 lltdio - ok
20:07:41.0661 2684 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:07:41.0723 2684 lltdsvc - ok
20:07:41.0848 2684 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:07:41.0864 2684 lmhosts - ok
20:07:41.0942 2684 [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:07:41.0957 2684 LMS - ok
20:07:42.0004 2684 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:07:42.0020 2684 LSI_FC - ok
20:07:42.0082 2684 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:07:42.0082 2684 LSI_SAS - ok
20:07:42.0098 2684 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
20:07:42.0113 2684 LSI_SAS2 - ok
20:07:42.0144 2684 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:07:42.0144 2684 LSI_SCSI - ok
20:07:42.0176 2684 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:07:42.0191 2684 luafv - ok
20:07:42.0254 2684 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:07:42.0254 2684 MBAMProtector - ok
20:07:42.0332 2684 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:07:42.0347 2684 MBAMScheduler - ok
20:07:42.0378 2684 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:07:42.0394 2684 MBAMService - ok
20:07:42.0425 2684 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:07:42.0441 2684 Mcx2Svc - ok
20:07:42.0472 2684 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
20:07:42.0488 2684 megasas - ok
20:07:42.0550 2684 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
20:07:42.0550 2684 MegaSR - ok
20:07:42.0628 2684 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\drivers\HECIx64.sys
20:07:42.0628 2684 MEIx64 - ok
20:07:42.0690 2684 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:07:42.0706 2684 MMCSS - ok
20:07:42.0722 2684 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:07:42.0722 2684 Modem - ok
20:07:42.0768 2684 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:07:42.0768 2684 monitor - ok
20:07:42.0815 2684 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:07:42.0815 2684 mouclass - ok
20:07:42.0862 2684 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
20:07:42.0862 2684 mouhid - ok
20:07:42.0909 2684 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:07:42.0909 2684 mountmgr - ok
20:07:42.0987 2684 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:07:42.0987 2684 MozillaMaintenance - ok
20:07:43.0018 2684 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:07:43.0034 2684 mpio - ok
20:07:43.0065 2684 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:07:43.0065 2684 mpsdrv - ok
20:07:43.0112 2684 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:07:43.0143 2684 MpsSvc - ok
20:07:43.0174 2684 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:07:43.0190 2684 MRxDAV - ok
20:07:43.0221 2684 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:07:43.0221 2684 mrxsmb - ok
20:07:43.0236 2684 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:07:43.0252 2684 mrxsmb10 - ok
20:07:43.0252 2684 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:07:43.0268 2684 mrxsmb20 - ok
20:07:43.0283 2684 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:07:43.0283 2684 msahci - ok
20:07:43.0299 2684 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:07:43.0314 2684 msdsm - ok
20:07:43.0346 2684 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:07:43.0346 2684 MSDTC - ok
20:07:43.0392 2684 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:07:43.0408 2684 Msfs - ok
20:07:43.0439 2684 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:07:43.0455 2684 mshidkmdf - ok
20:07:43.0470 2684 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:07:43.0486 2684 msisadrv - ok
20:07:43.0517 2684 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:07:43.0533 2684 MSiSCSI - ok
20:07:43.0533 2684 msiserver - ok
20:07:43.0580 2684 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:07:43.0580 2684 MSKSSRV - ok
20:07:43.0626 2684 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:07:43.0642 2684 MSPCLOCK - ok
20:07:43.0658 2684 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:07:43.0658 2684 MSPQM - ok
20:07:43.0689 2684 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:07:43.0689 2684 MsRPC - ok
20:07:43.0751 2684 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:07:43.0751 2684 mssmbios - ok
20:07:43.0767 2684 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:07:43.0767 2684 MSTEE - ok
20:07:43.0798 2684 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
20:07:43.0798 2684 MTConfig - ok
20:07:43.0814 2684 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:07:43.0829 2684 Mup - ok
20:07:43.0876 2684 [ 50B99D53BC013458381C6476D790C9F3 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
20:07:43.0892 2684 MyWiFiDHCPDNS - ok
20:07:44.0048 2684 [ F2840DBFE9322F35557219AE82CC4597 ] N360 C:\Program Files (x86)\Norton 360\Engine\6.4.0.9\ccSvcHst.exe
20:07:44.0048 2684 N360 - ok
20:07:44.0094 2684 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:07:44.0110 2684 napagent - ok
20:07:44.0188 2684 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:07:44.0204 2684 NativeWifiP - ok
20:07:44.0344 2684 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.1.5\Definitions\VirusDefs\20130205.003\ENG64.SYS
20:07:44.0344 2684 NAVENG - ok
20:07:44.0406 2684 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.1.5\Definitions\VirusDefs\20130205.003\EX64.SYS
20:07:44.0422 2684 NAVEX15 - ok
20:07:44.0484 2684 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:07:44.0500 2684 NDIS - ok
20:07:44.0562 2684 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:07:44.0578 2684 NdisCap - ok
20:07:44.0625 2684 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:07:44.0640 2684 NdisTapi - ok
20:07:44.0672 2684 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:07:44.0687 2684 Ndisuio - ok
20:07:44.0703 2684 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:07:44.0718 2684 NdisWan - ok
20:07:44.0734 2684 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:07:44.0734 2684 NDProxy - ok
20:07:44.0765 2684 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:07:44.0781 2684 NetBIOS - ok
20:07:44.0796 2684 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:07:44.0796 2684 NetBT - ok
20:07:44.0843 2684 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:07:44.0843 2684 Netlogon - ok
20:07:44.0906 2684 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:07:44.0921 2684 Netman - ok
20:07:44.0968 2684 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:07:44.0968 2684 NetMsmqActivator - ok
20:07:44.0984 2684 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:07:44.0984 2684 NetPipeActivator - ok
20:07:45.0046 2684 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:07:45.0062 2684 netprofm - ok
20:07:45.0062 2684 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:07:45.0062 2684 NetTcpActivator - ok
20:07:45.0077 2684 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:07:45.0077 2684 NetTcpPortSharing - ok
20:07:45.0280 2684 [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
20:07:45.0436 2684 NETwNs64 - ok
20:07:45.0498 2684 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:07:45.0514 2684 nfrd960 - ok
20:07:45.0545 2684 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:07:45.0561 2684 NlaSvc - ok
20:07:45.0592 2684 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:07:45.0608 2684 Npfs - ok
20:07:45.0639 2684 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:07:45.0639 2684 nsi - ok
20:07:45.0654 2684 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:07:45.0670 2684 nsiproxy - ok
20:07:45.0732 2684 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:07:45.0795 2684 Ntfs - ok
20:07:45.0810 2684 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:07:45.0810 2684 Null - ok
20:07:45.0857 2684 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
20:07:45.0857 2684 nusb3hub - ok
20:07:45.0904 2684 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
20:07:45.0935 2684 nusb3xhc - ok
20:07:45.0982 2684 [ F2662FDC20518EE8A8EED4F61BA42349 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:07:45.0998 2684 NVHDA - ok
20:07:46.0294 2684 [ A8151A773CE78233375445D41B77E85E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:07:46.0341 2684 nvlddmkm - ok
20:07:46.0403 2684 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:07:46.0403 2684 nvraid - ok
20:07:46.0450 2684 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:07:46.0450 2684 nvstor - ok
20:07:46.0481 2684 [ B10CCA77064C6171846E1CF0D7155AF3 ] NVSvc C:\Windows\system32\nvvsvc.exe
20:07:46.0497 2684 NVSvc - ok
20:07:46.0544 2684 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:07:46.0544 2684 nv_agp - ok
20:07:46.0668 2684 [ 07D0A535A44DD048EE346853B0BB9349 ] Oasis2Service C:\Program Files (x86)\DDNi\Oasis2Service\Oasis2Service.exe
20:07:46.0668 2684 Oasis2Service - ok
20:07:46.0700 2684 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:07:46.0700 2684 ohci1394 - ok
20:07:46.0762 2684 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:07:46.0762 2684 ose - ok
20:07:46.0949 2684 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:07:46.0980 2684 osppsvc - ok
20:07:47.0090 2684 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:07:47.0105 2684 p2pimsvc - ok
20:07:47.0152 2684 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:07:47.0168 2684 p2psvc - ok
20:07:47.0183 2684 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
20:07:47.0199 2684 Parport - ok
20:07:47.0277 2684 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:07:47.0292 2684 partmgr - ok
20:07:47.0308 2684 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:07:47.0308 2684 PcaSvc - ok
20:07:47.0339 2684 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:07:47.0339 2684 pci - ok
20:07:47.0402 2684 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:07:47.0417 2684 pciide - ok
20:07:47.0448 2684 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:07:47.0464 2684 pcmcia - ok
20:07:47.0480 2684 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:07:47.0480 2684 pcw - ok
20:07:47.0511 2684 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:07:47.0542 2684 PEAUTH - ok
20:07:47.0636 2684 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:07:47.0651 2684 PerfHost - ok
20:07:47.0698 2684 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:07:47.0729 2684 pla - ok
20:07:47.0792 2684 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:07:47.0807 2684 PlugPlay - ok
20:07:47.0916 2684 [ E9605A180001A6B5551112D91DE92CA1 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
20:07:47.0932 2684 PMBDeviceInfoProvider - ok
20:07:47.0963 2684 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:07:47.0963 2684 PNRPAutoReg - ok
20:07:47.0994 2684 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:07:47.0994 2684 PNRPsvc - ok
20:07:48.0088 2684 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:07:48.0104 2684 PolicyAgent - ok
20:07:48.0135 2684 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:07:48.0135 2684 Power - ok
20:07:48.0197 2684 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:07:48.0213 2684 PptpMiniport - ok
20:07:48.0244 2684 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
20:07:48.0244 2684 Processor - ok
20:07:48.0275 2684 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:07:48.0275 2684 ProfSvc - ok
20:07:48.0291 2684 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:07:48.0306 2684 ProtectedStorage - ok
20:07:48.0338 2684 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:07:48.0338 2684 Psched - ok
20:07:48.0416 2684 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
20:07:48.0416 2684 PSI_SVC_2 - ok
20:07:48.0478 2684 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:07:48.0525 2684 ql2300 - ok
20:07:48.0540 2684 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:07:48.0540 2684 ql40xx - ok
20:07:48.0572 2684 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:07:48.0572 2684 QWAVE - ok
20:07:48.0587 2684 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:07:48.0587 2684 QWAVEdrv - ok
20:07:48.0603 2684 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:07:48.0618 2684 RasAcd - ok
20:07:48.0650 2684 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:07:48.0665 2684 RasAgileVpn - ok
20:07:48.0681 2684 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:07:48.0681 2684 RasAuto - ok
20:07:48.0696 2684 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:07:48.0696 2684 Rasl2tp - ok
20:07:48.0743 2684 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:07:48.0743 2684 RasMan - ok
20:07:48.0759 2684 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:07:48.0759 2684 RasPppoe - ok
20:07:48.0790 2684 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:07:48.0821 2684 RasSstp - ok
20:07:48.0868 2684 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:07:48.0868 2684 rdbss - ok
20:07:48.0884 2684 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
20:07:48.0884 2684 rdpbus - ok
20:07:48.0930 2684 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:07:48.0930 2684 RDPCDD - ok
20:07:48.0946 2684 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:07:48.0946 2684 RDPENCDD - ok
20:07:48.0993 2684 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:07:48.0993 2684 RDPREFMP - ok
20:07:49.0024 2684 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:07:49.0040 2684 RDPWD - ok
20:07:49.0086 2684 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:07:49.0086 2684 rdyboost - ok
20:07:49.0149 2684 [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi C:\Windows\system32\drivers\regi.sys
20:07:49.0149 2684 regi - ok
20:07:49.0227 2684 [ 18505D90FEE940EE9EAE4C5B421F22B4 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:07:49.0258 2684 RegSrvc - ok
20:07:49.0289 2684 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:07:49.0305 2684 RemoteAccess - ok
20:07:49.0336 2684 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:07:49.0367 2684 RemoteRegistry - ok
20:07:49.0414 2684 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:07:49.0414 2684 RFCOMM - ok
20:07:49.0461 2684 [ FF71ECB1B121C6273EC4C45EDDBC4FE4 ] rimspci C:\Windows\system32\drivers\rimssne64.sys
20:07:49.0461 2684 rimspci - ok
20:07:49.0508 2684 [ E33075C22C14C57095F037253F936BB8 ] risdsnpe C:\Windows\system32\drivers\risdsnxc64.sys
20:07:49.0523 2684 risdsnpe - ok
20:07:49.0523 2684 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:07:49.0523 2684 RpcEptMapper - ok
20:07:49.0554 2684 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:07:49.0570 2684 RpcLocator - ok
20:07:49.0601 2684 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:07:49.0617 2684 RpcSs - ok
20:07:49.0664 2684 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:07:49.0679 2684 rspndr - ok
20:07:49.0757 2684 [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:07:49.0757 2684 RTL8167 - ok
20:07:49.0804 2684 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:07:49.0804 2684 SamSs - ok
20:07:49.0820 2684 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:07:49.0820 2684 sbp2port - ok
20:07:49.0851 2684 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:07:49.0851 2684 SCardSvr - ok
20:07:49.0866 2684 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:07:49.0866 2684 scfilter - ok
20:07:49.0913 2684 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:07:49.0944 2684 Schedule - ok
20:07:49.0960 2684 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:07:49.0960 2684 SCPolicySvc - ok
20:07:50.0007 2684 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
20:07:50.0022 2684 sdbus - ok
20:07:50.0054 2684 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:07:50.0069 2684 SDRSVC - ok
20:07:50.0116 2684 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:07:50.0132 2684 secdrv - ok
20:07:50.0147 2684 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:07:50.0147 2684 seclogon - ok
20:07:50.0178 2684 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:07:50.0178 2684 SENS - ok
20:07:50.0225 2684 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:07:50.0225 2684 SensrSvc - ok
20:07:50.0272 2684 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
20:07:50.0272 2684 Serenum - ok
20:07:50.0334 2684 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
20:07:50.0350 2684 Serial - ok
20:07:50.0412 2684 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:07:50.0428 2684 sermouse - ok
20:07:50.0475 2684 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:07:50.0475 2684 SessionEnv - ok
20:07:50.0537 2684 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\drivers\SFEP.sys
20:07:50.0553 2684 SFEP - ok
20:07:50.0568 2684 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:07:50.0584 2684 sffdisk - ok
20:07:50.0600 2684 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:07:50.0600 2684 sffp_mmc - ok
20:07:50.0631 2684 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:07:50.0631 2684 sffp_sd - ok
20:07:50.0678 2684 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:07:50.0678 2684 sfloppy - ok
20:07:50.0709 2684 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:07:50.0709 2684 SharedAccess - ok
20:07:50.0756 2684 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:07:50.0756 2684 ShellHWDetection - ok
20:07:50.0802 2684 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
20:07:50.0802 2684 SiSRaid2 - ok
20:07:50.0818 2684 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:07:50.0818 2684 SiSRaid4 - ok
20:07:50.0880 2684 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:07:50.0896 2684 Smb - ok
20:07:50.0943 2684 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:07:50.0943 2684 SNMPTRAP - ok
20:07:51.0005 2684 [ DDF2EC98AF6FC70608A4F9CE4DB52758 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
20:07:51.0021 2684 SOHCImp - ok
20:07:51.0068 2684 [ 5FA03F5EA6EFEF6D17B4A1A48C40A23C ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
20:07:51.0083 2684 SOHDs - ok
20:07:51.0114 2684 [ 65E5659E9C2A0762D05657C0E22A7CA2 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
20:07:51.0130 2684 SpfService - ok
20:07:51.0177 2684 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:07:51.0177 2684 spldr - ok
20:07:51.0239 2684 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:07:51.0255 2684 Spooler - ok
20:07:51.0364 2684 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:07:51.0458 2684 sppsvc - ok
20:07:51.0473 2684 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:07:51.0473 2684 sppuinotify - ok
20:07:51.0598 2684 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\N360x64\0604000.009\SRTSP64.SYS
20:07:51.0629 2684 SRTSP - ok
20:07:51.0676 2684 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\N360x64\0604000.009\SRTSPX64.SYS
20:07:51.0692 2684 SRTSPX - ok
20:07:51.0723 2684 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:07:51.0754 2684 srv - ok
20:07:51.0785 2684 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:07:51.0785 2684 srv2 - ok
20:07:51.0816 2684 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:07:51.0816 2684 srvnet - ok
20:07:51.0863 2684 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:07:51.0879 2684 SSDPSRV - ok
20:07:51.0894 2684 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:07:51.0894 2684 SstpSvc - ok
20:07:52.0144 2684 [ 525597FA2E9D49F19C59623B05562968 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:07:52.0144 2684 Stereo Service - ok
20:07:52.0253 2684 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
20:07:52.0300 2684 stexstor - ok
20:07:52.0425 2684 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:07:52.0440 2684 stisvc - ok
20:07:52.0456 2684 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:07:52.0472 2684 swenum - ok
20:07:52.0503 2684 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:07:52.0503 2684 swprv - ok
20:07:52.0581 2684 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\N360x64\0604000.009\SYMDS64.SYS
20:07:52.0596 2684 SymDS - ok
20:07:52.0674 2684 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\N360x64\0604000.009\SYMEFA64.SYS
20:07:52.0721 2684 SymEFA - ok
20:07:52.0784 2684 [ 898BB48C797483420DF523B2BBC1ECDB ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
20:07:52.0799 2684 SymEvent - ok
20:07:52.0846 2684 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\N360x64\0604000.009\Ironx64.SYS
20:07:52.0846 2684 SymIRON - ok
20:07:52.0877 2684 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\N360x64\0604000.009\SYMNETS.SYS
20:07:52.0908 2684 SymNetS - ok
20:07:53.0002 2684 [ B0C7D4DCF4800DF2F2145B500D0161E8 ] SynTP C:\Windows\system32\drivers\SynTP.sys
20:07:53.0018 2684 SynTP - ok
20:07:53.0064 2684 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:07:53.0096 2684 SysMain - ok
20:07:53.0142 2684 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:07:53.0142 2684 TabletInputService - ok
20:07:53.0158 2684 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:07:53.0189 2684 TapiSrv - ok
20:07:53.0205 2684 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:07:53.0220 2684 TBS - ok
20:07:53.0314 2684 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:07:53.0408 2684 Tcpip - ok
20:07:53.0486 2684 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:07:53.0501 2684 TCPIP6 - ok
20:07:53.0532 2684 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:07:53.0548 2684 tcpipreg - ok
20:07:53.0579 2684 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:07:53.0579 2684 TDPIPE - ok
20:07:53.0626 2684 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:07:53.0626 2684 TDTCP - ok
20:07:53.0673 2684 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:07:53.0688 2684 tdx - ok
20:07:53.0704 2684 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:07:53.0704 2684 TermDD - ok
20:07:53.0751 2684 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:07:53.0766 2684 TermService - ok
20:07:53.0766 2684 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:07:53.0782 2684 Themes - ok
20:07:53.0813 2684 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:07:53.0813 2684 THREADORDER - ok
20:07:53.0813 2684 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:07:53.0829 2684 TrkWks - ok
20:07:53.0860 2684 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:07:53.0876 2684 TrustedInstaller - ok
20:07:53.0907 2684 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:07:53.0922 2684 tssecsrv - ok
20:07:53.0954 2684 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:07:53.0954 2684 TsUsbFlt - ok
20:07:53.0985 2684 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
20:07:53.0985 2684 TsUsbGD - ok
20:07:54.0016 2684 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:07:54.0032 2684 tunnel - ok
20:07:54.0047 2684 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:07:54.0047 2684 uagp35 - ok
20:07:54.0078 2684 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:07:54.0094 2684 udfs - ok
20:07:54.0110 2684 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:07:54.0125 2684 UI0Detect - ok
20:07:54.0156 2684 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:07:54.0156 2684 uliagpkx - ok
20:07:54.0188 2684 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:07:54.0188 2684 umbus - ok
20:07:54.0219 2684 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
20:07:54.0219 2684 UmPass - ok
20:07:54.0375 2684 [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:07:54.0375 2684 UNS - ok
20:07:54.0406 2684 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:07:54.0422 2684 upnphost - ok
20:07:54.0437 2684 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
20:07:54.0453 2684 usbccgp - ok
20:07:54.0453 2684 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:07:54.0453 2684 usbcir - ok
20:07:54.0484 2684 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:07:54.0484 2684 usbehci - ok
20:07:54.0546 2684 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\drivers\usbhub.sys
20:07:54.0562 2684 usbhub - ok
20:07:54.0578 2684 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:07:54.0578 2684 usbohci - ok
20:07:54.0609 2684 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
20:07:54.0609 2684 usbprint - ok
20:07:54.0640 2684 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:07:54.0640 2684 USBSTOR - ok
20:07:54.0687 2684 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:07:54.0687 2684 usbuhci - ok
20:07:54.0734 2684 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:07:54.0734 2684 usbvideo - ok
20:07:54.0765 2684 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:07:54.0765 2684 UxSms - ok
20:07:54.0827 2684 [ 387D3DFFCF0A544539E9C5D8B81169A2 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
20:07:54.0827 2684 VAIO Event Service - ok
20:07:54.0905 2684 [ D1933E428D991B15AFFD48B1A7BEB643 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
20:07:54.0921 2684 VAIO Power Management - ok
20:07:54.0952 2684 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:07:54.0952 2684 VaultSvc - ok
20:07:55.0046 2684 [ D00058C1FFF3F3DE990444A5734E9639 ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
20:07:55.0077 2684 VCFw - ok
20:07:55.0139 2684 [ F19275655B42086C884ABCDAE2C659AE ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
20:07:55.0155 2684 VcmIAlzMgr - ok
20:07:55.0217 2684 [ 2F06D134554BA84FE253DBC481DCFE6D ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
20:07:55.0217 2684 VcmINSMgr - ok
20:07:55.0248 2684 [ 32A3735F6874B7783C6209ED5CA36D9D ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
20:07:55.0264 2684 VcmXmlIfHelper - ok
20:07:55.0295 2684 [ 3C7EBB0924B7F469674EA417FDB6D7E3 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
20:07:55.0295 2684 VCService - ok
20:07:55.0342 2684 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:07:55.0342 2684 vdrvroot - ok
20:07:55.0389 2684 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:07:55.0389 2684 vds - ok
20:07:55.0436 2684 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:07:55.0436 2684 vga - ok
20:07:55.0482 2684 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:07:55.0482 2684 VgaSave - ok
20:07:55.0514 2684 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:07:55.0514 2684 vhdmp - ok
20:07:55.0576 2684 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:07:55.0576 2684 viaide - ok
20:07:55.0654 2684 [ 6AD85F32EA4AA65BB2EA652F2B9D4005 ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
20:07:55.0654 2684 VIPAppService - ok
20:07:55.0716 2684 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:07:55.0716 2684 volmgr - ok
20:07:55.0748 2684 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:07:55.0763 2684 volmgrx - ok
20:07:55.0794 2684 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:07:55.0794 2684 volsnap - ok
20:07:55.0841 2684 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:07:55.0841 2684 vsmraid - ok
20:07:55.0935 2684 [ 8BE8C47D5B09F5550DCBF6FCD8832CCB ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
20:07:55.0950 2684 VSNService - ok
20:07:55.0997 2684 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:07:56.0044 2684 VSS - ok
20:07:56.0169 2684 [ 0826112CC64529AD5CF28AC6DD6EBA44 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
20:07:56.0184 2684 VUAgent - ok
20:07:56.0216 2684 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:07:56.0231 2684 vwifibus - ok
20:07:56.0262 2684 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:07:56.0262 2684 vwififlt - ok
20:07:56.0294 2684 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:07:56.0294 2684 vwifimp - ok
20:07:56.0356 2684 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:07:56.0356 2684 W32Time - ok
20:07:56.0372 2684 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:07:56.0372 2684 WacomPen - ok
20:07:56.0418 2684 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:07:56.0434 2684 WANARP - ok
20:07:56.0450 2684 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:07:56.0450 2684 Wanarpv6 - ok
20:07:56.0528 2684 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:07:56.0574 2684 WatAdminSvc - ok
20:07:56.0637 2684 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:07:56.0684 2684 wbengine - ok
20:07:56.0699 2684 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:07:56.0699 2684 WbioSrvc - ok
20:07:56.0730 2684 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:07:56.0746 2684 wcncsvc - ok
20:07:56.0762 2684 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:07:56.0777 2684 WcsPlugInService - ok
20:07:56.0808 2684 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
20:07:56.0808 2684 Wd - ok
20:07:56.0855 2684 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:07:56.0871 2684 Wdf01000 - ok
20:07:56.0886 2684 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:07:56.0902 2684 WdiServiceHost - ok
20:07:56.0902 2684 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:07:56.0902 2684 WdiSystemHost - ok
20:07:56.0918 2684 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:07:56.0933 2684 WebClient - ok
20:07:56.0949 2684 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:07:56.0949 2684 Wecsvc - ok
20:07:56.0964 2684 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:07:56.0964 2684 wercplsupport - ok
20:07:57.0011 2684 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:07:57.0011 2684 WerSvc - ok
20:07:57.0074 2684 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:07:57.0089 2684 WfpLwf - ok
20:07:57.0183 2684 [ 245EA6A2CFAE7B183EE9A14A4673B1F1 ] WiMAXAppSrv C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
20:07:57.0214 2684 WiMAXAppSrv - ok
20:07:57.0261 2684 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:07:57.0261 2684 WIMMount - ok
20:07:57.0276 2684 WinDefend - ok
20:07:57.0292 2684 WinHttpAutoProxySvc - ok
20:07:57.0339 2684 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:07:57.0354 2684 Winmgmt - ok
20:07:57.0432 2684 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:07:57.0464 2684 WinRM - ok
20:07:57.0542 2684 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:07:57.0542 2684 WinUsb - ok
20:07:57.0588 2684 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:07:57.0604 2684 Wlansvc - ok
20:07:57.0666 2684 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:07:57.0682 2684 wlcrasvc - ok
20:07:57.0776 2684 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:07:57.0823 2684 wlidsvc - ok
20:07:57.0854 2684 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:07:57.0854 2684 WmiAcpi - ok
20:07:57.0901 2684 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:07:57.0901 2684 wmiApSrv - ok
20:07:57.0916 2684 WMPNetworkSvc - ok
20:07:57.0963 2684 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:07:57.0979 2684 WPCSvc - ok
20:07:57.0994 2684 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:07:57.0994 2684 WPDBusEnum - ok
20:07:58.0025 2684 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:07:58.0025 2684 ws2ifsl - ok
20:07:58.0057 2684 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:07:58.0072 2684 wscsvc - ok
20:07:58.0072 2684 WSearch - ok
20:07:58.0150 2684 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:07:58.0213 2684 wuauserv - ok
20:07:58.0259 2684 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:07:58.0259 2684 WudfPf - ok
20:07:58.0306 2684 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:07:58.0322 2684 WUDFRd - ok
20:07:58.0353 2684 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:07:58.0353 2684 wudfsvc - ok
20:07:58.0384 2684 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:07:58.0400 2684 WwanSvc - ok
20:07:58.0462 2684 ================ Scan global ===============================
20:07:58.0493 2684 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:07:58.0525 2684 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
20:07:58.0525 2684 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
20:07:58.0556 2684 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:07:58.0587 2684 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:07:58.0587 2684 [Global] - ok
20:07:58.0587 2684 ================ Scan MBR ==================================
20:07:58.0587 2684 [ C0DCF0AC171DB02DB8B0014C5D767CF1 ] \Device\Harddisk0\DR0
20:07:58.0587 2684 Suspicious mbr (Forged): \Device\Harddisk0\DR0
20:07:58.0649 2684 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
20:07:58.0649 2684 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
20:07:58.0649 2684 ================ Scan VBR ==================================
20:07:58.0649 2684 [ F8390E345E610AE33AF90012388B70C2 ] \Device\Harddisk0\DR0\Partition1
20:07:58.0665 2684 \Device\Harddisk0\DR0\Partition1 - ok
20:07:58.0681 2684 [ D9984CC706B0E932DAFF7B684AF8CAB2 ] \Device\Harddisk0\DR0\Partition2
20:07:58.0681 2684 \Device\Harddisk0\DR0\Partition2 - ok
20:07:58.0681 2684 ============================================================
20:07:58.0681 2684 Scan finished
20:07:58.0681 2684 ============================================================
20:07:58.0696 4700 Detected object count: 1
20:07:58.0696 4700 Actual detected object count: 1
20:08:24.0343 4700 \Device\Harddisk0\DR0\# - copied to quarantine
20:08:24.0343 4700 \Device\Harddisk0\DR0 - copied to quarantine
20:08:24.0421 4700 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
20:08:24.0436 4700 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
20:08:24.0452 4700 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
20:08:24.0467 4700 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
20:08:24.0467 4700 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
20:08:24.0483 4700 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
20:08:24.0483 4700 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
20:08:24.0483 4700 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
20:08:24.0483 4700 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
20:08:24.0499 4700 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
20:08:24.0499 4700 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
20:08:24.0514 4700 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
20:08:24.0545 4700 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
20:08:24.0545 4700 \Device\Harddisk0\DR0 - ok
20:08:24.0764 4700 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
20:09:19.0096 6332 Deinitialize success

#4 kechandler

kechandler
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:19 AM

Posted 05 February 2013 - 09:33 PM

20:29:44.0242 6588 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:29:44.0742 6588 ============================================================
20:29:44.0742 6588 Current date / time: 2013/02/05 20:29:44.0742
20:29:44.0742 6588 SystemInfo:
20:29:44.0742 6588
20:29:44.0742 6588 OS Version: 6.1.7601 ServicePack: 1.0
20:29:44.0742 6588 Product type: Workstation
20:29:44.0742 6588 ComputerName: USER-VAIO
20:29:44.0742 6588 UserName: User
20:29:44.0742 6588 Windows directory: C:\Windows
20:29:44.0742 6588 System windows directory: C:\Windows
20:29:44.0742 6588 Running under WOW64
20:29:44.0742 6588 Processor architecture: Intel x64
20:29:44.0742 6588 Number of processors: 8
20:29:44.0742 6588 Page size: 0x1000
20:29:44.0742 6588 Boot type: Normal boot
20:29:44.0742 6588 ============================================================
20:29:44.0976 6588 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:29:44.0976 6588 ============================================================
20:29:44.0976 6588 \Device\Harddisk0\DR0:
20:29:44.0976 6588 MBR partitions:
20:29:44.0976 6588 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18A5000, BlocksNum 0x32000
20:29:44.0976 6588 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x18D7000, BlocksNum 0x55C6EEF0
20:29:44.0976 6588 ============================================================
20:29:45.0007 6588 C: <-> \Device\Harddisk0\DR0\Partition2
20:29:45.0007 6588 ============================================================
20:29:45.0007 6588 Initialize success
20:29:45.0007 6588 ============================================================
20:30:01.0278 7784 ============================================================
20:30:01.0278 7784 Scan started
20:30:01.0278 7784 Mode: Manual; TDLFS;
20:30:01.0278 7784 ============================================================
20:30:01.0590 7784 ================ Scan system memory ========================
20:30:01.0590 7784 System memory - ok
20:30:01.0590 7784 ================ Scan services =============================
20:30:01.0948 7784 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:30:01.0948 7784 1394ohci - ok
20:30:02.0229 7784 [ F146E2BA475893DD77B2370DC1211FC6 ] 26390189 C:\Windows\system32\drivers\41026138.sys
20:30:02.0432 7784 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
20:30:02.0432 7784 ACDaemon - ok
20:30:02.0572 7784 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:30:02.0572 7784 ACPI - ok
20:30:02.0713 7784 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:30:02.0713 7784 AcpiPmi - ok
20:30:02.0884 7784 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:30:02.0884 7784 adp94xx - ok
20:30:03.0072 7784 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:30:03.0087 7784 adpahci - ok
20:30:03.0243 7784 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:30:03.0243 7784 adpu320 - ok
20:30:03.0384 7784 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:30:03.0384 7784 AeLookupSvc - ok
20:30:03.0586 7784 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:30:03.0586 7784 AFD - ok
20:30:03.0664 7784 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:30:03.0664 7784 agp440 - ok
20:30:03.0774 7784 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:30:03.0774 7784 ALG - ok
20:30:03.0836 7784 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:30:03.0836 7784 aliide - ok
20:30:03.0914 7784 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:30:03.0914 7784 amdide - ok
20:30:04.0023 7784 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:30:04.0023 7784 AmdK8 - ok
20:30:04.0039 7784 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
20:30:04.0039 7784 AmdPPM - ok
20:30:04.0101 7784 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:30:04.0101 7784 amdsata - ok
20:30:04.0148 7784 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
20:30:04.0148 7784 amdsbs - ok
20:30:04.0179 7784 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:30:04.0179 7784 amdxata - ok
20:30:04.0273 7784 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:30:04.0273 7784 AppID - ok
20:30:04.0320 7784 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:30:04.0320 7784 AppIDSvc - ok
20:30:04.0398 7784 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:30:04.0398 7784 Appinfo - ok
20:30:04.0569 7784 [ BF0652894634E7681C8C30F06514DE6E ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:30:04.0569 7784 Apple Mobile Device - ok
20:30:04.0616 7784 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
20:30:04.0616 7784 arc - ok
20:30:04.0647 7784 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:30:04.0663 7784 arcsas - ok
20:30:04.0803 7784 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:30:04.0803 7784 aspnet_state - ok
20:30:04.0850 7784 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:30:04.0850 7784 AsyncMac - ok
20:30:04.0944 7784 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:30:04.0944 7784 atapi - ok
20:30:05.0006 7784 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
20:30:05.0006 7784 athr - ok
20:30:05.0084 7784 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:30:05.0100 7784 AudioEndpointBuilder - ok
20:30:05.0131 7784 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:30:05.0131 7784 AudioSrv - ok
20:30:05.0256 7784 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:30:05.0256 7784 AxInstSV - ok
20:30:05.0443 7784 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
20:30:05.0443 7784 b06bdrv - ok
20:30:05.0536 7784 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:30:05.0536 7784 b57nd60a - ok
20:30:05.0630 7784 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:30:05.0646 7784 BDESVC - ok
20:30:05.0802 7784 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:30:05.0802 7784 Beep - ok
20:30:05.0973 7784 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:30:05.0973 7784 BFE - ok
20:30:06.0394 7784 [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.1.5\Definitions\BASHDefs\20130116.013\BHDrvx64.sys
20:30:06.0410 7784 BHDrvx64 - ok
20:30:06.0488 7784 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:30:06.0488 7784 BITS - ok
20:30:06.0566 7784 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
20:30:06.0582 7784 blbdrive - ok
20:30:06.0816 7784 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:30:06.0816 7784 Bonjour Service - ok
20:30:06.0909 7784 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:30:06.0909 7784 bowser - ok
20:30:06.0987 7784 [ 56E4345F392F17D66683225E214840CB ] bpenum C:\Windows\system32\DRIVERS\bpenum.sys
20:30:06.0987 7784 bpenum - ok
20:30:07.0174 7784 [ D50B07C4D7AFEC4CA6AC8FCB72583C5B ] bpmp C:\Windows\system32\DRIVERS\bpmp.sys
20:30:07.0190 7784 bpmp - ok
20:30:07.0284 7784 [ A85BA55E4FE9CB2F342F281AAF7DE810 ] bpusb C:\Windows\system32\Drivers\bpusb.sys
20:30:07.0284 7784 bpusb - ok
20:30:07.0330 7784 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
20:30:07.0330 7784 BrFiltLo - ok
20:30:07.0346 7784 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
20:30:07.0346 7784 BrFiltUp - ok
20:30:07.0408 7784 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:30:07.0424 7784 Browser - ok
20:30:07.0486 7784 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:30:07.0486 7784 Brserid - ok
20:30:07.0549 7784 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:30:07.0549 7784 BrSerWdm - ok
20:30:07.0611 7784 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:30:07.0611 7784 BrUsbMdm - ok
20:30:07.0658 7784 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:30:07.0658 7784 BrUsbSer - ok
20:30:07.0720 7784 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:30:07.0720 7784 BthEnum - ok
20:30:07.0783 7784 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
20:30:07.0783 7784 BTHMODEM - ok
20:30:07.0814 7784 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:30:07.0814 7784 BthPan - ok
20:30:07.0892 7784 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:30:07.0908 7784 BTHPORT - ok
20:30:07.0970 7784 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:30:07.0970 7784 bthserv - ok
20:30:08.0001 7784 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:30:08.0001 7784 BTHUSB - ok
20:30:08.0095 7784 [ F8CFAFBD5BF8B3DDB0D3C2943A5AF8CE ] BTWAMPFL C:\Windows\system32\DRIVERS\btwampfl.sys
20:30:08.0110 7784 BTWAMPFL - ok
20:30:08.0188 7784 [ 44770A3C07EBD5D6D7CD7DBA915B49BC ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
20:30:08.0188 7784 btwaudio - ok
20:30:08.0344 7784 [ 75B59923087AE6EB064D13D8F58A02B6 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
20:30:08.0344 7784 btwavdt - ok
20:30:08.0516 7784 [ E1C1BCC8211E3AE2B524DEEF071FAF2A ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
20:30:08.0516 7784 btwdins - ok
20:30:08.0594 7784 [ B9354F9F111C64F2495B60F1E24CB453 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
20:30:08.0594 7784 btwl2cap - ok
20:30:08.0625 7784 [ 9555E15F828760341751E9183BD34E60 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
20:30:08.0625 7784 btwrchid - ok
20:30:08.0968 7784 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\0604000.009\ccSetx64.sys
20:30:08.0968 7784 ccSet_N360 - ok
20:30:09.0031 7784 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:30:09.0031 7784 cdfs - ok
20:30:09.0109 7784 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:30:09.0109 7784 cdrom - ok
20:30:09.0234 7784 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:30:09.0234 7784 CertPropSvc - ok
20:30:09.0296 7784 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
20:30:09.0296 7784 circlass - ok
20:30:09.0358 7784 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:30:09.0358 7784 CLFS - ok
20:30:09.0452 7784 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:30:09.0452 7784 clr_optimization_v2.0.50727_32 - ok
20:30:09.0499 7784 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:30:09.0499 7784 clr_optimization_v2.0.50727_64 - ok
20:30:09.0733 7784 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:30:09.0733 7784 clr_optimization_v4.0.30319_32 - ok
20:30:09.0795 7784 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:30:09.0795 7784 clr_optimization_v4.0.30319_64 - ok
20:30:09.0858 7784 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
20:30:09.0858 7784 CmBatt - ok
20:30:09.0920 7784 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:30:09.0920 7784 cmdide - ok
20:30:09.0967 7784 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:30:09.0967 7784 CNG - ok
20:30:10.0076 7784 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
20:30:10.0076 7784 Compbatt - ok
20:30:10.0154 7784 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:30:10.0154 7784 CompositeBus - ok
20:30:10.0185 7784 COMSysApp - ok
20:30:10.0248 7784 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:30:10.0248 7784 crcdisk - ok
20:30:10.0341 7784 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:30:10.0341 7784 CryptSvc - ok
20:30:10.0435 7784 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:30:10.0435 7784 DcomLaunch - ok
20:30:10.0513 7784 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:30:10.0513 7784 defragsvc - ok
20:30:10.0575 7784 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:30:10.0591 7784 DfsC - ok
20:30:10.0684 7784 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:30:10.0684 7784 Dhcp - ok
20:30:10.0903 7784 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:30:10.0903 7784 discache - ok
20:30:11.0028 7784 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
20:30:11.0043 7784 Disk - ok
20:30:11.0199 7784 [ E7B489FA5B15D2FEC3E52066E015B788 ] DMAgent C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
20:30:11.0215 7784 DMAgent - ok
20:30:11.0277 7784 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:30:11.0277 7784 Dnscache - ok
20:30:11.0402 7784 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:30:11.0402 7784 dot3svc - ok
20:30:11.0418 7784 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:30:11.0433 7784 DPS - ok
20:30:11.0480 7784 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:30:11.0480 7784 drmkaud - ok
20:30:11.0589 7784 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:30:11.0605 7784 DXGKrnl - ok
20:30:11.0730 7784 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
20:30:11.0745 7784 e1yexpress - ok
20:30:11.0776 7784 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:30:11.0776 7784 EapHost - ok
20:30:11.0948 7784 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
20:30:11.0979 7784 ebdrv - ok
20:30:12.0291 7784 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
20:30:12.0291 7784 eeCtrl - ok
20:30:12.0369 7784 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:30:12.0369 7784 EFS - ok
20:30:12.0510 7784 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:30:12.0510 7784 ehRecvr - ok
20:30:12.0572 7784 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:30:12.0572 7784 ehSched - ok
20:30:12.0650 7784 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:30:12.0650 7784 elxstor - ok
20:30:13.0134 7784 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
20:30:13.0134 7784 EraserUtilRebootDrv - ok
20:30:13.0165 7784 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:30:13.0165 7784 ErrDev - ok
20:30:13.0243 7784 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:30:13.0243 7784 EventSystem - ok
20:30:13.0664 7784 [ 57E61DC4F7980D57C0B162FC5B9F0B38 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:30:13.0664 7784 EvtEng - ok
20:30:13.0758 7784 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:30:13.0758 7784 exfat - ok
20:30:13.0836 7784 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:30:13.0836 7784 fastfat - ok
20:30:14.0038 7784 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:30:14.0054 7784 Fax - ok
20:30:14.0194 7784 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
20:30:14.0194 7784 fdc - ok
20:30:14.0257 7784 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:30:14.0257 7784 fdPHost - ok
20:30:14.0319 7784 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:30:14.0335 7784 FDResPub - ok
20:30:14.0491 7784 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:30:14.0491 7784 FileInfo - ok
20:30:14.0553 7784 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:30:14.0553 7784 Filetrace - ok
20:30:14.0600 7784 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
20:30:14.0600 7784 flpydisk - ok
20:30:14.0647 7784 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:30:14.0647 7784 FltMgr - ok
20:30:14.0834 7784 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:30:14.0834 7784 FontCache - ok
20:30:14.0896 7784 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:30:14.0896 7784 FontCache3.0.0.0 - ok
20:30:14.0912 7784 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:30:14.0912 7784 FsDepends - ok
20:30:14.0974 7784 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:30:14.0974 7784 Fs_Rec - ok
20:30:15.0052 7784 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:30:15.0052 7784 fvevol - ok
20:30:15.0130 7784 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:30:15.0130 7784 gagp30kx - ok
20:30:15.0224 7784 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:30:15.0224 7784 gpsvc - ok
20:30:15.0271 7784 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:30:15.0271 7784 hcw85cir - ok
20:30:15.0333 7784 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:30:15.0349 7784 HdAudAddService - ok
20:30:15.0411 7784 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:30:15.0411 7784 HDAudBus - ok
20:30:15.0442 7784 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
20:30:15.0442 7784 HidBatt - ok
20:30:15.0489 7784 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:30:15.0489 7784 HidBth - ok
20:30:15.0567 7784 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
20:30:15.0567 7784 HidIr - ok
20:30:15.0598 7784 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:30:15.0614 7784 hidserv - ok
20:30:15.0676 7784 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:30:15.0676 7784 HidUsb - ok
20:30:15.0723 7784 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:30:15.0723 7784 hkmsvc - ok
20:30:15.0801 7784 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:30:15.0801 7784 HomeGroupListener - ok
20:30:15.0879 7784 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:30:15.0879 7784 HomeGroupProvider - ok
20:30:15.0957 7784 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:30:15.0957 7784 HpSAMD - ok
20:30:16.0066 7784 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:30:16.0082 7784 HTTP - ok
20:30:16.0098 7784 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:30:16.0098 7784 hwpolicy - ok
20:30:16.0222 7784 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:30:16.0222 7784 i8042prt - ok
20:30:16.0269 7784 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\drivers\iaStor.sys
20:30:16.0285 7784 iaStor - ok
20:30:16.0425 7784 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:30:16.0425 7784 IAStorDataMgrSvc - ok
20:30:16.0519 7784 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:30:16.0534 7784 iaStorV - ok
20:30:16.0690 7784 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:30:16.0706 7784 idsvc - ok
20:30:17.0065 7784 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.1.5\Definitions\IPSDefs\20130202.001\IDSvia64.sys
20:30:17.0080 7784 IDSVia64 - ok
20:30:17.0143 7784 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:30:17.0143 7784 iirsp - ok
20:30:17.0346 7784 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:30:17.0346 7784 IKEEXT - ok
20:30:17.0860 7784 [ 65F70696BE5ABC11634FCF96AF7D7896 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:30:17.0876 7784 IntcAzAudAddService - ok
20:30:17.0938 7784 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:30:17.0938 7784 intelide - ok
20:30:18.0001 7784 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
20:30:18.0001 7784 intelppm - ok
20:30:18.0048 7784 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:30:18.0048 7784 IPBusEnum - ok
20:30:18.0094 7784 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:30:18.0094 7784 IpFilterDriver - ok
20:30:18.0282 7784 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:30:18.0282 7784 iphlpsvc - ok
20:30:18.0328 7784 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:30:18.0328 7784 IPMIDRV - ok
20:30:18.0375 7784 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:30:18.0375 7784 IPNAT - ok
20:30:18.0422 7784 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:30:18.0422 7784 IRENUM - ok
20:30:18.0484 7784 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:30:18.0484 7784 isapnp - ok
20:30:18.0562 7784 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:30:18.0562 7784 iScsiPrt - ok
20:30:18.0750 7784 [ F415A88162D23977B5EDAE4F0410E903 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
20:30:18.0750 7784 IviRegMgr - ok
20:30:18.0843 7784 [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
20:30:18.0843 7784 jhi_service - ok
20:30:18.0890 7784 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:30:18.0906 7784 kbdclass - ok
20:30:18.0952 7784 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:30:18.0952 7784 kbdhid - ok
20:30:18.0968 7784 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:30:18.0984 7784 KeyIso - ok
20:30:19.0015 7784 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:30:19.0030 7784 KSecDD - ok
20:30:19.0062 7784 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:30:19.0062 7784 KSecPkg - ok
20:30:19.0108 7784 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:30:19.0124 7784 ksthunk - ok
20:30:19.0218 7784 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:30:19.0218 7784 KtmRm - ok
20:30:19.0374 7784 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:30:19.0374 7784 LanmanServer - ok
20:30:19.0420 7784 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:30:19.0436 7784 LanmanWorkstation - ok
20:30:19.0530 7784 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:30:19.0530 7784 lltdio - ok
20:30:19.0576 7784 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:30:19.0576 7784 lltdsvc - ok
20:30:19.0654 7784 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:30:19.0654 7784 lmhosts - ok
20:30:19.0873 7784 [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:30:19.0873 7784 LMS - ok
20:30:19.0935 7784 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:30:19.0935 7784 LSI_FC - ok
20:30:19.0982 7784 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:30:19.0982 7784 LSI_SAS - ok
20:30:20.0029 7784 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
20:30:20.0029 7784 LSI_SAS2 - ok
20:30:20.0091 7784 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:30:20.0091 7784 LSI_SCSI - ok
20:30:20.0154 7784 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:30:20.0154 7784 luafv - ok
20:30:20.0403 7784 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:30:20.0403 7784 MBAMProtector - ok
20:30:20.0653 7784 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:30:20.0653 7784 MBAMScheduler - ok
20:30:20.0996 7784 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:30:20.0996 7784 MBAMService - ok
20:30:21.0043 7784 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:30:21.0058 7784 Mcx2Svc - ok
20:30:21.0090 7784 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
20:30:21.0090 7784 megasas - ok
20:30:21.0199 7784 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
20:30:21.0199 7784 MegaSR - ok
20:30:21.0261 7784 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\drivers\HECIx64.sys
20:30:21.0261 7784 MEIx64 - ok
20:30:21.0308 7784 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:30:21.0308 7784 MMCSS - ok
20:30:21.0324 7784 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:30:21.0339 7784 Modem - ok
20:30:21.0386 7784 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:30:21.0386 7784 monitor - ok
20:30:21.0464 7784 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:30:21.0464 7784 mouclass - ok
20:30:21.0589 7784 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
20:30:21.0589 7784 mouhid - ok
20:30:21.0620 7784 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:30:21.0620 7784 mountmgr - ok
20:30:21.0854 7784 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:30:21.0870 7784 MozillaMaintenance - ok
20:30:21.0916 7784 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:30:21.0932 7784 mpio - ok
20:30:21.0963 7784 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:30:21.0963 7784 mpsdrv - ok
20:30:21.0994 7784 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:30:22.0010 7784 MpsSvc - ok
20:30:22.0026 7784 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:30:22.0026 7784 MRxDAV - ok
20:30:22.0104 7784 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:30:22.0104 7784 mrxsmb - ok
20:30:22.0135 7784 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:30:22.0135 7784 mrxsmb10 - ok
20:30:22.0182 7784 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:30:22.0182 7784 mrxsmb20 - ok
20:30:22.0213 7784 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:30:22.0213 7784 msahci - ok
20:30:22.0260 7784 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:30:22.0260 7784 msdsm - ok
20:30:22.0291 7784 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:30:22.0291 7784 MSDTC - ok
20:30:22.0369 7784 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:30:22.0369 7784 Msfs - ok
20:30:22.0447 7784 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:30:22.0447 7784 mshidkmdf - ok
20:30:22.0494 7784 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:30:22.0494 7784 msisadrv - ok
20:30:22.0572 7784 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:30:22.0587 7784 MSiSCSI - ok
20:30:22.0587 7784 msiserver - ok
20:30:22.0618 7784 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:30:22.0618 7784 MSKSSRV - ok
20:30:22.0681 7784 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:30:22.0681 7784 MSPCLOCK - ok
20:30:22.0743 7784 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:30:22.0743 7784 MSPQM - ok
20:30:23.0008 7784 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:30:23.0024 7784 MsRPC - ok
20:30:23.0055 7784 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:30:23.0055 7784 mssmbios - ok
20:30:23.0086 7784 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:30:23.0086 7784 MSTEE - ok
20:30:23.0133 7784 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
20:30:23.0133 7784 MTConfig - ok
20:30:23.0196 7784 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:30:23.0196 7784 Mup - ok
20:30:23.0289 7784 [ 50B99D53BC013458381C6476D790C9F3 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
20:30:23.0289 7784 MyWiFiDHCPDNS - ok
20:30:23.0554 7784 [ F2840DBFE9322F35557219AE82CC4597 ] N360 C:\Program Files (x86)\Norton 360\Engine\6.4.0.9\ccSvcHst.exe
20:30:23.0554 7784 N360 - ok
20:30:23.0601 7784 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:30:23.0601 7784 napagent - ok
20:30:23.0648 7784 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:30:23.0664 7784 NativeWifiP - ok
20:30:23.0773 7784 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.1.5\Definitions\VirusDefs\20130205.003\ENG64.SYS
20:30:23.0773 7784 NAVENG - ok
20:30:23.0820 7784 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.1.5\Definitions\VirusDefs\20130205.003\EX64.SYS
20:30:23.0835 7784 NAVEX15 - ok
20:30:23.0882 7784 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:30:23.0882 7784 NDIS - ok
20:30:23.0913 7784 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:30:23.0929 7784 NdisCap - ok
20:30:23.0960 7784 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:30:23.0960 7784 NdisTapi - ok
20:30:24.0038 7784 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:30:24.0038 7784 Ndisuio - ok
20:30:24.0069 7784 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:30:24.0069 7784 NdisWan - ok
20:30:24.0069 7784 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:30:24.0069 7784 NDProxy - ok
20:30:24.0100 7784 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:30:24.0100 7784 NetBIOS - ok
20:30:24.0132 7784 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:30:24.0147 7784 NetBT - ok
20:30:24.0178 7784 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:30:24.0178 7784 Netlogon - ok
20:30:24.0241 7784 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:30:24.0256 7784 Netman - ok
20:30:24.0288 7784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:30:24.0303 7784 NetMsmqActivator - ok
20:30:24.0303 7784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:30:24.0303 7784 NetPipeActivator - ok
20:30:24.0334 7784 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:30:24.0334 7784 netprofm - ok
20:30:24.0334 7784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:30:24.0334 7784 NetTcpActivator - ok
20:30:24.0334 7784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:30:24.0334 7784 NetTcpPortSharing - ok
20:30:25.0052 7784 [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
20:30:25.0099 7784 NETwNs64 - ok
20:30:25.0161 7784 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:30:25.0177 7784 nfrd960 - ok
20:30:25.0239 7784 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:30:25.0239 7784 NlaSvc - ok
20:30:25.0333 7784 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:30:25.0333 7784 Npfs - ok
20:30:25.0426 7784 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:30:25.0426 7784 nsi - ok
20:30:25.0473 7784 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:30:25.0473 7784 nsiproxy - ok
20:30:25.0645 7784 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:30:25.0645 7784 Ntfs - ok
20:30:25.0660 7784 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:30:25.0660 7784 Null - ok
20:30:25.0707 7784 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
20:30:25.0707 7784 nusb3hub - ok
20:30:25.0754 7784 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
20:30:25.0754 7784 nusb3xhc - ok
20:30:25.0832 7784 [ F2662FDC20518EE8A8EED4F61BA42349 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:30:25.0832 7784 NVHDA - ok
20:30:26.0347 7784 [ A8151A773CE78233375445D41B77E85E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:30:26.0394 7784 nvlddmkm - ok
20:30:26.0472 7784 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:30:26.0472 7784 nvraid - ok
20:30:26.0550 7784 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:30:26.0550 7784 nvstor - ok
20:30:26.0659 7784 [ B10CCA77064C6171846E1CF0D7155AF3 ] NVSvc C:\Windows\system32\nvvsvc.exe
20:30:26.0659 7784 NVSvc - ok
20:30:26.0721 7784 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:30:26.0737 7784 nv_agp - ok
20:30:26.0986 7784 [ 07D0A535A44DD048EE346853B0BB9349 ] Oasis2Service C:\Program Files (x86)\DDNi\Oasis2Service\Oasis2Service.exe
20:30:26.0986 7784 Oasis2Service - ok
20:30:27.0002 7784 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:30:27.0002 7784 ohci1394 - ok
20:30:27.0080 7784 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:30:27.0080 7784 ose - ok
20:30:27.0439 7784 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:30:27.0470 7784 osppsvc - ok
20:30:27.0564 7784 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:30:27.0564 7784 p2pimsvc - ok
20:30:27.0626 7784 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:30:27.0642 7784 p2psvc - ok
20:30:27.0642 7784 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
20:30:27.0657 7784 Parport - ok
20:30:27.0688 7784 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:30:27.0688 7784 partmgr - ok
20:30:27.0735 7784 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:30:27.0735 7784 PcaSvc - ok
20:30:27.0798 7784 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:30:27.0798 7784 pci - ok
20:30:27.0860 7784 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:30:27.0860 7784 pciide - ok
20:30:27.0907 7784 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:30:27.0907 7784 pcmcia - ok
20:30:27.0938 7784 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:30:27.0954 7784 pcw - ok
20:30:28.0016 7784 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:30:28.0032 7784 PEAUTH - ok
20:30:28.0141 7784 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:30:28.0141 7784 PerfHost - ok
20:30:28.0390 7784 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:30:28.0390 7784 pla - ok
20:30:28.0468 7784 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:30:28.0468 7784 PlugPlay - ok
20:30:28.0702 7784 [ E9605A180001A6B5551112D91DE92CA1 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
20:30:28.0702 7784 PMBDeviceInfoProvider - ok
20:30:28.0734 7784 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:30:28.0734 7784 PNRPAutoReg - ok
20:30:28.0812 7784 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:30:28.0812 7784 PNRPsvc - ok
20:30:28.0843 7784 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:30:28.0858 7784 PolicyAgent - ok
20:30:28.0921 7784 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:30:28.0921 7784 Power - ok
20:30:28.0999 7784 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:30:28.0999 7784 PptpMiniport - ok
20:30:29.0030 7784 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
20:30:29.0030 7784 Processor - ok
20:30:29.0108 7784 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:30:29.0108 7784 ProfSvc - ok
20:30:29.0124 7784 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:30:29.0124 7784 ProtectedStorage - ok
20:30:29.0170 7784 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:30:29.0170 7784 Psched - ok
20:30:29.0233 7784 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
20:30:29.0233 7784 PSI_SVC_2 - ok
20:30:29.0280 7784 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:30:29.0295 7784 ql2300 - ok
20:30:29.0311 7784 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:30:29.0311 7784 ql40xx - ok
20:30:29.0326 7784 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:30:29.0326 7784 QWAVE - ok
20:30:29.0342 7784 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:30:29.0342 7784 QWAVEdrv - ok
20:30:29.0358 7784 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:30:29.0358 7784 RasAcd - ok
20:30:29.0404 7784 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:30:29.0404 7784 RasAgileVpn - ok
20:30:29.0404 7784 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:30:29.0404 7784 RasAuto - ok
20:30:29.0436 7784 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:30:29.0436 7784 Rasl2tp - ok
20:30:29.0467 7784 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:30:29.0467 7784 RasMan - ok
20:30:29.0482 7784 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:30:29.0482 7784 RasPppoe - ok
20:30:29.0514 7784 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:30:29.0514 7784 RasSstp - ok
20:30:29.0529 7784 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:30:29.0529 7784 rdbss - ok
20:30:29.0545 7784 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
20:30:29.0545 7784 rdpbus - ok
20:30:29.0592 7784 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:30:29.0592 7784 RDPCDD - ok
20:30:29.0654 7784 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:30:29.0654 7784 RDPENCDD - ok
20:30:29.0701 7784 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:30:29.0701 7784 RDPREFMP - ok
20:30:29.0732 7784 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:30:29.0732 7784 RDPWD - ok
20:30:29.0857 7784 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:30:29.0872 7784 rdyboost - ok
20:30:29.0966 7784 [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi C:\Windows\system32\drivers\regi.sys
20:30:29.0966 7784 regi - ok
20:30:30.0184 7784 [ 18505D90FEE940EE9EAE4C5B421F22B4 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:30:30.0200 7784 RegSrvc - ok
20:30:30.0247 7784 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:30:30.0262 7784 RemoteAccess - ok
20:30:30.0325 7784 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:30:30.0325 7784 RemoteRegistry - ok
20:30:30.0418 7784 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:30:30.0418 7784 RFCOMM - ok
20:30:30.0481 7784 [ FF71ECB1B121C6273EC4C45EDDBC4FE4 ] rimspci C:\Windows\system32\drivers\rimssne64.sys
20:30:30.0481 7784 rimspci - ok
20:30:30.0574 7784 [ E33075C22C14C57095F037253F936BB8 ] risdsnpe C:\Windows\system32\drivers\risdsnxc64.sys
20:30:30.0590 7784 risdsnpe - ok
20:30:30.0621 7784 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:30:30.0637 7784 RpcEptMapper - ok
20:30:30.0684 7784 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:30:30.0699 7784 RpcLocator - ok
20:30:30.0808 7784 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:30:30.0824 7784 RpcSs - ok
20:30:30.0902 7784 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:30:30.0918 7784 rspndr - ok
20:30:31.0089 7784 [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:30:31.0105 7784 RTL8167 - ok
20:30:31.0167 7784 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:30:31.0167 7784 SamSs - ok
20:30:31.0214 7784 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:30:31.0214 7784 sbp2port - ok
20:30:31.0276 7784 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:30:31.0292 7784 SCardSvr - ok
20:30:31.0323 7784 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:30:31.0323 7784 scfilter - ok
20:30:31.0557 7784 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:30:31.0573 7784 Schedule - ok
20:30:31.0604 7784 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:30:31.0604 7784 SCPolicySvc - ok
20:30:31.0666 7784 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
20:30:31.0682 7784 sdbus - ok
20:30:31.0713 7784 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:30:31.0713 7784 SDRSVC - ok
20:30:31.0744 7784 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:30:31.0744 7784 secdrv - ok
20:30:31.0760 7784 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:30:31.0760 7784 seclogon - ok
20:30:31.0791 7784 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:30:31.0791 7784 SENS - ok
20:30:31.0885 7784 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:30:31.0885 7784 SensrSvc - ok
20:30:31.0947 7784 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
20:30:31.0947 7784 Serenum - ok
20:30:32.0056 7784 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
20:30:32.0056 7784 Serial - ok
20:30:32.0166 7784 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:30:32.0166 7784 sermouse - ok
20:30:32.0212 7784 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:30:32.0212 7784 SessionEnv - ok
20:30:32.0337 7784 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\drivers\SFEP.sys
20:30:32.0337 7784 SFEP - ok
20:30:32.0368 7784 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:30:32.0368 7784 sffdisk - ok
20:30:32.0384 7784 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:30:32.0384 7784 sffp_mmc - ok
20:30:32.0415 7784 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:30:32.0415 7784 sffp_sd - ok
20:30:32.0462 7784 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:30:32.0462 7784 sfloppy - ok
20:30:32.0556 7784 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:30:32.0556 7784 SharedAccess - ok
20:30:32.0634 7784 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:30:32.0634 7784 ShellHWDetection - ok
20:30:32.0696 7784 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
20:30:32.0712 7784 SiSRaid2 - ok
20:30:32.0712 7784 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:30:32.0727 7784 SiSRaid4 - ok
20:30:32.0774 7784 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:30:32.0774 7784 Smb - ok
20:30:32.0821 7784 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:30:32.0836 7784 SNMPTRAP - ok
20:30:32.0899 7784 [ DDF2EC98AF6FC70608A4F9CE4DB52758 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
20:30:32.0899 7784 SOHCImp - ok
20:30:32.0946 7784 [ 5FA03F5EA6EFEF6D17B4A1A48C40A23C ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
20:30:32.0946 7784 SOHDs - ok
20:30:33.0055 7784 [ 65E5659E9C2A0762D05657C0E22A7CA2 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
20:30:33.0070 7784 SpfService - ok
20:30:33.0117 7784 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:30:33.0117 7784 spldr - ok
20:30:33.0164 7784 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:30:33.0164 7784 Spooler - ok
20:30:33.0429 7784 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:30:33.0445 7784 sppsvc - ok
20:30:33.0460 7784 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:30:33.0460 7784 sppuinotify - ok
20:30:33.0570 7784 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\N360x64\0604000.009\SRTSP64.SYS
20:30:33.0570 7784 SRTSP - ok
20:30:33.0585 7784 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\N360x64\0604000.009\SRTSPX64.SYS
20:30:33.0585 7784 SRTSPX - ok
20:30:33.0616 7784 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:30:33.0616 7784 srv - ok
20:30:33.0648 7784 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:30:33.0648 7784 srv2 - ok
20:30:33.0648 7784 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:30:33.0648 7784 srvnet - ok
20:30:33.0726 7784 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:30:33.0726 7784 SSDPSRV - ok
20:30:33.0757 7784 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:30:33.0757 7784 SstpSvc - ok
20:30:33.0928 7784 [ 525597FA2E9D49F19C59623B05562968 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:30:33.0944 7784 Stereo Service - ok
20:30:33.0960 7784 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
20:30:33.0960 7784 stexstor - ok
20:30:33.0991 7784 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:30:33.0991 7784 stisvc - ok
20:30:34.0006 7784 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:30:34.0006 7784 swenum - ok
20:30:34.0069 7784 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:30:34.0069 7784 swprv - ok
20:30:34.0131 7784 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\N360x64\0604000.009\SYMDS64.SYS
20:30:34.0131 7784 SymDS - ok
20:30:34.0287 7784 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\N360x64\0604000.009\SYMEFA64.SYS
20:30:34.0303 7784 SymEFA - ok
20:30:34.0381 7784 [ 898BB48C797483420DF523B2BBC1ECDB ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
20:30:34.0381 7784 SymEvent - ok
20:30:34.0443 7784 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\N360x64\0604000.009\Ironx64.SYS
20:30:34.0443 7784 SymIRON - ok
20:30:34.0490 7784 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\N360x64\0604000.009\SYMNETS.SYS
20:30:34.0490 7784 SymNetS - ok
20:30:34.0662 7784 [ B0C7D4DCF4800DF2F2145B500D0161E8 ] SynTP C:\Windows\system32\drivers\SynTP.sys
20:30:34.0662 7784 SynTP - ok
20:30:34.0880 7784 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:30:34.0896 7784 SysMain - ok
20:30:34.0927 7784 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:30:34.0927 7784 TabletInputService - ok
20:30:34.0942 7784 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:30:34.0942 7784 TapiSrv - ok
20:30:34.0958 7784 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:30:34.0958 7784 TBS - ok
20:30:35.0036 7784 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:30:35.0052 7784 Tcpip - ok
20:30:35.0098 7784 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:30:35.0114 7784 TCPIP6 - ok
20:30:35.0301 7784 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:30:35.0301 7784 tcpipreg - ok
20:30:35.0332 7784 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:30:35.0332 7784 TDPIPE - ok
20:30:35.0364 7784 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:30:35.0364 7784 TDTCP - ok
20:30:35.0395 7784 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:30:35.0395 7784 tdx - ok
20:30:35.0473 7784 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:30:35.0473 7784 TermDD - ok
20:30:35.0504 7784 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:30:35.0520 7784 TermService - ok
20:30:35.0520 7784 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:30:35.0520 7784 Themes - ok
20:30:35.0566 7784 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:30:35.0566 7784 THREADORDER - ok
20:30:35.0582 7784 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:30:35.0582 7784 TrkWks - ok
20:30:35.0629 7784 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:30:35.0629 7784 TrustedInstaller - ok
20:30:35.0738 7784 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:30:35.0738 7784 tssecsrv - ok
20:30:36.0034 7784 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:30:36.0050 7784 TsUsbFlt - ok
20:30:36.0066 7784 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
20:30:36.0066 7784 TsUsbGD - ok
20:30:36.0190 7784 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:30:36.0190 7784 tunnel - ok
20:30:36.0284 7784 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:30:36.0284 7784 uagp35 - ok
20:30:36.0346 7784 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:30:36.0346 7784 udfs - ok
20:30:36.0440 7784 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:30:36.0456 7784 UI0Detect - ok
20:30:36.0565 7784 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:30:36.0565 7784 uliagpkx - ok
20:30:36.0690 7784 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:30:36.0690 7784 umbus - ok
20:30:36.0721 7784 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
20:30:36.0721 7784 UmPass - ok
20:30:37.0470 7784 [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:30:37.0470 7784 UNS - ok
20:30:37.0610 7784 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:30:37.0610 7784 upnphost - ok
20:30:37.0704 7784 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
20:30:37.0704 7784 usbccgp - ok
20:30:37.0782 7784 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:30:37.0782 7784 usbcir - ok
20:30:37.0875 7784 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:30:37.0875 7784 usbehci - ok
20:30:38.0000 7784 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\drivers\usbhub.sys
20:30:38.0000 7784 usbhub - ok
20:30:38.0062 7784 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:30:38.0062 7784 usbohci - ok
20:30:38.0109 7784 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
20:30:38.0109 7784 usbprint - ok
20:30:38.0172 7784 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:30:38.0172 7784 USBSTOR - ok
20:30:38.0265 7784 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:30:38.0265 7784 usbuhci - ok
20:30:38.0374 7784 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:30:38.0374 7784 usbvideo - ok
20:30:38.0421 7784 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:30:38.0421 7784 UxSms - ok
20:30:38.0577 7784 [ 387D3DFFCF0A544539E9C5D8B81169A2 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
20:30:38.0577 7784 VAIO Event Service - ok
20:30:38.0796 7784 [ D1933E428D991B15AFFD48B1A7BEB643 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
20:30:38.0811 7784 VAIO Power Management - ok
20:30:38.0842 7784 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:30:38.0842 7784 VaultSvc - ok
20:30:39.0217 7784 [ D00058C1FFF3F3DE990444A5734E9639 ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
20:30:39.0217 7784 VCFw - ok
20:30:39.0451 7784 [ F19275655B42086C884ABCDAE2C659AE ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
20:30:39.0451 7784 VcmIAlzMgr - ok
20:30:39.0607 7784 [ 2F06D134554BA84FE253DBC481DCFE6D ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
20:30:39.0607 7784 VcmINSMgr - ok
20:30:39.0669 7784 [ 32A3735F6874B7783C6209ED5CA36D9D ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
20:30:39.0685 7784 VcmXmlIfHelper - ok
20:30:39.0825 7784 [ 3C7EBB0924B7F469674EA417FDB6D7E3 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
20:30:39.0841 7784 VCService - ok
20:30:39.0903 7784 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:30:39.0903 7784 vdrvroot - ok
20:30:39.0966 7784 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:30:39.0966 7784 vds - ok
20:30:40.0012 7784 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:30:40.0012 7784 vga - ok
20:30:40.0028 7784 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:30:40.0028 7784 VgaSave - ok
20:30:40.0090 7784 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:30:40.0090 7784 vhdmp - ok
20:30:40.0122 7784 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:30:40.0122 7784 viaide - ok
20:30:40.0215 7784 [ 6AD85F32EA4AA65BB2EA652F2B9D4005 ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
20:30:40.0215 7784 VIPAppService - ok
20:30:40.0293 7784 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:30:40.0293 7784 volmgr - ok
20:30:40.0356 7784 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:30:40.0356 7784 volmgrx - ok
20:30:40.0402 7784 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:30:40.0402 7784 volsnap - ok
20:30:40.0449 7784 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:30:40.0449 7784 vsmraid - ok
20:30:40.0558 7784 [ 8BE8C47D5B09F5550DCBF6FCD8832CCB ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
20:30:40.0558 7784 VSNService - ok
20:30:40.0714 7784 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:30:40.0714 7784 VSS - ok
20:30:40.0933 7784 [ 0826112CC64529AD5CF28AC6DD6EBA44 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
20:30:40.0933 7784 VUAgent - ok
20:30:40.0980 7784 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:30:40.0980 7784 vwifibus - ok
20:30:40.0995 7784 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:30:40.0995 7784 vwififlt - ok
20:30:41.0011 7784 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:30:41.0011 7784 vwifimp - ok
20:30:41.0026 7784 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:30:41.0026 7784 W32Time - ok
20:30:41.0042 7784 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:30:41.0042 7784 WacomPen - ok
20:30:41.0073 7784 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:30:41.0073 7784 WANARP - ok
20:30:41.0089 7784 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:30:41.0089 7784 Wanarpv6 - ok
20:30:41.0307 7784 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:30:41.0307 7784 WatAdminSvc - ok
20:30:41.0526 7784 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:30:41.0557 7784 wbengine - ok
20:30:41.0604 7784 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:30:41.0604 7784 WbioSrvc - ok
20:30:41.0619 7784 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:30:41.0619 7784 wcncsvc - ok
20:30:41.0650 7784 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:30:41.0650 7784 WcsPlugInService - ok
20:30:41.0697 7784 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
20:30:41.0697 7784 Wd - ok
20:30:41.0822 7784 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:30:41.0838 7784 Wdf01000 - ok
20:30:41.0853 7784 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:30:41.0853 7784 WdiServiceHost - ok
20:30:41.0869 7784 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:30:41.0869 7784 WdiSystemHost - ok
20:30:41.0884 7784 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:30:41.0884 7784 WebClient - ok
20:30:41.0931 7784 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:30:41.0931 7784 Wecsvc - ok
20:30:41.0947 7784 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:30:41.0962 7784 wercplsupport - ok
20:30:41.0994 7784 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:30:41.0994 7784 WerSvc - ok
20:30:42.0072 7784 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:30:42.0072 7784 WfpLwf - ok
20:30:42.0228 7784 [ 245EA6A2CFAE7B183EE9A14A4673B1F1 ] WiMAXAppSrv C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
20:30:42.0228 7784 WiMAXAppSrv - ok
20:30:42.0259 7784 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:30:42.0259 7784 WIMMount - ok
20:30:42.0290 7784 WinDefend - ok
20:30:42.0290 7784 WinHttpAutoProxySvc - ok
20:30:42.0337 7784 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:30:42.0337 7784 Winmgmt - ok
20:30:42.0384 7784 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:30:42.0384 7784 WinRM - ok
20:30:42.0462 7784 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:30:42.0462 7784 WinUsb - ok
20:30:42.0493 7784 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:30:42.0508 7784 Wlansvc - ok
20:30:42.0555 7784 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:30:42.0555 7784 wlcrasvc - ok
20:30:42.0633 7784 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:30:42.0633 7784 wlidsvc - ok
20:30:42.0664 7784 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:30:42.0664 7784 WmiAcpi - ok
20:30:42.0696 7784 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:30:42.0696 7784 wmiApSrv - ok
20:30:42.0696 7784 WMPNetworkSvc - ok
20:30:42.0742 7784 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:30:42.0742 7784 WPCSvc - ok
20:30:42.0758 7784 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:30:42.0758 7784 WPDBusEnum - ok
20:30:42.0774 7784 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:30:42.0774 7784 ws2ifsl - ok
20:30:42.0789 7784 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:30:42.0789 7784 wscsvc - ok
20:30:42.0805 7784 WSearch - ok
20:30:42.0867 7784 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:30:42.0883 7784 wuauserv - ok
20:30:42.0930 7784 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:30:42.0930 7784 WudfPf - ok
20:30:42.0976 7784 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:30:42.0976 7784 WUDFRd - ok
20:30:43.0008 7784 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:30:43.0008 7784 wudfsvc - ok
20:30:43.0023 7784 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:30:43.0023 7784 WwanSvc - ok
20:30:43.0070 7784 ================ Scan global ===============================
20:30:43.0101 7784 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:30:43.0132 7784 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
20:30:43.0132 7784 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
20:30:43.0148 7784 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:30:43.0179 7784 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:30:43.0179 7784 [Global] - ok
20:30:43.0179 7784 ================ Scan MBR ==================================
20:30:43.0195 7784 [ C0DCF0AC171DB02DB8B0014C5D767CF1 ] \Device\Harddisk0\DR0
20:30:43.0195 7784 Suspicious mbr (Forged): \Device\Harddisk0\DR0
20:30:43.0242 7784 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
20:30:43.0242 7784 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
20:30:43.0335 7784 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:30:43.0335 7784 \Device\Harddisk0\DR0 - detected TDSS File System (1)
20:30:43.0335 7784 ================ Scan VBR ==================================
20:30:43.0335 7784 [ F8390E345E610AE33AF90012388B70C2 ] \Device\Harddisk0\DR0\Partition1
20:30:43.0351 7784 \Device\Harddisk0\DR0\Partition1 - ok
20:30:43.0382 7784 [ D9984CC706B0E932DAFF7B684AF8CAB2 ] \Device\Harddisk0\DR0\Partition2
20:30:43.0382 7784 \Device\Harddisk0\DR0\Partition2 - ok
20:30:43.0382 7784 ============================================================
20:30:43.0382 7784 Scan finished
20:30:43.0382 7784 ============================================================
20:30:43.0398 8112 Detected object count: 2
20:30:43.0398 8112 Actual detected object count: 2
20:30:54.0926 8112 \Device\Harddisk0\DR0\# - copied to quarantine
20:30:54.0973 8112 \Device\Harddisk0\DR0 - copied to quarantine
20:30:55.0457 8112 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
20:30:55.0457 8112 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
20:30:55.0815 8112 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
20:30:55.0893 8112 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
20:30:55.0909 8112 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
20:30:55.0909 8112 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
20:30:55.0909 8112 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
20:30:55.0909 8112 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
20:30:55.0909 8112 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
20:30:55.0909 8112 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
20:30:55.0925 8112 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
20:30:55.0925 8112 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
20:30:56.0003 8112 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
20:30:56.0003 8112 \Device\Harddisk0\DR0 - ok
20:30:56.0205 8112 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
20:30:56.0205 8112 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
20:30:56.0205 8112 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
20:31:22.0523 4052 Deinitialize success

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:19 PM

Posted 05 February 2013 - 10:19 PM

Restart the PC and run TDSSkiller again and post the log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users