Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

am i ????


  • Please log in to reply
7 replies to this topic

#1 aquaviva

aquaviva

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 29 April 2013 - 02:50 PM

Program started at: 04/29/2013 09:44:56 PM in x64 mode.
Windows Version: Windows 8 Pro 
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]
 * WinDefend => "%ProgramFiles%\Windows Defender\MsMpEng.exe" [Incorrect ImagePath]
 
Searching for Missing Digital Signatures: 
 
 * No issues found.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:39 AM

Posted 29 April 2013 - 04:01 PM

Possibly... Lets run these

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.

>>>>>


Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.


>>>>

Now I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
NOTE:Sometimes if ESET finds no infections it will not create a log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 aquaviva

aquaviva
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 30 April 2013 - 03:35 AM

10:32:57.0703 5536  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:32:59.0706 5536  ============================================================
10:32:59.0706 5536  Current date / time: 2013/04/30 10:32:59.0706
10:32:59.0706 5536  SystemInfo:
10:32:59.0706 5536  
10:32:59.0706 5536  OS Version: 6.2.9200 ServicePack: 0.0
10:32:59.0706 5536  Product type: Workstation
10:32:59.0707 5536  ComputerName: AQUAVIVA-PC
10:32:59.0707 5536  UserName: aquaviva
10:32:59.0707 5536  Windows directory: C:\WINDOWS
10:32:59.0707 5536  System windows directory: C:\WINDOWS
10:32:59.0707 5536  Running under WOW64
10:32:59.0707 5536  Processor architecture: Intel x64
10:32:59.0707 5536  Number of processors: 8
10:32:59.0707 5536  Page size: 0x1000
10:32:59.0707 5536  Boot type: Normal boot
10:32:59.0707 5536  ============================================================
10:32:59.0901 5536  Drive \Device\Harddisk0\DR0 - Size: 0x37E4896000 (223.57 Gb), SectorSize: 0x200, Cylinders: 0x7201, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:32:59.0911 5536  ============================================================
10:32:59.0911 5536  \Device\Harddisk0\DR0:
10:32:59.0912 5536  MBR partitions:
10:32:59.0912 5536  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x200000
10:32:59.0912 5536  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x200800, BlocksNum 0x1A923000
10:32:59.0912 5536  ============================================================
10:32:59.0913 5536  C: <-> \Device\Harddisk0\DR0\Partition2
10:32:59.0913 5536  ============================================================
10:32:59.0913 5536  Initialize success
10:32:59.0913 5536  ============================================================
10:33:35.0768 3920  ============================================================
10:33:35.0768 3920  Scan started
10:33:35.0768 3920  Mode: Manual; TDLFS; 
10:33:35.0768 3920  ============================================================
10:33:35.0933 3920  ================ Scan system memory ========================
10:33:35.0933 3920  System memory - ok
10:33:35.0933 3920  ================ Scan services =============================
10:33:35.0969 3920  [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
10:33:35.0971 3920  1394ohci - ok
10:33:35.0974 3920  [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
10:33:35.0976 3920  3ware - ok
10:33:35.0981 3920  [ 975AABEB243B800C23626D6B652C5A9C ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
10:33:35.0984 3920  ACPI - ok
10:33:35.0987 3920  [ DC968C37822117E576B933F34A2D130C ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
10:33:35.0988 3920  acpiex - ok
10:33:35.0990 3920  [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
10:33:35.0991 3920  acpipagr - ok
10:33:35.0993 3920  [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
10:33:35.0993 3920  AcpiPmi - ok
10:33:35.0995 3920  [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
10:33:35.0995 3920  acpitime - ok
10:33:36.0000 3920  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:33:36.0000 3920  AdobeARMservice - ok
10:33:36.0023 3920  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:33:36.0024 3920  AdobeFlashPlayerUpdateSvc - ok
10:33:36.0030 3920  [ 93C6388592B99925C1D1576E465BC80F ] adp94xx         C:\WINDOWS\system32\drivers\adp94xx.sys
10:33:36.0034 3920  adp94xx - ok
10:33:36.0039 3920  [ D27763E0247292654E7F7D16444C7C72 ] adpahci         C:\WINDOWS\system32\drivers\adpahci.sys
10:33:36.0041 3920  adpahci - ok
10:33:36.0044 3920  [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320         C:\WINDOWS\system32\drivers\adpu320.sys
10:33:36.0046 3920  adpu320 - ok
10:33:36.0050 3920  [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
10:33:36.0051 3920  AeLookupSvc - ok
10:33:36.0057 3920  [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD             C:\WINDOWS\system32\drivers\afd.sys
10:33:36.0061 3920  AFD - ok
10:33:36.0064 3920  [ 01590377A5AB19E792528C628A2A68F9 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
10:33:36.0064 3920  agp440 - ok
10:33:36.0067 3920  [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG             C:\WINDOWS\System32\alg.exe
10:33:36.0068 3920  ALG - ok
10:33:36.0071 3920  [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
10:33:36.0072 3920  AllUserInstallAgent - ok
10:33:36.0074 3920  [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
10:33:36.0075 3920  AmdK8 - ok
10:33:36.0077 3920  [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
10:33:36.0079 3920  AmdPPM - ok
10:33:36.0081 3920  [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
10:33:36.0082 3920  amdsata - ok
10:33:36.0085 3920  [ 00452671904F5EE94B50BF0219C97164 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
10:33:36.0087 3920  amdsbs - ok
10:33:36.0089 3920  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
10:33:36.0091 3920  amdxata - ok
10:33:36.0093 3920  [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb      C:\WINDOWS\System32\Drivers\ssadadb.sys
10:33:36.0094 3920  androidusb - ok
10:33:36.0096 3920  [ 823F34D1DEF120A657BB7529ABF4461F ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
10:33:36.0097 3920  AppHostSvc - ok
10:33:36.0100 3920  [ 83B3682CE922FB0F415734B26D9D6233 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
10:33:36.0101 3920  AppID - ok
10:33:36.0103 3920  [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
10:33:36.0104 3920  AppIDSvc - ok
10:33:36.0106 3920  [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
10:33:36.0107 3920  Appinfo - ok
10:33:36.0110 3920  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:33:36.0112 3920  Apple Mobile Device - ok
10:33:36.0115 3920  [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
10:33:36.0116 3920  AppMgmt - ok
10:33:36.0120 3920  [ E933401B392387F4BE34DE8BAF1722A7 ] arc             C:\WINDOWS\system32\drivers\arc.sys
10:33:36.0121 3920  arc - ok
10:33:36.0123 3920  [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
10:33:36.0124 3920  arcsas - ok
10:33:36.0135 3920  [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:33:36.0136 3920  aspnet_state - ok
10:33:36.0138 3920  [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:33:36.0139 3920  AsyncMac - ok
10:33:36.0141 3920  [ A721FF570C2387E383BDDEA9632863C9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
10:33:36.0141 3920  atapi - ok
10:33:36.0144 3920  [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
10:33:36.0145 3920  AudioEndpointBuilder - ok
10:33:36.0153 3920  [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
10:33:36.0158 3920  Audiosrv - ok
10:33:36.0164 3920  [ AAE1DAE483DD57D0E267FCA42FCB5133 ] avc3            C:\WINDOWS\system32\DRIVERS\avc3.sys
10:33:36.0167 3920  avc3 - ok
10:33:36.0170 3920  [ 3B9549FEF98AB1768A1D6A919F355B70 ] avchv           C:\WINDOWS\system32\DRIVERS\avchv.sys
10:33:36.0171 3920  avchv - ok
10:33:36.0178 3920  [ 8183B715BD56561C27BEBB68B1192B7A ] avckf           C:\WINDOWS\system32\DRIVERS\avckf.sys
10:33:36.0180 3920  avckf - ok
10:33:36.0183 3920  [ E964EA70249DDE1343C8F694B52575EE ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
10:33:36.0183 3920  avgtp - ok
10:33:36.0186 3920  [ 89491EF71D5EA011127832C588002853 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
10:33:36.0188 3920  AxInstSV - ok
10:33:36.0194 3920  [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
10:33:36.0197 3920  b06bdrv - ok
10:33:36.0199 3920  [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
10:33:36.0200 3920  BasicDisplay - ok
10:33:36.0202 3920  [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
10:33:36.0202 3920  BasicRender - ok
10:33:36.0210 3920  [ EBD3B67D51F58F45FBDA2BDE853322AA ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe
10:33:36.0211 3920  BdDesktopParental - ok
10:33:36.0213 3920  [ 1942D00BBAA28F4104EFD7F66453749D ] bdelam          C:\WINDOWS\system32\drivers\bdelam.sys
10:33:36.0213 3920  bdelam - ok
10:33:36.0216 3920  [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
10:33:36.0217 3920  BDESVC - ok
10:33:36.0221 3920  [ 33BDE38294A142D068C32B2360B7D1C9 ] BdfNdisf        C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys
10:33:36.0221 3920  BdfNdisf - ok
10:33:36.0224 3920  [ 641F901CA6B9A90077FA92BE5EC1E789 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
10:33:36.0224 3920  bdfwfpf - ok
10:33:36.0227 3920  [ E311541A584A29C0D91DD73730B1DCBE ] BDSandBox       C:\WINDOWS\system32\drivers\bdsandbox.sys
10:33:36.0227 3920  BDSandBox - ok
10:33:36.0230 3920  [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
10:33:36.0230 3920  Beep - ok
10:33:36.0236 3920  [ 9E6A544F465C582AB42444A217CF04DC ] BFE             C:\WINDOWS\System32\bfe.dll
10:33:36.0241 3920  BFE - ok
10:33:36.0248 3920  [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS            C:\WINDOWS\System32\qmgr.dll
10:33:36.0255 3920  BITS - ok
10:33:36.0260 3920  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:33:36.0264 3920  Bonjour Service - ok
10:33:36.0266 3920  [ B17AC10B47C7FCB44D22A1F06415840E ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
10:33:36.0268 3920  bowser - ok
10:33:36.0270 3920  [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
10:33:36.0272 3920  BrokerInfrastructure - ok
10:33:36.0275 3920  [ 310068BDA80B1D55C36580FD8A873FAF ] Browser         C:\WINDOWS\System32\browser.dll
10:33:36.0276 3920  Browser - ok
10:33:36.0278 3920  [ F17DEEAC7D51D44CF1BFF8DD4F0A2B6D ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
10:33:36.0279 3920  BthAvrcpTg - ok
10:33:36.0281 3920  [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
10:33:36.0282 3920  BthHFEnum - ok
10:33:36.0284 3920  [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
10:33:36.0285 3920  bthhfhid - ok
10:33:36.0287 3920  [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
10:33:36.0288 3920  BTHMODEM - ok
10:33:36.0291 3920  [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv         C:\WINDOWS\system32\bthserv.dll
10:33:36.0292 3920  bthserv - ok
10:33:36.0295 3920  [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
10:33:36.0296 3920  cdfs - ok
10:33:36.0299 3920  [ 339BFF85D788268752DA8C9644B188EE ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
10:33:36.0300 3920  cdrom - ok
10:33:36.0303 3920  [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
10:33:36.0304 3920  CertPropSvc - ok
10:33:36.0307 3920  [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
10:33:36.0308 3920  circlass - ok
10:33:36.0313 3920  [ 9905168708DB68849B879B5548F68AB3 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
10:33:36.0316 3920  CLFS - ok
10:33:36.0322 3920  [ 2DC8538A2260647484A6C921CA837313 ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
10:33:36.0323 3920  CmBatt - ok
10:33:36.0328 3920  [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
10:33:36.0332 3920  CNG - ok
10:33:36.0335 3920  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
10:33:36.0336 3920  CompositeBus - ok
10:33:36.0337 3920  COMSysApp - ok
10:33:36.0340 3920  [ D9CB0782AF819548072AA45B70F8B22D ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
10:33:36.0341 3920  condrv - ok
10:33:36.0344 3920  [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
10:33:36.0345 3920  CryptSvc - ok
10:33:36.0350 3920  [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
10:33:36.0355 3920  CSC - ok
10:33:36.0362 3920  [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService      C:\WINDOWS\System32\cscsvc.dll
10:33:36.0367 3920  CscService - ok
10:33:36.0370 3920  [ C4D01BD86D6B207275FC143EEA951D75 ] dam             C:\WINDOWS\system32\drivers\dam.sys
10:33:36.0370 3920  dam - ok
10:33:36.0379 3920  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
10:33:36.0385 3920  DcomLaunch - ok
10:33:36.0389 3920  [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
10:33:36.0392 3920  defragsvc - ok
10:33:36.0396 3920  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
10:33:36.0399 3920  DeviceAssociationService - ok
10:33:36.0401 3920  [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
10:33:36.0403 3920  DeviceInstall - ok
10:33:36.0405 3920  [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
10:33:36.0407 3920  Dfsc - ok
10:33:36.0410 3920  [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
10:33:36.0411 3920  dg_ssudbus - ok
10:33:36.0415 3920  [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
10:33:36.0419 3920  Dhcp - ok
10:33:36.0421 3920  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache        C:\WINDOWS\system32\drivers\discache.sys
10:33:36.0422 3920  discache - ok
10:33:36.0424 3920  [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk            C:\WINDOWS\system32\drivers\disk.sys
10:33:36.0425 3920  disk - ok
10:33:36.0427 3920  [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
10:33:36.0428 3920  dmvsc - ok
10:33:36.0431 3920  [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
10:33:36.0433 3920  Dnscache - ok
10:33:36.0436 3920  [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
10:33:36.0438 3920  dot3svc - ok
10:33:36.0442 3920  [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS             C:\WINDOWS\system32\dps.dll
10:33:36.0443 3920  DPS - ok
10:33:36.0445 3920  [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
10:33:36.0446 3920  drmkaud - ok
10:33:36.0449 3920  [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
10:33:36.0451 3920  DsmSvc - ok
10:33:36.0463 3920  [ ED120AA770A78B5079F8C7BB5AF8A035 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
10:33:36.0472 3920  DXGKrnl - ok
10:33:36.0477 3920  [ 651FBD69A9713D623D456A240F96179C ] e1iexpress      C:\WINDOWS\system32\DRIVERS\e1i63x64.sys
10:33:36.0480 3920  e1iexpress - ok
10:33:36.0481 3920  EagleX64 - ok
10:33:36.0485 3920  [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
10:33:36.0486 3920  Eaphost - ok
10:33:36.0509 3920  [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
10:33:36.0529 3920  ebdrv - ok
10:33:36.0532 3920  [ F702AB6181513303AB0FC8D59E52708B ] EFS             C:\WINDOWS\System32\lsass.exe
10:33:36.0534 3920  EFS - ok
10:33:36.0536 3920  [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
10:33:36.0537 3920  EhStorClass - ok
10:33:36.0540 3920  [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
10:33:36.0541 3920  EhStorTcgDrv - ok
10:33:36.0543 3920  [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
10:33:36.0543 3920  ErrDev - ok
10:33:36.0546 3920  [ 3663291D0D26001A2BB67678AB61D14C ] EtronHub3       C:\WINDOWS\System32\Drivers\EtronHub3.sys
10:33:36.0547 3920  EtronHub3 - ok
10:33:36.0549 3920  [ 744420D6C062C38F7361870F010D6D4B ] EtronXHCI       C:\WINDOWS\System32\Drivers\EtronXHCI.sys
10:33:36.0550 3920  EtronXHCI - ok
10:33:36.0556 3920  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem     C:\WINDOWS\system32\es.dll
10:33:36.0560 3920  EventSystem - ok
10:33:36.0563 3920  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
10:33:36.0565 3920  exfat - ok
10:33:36.0568 3920  [ 60996602A7111FD2D086E803F33E4282 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
10:33:36.0569 3920  fastfat - ok
10:33:36.0575 3920  [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax             C:\WINDOWS\system32\fxssvc.exe
10:33:36.0581 3920  Fax - ok
10:33:36.0583 3920  [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
10:33:36.0584 3920  fdc - ok
10:33:36.0586 3920  [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
10:33:36.0586 3920  fdPHost - ok
10:33:36.0588 3920  [ 872506AAB591E8908DF4461475AF92DF ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
10:33:36.0589 3920  FDResPub - ok
10:33:36.0592 3920  [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
10:33:36.0594 3920  fhsvc - ok
10:33:36.0595 3920  [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
10:33:36.0597 3920  FileInfo - ok
10:33:36.0599 3920  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
10:33:36.0600 3920  Filetrace - ok
10:33:36.0602 3920  [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
10:33:36.0602 3920  flpydisk - ok
10:33:36.0606 3920  [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
10:33:36.0610 3920  FltMgr - ok
10:33:36.0619 3920  [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache       C:\WINDOWS\system32\FntCache.dll
10:33:36.0628 3920  FontCache - ok
10:33:36.0631 3920  [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:33:36.0632 3920  FontCache3.0.0.0 - ok
10:33:36.0634 3920  [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
10:33:36.0635 3920  FsDepends - ok
10:33:36.0637 3920  [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:33:36.0637 3920  Fs_Rec - ok
10:33:36.0642 3920  [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
10:33:36.0646 3920  fvevol - ok
10:33:36.0647 3920  [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
10:33:36.0648 3920  FxPPM - ok
10:33:36.0650 3920  [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
10:33:36.0651 3920  gagp30kx - ok
10:33:36.0653 3920  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
10:33:36.0653 3920  GEARAspiWDM - ok
10:33:36.0655 3920  [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
10:33:36.0656 3920  gencounter - ok
10:33:36.0659 3920  [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
10:33:36.0660 3920  GPIOClx0101 - ok
10:33:36.0672 3920  [ 5358678C6370F2ADC5291849F6503262 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
10:33:36.0682 3920  gpsvc - ok
10:33:36.0685 3920  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:33:36.0686 3920  gupdate - ok
10:33:36.0688 3920  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:33:36.0688 3920  gupdatem - ok
10:33:36.0692 3920  [ DB8A82239139348D6666434128D6F5DC ] gzflt           C:\WINDOWS\system32\DRIVERS\gzflt.sys
10:33:36.0693 3920  gzflt - ok
10:33:36.0697 3920  [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
10:33:36.0699 3920  HdAudAddService - ok
10:33:36.0701 3920  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
10:33:36.0702 3920  HDAudBus - ok
10:33:36.0704 3920  [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
10:33:36.0704 3920  HidBatt - ok
10:33:36.0707 3920  [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
10:33:36.0708 3920  HidBth - ok
10:33:36.0710 3920  [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
10:33:36.0711 3920  hidi2c - ok
10:33:36.0713 3920  [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
10:33:36.0714 3920  HidIr - ok
10:33:36.0716 3920  [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv         C:\WINDOWS\system32\hidserv.dll
10:33:36.0717 3920  hidserv - ok
10:33:36.0719 3920  [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
10:33:36.0719 3920  HidUsb - ok
10:33:36.0722 3920  [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
10:33:36.0723 3920  hkmsvc - ok
10:33:36.0726 3920  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
10:33:36.0729 3920  HomeGroupListener - ok
10:33:36.0734 3920  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
10:33:36.0738 3920  HomeGroupProvider - ok
10:33:36.0740 3920  [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
10:33:36.0741 3920  HpSAMD - ok
10:33:36.0748 3920  [ 29CB98187BB5711F7759540976D295FC ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
10:33:36.0753 3920  HTTP - ok
10:33:36.0756 3920  [ 2A98301068801700906C06649860FE94 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
10:33:36.0756 3920  hwpolicy - ok
10:33:36.0758 3920  [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
10:33:36.0758 3920  hyperkbd - ok
10:33:36.0760 3920  [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
10:33:36.0761 3920  HyperVideo - ok
10:33:36.0763 3920  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
10:33:36.0764 3920  i8042prt - ok
10:33:36.0770 3920  [ 8DFC3AA7805D1E442193A639E9004E66 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
10:33:36.0772 3920  iaStorA - ok
10:33:36.0776 3920  [ B6B4054A06B39C5256ED1ECDD68259D4 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology enterprise\IAStorDataMgrSvc.exe
10:33:36.0776 3920  IAStorDataMgrSvc - ok
10:33:36.0778 3920  [ 4621FAE7D3C969A1E84A2790D88FCCDE ] iaStorF         C:\WINDOWS\system32\drivers\iaStorF.sys
10:33:36.0778 3920  iaStorF - ok
10:33:36.0784 3920  [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
10:33:36.0787 3920  iaStorV - ok
10:33:36.0790 3920  [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp           C:\WINDOWS\system32\drivers\iirsp.sys
10:33:36.0791 3920  iirsp - ok
10:33:36.0799 3920  [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
10:33:36.0807 3920  IKEEXT - ok
10:33:36.0832 3920  [ 7D7711B0F972C73AE46105B42092D82E ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
10:33:36.0843 3920  IntcAzAudAddService - ok
10:33:36.0848 3920  [ 42CEE1BA152FA267AE8587B4DE3B7B28 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
10:33:36.0850 3920  Intel® PROSet Monitoring Service - ok
10:33:36.0852 3920  [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
10:33:36.0853 3920  intelide - ok
10:33:36.0855 3920  [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
10:33:36.0856 3920  intelppm - ok
10:33:36.0858 3920  [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:33:36.0859 3920  IpFilterDriver - ok
10:33:36.0867 3920  [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
10:33:36.0872 3920  iphlpsvc - ok
10:33:36.0875 3920  [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
10:33:36.0876 3920  IPMIDRV - ok
10:33:36.0879 3920  [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
10:33:36.0880 3920  IPNAT - ok
10:33:36.0886 3920  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
10:33:36.0891 3920  iPod Service - ok
10:33:36.0893 3920  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
10:33:36.0893 3920  IRENUM - ok
10:33:36.0895 3920  [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
10:33:36.0896 3920  isapnp - ok
10:33:36.0899 3920  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
10:33:36.0902 3920  iScsiPrt - ok
10:33:36.0904 3920  [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs        C:\WINDOWS\system32\drivers\iusb3hcs.sys
10:33:36.0905 3920  iusb3hcs - ok
10:33:36.0909 3920  [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub        C:\WINDOWS\system32\drivers\iusb3hub.sys
10:33:36.0912 3920  iusb3hub - ok
10:33:36.0919 3920  [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc        C:\WINDOWS\system32\drivers\iusb3xhc.sys
10:33:36.0924 3920  iusb3xhc - ok
10:33:36.0927 3920  [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
10:33:36.0927 3920  kbdclass - ok
10:33:36.0929 3920  [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
10:33:36.0929 3920  kbdhid - ok
10:33:36.0932 3920  [ FB6C185092E18011EF49989425C2AA87 ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
10:33:36.0932 3920  kdnic - ok
10:33:36.0934 3920  [ F702AB6181513303AB0FC8D59E52708B ] KeyIso          C:\WINDOWS\system32\lsass.exe
10:33:36.0935 3920  KeyIso - ok
10:33:36.0937 3920  [ DFA480F6DED551464F3A5B959F437800 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
10:33:36.0938 3920  KSecDD - ok
10:33:36.0941 3920  [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
10:33:36.0942 3920  KSecPkg - ok
10:33:36.0944 3920  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
10:33:36.0945 3920  ksthunk - ok
10:33:36.0950 3920  [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
10:33:36.0952 3920  KtmRm - ok
10:33:36.0956 3920  [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
10:33:36.0960 3920  LanmanServer - ok
10:33:36.0963 3920  [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
10:33:36.0966 3920  LanmanWorkstation - ok
10:33:36.0969 3920  [ CEEFD29FC551F289810B0B9381B321DC ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
10:33:36.0970 3920  lltdio - ok
10:33:36.0972 3920  [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
10:33:36.0975 3920  lltdsvc - ok
10:33:36.0977 3920  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
10:33:36.0978 3920  lmhosts - ok
10:33:36.0982 3920  [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
10:33:36.0983 3920  LSI_SAS - ok
10:33:36.0985 3920  [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
10:33:36.0986 3920  LSI_SAS2 - ok
10:33:36.0989 3920  [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI        C:\WINDOWS\system32\drivers\lsi_scsi.sys
10:33:36.0990 3920  LSI_SCSI - ok
10:33:36.0992 3920  [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
10:33:36.0994 3920  LSI_SSS - ok
10:33:37.0003 3920  [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM             C:\WINDOWS\System32\lsm.dll
10:33:37.0006 3920  LSM - ok
10:33:37.0009 3920  [ 2BDC5D711FA61307CE6190D47C956368 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
10:33:37.0010 3920  luafv - ok
10:33:37.0012 3920  [ E5ECF40E5FD459141E5F6685FFD51804 ] Lycosa          C:\WINDOWS\system32\drivers\Lycosa.sys
10:33:37.0013 3920  Lycosa - ok
10:33:37.0015 3920  [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
10:33:37.0016 3920  megasas - ok
10:33:37.0020 3920  [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR          C:\WINDOWS\system32\drivers\MegaSR.sys
10:33:37.0023 3920  MegaSR - ok
10:33:37.0025 3920  [ 2BB3EAE2EA641515D4B205CAB29E1624 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
10:33:37.0026 3920  MEIx64 - ok
10:33:37.0028 3920  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
10:33:37.0029 3920  MMCSS - ok
10:33:37.0031 3920  [ 780098AD5DA8A4822E2563984C85EF7B ] Modem           C:\WINDOWS\system32\drivers\modem.sys
10:33:37.0033 3920  Modem - ok
10:33:37.0035 3920  [ EA8EAD3F5B762F889CC7F3966625B48B ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
10:33:37.0035 3920  monitor - ok
10:33:37.0037 3920  [ 618446B98C79776654340CE27C73485E ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
10:33:37.0038 3920  mouclass - ok
10:33:37.0040 3920  [ C0ADEBED913295803B579ED288936CBB ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
10:33:37.0041 3920  mouhid - ok
10:33:37.0043 3920  [ 89D263DBF08119CE16273991C120D6DD ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
10:33:37.0044 3920  mountmgr - ok
10:33:37.0046 3920  [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
10:33:37.0047 3920  mpsdrv - ok
10:33:37.0055 3920  [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
10:33:37.0061 3920  MpsSvc - ok
10:33:37.0065 3920  [ 866AF645A3B1F4358C4201CE089839EA ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
10:33:37.0066 3920  MQAC - ok
10:33:37.0069 3920  [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
10:33:37.0070 3920  MRxDAV - ok
10:33:37.0075 3920  [ 93179D48066918323628CB016D8C94DC ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:33:37.0077 3920  mrxsmb - ok
10:33:37.0081 3920  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
10:33:37.0083 3920  mrxsmb10 - ok
10:33:37.0087 3920  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
10:33:37.0089 3920  mrxsmb20 - ok
10:33:37.0092 3920  [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
10:33:37.0094 3920  MsBridge - ok
10:33:37.0097 3920  [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
10:33:37.0098 3920  MSDTC - ok
10:33:37.0101 3920  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
10:33:37.0102 3920  Msfs - ok
10:33:37.0104 3920  [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
10:33:37.0105 3920  msgpiowin32 - ok
10:33:37.0107 3920  [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
10:33:37.0107 3920  mshidkmdf - ok
10:33:37.0109 3920  [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
10:33:37.0109 3920  mshidumdf - ok
10:33:37.0111 3920  [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
10:33:37.0112 3920  msisadrv - ok
10:33:37.0115 3920  [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
10:33:37.0117 3920  MSiSCSI - ok
10:33:37.0119 3920  msiserver - ok
10:33:37.0121 3920  [ 509809566E49F4411055864EA8D437CD ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:33:37.0121 3920  MSKSSRV - ok
10:33:37.0123 3920  [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
10:33:37.0123 3920  MsLldp - ok
10:33:37.0125 3920  [ 80FF037D6184FFACB2740A50C7949D20 ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
10:33:37.0127 3920  MSMQ - ok
10:33:37.0128 3920  [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:33:37.0129 3920  MSPCLOCK - ok
10:33:37.0131 3920  [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
10:33:37.0131 3920  MSPQM - ok
10:33:37.0136 3920  [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
10:33:37.0139 3920  MsRPC - ok
10:33:37.0142 3920  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
10:33:37.0143 3920  mssmbios - ok
10:33:37.0144 3920  [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
10:33:37.0145 3920  MSTEE - ok
10:33:37.0147 3920  [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
10:33:37.0147 3920  MTConfig - ok
10:33:37.0150 3920  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
10:33:37.0151 3920  Mup - ok
10:33:37.0153 3920  [ 56616652CFE590E2C936C72DF6094B88 ] mv91cons        C:\WINDOWS\system32\drivers\mv91cons.sys
10:33:37.0153 3920  mv91cons - ok
10:33:37.0157 3920  [ 7EAE8A7EE4955DC1439E6C93D5CC7EE4 ] mvs91xx         C:\WINDOWS\system32\drivers\mvs91xx.sys
10:33:37.0160 3920  mvs91xx - ok
10:33:37.0162 3920  [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
10:33:37.0163 3920  mvumis - ok
10:33:37.0168 3920  [ 4B18840511D720BA118D3017E8165875 ] napagent        C:\WINDOWS\system32\qagentRT.dll
10:33:37.0171 3920  napagent - ok
10:33:37.0176 3920  [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
10:33:37.0179 3920  NativeWifiP - ok
10:33:37.0183 3920  [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
10:33:37.0185 3920  NcaSvc - ok
10:33:37.0187 3920  [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
10:33:37.0188 3920  NcdAutoSetup - ok
10:33:37.0196 3920  [ 03CFE4108D1DE16D6C59455B5C73319C ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
10:33:37.0204 3920  NDIS - ok
10:33:37.0206 3920  [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
10:33:37.0207 3920  NdisCap - ok
10:33:37.0209 3920  [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
10:33:37.0210 3920  NdisImPlatform - ok
10:33:37.0213 3920  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:33:37.0213 3920  NdisTapi - ok
10:33:37.0215 3920  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:33:37.0216 3920  Ndisuio - ok
10:33:37.0219 3920  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:33:37.0221 3920  NdisWan - ok
10:33:37.0224 3920  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:33:37.0224 3920  NDISWANLEGACY - ok
10:33:37.0227 3920  [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
10:33:37.0227 3920  NDProxy - ok
10:33:37.0229 3920  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
10:33:37.0230 3920  Ndu - ok
10:33:37.0232 3920  [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl         C:\WINDOWS\system32\DRIVERS\netaapl64.sys
10:33:37.0233 3920  Netaapl - ok
10:33:37.0235 3920  [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
10:33:37.0236 3920  NetBIOS - ok
10:33:37.0240 3920  [ 7CEC25C682D319D484630B3952C31A11 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
10:33:37.0243 3920  NetBT - ok
10:33:37.0245 3920  [ F702AB6181513303AB0FC8D59E52708B ] Netlogon        C:\WINDOWS\system32\lsass.exe
10:33:37.0245 3920  Netlogon - ok
10:33:37.0249 3920  [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman          C:\WINDOWS\System32\netman.dll
10:33:37.0251 3920  Netman - ok
10:33:37.0254 3920  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:33:37.0256 3920  NetMsmqActivator - ok
10:33:37.0258 3920  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:33:37.0258 3920  NetPipeActivator - ok
10:33:37.0264 3920  [ 5FF52E13C72838D87DAF228EC9E92C89 ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
10:33:37.0268 3920  netprofm - ok
10:33:37.0270 3920  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:33:37.0270 3920  NetTcpActivator - ok
10:33:37.0273 3920  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:33:37.0273 3920  NetTcpPortSharing - ok
10:33:37.0276 3920  [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960         C:\WINDOWS\system32\drivers\nfrd960.sys
10:33:37.0277 3920  nfrd960 - ok
10:33:37.0281 3920  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
10:33:37.0284 3920  NlaSvc - ok
10:33:37.0286 3920  [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
10:33:37.0287 3920  Npfs - ok
10:33:37.0289 3920  [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
10:33:37.0290 3920  npsvctrig - ok
10:33:37.0292 3920  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi             C:\WINDOWS\system32\nsisvc.dll
10:33:37.0293 3920  nsi - ok
10:33:37.0295 3920  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
10:33:37.0295 3920  nsiproxy - ok
10:33:37.0310 3920  [ 76929F4A69E425911A63B407E26C2589 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
10:33:37.0323 3920  Ntfs - ok
10:33:37.0326 3920  [ 4163ADE07DB51843AE31F65B94F5398D ] Null            C:\WINDOWS\system32\drivers\Null.sys
10:33:37.0326 3920  Null - ok
10:33:37.0329 3920  [ A7127E86F9FFE2A53E271B56B2C4CEDF ] nusb3hub        C:\WINDOWS\system32\drivers\nusb3hub.sys
10:33:37.0331 3920  nusb3hub - ok
10:33:37.0334 3920  [ 49BBEC6F48D5F9284B03ABF3A959B19B ] nusb3xhc        C:\WINDOWS\system32\drivers\nusb3xhc.sys
10:33:37.0336 3920  nusb3xhc - ok
10:33:37.0339 3920  [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
10:33:37.0340 3920  NVHDA - ok
10:33:37.0415 3920  [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
10:33:37.0486 3920  nvlddmkm - ok
10:33:37.0491 3920  [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
10:33:37.0492 3920  nvraid - ok
10:33:37.0495 3920  [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
10:33:37.0497 3920  nvstor - ok
10:33:37.0504 3920  [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
10:33:37.0511 3920  nvsvc - ok
10:33:37.0521 3920  [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
10:33:37.0528 3920  nvUpdatusService - ok
10:33:37.0531 3920  [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
10:33:37.0533 3920  nv_agp - ok
10:33:37.0537 3920  [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
10:33:37.0541 3920  p2pimsvc - ok
10:33:37.0546 3920  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
10:33:37.0550 3920  p2psvc - ok
10:33:37.0553 3920  [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
10:33:37.0553 3920  Parport - ok
10:33:37.0556 3920  [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
10:33:37.0557 3920  partmgr - ok
10:33:37.0561 3920  [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
10:33:37.0565 3920  PcaSvc - ok
10:33:37.0568 3920  [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci             C:\WINDOWS\system32\drivers\pci.sys
10:33:37.0570 3920  pci - ok
10:33:37.0572 3920  [ F9908D274D458220F91E89B54D78D837 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
10:33:37.0573 3920  pciide - ok
10:33:37.0576 3920  [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
10:33:37.0577 3920  pcmcia - ok
10:33:37.0579 3920  [ CEBBAD5391C2644560C55628A40BFD27 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
10:33:37.0580 3920  pcw - ok
10:33:37.0583 3920  [ 0698DEDEAD6A00AD0D468C687D830FBF ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
10:33:37.0584 3920  pdc - ok
10:33:37.0591 3920  [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
10:33:37.0597 3920  PEAUTH - ok
10:33:37.0615 3920  [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
10:33:37.0630 3920  PeerDistSvc - ok
10:33:37.0652 3920  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
10:33:37.0654 3920  PerfHost - ok
10:33:37.0667 3920  [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla             C:\WINDOWS\system32\pla.dll
10:33:37.0677 3920  pla - ok
10:33:37.0680 3920  [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
10:33:37.0681 3920  PlugPlay - ok
10:33:37.0684 3920  [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
10:33:37.0685 3920  PNRPAutoReg - ok
10:33:37.0689 3920  [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
10:33:37.0690 3920  PNRPsvc - ok
10:33:37.0695 3920  [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
10:33:37.0700 3920  PolicyAgent - ok
10:33:37.0703 3920  [ F1E067F56373F11EA4B785CAE823740A ] Power           C:\WINDOWS\system32\umpo.dll
10:33:37.0705 3920  Power - ok
10:33:37.0708 3920  [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:33:37.0709 3920  PptpMiniport - ok
10:33:37.0728 3920  [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
10:33:37.0745 3920  PrintNotify - ok
10:33:37.0749 3920  [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor       C:\WINDOWS\System32\drivers\processr.sys
10:33:37.0750 3920  Processor - ok
10:33:37.0753 3920  [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
10:33:37.0755 3920  ProfSvc - ok
10:33:37.0758 3920  [ EB8034147D4820CD31BFCB11A2A652DF ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
10:33:37.0759 3920  Psched - ok
10:33:37.0763 3920  [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE           C:\WINDOWS\system32\qwave.dll
10:33:37.0766 3920  QWAVE - ok
10:33:37.0768 3920  [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
10:33:37.0770 3920  QWAVEdrv - ok
10:33:37.0772 3920  [ 873C60F8178100557740A832FCE10B5F ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:33:37.0772 3920  RasAcd - ok
10:33:37.0775 3920  [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
10:33:37.0775 3920  RasAgileVpn - ok
10:33:37.0777 3920  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
10:33:37.0779 3920  RasAuto - ok
10:33:37.0781 3920  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:33:37.0783 3920  Rasl2tp - ok
10:33:37.0788 3920  [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan          C:\WINDOWS\System32\rasmans.dll
10:33:37.0791 3920  RasMan - ok
10:33:37.0793 3920  [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:33:37.0794 3920  RasPppoe - ok
10:33:37.0796 3920  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
10:33:37.0797 3920  RasSstp - ok
10:33:37.0802 3920  [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:33:37.0805 3920  rdbss - ok
10:33:37.0808 3920  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
10:33:37.0809 3920  rdpbus - ok
10:33:37.0812 3920  [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
10:33:37.0814 3920  RDPDR - ok
10:33:37.0818 3920  [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
10:33:37.0818 3920  RdpVideoMiniport - ok
10:33:37.0821 3920  [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
10:33:37.0823 3920  RDPWD - ok
10:33:37.0826 3920  [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
10:33:37.0829 3920  rdyboost - ok
10:33:37.0832 3920  [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
10:33:37.0833 3920  RemoteAccess - ok
10:33:37.0836 3920  [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
10:33:37.0838 3920  RemoteRegistry - ok
10:33:37.0841 3920  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
10:33:37.0842 3920  RpcEptMapper - ok
10:33:37.0844 3920  [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator      C:\WINDOWS\system32\locator.exe
10:33:37.0845 3920  RpcLocator - ok
10:33:37.0852 3920  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs           C:\WINDOWS\system32\rpcss.dll
10:33:37.0855 3920  RpcSs - ok
10:33:37.0858 3920  [ E04E770DD198B9399640717145E79EBF ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
10:33:37.0859 3920  rspndr - ok
10:33:37.0860 3920  [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
10:33:37.0861 3920  s3cap - ok
10:33:37.0863 3920  [ F702AB6181513303AB0FC8D59E52708B ] SamSs           C:\WINDOWS\system32\lsass.exe
10:33:37.0864 3920  SamSs - ok
10:33:37.0866 3920  [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
10:33:37.0867 3920  sbp2port - ok
10:33:37.0870 3920  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
10:33:37.0872 3920  SCardSvr - ok
10:33:37.0874 3920  [ 5D7733A12756B267FCA021672B26BC9E ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
10:33:37.0875 3920  scfilter - ok
10:33:37.0885 3920  [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule        C:\WINDOWS\system32\schedsvc.dll
10:33:37.0894 3920  Schedule - ok
10:33:37.0897 3920  [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
10:33:37.0898 3920  SCPolicySvc - ok
10:33:37.0901 3920  [ 047315E75392CEA447ACC86257824C16 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
10:33:37.0903 3920  sdbus - ok
10:33:37.0906 3920  [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
10:33:37.0908 3920  SDRSVC - ok
10:33:37.0910 3920  [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
10:33:37.0911 3920  sdstor - ok
10:33:37.0913 3920  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
10:33:37.0913 3920  secdrv - ok
10:33:37.0915 3920  [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon        C:\WINDOWS\system32\seclogon.dll
10:33:37.0917 3920  seclogon - ok
10:33:37.0919 3920  [ 9C51620998F0763039DFA6BF68E475ED ] SENS            C:\WINDOWS\System32\sens.dll
10:33:37.0920 3920  SENS - ok
10:33:37.0923 3920  [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
10:33:37.0925 3920  SensrSvc - ok
10:33:37.0927 3920  [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
10:33:37.0928 3920  SerCx - ok
10:33:37.0930 3920  [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
10:33:37.0931 3920  Serenum - ok
10:33:37.0933 3920  [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
10:33:37.0934 3920  Serial - ok
10:33:37.0936 3920  [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
10:33:37.0936 3920  sermouse - ok
10:33:37.0943 3920  [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
10:33:37.0947 3920  SessionEnv - ok
10:33:37.0950 3920  [ 7EE65419B29302C795714FF8073969A1 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
10:33:37.0951 3920  sfloppy - ok
10:33:37.0956 3920  [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
10:33:37.0959 3920  SharedAccess - ok
10:33:37.0965 3920  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:33:37.0969 3920  ShellHWDetection - ok
10:33:37.0972 3920  [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
10:33:37.0972 3920  SiSRaid2 - ok
10:33:37.0975 3920  [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
10:33:37.0976 3920  SiSRaid4 - ok
10:33:37.0981 3920  [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
10:33:37.0982 3920  SNMPTRAP - ok
10:33:37.0985 3920  [ 739A739DCC5D02FE30EDEADEBD7B9898 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
10:33:37.0988 3920  spaceport - ok
10:33:37.0991 3920  [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
10:33:37.0992 3920  SpbCx - ok
10:33:37.0998 3920  [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
10:33:38.0004 3920  Spooler - ok
10:33:38.0041 3920  [ EC84D961501054F87A6878EC5D53388F ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
10:33:38.0076 3920  sppsvc - ok
10:33:38.0083 3920  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
10:33:38.0086 3920  srv - ok
10:33:38.0091 3920  [ 9912FDF63EC78E1977083E20DEAE4889 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
10:33:38.0095 3920  srv2 - ok
10:33:38.0099 3920  [ FD8B4F201B681C555A4AF41922C52557 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
10:33:38.0101 3920  srvnet - ok
10:33:38.0104 3920  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\WINDOWS\System32\drivers\ssadbus.sys
10:33:38.0106 3920  ssadbus - ok
10:33:38.0108 3920  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
10:33:38.0109 3920  ssadmdfl - ok
10:33:38.0112 3920  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
10:33:38.0114 3920  ssadmdm - ok
10:33:38.0117 3920  [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd        C:\WINDOWS\system32\DRIVERS\ssadserd.sys
10:33:38.0118 3920  ssadserd - ok
10:33:38.0122 3920  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
10:33:38.0125 3920  SSDPSRV - ok
10:33:38.0128 3920  [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
10:33:38.0129 3920  SstpSvc - ok
10:33:38.0132 3920  [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
10:33:38.0133 3920  ssudmdm - ok
10:33:38.0135 3920  Steam Client Service - ok
10:33:38.0141 3920  [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:33:38.0143 3920  Stereo Service - ok
10:33:38.0145 3920  [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
10:33:38.0146 3920  stexstor - ok
10:33:38.0151 3920  [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc          C:\WINDOWS\System32\wiaservc.dll
10:33:38.0156 3920  stisvc - ok
10:33:38.0159 3920  [ B240874B2CA0CD02E8CD11E140B14C57 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
10:33:38.0160 3920  storahci - ok
10:33:38.0162 3920  [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
10:33:38.0163 3920  storflt - ok
10:33:38.0165 3920  [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
10:33:38.0166 3920  StorSvc - ok
10:33:38.0168 3920  [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
10:33:38.0169 3920  storvsc - ok
10:33:38.0171 3920  [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp         C:\WINDOWS\System32\drivers\storvsp.sys
10:33:38.0172 3920  storvsp - ok
10:33:38.0174 3920  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc           C:\WINDOWS\system32\svsvc.dll
10:33:38.0175 3920  svsvc - ok
10:33:38.0176 3920  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
10:33:38.0177 3920  swenum - ok
10:33:38.0182 3920  [ 502F9488540051F3E6C39889ECFA76BB ] swprv           C:\WINDOWS\System32\swprv.dll
10:33:38.0187 3920  swprv - ok
10:33:38.0198 3920  [ DC21E1F06343773D7E24362DCEF7944B ] SysMain         C:\WINDOWS\system32\sysmain.dll
10:33:38.0208 3920  SysMain - ok
10:33:38.0212 3920  [ 6FB88606C4A71E1BFAF97D63A676C673 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
10:33:38.0214 3920  SystemEventsBroker - ok
10:33:38.0217 3920  [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
10:33:38.0219 3920  TabletInputService - ok
10:33:38.0222 3920  [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
10:33:38.0226 3920  TapiSrv - ok
10:33:38.0242 3920  [ B6D52E2C38B49A156E58FF5B9C6CA8BE ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
10:33:38.0256 3920  Tcpip - ok
10:33:38.0273 3920  [ B6D52E2C38B49A156E58FF5B9C6CA8BE ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:33:38.0281 3920  TCPIP6 - ok
10:33:38.0285 3920  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
10:33:38.0286 3920  tcpipreg - ok
10:33:38.0289 3920  [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
10:33:38.0291 3920  tdx - ok
10:33:38.0293 3920  [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
10:33:38.0293 3920  terminpt - ok
10:33:38.0300 3920  [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService     C:\WINDOWS\System32\termsrv.dll
10:33:38.0305 3920  TermService - ok
10:33:38.0307 3920  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes          C:\WINDOWS\system32\themeservice.dll
10:33:38.0309 3920  Themes - ok
10:33:38.0312 3920  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
10:33:38.0313 3920  THREADORDER - ok
10:33:38.0316 3920  [ 4515B9E4140F04FB3907692DF89FCA87 ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
10:33:38.0318 3920  TimeBroker - ok
10:33:38.0321 3920  [ 6F0BFF80EE2A5BC841286A51F893CBAD ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
10:33:38.0322 3920  TPM - ok
10:33:38.0326 3920  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks          C:\WINDOWS\System32\trkwks.dll
10:33:38.0329 3920  TrkWks - ok
10:33:38.0334 3920  [ B66EE1D68197DFB9AA24F961E68ACDCC ] trufos          C:\WINDOWS\system32\DRIVERS\trufos.sys
10:33:38.0335 3920  trufos - ok
10:33:38.0338 3920  [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
10:33:38.0338 3920  TrustedInstaller - ok
10:33:38.0341 3920  [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
10:33:38.0342 3920  TsUsbFlt - ok
10:33:38.0344 3920  [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
10:33:38.0345 3920  TsUsbGD - ok
10:33:38.0348 3920  [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
10:33:38.0349 3920  tunnel - ok
10:33:38.0351 3920  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
10:33:38.0352 3920  uagp35 - ok
10:33:38.0355 3920  [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
10:33:38.0356 3920  UASPStor - ok
10:33:38.0359 3920  [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
10:33:38.0360 3920  UCX01000 - ok
10:33:38.0364 3920  [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
10:33:38.0368 3920  udfs - ok
10:33:38.0372 3920  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
10:33:38.0373 3920  UI0Detect - ok
10:33:38.0375 3920  [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
10:33:38.0376 3920  uliagpkx - ok
10:33:38.0378 3920  [ 02CEB3FE6152668A7BA420B93B664860 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
10:33:38.0379 3920  umbus - ok
10:33:38.0381 3920  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
10:33:38.0381 3920  UmPass - ok
10:33:38.0385 3920  [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
10:33:38.0387 3920  UmRdpService - ok
10:33:38.0393 3920  [ 3B709E63B35A6949F4CFB05A6F6A180C ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
10:33:38.0394 3920  UPDATESRV - ok
10:33:38.0399 3920  [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost        C:\WINDOWS\System32\upnphost.dll
10:33:38.0403 3920  upnphost - ok
10:33:38.0406 3920  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
10:33:38.0407 3920  USBAAPL64 - ok
10:33:38.0410 3920  [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
10:33:38.0411 3920  usbccgp - ok
10:33:38.0413 3920  [ B395B62B62F28106218FA6FB17F4C797 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
10:33:38.0415 3920  usbcir - ok
10:33:38.0417 3920  [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
10:33:38.0418 3920  usbehci - ok
10:33:38.0423 3920  [ ADBF89B8E0BB372FEFE2E4B84E1E20AE ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
10:33:38.0427 3920  usbhub - ok
10:33:38.0432 3920  [ C5986337DE3BF63ABD9ED4D834D34B89 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
10:33:38.0435 3920  USBHUB3 - ok
10:33:38.0437 3920  [ 325F6179009B5A7F6118951A5BA422AB ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
10:33:38.0438 3920  usbohci - ok
10:33:38.0440 3920  [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
10:33:38.0441 3920  usbprint - ok
10:33:38.0444 3920  [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
10:33:38.0445 3920  USBSTOR - ok
10:33:38.0447 3920  [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
10:33:38.0448 3920  usbuhci - ok
10:33:38.0452 3920  [ 11C0CF143D246E2F0E9BDBF17A0CC70B ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
10:33:38.0455 3920  USBXHCI - ok
10:33:38.0457 3920  [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc        C:\WINDOWS\system32\lsass.exe
10:33:38.0457 3920  VaultSvc - ok
10:33:38.0459 3920  [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
10:33:38.0460 3920  vdrvroot - ok
10:33:38.0466 3920  [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds             C:\WINDOWS\System32\vds.exe
10:33:38.0471 3920  vds - ok
10:33:38.0473 3920  [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
10:33:38.0475 3920  VerifierExt - ok
10:33:38.0480 3920  [ 500BE6B2E49883720D0AE8BB859ED7A3 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
10:33:38.0484 3920  vhdmp - ok
10:33:38.0486 3920  [ F5B4A14B00E89250C50982AC762DDD1D ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
10:33:38.0487 3920  viaide - ok
10:33:38.0490 3920  [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid             C:\WINDOWS\System32\drivers\Vid.sys
10:33:38.0492 3920  Vid - ok
10:33:38.0495 3920  [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
10:33:38.0496 3920  vmbus - ok
10:33:38.0498 3920  [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
10:33:38.0499 3920  VMBusHID - ok
10:33:38.0501 3920  [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr          C:\WINDOWS\System32\drivers\vmbusr.sys
10:33:38.0502 3920  vmbusr - ok
10:33:38.0507 3920  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
10:33:38.0509 3920  vmicheartbeat - ok
10:33:38.0513 3920  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
10:33:38.0514 3920  vmickvpexchange - ok
10:33:38.0517 3920  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
10:33:38.0519 3920  vmicrdv - ok
10:33:38.0522 3920  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
10:33:38.0523 3920  vmicshutdown - ok
10:33:38.0527 3920  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
10:33:38.0528 3920  vmictimesync - ok
10:33:38.0531 3920  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
10:33:38.0532 3920  vmicvss - ok
10:33:38.0534 3920  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
10:33:38.0536 3920  volmgr - ok
10:33:38.0540 3920  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
10:33:38.0543 3920  volmgrx - ok
10:33:38.0547 3920  [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
10:33:38.0550 3920  volsnap - ok
10:33:38.0552 3920  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
10:33:38.0553 3920  vpci - ok
10:33:38.0555 3920  [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp         C:\WINDOWS\System32\drivers\vpcivsp.sys
10:33:38.0556 3920  vpcivsp - ok
10:33:38.0559 3920  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
10:33:38.0561 3920  vsmraid - ok
10:33:38.0572 3920  [ EA658570314042C914964FC72AB50E6B ] VSS             C:\WINDOWS\system32\vssvc.exe
10:33:38.0582 3920  VSS - ok
10:33:38.0594 3920  [ F4087B2AA00D96A852B084294B2C547A ] VSSERV          C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
10:33:38.0600 3920  VSSERV - ok
10:33:38.0604 3920  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
10:33:38.0607 3920  VSTXRAID - ok
10:33:38.0616 3920  [ EF51747440486C23BD466311048BD924 ] vToolbarUpdater12.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe
10:33:38.0622 3920  vToolbarUpdater12.2.0 - ok
10:33:38.0626 3920  [ 316A1762BD41C3DB06EB484527838E2D ] VUSB3HUB        C:\WINDOWS\system32\drivers\ViaHub3.sys
10:33:38.0628 3920  VUSB3HUB - ok
10:33:38.0630 3920  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
10:33:38.0631 3920  vwifibus - ok
10:33:38.0636 3920  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time         C:\WINDOWS\system32\w32time.dll
10:33:38.0638 3920  W32Time - ok
10:33:38.0644 3920  [ 901CC968412F8155B08D7ABE0171166A ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
10:33:38.0647 3920  W3SVC - ok
10:33:38.0649 3920  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
10:33:38.0650 3920  WacomPen - ok
10:33:38.0652 3920  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:33:38.0654 3920  Wanarp - ok
10:33:38.0656 3920  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:33:38.0656 3920  Wanarpv6 - ok
10:33:38.0661 3920  [ 901CC968412F8155B08D7ABE0171166A ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
10:33:38.0663 3920  WAS - ok
10:33:38.0675 3920  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\WINDOWS\system32\wbengine.exe
10:33:38.0687 3920  wbengine - ok
10:33:38.0691 3920  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
10:33:38.0694 3920  WbioSrvc - ok
10:33:38.0698 3920  [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
10:33:38.0701 3920  Wcmsvc - ok
10:33:38.0706 3920  [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
10:33:38.0710 3920  wcncsvc - ok
10:33:38.0712 3920  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
10:33:38.0713 3920  WcsPlugInService - ok
10:33:38.0715 3920  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\WINDOWS\system32\drivers\wd.sys
10:33:38.0716 3920  Wd - ok
10:33:38.0718 3920  [ 6F4B5DDDC3B86091E94BC47347A78AF7 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
10:33:38.0719 3920  WdBoot - ok
10:33:38.0726 3920  [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
10:33:38.0731 3920  Wdf01000 - ok
10:33:38.0735 3920  [ 99D404A9A0AFC4734E014EBEBAC13F8F ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
10:33:38.0737 3920  WdFilter - ok
10:33:38.0740 3920  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
10:33:38.0741 3920  WdiServiceHost - ok
10:33:38.0743 3920  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
10:33:38.0744 3920  WdiSystemHost - ok
10:33:38.0748 3920  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient       C:\WINDOWS\System32\webclnt.dll
10:33:38.0750 3920  WebClient - ok
10:33:38.0754 3920  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
10:33:38.0756 3920  Wecsvc - ok
10:33:38.0759 3920  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
10:33:38.0761 3920  wercplsupport - ok
10:33:38.0763 3920  [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
10:33:38.0765 3920  WerSvc - ok
10:33:38.0768 3920  [ EA8753F5A7DFC98FC9FBE286D7C2443A ] wfcs            C:\Program Files\Windows Firewall Control\wfcs.exe
10:33:38.0768 3920  wfcs - ok
10:33:38.0771 3920  [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
10:33:38.0772 3920  WFPLWFS - ok
10:33:38.0774 3920  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
10:33:38.0775 3920  WiaRpc - ok
10:33:38.0777 3920  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
10:33:38.0779 3920  WIMMount - ok
10:33:38.0780 3920  WinDefend - ok
10:33:38.0789 3920  [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
10:33:38.0794 3920  WinHttpAutoProxySvc - ok
10:33:38.0800 3920  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
10:33:38.0802 3920  Winmgmt - ok
10:33:38.0807 3920  [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0  C:\Users\aquaviva\Downloads\RealTemp_370\WinRing0x64.sys
10:33:38.0807 3920  WinRing0_1_2_0 - ok
10:33:38.0826 3920  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
10:33:38.0845 3920  WinRM - ok
10:33:38.0851 3920  [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb          C:\WINDOWS\system32\DRIVERS\WinUsb.sys
10:33:38.0852 3920  WinUsb - ok
10:33:38.0863 3920  [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
10:33:38.0873 3920  WlanSvc - ok
10:33:38.0887 3920  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
10:33:38.0900 3920  wlidsvc - ok
10:33:38.0903 3920  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
10:33:38.0903 3920  WmiAcpi - ok
10:33:38.0908 3920  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
10:33:38.0909 3920  wmiApSrv - ok
10:33:38.0911 3920  WMPNetworkSvc - ok
10:33:38.0914 3920  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
10:33:38.0915 3920  wpcfltr - ok
10:33:38.0917 3920  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
10:33:38.0918 3920  WPCSvc - ok
10:33:38.0921 3920  [ 3013658A4D327854BEEC4A08D9655194 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
10:33:38.0923 3920  WPDBusEnum - ok
10:33:38.0925 3920  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
10:33:38.0925 3920  WpdUpFltr - ok
10:33:38.0927 3920  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
10:33:38.0928 3920  ws2ifsl - ok
10:33:38.0930 3920  [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
10:33:38.0932 3920  wscsvc - ok
10:33:38.0933 3920  WSearch - ok
10:33:38.0955 3920  [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService       C:\WINDOWS\System32\WSService.dll
10:33:38.0973 3920  WSService - ok
10:33:38.0997 3920  [ 79F95469604B77296346DE7DB463EA2A ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
10:33:39.0018 3920  wuauserv - ok
10:33:39.0022 3920  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
10:33:39.0023 3920  WudfPf - ok
10:33:39.0026 3920  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
10:33:39.0027 3920  WUDFRd - ok
10:33:39.0030 3920  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP    C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:33:39.0031 3920  WUDFSensorLP - ok
10:33:39.0034 3920  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
10:33:39.0036 3920  wudfsvc - ok
10:33:39.0039 3920  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:33:39.0040 3920  WUDFWpdFs - ok
10:33:39.0042 3920  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:33:39.0043 3920  WUDFWpdMtp - ok
10:33:39.0049 3920  [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
10:33:39.0052 3920  WwanSvc - ok
10:33:39.0056 3920  [ FFDB0ED9D1D453F7F19DE55FE0706195 ] xhcdrv          C:\WINDOWS\system32\drivers\xhcdrv.sys
10:33:39.0058 3920  xhcdrv - ok
10:33:39.0063 3920  ================ Scan global ===============================
10:33:39.0066 3920  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\WINDOWS\system32\basesrv.dll
10:33:39.0069 3920  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\WINDOWS\system32\winsrv.dll
10:33:39.0073 3920  [ BD7C6949984D19AAA609896B675E7357 ] C:\WINDOWS\system32\sxssrv.dll
10:33:39.0078 3920  [ 8F226143046435C75C033B0C52E90FFE ] C:\WINDOWS\system32\services.exe
10:33:39.0082 3920  [Global] - ok
10:33:39.0082 3920  ================ Scan MBR ==================================
10:33:39.0083 3920  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:33:39.0192 3920  \Device\Harddisk0\DR0 - ok
10:33:39.0192 3920  ================ Scan VBR ==================================
10:33:39.0195 3920  [ 2104F5FD0D1CF3E7B499C1A09015F1F2 ] \Device\Harddisk0\DR0\Partition1
10:33:39.0197 3920  \Device\Harddisk0\DR0\Partition1 - ok
10:33:39.0201 3920  [ 552DFAF900E91AA73FFEF89E4B9EF27E ] \Device\Harddisk0\DR0\Partition2
10:33:39.0203 3920  \Device\Harddisk0\DR0\Partition2 - ok
10:33:39.0204 3920  ============================================================
10:33:39.0204 3920  Scan finished
10:33:39.0204 3920  ============================================================
10:33:39.0217 1748  Detected object count: 0
10:33:39.0217 1748  Actual detected object count: 0


#4 aquaviva

aquaviva
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 30 April 2013 - 03:44 AM

# AdwCleaner v2.300 - Logfile created 04/30/2013 at 10:39:29
# Updated 28/04/2013 by Xplode
# Operating system : Windows 8 Pro  (64 bits)
# User : aquaviva - AQUAVIVA-PC
# Boot Mode : Normal
# Running from : C:\Users\aquaviva\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\Users\aquaviva\AppData\Local\PackageAware
Folder Deleted : C:\Users\aquaviva\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\aquaviva\AppData\Roaming\pdfforge
 
***** [Registry] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16537
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v [Unable to get version]
 
File : C:\Users\aquaviva\AppData\Roaming\Mozilla\Firefox\Profiles\hm36ivmp.default\prefs.js
 
C:\Users\aquaviva\AppData\Roaming\Mozilla\Firefox\Profiles\hm36ivmp.default\user.js ... Deleted !
 
Deleted : user_pref("extentions.y2layers.defaultEnableAppsList", "Buzzdock,Buzzdock,");
Deleted : user_pref("extentions.y2layers.installId", "6b765e46-d955-43d2-b164-9b501040e4ca");
 
-\\ Google Chrome v26.0.1410.64
 
File : C:\Users\aquaviva\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
-\\ Opera v [Unable to get version]
 
File : C:\Users\aquaviva\AppData\Roaming\Opera\Opera\operaprefs.ini
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S2].txt - [2204 octets] - [30/04/2013 10:39:29]
 
########## EOF - C:\AdwCleaner[S2].txt - [2264 octets] ##########


#5 aquaviva

aquaviva
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 30 April 2013 - 06:21 AM

C:\Users\aquaviva\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\120904074604022.rsc a variant of Java/Exploit.CVE-2012-4681.AN trojan deleted - quarantined
C:\Windows.old\Users\aquaviva\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FJTQEVOK\base[1].htm HTML/Iframe.B.Gen virus deleted - quarantined


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:39 AM

Posted 30 April 2013 - 02:15 PM

That was good how is it now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 aquaviva

aquaviva
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 30 April 2013 - 02:35 PM

Well i cant find any virus, trojans or anything  when scanning... this is what rkill tells me
 
Rkill 2.4.7 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 04/30/2013 09:33:30 PM in x64 mode.
Windows Version: Windows 8 Pro 
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
 * Windows Firewall Disabled
 
   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000
 
Checking Windows Service Integrity: 
 
 * gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]
 * WinDefend => "%ProgramFiles%\Windows Defender\MsMpEng.exe" [Incorrect ImagePath]
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
 
Program finished at: 04/30/2013 09:33:32 PM
Execution time: 0 hours(s), 0 minute(s), and 2 seconds(s)


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:39 AM

Posted 30 April 2013 - 06:05 PM

Hello, I still suspect an MBR rootkit from that log. I think we should get a deeper look. Please follow this Preparation Guide and post in a new topic.
Also include that RKill log.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users