Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with trojan (memory)


  • Please log in to reply
5 replies to this topic

#1 Jayymes

Jayymes

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:08 PM

Posted 28 July 2013 - 09:34 AM

Hi,

 

NOD32 tells me I have a virus in my chrome.exe (memory) which it cannot clean.

 

When I start Chrome, it cant connect to the internet (error msgs on all sites).

Surfing on other browsers (firefox/Opera) is possible.

 

When I kill the chrome.exe in the task manager, my chrome works as usual.

But after a restart the virus is back.

 

 

Please help!

 

Thank you!



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:08 PM

Posted 28 July 2013 - 10:16 AM

:welcome:

 

:step1: Install and run MBAM

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step3: ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 Jayymes

Jayymes
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:08 PM

Posted 28 July 2013 - 11:57 AM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.07.28.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
Jaizzy :: NZXT [administrator]

Protection: Disabled

28.07.2013 16:00:47
mbam-log-2013-07-28 (16-00-47).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 291789
Time elapsed: 17 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

tdss log

17:46:58.0271 7380  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
17:47:00.0273 7380  ============================================================
17:47:00.0273 7380  Current date / time: 2013/07/28 17:47:00.0273
17:47:00.0273 7380  SystemInfo:
17:47:00.0273 7380  
17:47:00.0273 7380  OS Version: 6.1.7601 ServicePack: 1.0
17:47:00.0273 7380  Product type: Workstation
17:47:00.0273 7380  ComputerName: NZXT
17:47:00.0273 7380  UserName: Jaizzy
17:47:00.0273 7380  Windows directory: C:\Windows
17:47:00.0273 7380  System windows directory: C:\Windows
17:47:00.0273 7380  Running under WOW64
17:47:00.0273 7380  Processor architecture: Intel x64
17:47:00.0273 7380  Number of processors: 8
17:47:00.0273 7380  Page size: 0x1000
17:47:00.0273 7380  Boot type: Normal boot
17:47:00.0273 7380  ============================================================
17:47:00.0544 7380  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
17:47:00.0544 7380  Drive \Device\Harddisk2\DR2 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
17:47:00.0545 7380  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:47:00.0547 7380  Drive \Device\Harddisk3\DR3 - Size: 0x1D1C0F00000 (1863.01 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:47:00.0549 7380  ============================================================
17:47:00.0549 7380  \Device\Harddisk1\DR1:
17:47:00.0549 7380  MBR partitions:
17:47:00.0549 7380  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
17:47:00.0549 7380  \Device\Harddisk2\DR2:
17:47:00.0549 7380  MBR partitions:
17:47:00.0549 7380  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xEE7B000
17:47:00.0549 7380  \Device\Harddisk0\DR0:
17:47:00.0549 7380  MBR partitions:
17:47:00.0549 7380  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:47:00.0549 7380  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xE8DD5800
17:47:00.0549 7380  \Device\Harddisk3\DR3:
17:47:00.0549 7380  MBR partitions:
17:47:00.0549 7380  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
17:47:00.0549 7380  ============================================================
17:47:00.0550 7380  C: <-> \Device\Harddisk2\DR2\Partition1
17:47:00.0631 7380  D: <-> \Device\Harddisk1\DR1\Partition1
17:47:00.0727 7380  E: <-> \Device\Harddisk0\DR0\Partition2
17:47:01.0157 7380  G: <-> \Device\Harddisk3\DR3\Partition1
17:47:01.0157 7380  ============================================================
17:47:01.0157 7380  Initialize success
17:47:01.0157 7380  ============================================================
17:47:14.0106 6300  ============================================================
17:47:14.0106 6300  Scan started
17:47:14.0106 6300  Mode: Manual; TDLFS; 
17:47:14.0106 6300  ============================================================
17:47:16.0909 6300  ================ Scan system memory ========================
17:47:16.0909 6300  System memory - ok
17:47:16.0910 6300  ================ Scan services =============================
17:47:16.0939 6300  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
17:47:16.0972 6300  1394ohci - ok
17:47:16.0980 6300  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:47:16.0986 6300  ACPI - ok
17:47:16.0988 6300  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:47:16.0995 6300  AcpiPmi - ok
17:47:17.0001 6300  [ C245E08EC469A52A622EFDC9787A0DCC ] AdobeActiveFileMonitor10.0 C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
17:47:17.0003 6300  AdobeActiveFileMonitor10.0 - ok
17:47:17.0006 6300  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:47:17.0007 6300  AdobeARMservice - ok
17:47:17.0018 6300  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:47:17.0020 6300  AdobeFlashPlayerUpdateSvc - ok
17:47:17.0026 6300  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
17:47:17.0042 6300  adp94xx - ok
17:47:17.0047 6300  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
17:47:17.0061 6300  adpahci - ok
17:47:17.0065 6300  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
17:47:17.0066 6300  adpu320 - ok
17:47:17.0070 6300  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:47:17.0070 6300  AeLookupSvc - ok
17:47:17.0075 6300  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
17:47:17.0079 6300  AFD - ok
17:47:17.0081 6300  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:47:17.0089 6300  agp440 - ok
17:47:17.0092 6300  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
17:47:17.0093 6300  ALG - ok
17:47:17.0094 6300  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:47:17.0101 6300  aliide - ok
17:47:17.0103 6300  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
17:47:17.0109 6300  amdide - ok
17:47:17.0111 6300  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
17:47:17.0118 6300  AmdK8 - ok
17:47:17.0120 6300  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
17:47:17.0127 6300  AmdPPM - ok
17:47:17.0129 6300  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:47:17.0130 6300  amdsata - ok
17:47:17.0133 6300  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
17:47:17.0141 6300  amdsbs - ok
17:47:17.0143 6300  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:47:17.0143 6300  amdxata - ok
17:47:17.0145 6300  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
17:47:17.0152 6300  AppID - ok
17:47:17.0154 6300  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:47:17.0154 6300  AppIDSvc - ok
17:47:17.0156 6300  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
17:47:17.0157 6300  Appinfo - ok
17:47:17.0160 6300  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:47:17.0161 6300  Apple Mobile Device - ok
17:47:17.0165 6300  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
17:47:17.0167 6300  AppMgmt - ok
17:47:17.0169 6300  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
17:47:17.0176 6300  arc - ok
17:47:17.0178 6300  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
17:47:17.0180 6300  arcsas - ok
17:47:17.0182 6300  ArcSec - ok
17:47:17.0187 6300  [ FEC1F5DA49C4D693CCD1B922B7F3B22F ] arusb_lhx       C:\Windows\system32\DRIVERS\arusb_lhx.sys
17:47:17.0191 6300  arusb_lhx - ok
17:47:17.0200 6300  [ FB03A917C1294D3E6D671F24722E1BA3 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
17:47:17.0206 6300  asComSvc - ok
17:47:17.0214 6300  [ A63173897EA1A73A75D0E65036DE5B15 ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
17:47:17.0221 6300  asHmComSvc - ok
17:47:17.0223 6300  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
17:47:17.0224 6300  AsIO - ok
17:47:17.0226 6300  [ E1E75921E9EB025009696D4837F531FB ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
17:47:17.0228 6300  asmthub3 - ok
17:47:17.0232 6300  [ B0CF9AB16006B61634D4F955345CA5D2 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
17:47:17.0235 6300  asmtxhci - ok
17:47:17.0240 6300  [ 54AB80D7F53E0C228A3F0FDB167DC83E ] ASOVPNHelper    C:\Program Files (x86)\Astrill\ASOvpnSvc.exe
17:47:17.0243 6300  ASOVPNHelper - ok
17:47:17.0251 6300  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:47:17.0251 6300  aspnet_state - ok
17:47:17.0265 6300  [ 1B69B335F6BCD85C104F8C674660D6D6 ] ASProxy         C:\Program Files (x86)\Astrill\ASProxy.exe
17:47:17.0277 6300  ASProxy - ok
17:47:17.0284 6300  [ 5C31DFB196CB3A488A041881634D86D2 ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
17:47:17.0288 6300  AsSysCtrlService - ok
17:47:17.0290 6300  [ 1392B92179B07B672720763D9B1028A5 ] AsUpIO          C:\Windows\syswow64\drivers\AsUpIO.sys
17:47:17.0291 6300  AsUpIO - ok
17:47:17.0293 6300  [ 28ACE90CB457888AB4C664E4B0AA950D ] asvpndrv        C:\Windows\system32\DRIVERS\asvpndrv.sys
17:47:17.0294 6300  asvpndrv - ok
17:47:17.0295 6300  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:47:17.0302 6300  AsyncMac - ok
17:47:17.0304 6300  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
17:47:17.0311 6300  atapi - ok
17:47:17.0317 6300  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:47:17.0322 6300  AudioEndpointBuilder - ok
17:47:17.0328 6300  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:47:17.0331 6300  AudioSrv - ok
17:47:17.0335 6300  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:47:17.0336 6300  AxInstSV - ok
17:47:17.0338 6300  [ 18539C72E1353B74EFCA85BE4E2C722C ] AXMount         C:\Windows\system32\DRIVERS\AXMount.sys
17:47:17.0339 6300  AXMount - ok
17:47:17.0342 6300  [ 64894AF8D2D82FFDCAC9171422F3316E ] AXTrack         C:\Windows\system32\DRIVERS\AXTrack.sys
17:47:17.0342 6300  AXTrack - ok
17:47:17.0347 6300  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
17:47:17.0350 6300  b06bdrv - ok
17:47:17.0354 6300  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:47:17.0362 6300  b57nd60a - ok
17:47:17.0365 6300  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:47:17.0366 6300  BDESVC - ok
17:47:17.0368 6300  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:47:17.0369 6300  Beep - ok
17:47:17.0375 6300  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
17:47:17.0380 6300  BFE - ok
17:47:17.0388 6300  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
17:47:17.0395 6300  BITS - ok
17:47:17.0397 6300  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:47:17.0404 6300  blbdrive - ok
17:47:17.0409 6300  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:47:17.0412 6300  Bonjour Service - ok
17:47:17.0414 6300  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:47:17.0427 6300  bowser - ok
17:47:17.0429 6300  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
17:47:17.0430 6300  BrFiltLo - ok
17:47:17.0432 6300  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
17:47:17.0432 6300  BrFiltUp - ok
17:47:17.0435 6300  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
17:47:17.0442 6300  BridgeMP - ok
17:47:17.0445 6300  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
17:47:17.0446 6300  Browser - ok
17:47:17.0450 6300  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:47:17.0459 6300  Brserid - ok
17:47:17.0461 6300  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:47:17.0468 6300  BrSerWdm - ok
17:47:17.0470 6300  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:47:17.0476 6300  BrUsbMdm - ok
17:47:17.0478 6300  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:47:17.0479 6300  BrUsbSer - ok
17:47:17.0481 6300  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
17:47:17.0488 6300  BTHMODEM - ok
17:47:17.0491 6300  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
17:47:17.0492 6300  bthserv - ok
17:47:17.0494 6300  [ 09EE65938883C816851DF47B822B7AA5 ] BTOWSFF         C:\Windows\System32\Drivers\BTOWSFF.sys
17:47:17.0494 6300  BTOWSFF - ok
17:47:17.0497 6300  [ 97870ABA173813317EE4443C627339D1 ] BTOWSVF         C:\Windows\system32\Drivers\BTOWSVF.sys
17:47:17.0497 6300  BTOWSVF - ok
17:47:17.0498 6300  catchme - ok
17:47:17.0501 6300  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:47:17.0502 6300  cdfs - ok
17:47:17.0505 6300  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:47:17.0513 6300  cdrom - ok
17:47:17.0515 6300  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
17:47:17.0516 6300  CertPropSvc - ok
17:47:17.0534 6300  [ 213B6EC3DE19E35373A1906397588429 ] CGVPNCliSrvc    C:\Program Files\CyberGhost VPN\CGVPNCliService.exe
17:47:17.0550 6300  CGVPNCliSrvc - ok
17:47:17.0552 6300  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
17:47:17.0553 6300  circlass - ok
17:47:17.0557 6300  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
17:47:17.0560 6300  CLFS - ok
17:47:17.0564 6300  [ 4C6406CF07D4EBB70C5774D55C6688FB ] CLHNServiceForPowerDVD12 C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
17:47:17.0565 6300  CLHNServiceForPowerDVD12 - ok
17:47:17.0568 6300  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:47:17.0570 6300  clr_optimization_v2.0.50727_32 - ok
17:47:17.0573 6300  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:47:17.0575 6300  clr_optimization_v2.0.50727_64 - ok
17:47:17.0579 6300  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:47:17.0583 6300  clr_optimization_v4.0.30319_32 - ok
17:47:17.0588 6300  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:47:17.0591 6300  clr_optimization_v4.0.30319_64 - ok
17:47:17.0593 6300  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
17:47:17.0598 6300  CmBatt - ok
17:47:17.0600 6300  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:47:17.0607 6300  cmdide - ok
17:47:17.0612 6300  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
17:47:17.0614 6300  CNG - ok
17:47:17.0617 6300  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
17:47:17.0618 6300  Compbatt - ok
17:47:17.0620 6300  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
17:47:17.0621 6300  CompositeBus - ok
17:47:17.0622 6300  COMSysApp - ok
17:47:17.0659 6300  cpuz135 - ok
17:47:17.0661 6300  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
17:47:17.0662 6300  crcdisk - ok
17:47:17.0666 6300  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:47:17.0668 6300  CryptSvc - ok
17:47:17.0674 6300  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
17:47:17.0678 6300  CSC - ok
17:47:17.0685 6300  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
17:47:17.0689 6300  CscService - ok
17:47:17.0692 6300  [ BA8E5B2291C01EF71CA80E25F0C79D55 ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
17:47:17.0692 6300  ctxusbm - ok
17:47:17.0696 6300  [ EA22BCA708B37B82ADEBC822A171B92E ] CyberLink PowerDVD 12 Media Server Monitor Service C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
17:47:17.0697 6300  CyberLink PowerDVD 12 Media Server Monitor Service - ok
17:47:17.0700 6300  [ 3168D2F171A64590E7A11355CAE60A1E ] CyberLink PowerDVD 12 Media Server Service C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
17:47:17.0702 6300  CyberLink PowerDVD 12 Media Server Service - ok
17:47:17.0704 6300  [ C7259495924D21F1AFA26467D9F4DAE0 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
17:47:17.0705 6300  dc3d - ok
17:47:17.0711 6300  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:47:17.0715 6300  DcomLaunch - ok
17:47:17.0719 6300  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
17:47:17.0721 6300  defragsvc - ok
17:47:17.0746 6300  [ D17845A5385BFCB838CDC532AF5E3E47 ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
17:47:17.0770 6300  DevoloNetworkService - ok
17:47:17.0772 6300  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:47:17.0774 6300  DfsC - ok
17:47:17.0776 6300  [ B9430166FEB246F6070A62B3554932C9 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
17:47:17.0777 6300  dg_ssudbus - ok
17:47:17.0781 6300  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:47:17.0783 6300  Dhcp - ok
17:47:17.0785 6300  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
17:47:17.0785 6300  discache - ok
17:47:17.0788 6300  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
17:47:17.0795 6300  Disk - ok
17:47:17.0806 6300  [ 44B374802351FF58E243DDEFE870ACDC ] DisplayFusionService C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
17:47:17.0815 6300  DisplayFusionService - ok
17:47:17.0818 6300  [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
17:47:17.0819 6300  dmvsc - ok
17:47:17.0822 6300  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:47:17.0824 6300  Dnscache - ok
17:47:17.0828 6300  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:47:17.0830 6300  dot3svc - ok
17:47:17.0833 6300  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
17:47:17.0834 6300  DPS - ok
17:47:17.0835 6300  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:47:17.0836 6300  drmkaud - ok
17:47:17.0839 6300  [ FB9BEF3401EE5ECC2603311B9C64F44A ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:47:17.0841 6300  dtsoftbus01 - ok
17:47:17.0849 6300  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:47:17.0856 6300  DXGKrnl - ok
17:47:17.0860 6300  [ 6BAFD9819D9FEC2EDBAEBC8493C711A4 ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
17:47:17.0862 6300  e1cexpress - ok
17:47:17.0865 6300  [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD ] E1G60           C:\Windows\system32\DRIVERS\E1G6032E.sys
17:47:17.0873 6300  E1G60 - ok
17:47:17.0877 6300  [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
17:47:17.0878 6300  eamonm - ok
17:47:17.0880 6300  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
17:47:17.0882 6300  EapHost - ok
17:47:17.0906 6300  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
17:47:17.0934 6300  ebdrv - ok
17:47:17.0937 6300  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
17:47:17.0938 6300  EFS - ok
17:47:17.0941 6300  [ 9E39134330C18CBAC0F24C1283701D7E ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
17:47:17.0942 6300  ehdrv - ok
17:47:17.0949 6300  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:47:17.0954 6300  ehRecvr - ok
17:47:17.0957 6300  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
17:47:17.0958 6300  ehSched - ok
17:47:17.0969 6300  [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn            C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
17:47:17.0977 6300  ekrn - ok
17:47:17.0984 6300  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
17:47:17.0988 6300  elxstor - ok
17:47:17.0991 6300  [ B4E8DC817963B256537B1EC09AF0647E ] epfwwfpr        C:\Windows\system32\DRIVERS\epfwwfpr.sys
17:47:17.0991 6300  epfwwfpr - ok
17:47:17.0993 6300  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:47:18.0000 6300  ErrDev - ok
17:47:18.0003 6300  [ C33ACB897AF927D1C1BD84F211FAE75B ] ESLvnic1        C:\Windows\system32\DRIVERS\ESLvnic.sys
17:47:18.0004 6300  ESLvnic1 - ok
17:47:18.0007 6300  [ 62F261F12862EBD65B4E568E2660E221 ] ESLWireAC       C:\Windows\system32\drivers\ESLWireACD.sys
17:47:18.0008 6300  ESLWireAC - ok
17:47:18.0015 6300  [ 4FC6545A22D348E1B6DA15A27748B7FE ] EslWireHelper   C:\Program Files\EslWire\service\WireHelperSvc.exe
17:47:18.0020 6300  EslWireHelper - ok
17:47:18.0026 6300  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
17:47:18.0029 6300  EventSystem - ok
17:47:18.0032 6300  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
17:47:18.0034 6300  exfat - ok
17:47:18.0036 6300  Fabs - ok
17:47:18.0039 6300  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:47:18.0054 6300  fastfat - ok
17:47:18.0060 6300  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
17:47:18.0065 6300  Fax - ok
17:47:18.0068 6300  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
17:47:18.0080 6300  fdc - ok
17:47:18.0082 6300  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
17:47:18.0083 6300  fdPHost - ok
17:47:18.0085 6300  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:47:18.0086 6300  FDResPub - ok
17:47:18.0088 6300  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:47:18.0095 6300  FileInfo - ok
17:47:18.0097 6300  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:47:18.0105 6300  Filetrace - ok
17:47:18.0107 6300  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
17:47:18.0108 6300  flpydisk - ok
17:47:18.0112 6300  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:47:18.0126 6300  FltMgr - ok
17:47:18.0135 6300  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
17:47:18.0143 6300  FontCache - ok
17:47:18.0146 6300  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:47:18.0147 6300  FontCache3.0.0.0 - ok
17:47:18.0149 6300  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:47:18.0156 6300  FsDepends - ok
17:47:18.0158 6300  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:47:18.0164 6300  Fs_Rec - ok
17:47:18.0168 6300  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:47:18.0170 6300  fvevol - ok
17:47:18.0172 6300  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
17:47:18.0191 6300  gagp30kx - ok
17:47:18.0193 6300  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:47:18.0194 6300  GEARAspiWDM - ok
17:47:18.0201 6300  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
17:47:18.0206 6300  gpsvc - ok
17:47:18.0209 6300  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:47:18.0211 6300  gusvc - ok
17:47:18.0213 6300  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:47:18.0214 6300  hcw85cir - ok
17:47:18.0218 6300  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:47:18.0220 6300  HdAudAddService - ok
17:47:18.0223 6300  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:47:18.0224 6300  HDAudBus - ok
17:47:18.0226 6300  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
17:47:18.0238 6300  HidBatt - ok
17:47:18.0241 6300  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
17:47:18.0248 6300  HidBth - ok
17:47:18.0250 6300  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
17:47:18.0263 6300  HidIr - ok
17:47:18.0265 6300  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
17:47:18.0266 6300  hidserv - ok
17:47:18.0271 6300  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
17:47:18.0278 6300  HidUsb - ok
17:47:18.0281 6300  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:47:18.0282 6300  hkmsvc - ok
17:47:18.0285 6300  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:47:18.0287 6300  HomeGroupListener - ok
17:47:18.0290 6300  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:47:18.0292 6300  HomeGroupProvider - ok
17:47:18.0294 6300  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:47:18.0295 6300  HpSAMD - ok
17:47:18.0298 6300  [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64        C:\Windows\system32\Drivers\ANDROIDUSB.sys
17:47:18.0299 6300  HTCAND64 - ok
17:47:18.0301 6300  [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot        C:\Windows\system32\DRIVERS\htcnprot.sys
17:47:18.0302 6300  htcnprot - ok
17:47:18.0309 6300  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:47:18.0320 6300  HTTP - ok
17:47:18.0323 6300  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:47:18.0323 6300  hwpolicy - ok
17:47:18.0325 6300  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
17:47:18.0332 6300  i8042prt - ok
17:47:18.0338 6300  [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
17:47:18.0339 6300  iaStor - ok
17:47:18.0342 6300  [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
17:47:18.0342 6300  IAStorDataMgrSvc - ok
17:47:18.0347 6300  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:47:18.0349 6300  iaStorV - ok
17:47:18.0352 6300  [ C1010ADD3DDAE1196ED21057AF7B2AAE ] ICCWDT          C:\Windows\system32\DRIVERS\ICCWDT.sys
17:47:18.0352 6300  ICCWDT - ok
17:47:18.0360 6300  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:47:18.0366 6300  idsvc - ok
17:47:18.0369 6300  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
17:47:18.0369 6300  iirsp - ok
17:47:18.0377 6300  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
17:47:18.0383 6300  IKEEXT - ok
17:47:18.0405 6300  [ DAB7318CCFA8081200D5B7B486793F74 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:47:18.0423 6300  IntcAzAudAddService - ok
17:47:18.0426 6300  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
17:47:18.0426 6300  intelide - ok
17:47:18.0429 6300  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:47:18.0436 6300  intelppm - ok
17:47:18.0439 6300  [ 068EC06F3B6DD7B81B365D8FD2CE27E6 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
17:47:18.0440 6300  Intel® PROSet Monitoring Service - ok
17:47:18.0443 6300  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:47:18.0444 6300  IPBusEnum - ok
17:47:18.0446 6300  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:47:18.0447 6300  IpFilterDriver - ok
17:47:18.0453 6300  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:47:18.0457 6300  iphlpsvc - ok
17:47:18.0459 6300  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:47:18.0460 6300  IPMIDRV - ok
17:47:18.0463 6300  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:47:18.0471 6300  IPNAT - ok
17:47:18.0477 6300  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
17:47:18.0481 6300  iPod Service - ok
17:47:18.0483 6300  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:47:18.0484 6300  IRENUM - ok
17:47:18.0486 6300  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:47:18.0492 6300  isapnp - ok
17:47:18.0496 6300  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:47:18.0504 6300  iScsiPrt - ok
17:47:18.0506 6300  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:47:18.0506 6300  kbdclass - ok
17:47:18.0508 6300  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:47:18.0509 6300  kbdhid - ok
17:47:18.0511 6300  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
17:47:18.0511 6300  KeyIso - ok
17:47:18.0513 6300  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:47:18.0514 6300  KSecDD - ok
17:47:18.0517 6300  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:47:18.0517 6300  KSecPkg - ok
17:47:18.0519 6300  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:47:18.0526 6300  ksthunk - ok
17:47:18.0530 6300  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:47:18.0533 6300  KtmRm - ok
17:47:18.0537 6300  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
17:47:18.0539 6300  LanmanServer - ok
17:47:18.0541 6300  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:47:18.0543 6300  LanmanWorkstation - ok
17:47:18.0548 6300  [ 70FB6254E29150A7A4A39FDFFD306C33 ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
17:47:18.0551 6300  LBTServ - ok
17:47:18.0554 6300  [ A03B765FF67E58BA75333C7C8C0D7706 ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
17:47:18.0555 6300  LEqdUsb - ok
17:47:18.0557 6300  [ 389588725D419476F365370BED4FFE5A ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
17:47:18.0557 6300  LHidEqd - ok
17:47:18.0559 6300  [ 1470EF17E02E82E4F43346DF9E9F11E1 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:47:18.0560 6300  LHidFilt - ok
17:47:18.0562 6300  [ 02538E602280C07438C94489DCBE77D5 ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
17:47:18.0563 6300  libusb0 - ok
17:47:18.0565 6300  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:47:18.0572 6300  lltdio - ok
17:47:18.0576 6300  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:47:18.0578 6300  lltdsvc - ok
17:47:18.0580 6300  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:47:18.0581 6300  lmhosts - ok
17:47:18.0583 6300  [ 12814AE119E959437BEA3110F81BD188 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:47:18.0584 6300  LMouFilt - ok
17:47:18.0587 6300  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
17:47:18.0595 6300  LSI_FC - ok
17:47:18.0597 6300  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
17:47:18.0604 6300  LSI_SAS - ok
17:47:18.0606 6300  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
17:47:18.0613 6300  LSI_SAS2 - ok
17:47:18.0616 6300  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
17:47:18.0623 6300  LSI_SCSI - ok
17:47:18.0626 6300  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
17:47:18.0627 6300  luafv - ok
17:47:18.0629 6300  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
17:47:18.0629 6300  MBAMProtector - ok
17:47:18.0633 6300  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:47:18.0636 6300  MBAMScheduler - ok
17:47:18.0642 6300  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:47:18.0647 6300  MBAMService - ok
17:47:18.0650 6300  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:47:18.0651 6300  Mcx2Svc - ok
17:47:18.0653 6300  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
17:47:18.0665 6300  megasas - ok
17:47:18.0669 6300  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
17:47:18.0678 6300  MegaSR - ok
17:47:18.0681 6300  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
17:47:18.0681 6300  MEIx64 - ok
17:47:18.0684 6300  Microsoft SharePoint Workspace Audit Service - ok
17:47:18.0686 6300  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
17:47:18.0687 6300  MMCSS - ok
17:47:18.0689 6300  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
17:47:18.0690 6300  Modem - ok
17:47:18.0692 6300  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:47:18.0692 6300  monitor - ok
17:47:18.0694 6300  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:47:18.0695 6300  mouclass - ok
17:47:18.0697 6300  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:47:18.0698 6300  mouhid - ok
17:47:18.0700 6300  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:47:18.0700 6300  mountmgr - ok
17:47:18.0703 6300  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:47:18.0704 6300  MozillaMaintenance - ok
17:47:18.0707 6300  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:47:18.0710 6300  mpio - ok
17:47:18.0712 6300  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:47:18.0719 6300  mpsdrv - ok
17:47:18.0727 6300  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:47:18.0733 6300  MpsSvc - ok
17:47:18.0736 6300  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:47:18.0737 6300  MRxDAV - ok
17:47:18.0740 6300  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:47:18.0741 6300  mrxsmb - ok
17:47:18.0745 6300  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:47:18.0747 6300  mrxsmb10 - ok
17:47:18.0749 6300  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:47:18.0750 6300  mrxsmb20 - ok
17:47:18.0752 6300  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:47:18.0752 6300  msahci - ok
17:47:18.0755 6300  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:47:18.0762 6300  msdsm - ok
17:47:18.0765 6300  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
17:47:18.0767 6300  MSDTC - ok
17:47:18.0770 6300  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:47:18.0771 6300  Msfs - ok
17:47:18.0773 6300  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:47:18.0773 6300  mshidkmdf - ok
17:47:18.0775 6300  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:47:18.0782 6300  msisadrv - ok
17:47:18.0785 6300  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:47:18.0786 6300  MSiSCSI - ok
17:47:18.0788 6300  msiserver - ok
17:47:18.0790 6300  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:47:18.0790 6300  MSKSSRV - ok
17:47:18.0792 6300  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:47:18.0792 6300  MSPCLOCK - ok
17:47:18.0793 6300  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:47:18.0800 6300  MSPQM - ok
17:47:18.0805 6300  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:47:18.0808 6300  MsRPC - ok
17:47:18.0810 6300  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
17:47:18.0811 6300  mssmbios - ok
17:47:18.0813 6300  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:47:18.0813 6300  MSTEE - ok
17:47:18.0815 6300  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
17:47:18.0815 6300  MTConfig - ok
17:47:18.0818 6300  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
17:47:18.0825 6300  Mup - ok
17:47:18.0829 6300  [ 38B4C95E821528FB91DF16A78E04450F ] mv91xx          C:\Windows\system32\DRIVERS\mv91xx.sys
17:47:18.0830 6300  mv91xx - ok
17:47:18.0835 6300  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
17:47:18.0839 6300  napagent - ok
17:47:18.0843 6300  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:47:18.0858 6300  NativeWifiP - ok
17:47:18.0866 6300  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:47:18.0872 6300  NDIS - ok
17:47:18.0874 6300  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:47:18.0881 6300  NdisCap - ok
17:47:18.0883 6300  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:47:18.0884 6300  NdisTapi - ok
17:47:18.0886 6300  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:47:18.0887 6300  Ndisuio - ok
17:47:18.0890 6300  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:47:18.0897 6300  NdisWan - ok
17:47:18.0899 6300  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:47:18.0912 6300  NDProxy - ok
17:47:18.0914 6300  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:47:18.0921 6300  NetBIOS - ok
17:47:18.0925 6300  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:47:18.0933 6300  NetBT - ok
17:47:18.0935 6300  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
17:47:18.0935 6300  Netlogon - ok
17:47:18.0940 6300  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
17:47:18.0942 6300  Netman - ok
17:47:18.0945 6300  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:47:18.0946 6300  NetMsmqActivator - ok
17:47:18.0948 6300  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:47:18.0949 6300  NetPipeActivator - ok
17:47:18.0954 6300  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
17:47:18.0958 6300  netprofm - ok
17:47:18.0961 6300  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:47:18.0961 6300  NetTcpActivator - ok
17:47:18.0964 6300  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:47:18.0964 6300  NetTcpPortSharing - ok
17:47:18.0966 6300  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
17:47:18.0979 6300  nfrd960 - ok
17:47:18.0983 6300  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:47:18.0986 6300  NlaSvc - ok
17:47:18.0992 6300  [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc        C:\Windows\SysWOW64\nlssrv32.exe
17:47:18.0993 6300  nlsX86cc - ok
17:47:18.0995 6300  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:47:19.0003 6300  Npfs - ok
17:47:19.0005 6300  [ 49697C2C761ACB5C0DE99CC8FE93E95B ] NPF_devolo      C:\Windows\sysWOW64\drivers\npf_devolo.sys
17:47:19.0006 6300  NPF_devolo - ok
17:47:19.0008 6300  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
17:47:19.0009 6300  nsi - ok
17:47:19.0010 6300  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:47:19.0011 6300  nsiproxy - ok
17:47:19.0026 6300  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:47:19.0038 6300  Ntfs - ok
17:47:19.0042 6300  [ EAAC965642EF5F818AED508CADF83E4B ] ntk_PowerDVD12  C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys
17:47:19.0043 6300  ntk_PowerDVD12 - ok
17:47:19.0045 6300  [ 317020D31F1696334679B9D0416EB62E ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
17:47:19.0046 6300  NuidFltr - ok
17:47:19.0048 6300  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
17:47:19.0054 6300  Null - ok
17:47:19.0057 6300  [ E20ABD5B229760158F753CA90B97E090 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
17:47:19.0058 6300  NVHDA - ok
17:47:19.0193 6300  [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:47:19.0317 6300  nvlddmkm - ok
17:47:19.0321 6300  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:47:19.0323 6300  nvraid - ok
17:47:19.0325 6300  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:47:19.0326 6300  nvstor - ok
17:47:19.0335 6300  [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc           C:\Windows\system32\nvvsvc.exe
17:47:19.0343 6300  nvsvc - ok
17:47:19.0354 6300  [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:47:19.0364 6300  nvUpdatusService - ok
17:47:19.0367 6300  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:47:19.0374 6300  nv_agp - ok
17:47:19.0376 6300  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:47:19.0383 6300  ohci1394 - ok
17:47:19.0410 6300  [ 2E71117CE9F783A7F3EB763E23DADE61 ] OODefragAgent   C:\Program Files\OO Software\Defrag\oodag.exe
17:47:19.0434 6300  OODefragAgent - ok
17:47:19.0494 6300  [ EC322186D8FCE3D632F3F597D67747DD ] OpenVPNService  E:\OpenVPN\bin\openvpnserv.exe
17:47:19.0495 6300  OpenVPNService - ok
17:47:19.0500 6300  [ 4965B005492CBA7719E82B71E3245495 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:47:19.0503 6300  ose64 - ok
17:47:19.0562 6300  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:47:19.0597 6300  osppsvc - ok
17:47:19.0603 6300  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:47:19.0606 6300  p2pimsvc - ok
17:47:19.0610 6300  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
17:47:19.0614 6300  p2psvc - ok
17:47:19.0617 6300  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
17:47:19.0617 6300  Parport - ok
17:47:19.0619 6300  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:47:19.0620 6300  partmgr - ok
17:47:19.0622 6300  [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
17:47:19.0623 6300  PassThru Service - ok
17:47:19.0626 6300  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:47:19.0628 6300  PcaSvc - ok
17:47:19.0631 6300  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
17:47:19.0632 6300  pci - ok
17:47:19.0634 6300  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
17:47:19.0640 6300  pciide - ok
17:47:19.0644 6300  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
17:47:19.0652 6300  pcmcia - ok
17:47:19.0654 6300  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:47:19.0654 6300  pcw - ok
17:47:19.0661 6300  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:47:19.0672 6300  PEAUTH - ok
17:47:19.0684 6300  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
17:47:19.0694 6300  PeerDistSvc - ok
17:47:19.0697 6300  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:47:19.0699 6300  PerfHost - ok
17:47:19.0713 6300  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
17:47:19.0723 6300  pla - ok
17:47:19.0728 6300  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:47:19.0731 6300  PlugPlay - ok
17:47:19.0733 6300  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:47:19.0734 6300  PNRPAutoReg - ok
17:47:19.0738 6300  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:47:19.0740 6300  PNRPsvc - ok
17:47:19.0742 6300  [ 33328FA8A580885AB0065BE6DB266E9F ] Point64         C:\Windows\system32\DRIVERS\point64.sys
17:47:19.0742 6300  Point64 - ok
17:47:19.0747 6300  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:47:19.0751 6300  PolicyAgent - ok
17:47:19.0755 6300  postgresql-8.4 - ok
17:47:19.0757 6300  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
17:47:19.0759 6300  Power - ok
17:47:19.0762 6300  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:47:19.0781 6300  PptpMiniport - ok
17:47:19.0783 6300  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
17:47:19.0790 6300  Processor - ok
17:47:19.0793 6300  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:47:19.0795 6300  ProfSvc - ok
17:47:19.0797 6300  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:47:19.0797 6300  ProtectedStorage - ok
17:47:19.0800 6300  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:47:19.0801 6300  Psched - ok
17:47:19.0805 6300  [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
17:47:19.0807 6300  PSI_SVC_2 - ok
17:47:19.0809 6300  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
17:47:19.0810 6300  PxHlpa64 - ok
17:47:19.0822 6300  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
17:47:19.0834 6300  ql2300 - ok
17:47:19.0836 6300  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
17:47:19.0838 6300  ql40xx - ok
17:47:19.0841 6300  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
17:47:19.0843 6300  QWAVE - ok
17:47:19.0845 6300  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:47:19.0852 6300  QWAVEdrv - ok
17:47:19.0854 6300  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:47:19.0861 6300  RasAcd - ok
17:47:19.0863 6300  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:47:19.0864 6300  RasAgileVpn - ok
17:47:19.0867 6300  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
17:47:19.0868 6300  RasAuto - ok
17:47:19.0871 6300  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:47:19.0871 6300  Rasl2tp - ok
17:47:19.0875 6300  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
17:47:19.0878 6300  RasMan - ok
17:47:19.0881 6300  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:47:19.0882 6300  RasPppoe - ok
17:47:19.0884 6300  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:47:19.0891 6300  RasSstp - ok
17:47:19.0894 6300  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:47:19.0897 6300  rdbss - ok
17:47:19.0899 6300  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
17:47:19.0912 6300  rdpbus - ok
17:47:19.0913 6300  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:47:19.0914 6300  RDPCDD - ok
17:47:19.0918 6300  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
17:47:19.0931 6300  RDPDR - ok
17:47:19.0933 6300  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:47:19.0934 6300  RDPENCDD - ok
17:47:19.0936 6300  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:47:19.0937 6300  RDPREFMP - ok
17:47:19.0939 6300  [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:47:19.0946 6300  RdpVideoMiniport - ok
17:47:19.0949 6300  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:47:19.0950 6300  RDPWD - ok
17:47:19.0953 6300  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:47:19.0955 6300  rdyboost - ok
17:47:19.0957 6300  [ 84C83C7577407C4FF6AB1379EE944610 ] regi            C:\Windows\system32\drivers\regi.sys
17:47:19.0958 6300  regi - ok
17:47:19.0960 6300  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:47:19.0983 6300  RemoteAccess - ok
17:47:19.0986 6300  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:47:19.0988 6300  RemoteRegistry - ok
17:47:19.0990 6300  [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
17:47:19.0990 6300  Revoflt - ok
17:47:19.0992 6300  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:47:19.0994 6300  RpcEptMapper - ok
17:47:19.0995 6300  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
17:47:19.0996 6300  RpcLocator - ok
17:47:20.0001 6300  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
17:47:20.0004 6300  RpcSs - ok
17:47:20.0006 6300  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:47:20.0013 6300  rspndr - ok
17:47:20.0015 6300  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
17:47:20.0016 6300  s3cap - ok
17:47:20.0017 6300  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
17:47:20.0018 6300  SamSs - ok
17:47:20.0020 6300  SASDIFSV - ok
17:47:20.0022 6300  SASKUTIL - ok
17:47:20.0026 6300  [ CCBF62280DAF6D94A4C73E391CDAC68C ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys
17:47:20.0027 6300  SbieDrv - ok
17:47:20.0030 6300  [ 8A1F63C6EC01C56C9EC4C681E593FE34 ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe
17:47:20.0031 6300  SbieSvc - ok
17:47:20.0034 6300  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:47:20.0041 6300  sbp2port - ok
17:47:20.0044 6300  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:47:20.0046 6300  SCardSvr - ok
17:47:20.0048 6300  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:47:20.0054 6300  scfilter - ok
17:47:20.0064 6300  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
17:47:20.0072 6300  Schedule - ok
17:47:20.0075 6300  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:47:20.0075 6300  SCPolicySvc - ok
17:47:20.0078 6300  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:47:20.0080 6300  SDRSVC - ok
17:47:20.0082 6300  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:47:20.0089 6300  secdrv - ok
17:47:20.0091 6300  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
17:47:20.0093 6300  seclogon - ok
17:47:20.0095 6300  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
17:47:20.0096 6300  SENS - ok
17:47:20.0098 6300  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:47:20.0100 6300  SensrSvc - ok
17:47:20.0102 6300  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:47:20.0108 6300  Serenum - ok
17:47:20.0111 6300  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:47:20.0134 6300  Serial - ok
17:47:20.0136 6300  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
17:47:20.0143 6300  sermouse - ok
17:47:20.0148 6300  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:47:20.0149 6300  SessionEnv - ok
17:47:20.0151 6300  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:47:20.0158 6300  sffdisk - ok
17:47:20.0159 6300  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:47:20.0166 6300  sffp_mmc - ok
17:47:20.0168 6300  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:47:20.0169 6300  sffp_sd - ok
17:47:20.0171 6300  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
17:47:20.0177 6300  sfloppy - ok
17:47:20.0181 6300  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:47:20.0184 6300  SharedAccess - ok
17:47:20.0189 6300  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:47:20.0192 6300  ShellHWDetection - ok
17:47:20.0194 6300  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
17:47:20.0207 6300  SiSRaid2 - ok
17:47:20.0209 6300  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
17:47:20.0216 6300  SiSRaid4 - ok
17:47:20.0220 6300  [ F2B755D3835089590E8113F48AA931F7 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
17:47:20.0221 6300  SkypeUpdate - ok
17:47:20.0223 6300  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:47:20.0224 6300  Smb - ok
17:47:20.0227 6300  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:47:20.0228 6300  SNMPTRAP - ok
17:47:20.0230 6300  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:47:20.0237 6300  spldr - ok
17:47:20.0242 6300  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
17:47:20.0247 6300  Spooler - ok
17:47:20.0275 6300  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
17:47:20.0301 6300  sppsvc - ok
17:47:20.0304 6300  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:47:20.0305 6300  sppuinotify - ok
17:47:20.0308 6300  [ 1D437579B9E02829011BE00E482C63A0 ] Spyder4         C:\Windows\system32\DRIVERS\dccmtr.sys
17:47:20.0308 6300  Spyder4 - ok
17:47:20.0313 6300  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:47:20.0317 6300  srv - ok
17:47:20.0322 6300  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:47:20.0331 6300  srv2 - ok
17:47:20.0334 6300  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:47:20.0336 6300  srvnet - ok
17:47:20.0339 6300  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:47:20.0341 6300  SSDPSRV - ok
17:47:20.0343 6300  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:47:20.0345 6300  SstpSvc - ok
17:47:20.0348 6300  [ C692C94FE55CAD0633440236022C27B3 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
17:47:20.0349 6300  ssudmdm - ok
17:47:20.0354 6300  [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:47:20.0356 6300  Stereo Service - ok
17:47:20.0358 6300  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
17:47:20.0359 6300  stexstor - ok
17:47:20.0365 6300  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
17:47:20.0370 6300  stisvc - ok
17:47:20.0372 6300  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
17:47:20.0373 6300  storflt - ok
17:47:20.0375 6300  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
17:47:20.0376 6300  StorSvc - ok
17:47:20.0378 6300  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
17:47:20.0385 6300  storvsc - ok
17:47:20.0387 6300  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
17:47:20.0394 6300  swenum - ok
17:47:20.0399 6300  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
17:47:20.0404 6300  swprv - ok
17:47:20.0406 6300  [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc      C:\Windows\system32\drivers\Synth3dVsc.sys
17:47:20.0413 6300  Synth3dVsc - ok
17:47:20.0428 6300  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
17:47:20.0441 6300  SysMain - ok
17:47:20.0443 6300  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:47:20.0445 6300  TabletInputService - ok
17:47:20.0447 6300  [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
17:47:20.0448 6300  tap0901 - ok
17:47:20.0452 6300  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:47:20.0454 6300  TapiSrv - ok
17:47:20.0457 6300  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
17:47:20.0458 6300  TBS - ok
17:47:20.0472 6300  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:47:20.0483 6300  Tcpip - ok
17:47:20.0497 6300  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:47:20.0503 6300  TCPIP6 - ok
17:47:20.0506 6300  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:47:20.0506 6300  tcpipreg - ok
17:47:20.0509 6300  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:47:20.0516 6300  TDPIPE - ok
17:47:20.0518 6300  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:47:20.0518 6300  TDTCP - ok
17:47:20.0521 6300  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:47:20.0528 6300  tdx - ok
17:47:20.0560 6300  [ 402794A75A899E296AB3EDEC4ECCB9A8 ] TeamViewer8     C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
17:47:20.0585 6300  TeamViewer8 - ok
17:47:20.0588 6300  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
17:47:20.0588 6300  TermDD - ok
17:47:20.0590 6300  [ 2B5BDFF688EC9871D7EC5837833374E9 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
17:47:20.0597 6300  terminpt - ok
17:47:20.0604 6300  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
17:47:20.0609 6300  TermService - ok
17:47:20.0612 6300  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
17:47:20.0613 6300  Themes - ok
17:47:20.0615 6300  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
17:47:20.0616 6300  THREADORDER - ok
17:47:20.0619 6300  [ D565E692B747F9D8424F93CD82AB1BDA ] TotRec8         C:\Windows\system32\drivers\TotRec8.sys
17:47:20.0620 6300  TotRec8 - ok
17:47:20.0622 6300  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
17:47:20.0624 6300  TrkWks - ok
17:47:20.0627 6300  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:47:20.0629 6300  TrustedInstaller - ok
17:47:20.0632 6300  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:47:20.0633 6300  tssecsrv - ok
17:47:20.0634 6300  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:47:20.0648 6300  TsUsbFlt - ok
17:47:20.0650 6300  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
17:47:20.0650 6300  TsUsbGD - ok
17:47:20.0653 6300  [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
17:47:20.0660 6300  tsusbhub - ok
17:47:20.0663 6300  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:47:20.0670 6300  tunnel - ok
17:47:20.0672 6300  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
17:47:20.0673 6300  uagp35 - ok
17:47:20.0677 6300  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:47:20.0679 6300  udfs - ok
17:47:20.0683 6300  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:47:20.0684 6300  UI0Detect - ok
17:47:20.0686 6300  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:47:20.0694 6300  uliagpkx - ok
17:47:20.0696 6300  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
17:47:20.0696 6300  umbus - ok
17:47:20.0698 6300  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
17:47:20.0704 6300  UmPass - ok
17:47:20.0707 6300  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
17:47:20.0709 6300  UmRdpService - ok
17:47:20.0714 6300  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
17:47:20.0717 6300  upnphost - ok
17:47:20.0720 6300  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
17:47:20.0720 6300  USBAAPL64 - ok
17:47:20.0723 6300  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:47:20.0723 6300  usbccgp - ok
17:47:20.0726 6300  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:47:20.0727 6300  usbcir - ok
17:47:20.0729 6300  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
17:47:20.0729 6300  usbehci - ok
17:47:20.0734 6300  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:47:20.0736 6300  usbhub - ok
17:47:20.0738 6300  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:47:20.0738 6300  usbohci - ok
17:47:20.0740 6300  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:47:20.0747 6300  usbprint - ok
17:47:20.0749 6300  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
17:47:20.0750 6300  usbscan - ok
17:47:20.0752 6300  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:47:20.0752 6300  USBSTOR - ok
17:47:20.0754 6300  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:47:20.0755 6300  usbuhci - ok
17:47:20.0757 6300  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
17:47:20.0758 6300  UxSms - ok
17:47:20.0760 6300  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
17:47:20.0761 6300  VaultSvc - ok
17:47:20.0763 6300  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:47:20.0776 6300  vdrvroot - ok
17:47:20.0782 6300  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
17:47:20.0786 6300  vds - ok
17:47:20.0788 6300  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:47:20.0789 6300  vga - ok
17:47:20.0790 6300  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:47:20.0797 6300  VgaSave - ok
17:47:20.0799 6300  VGPU - ok
17:47:20.0802 6300  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:47:20.0811 6300  vhdmp - ok
17:47:20.0813 6300  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:47:20.0813 6300  viaide - ok
17:47:20.0816 6300  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
17:47:20.0840 6300  vmbus - ok
17:47:20.0842 6300  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
17:47:20.0849 6300  VMBusHID - ok
17:47:20.0851 6300  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:47:20.0864 6300  volmgr - ok
17:47:20.0868 6300  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:47:20.0870 6300  volmgrx - ok
17:47:20.0874 6300  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:47:20.0885 6300  volsnap - ok
17:47:20.0888 6300  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
17:47:20.0896 6300  vsmraid - ok
17:47:20.0908 6300  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
17:47:20.0920 6300  VSS - ok
17:47:20.0922 6300  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
17:47:20.0929 6300  vwifibus - ok
17:47:20.0933 6300  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
17:47:20.0937 6300  W32Time - ok
17:47:20.0940 6300  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
17:47:20.0941 6300  WacomPen - ok
17:47:20.0943 6300  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:47:20.0950 6300  WANARP - ok
17:47:20.0952 6300  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:47:20.0953 6300  Wanarpv6 - ok
17:47:20.0964 6300  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:47:20.0973 6300  WatAdminSvc - ok
17:47:20.0986 6300  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
17:47:20.0998 6300  wbengine - ok
17:47:21.0001 6300  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:47:21.0004 6300  WbioSrvc - ok
17:47:21.0009 6300  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:47:21.0013 6300  wcncsvc - ok
17:47:21.0015 6300  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:47:21.0016 6300  WcsPlugInService - ok
17:47:21.0018 6300  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
17:47:21.0019 6300  Wd - ok
17:47:21.0027 6300  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:47:21.0032 6300  Wdf01000 - ok
17:47:21.0034 6300  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:47:21.0036 6300  WdiServiceHost - ok
17:47:21.0038 6300  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:47:21.0039 6300  WdiSystemHost - ok
17:47:21.0042 6300  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
17:47:21.0044 6300  WebClient - ok
17:47:21.0048 6300  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:47:21.0050 6300  Wecsvc - ok
17:47:21.0053 6300  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:47:21.0054 6300  wercplsupport - ok
17:47:21.0056 6300  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:47:21.0058 6300  WerSvc - ok
17:47:21.0060 6300  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:47:21.0067 6300  WfpLwf - ok
17:47:21.0068 6300  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:47:21.0075 6300  WIMMount - ok
17:47:21.0077 6300  WinDefend - ok
17:47:21.0080 6300  WinHttpAutoProxySvc - ok
17:47:21.0086 6300  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:47:21.0088 6300  Winmgmt - ok
17:47:21.0103 6300  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
17:47:21.0116 6300  WinRM - ok
17:47:21.0121 6300  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
17:47:21.0127 6300  WinUsb - ok
17:47:21.0135 6300  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:47:21.0142 6300  Wlansvc - ok
17:47:21.0144 6300  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
17:47:21.0151 6300  WmiAcpi - ok
17:47:21.0155 6300  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:47:21.0156 6300  wmiApSrv - ok
17:47:21.0158 6300  WMPNetworkSvc - ok
17:47:21.0160 6300  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:47:21.0162 6300  WPCSvc - ok
17:47:21.0164 6300  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:47:21.0166 6300  WPDBusEnum - ok
17:47:21.0168 6300  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:47:21.0168 6300  ws2ifsl - ok
17:47:21.0170 6300  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
17:47:21.0171 6300  wscsvc - ok
17:47:21.0173 6300  WSearch - ok
17:47:21.0195 6300  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:47:21.0213 6300  wuauserv - ok
17:47:21.0216 6300  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:47:21.0217 6300  WudfPf - ok
17:47:21.0221 6300  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:47:21.0223 6300  WUDFRd - ok
17:47:21.0225 6300  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:47:21.0226 6300  wudfsvc - ok
17:47:21.0230 6300  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:47:21.0233 6300  WwanSvc - ok
17:47:21.0239 6300  [ 74983ADDCA2D9618512C088D856D6615 ] {329F96B6-DF1E-4328-BFDA-39EA953C1312} C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl
17:47:21.0240 6300  {329F96B6-DF1E-4328-BFDA-39EA953C1312} - ok
17:47:21.0244 6300  ================ Scan global ===============================
17:47:21.0245 6300  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:47:21.0249 6300  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:47:21.0255 6300  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:47:21.0257 6300  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:47:21.0262 6300  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:47:21.0264 6300  [Global] - ok
17:47:21.0264 6300  ================ Scan MBR ==================================
17:47:21.0265 6300  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:47:21.0302 6300  \Device\Harddisk1\DR1 - ok
17:47:21.0304 6300  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
17:47:21.0311 6300  \Device\Harddisk2\DR2 - ok
17:47:21.0315 6300  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:47:21.0462 6300  \Device\Harddisk0\DR0 - ok
17:47:21.0477 6300  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3
17:47:21.0607 6300  \Device\Harddisk3\DR3 - ok
17:47:21.0607 6300  ================ Scan VBR ==================================
17:47:21.0610 6300  [ CB100811A953C0AD951B1617426CE563 ] \Device\Harddisk1\DR1\Partition1
17:47:21.0611 6300  \Device\Harddisk1\DR1\Partition1 - ok
17:47:21.0614 6300  [ 4459FECCCB3F3BD3B8D3E554896840F0 ] \Device\Harddisk2\DR2\Partition1
17:47:21.0616 6300  \Device\Harddisk2\DR2\Partition1 - ok
17:47:21.0619 6300  [ AE467B0D8A66B08EA60A2572DCE24443 ] \Device\Harddisk0\DR0\Partition1
17:47:21.0620 6300  \Device\Harddisk0\DR0\Partition1 - ok
17:47:21.0623 6300  [ 7364A935B804DD3907749B0DE645EECE ] \Device\Harddisk0\DR0\Partition2
17:47:21.0624 6300  \Device\Harddisk0\DR0\Partition2 - ok
17:47:21.0628 6300  [ 8BA3EE59718B561ADAA39B64E329AAD6 ] \Device\Harddisk3\DR3\Partition1
17:47:21.0631 6300  \Device\Harddisk3\DR3\Partition1 - ok
17:47:21.0631 6300  ============================================================
17:47:21.0631 6300  Scan finished
17:47:21.0631 6300  ============================================================
17:47:21.0638 1656  Detected object count: 0
17:47:21.0638 1656  Actual detected object count: 0

ESET:

C:\ProgramData\Ask\APN-Stub\FF\APNIC.dll	a variant of Win32/Bundled.Toolbar.Ask application




#4 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:08 PM

Posted 28 July 2013 - 12:14 PM

 Please download and scan with the Kaspersky Virus Removal Tool from one of the following links and save it to your desktop.

Be sure to print out and read the instructions provided in:

  • Double-click the setup file (i.e. setup_11.0.0.1245x11_2012_18-23_13_03.exe) to install the utility.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • If you receive a UAC prompt asking if you would like to continue running the program, you should press the Continue button.
  • The required files will be exracted and installed...be patient as this will take a few minutes.
  • At the 'Welcome!' windows, check the box next to I accept the license agreement and click Start.
  • A new window will open with two tabs (Automatic Scan and Manual Disinfection) and two icons on the right.
  • For a more comprehensive (but longer) scan, click the icon which looks like a round gear, Click Scan Scope and place a check mark in the box next to Local Disk (C:).
    System memory, Hidden Startups and Disk boot sector boxes should already be checked by default.
  • Click on the 'Automatic Scan' tab, and click the green Start scanning button to begin.
  • The time to finish and percentage completed will show as the scan is in progress...Important! Do not use the computer during the scan.
  • If no threats are detected, exit the program.
  • If threats are detected, you will be prompted for action: Disinfect, Delete if disinfection failes.
  • Place a checkmark in the Apply to all box, and click Disinfect if the button is active.
  • After the scan finishes, if any threats are left unneutralized in the Scan window (Red exclamation point), click the Neutralize allbutton.
  • Place a checkmark in the Apply to all box, and click Disinfect if the button is active.
  • If advised that a special disinfection procedure is required which demands system reboot, click the Ok button to close the window.
  • When finished, click the rectanular notepad icon > select Detected threats > click on to highlight and click the Save icon to save the results as a text file...name it avptool.txt).
  • Copy and paste the report results of avptool.txt with any threats detected in your next reply.
  • When finished, follow these instructions on How to uninstall Kaspersky Virus Removal Tool.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#5 Jayymes

Jayymes
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:08 PM

Posted 28 July 2013 - 02:15 PM

No threats found in Kapsersky

kPDfV.jpg


Edited by Jayymes, 28 July 2013 - 02:16 PM.


#6 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:08 PM

Posted 29 July 2013 - 02:06 AM

Sometimes malware is good in hidden itselfs so I would suggest you post a DSS-log into the forum Virus, Trojan, Spyware, and Malware Removal Logs.

 

:step1: Read this topic: http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/

 

:step2: Post a new topic with the DSS-log http://www.bleepingcomputer.com/forums/f/22/virus-trojan-spyware-and-malware-removal-logs/

 

:step3: An Malware expert will help you there. 


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users