Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Laptop slowing down


  • Please log in to reply
19 replies to this topic

#1 Cbarrett

Cbarrett

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 02:21 AM

Today I noticed that my laptop has slowed down considerably while on facebook and while running games. For example, I was running the game Sleeping Dogs on steam perfectly fine yesterday, but today I get FPS lag right after the game loads. The laptop has also been taking longer to start up and overall has felt rather sluggish. I am currently doing a full scan with malware bytes and at 23 Minutes and almost 70,000 files scanned I currently have 17 "Objects Detected". 

If viruses are causing the slow-down, I was hoping the fine people of BleepingComputer.com could aid me. 

Thanks!

 

-Cbarrett



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:26 PM

Posted 07 August 2013 - 03:45 AM

:welcome:

 

Let's have a look..

 

:step1:   Post the log of MBAM.

 

:step2:    Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step2:  ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 03:55 AM

Malware Bytes Log:

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.08.07.02
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
CBARRETT :: MICHAEL-PC [administrator]
 
8/7/2013 2:52:58 AM
Malwarebytes Log.txt
 
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 500143
Time elapsed: 1 hour(s), 47 minute(s), 3 second(s)
 
Memory Processes Detected: 2
C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe (PUP.Optional.SearchProtect.A) -> 1352 -> No action taken.
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\bin\cltmng.exe (PUP.Optional.ConduitSearchProtect) -> 4740 -> No action taken.
 
Memory Modules Detected: 2
C:\Program Files (x86)\SearchProtect\bin\msvcp100.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\msvcr100.dll (PUP.Optional.SearchProtect.A) -> No action taken.
 
Registry Keys Detected: 13
HKCR\CLSID\{11111111-1111-1111-1111-110211621178} (PUP.Optional.Crossrider) -> No action taken.
HKCR\TypeLib\{44444444-4444-4444-4444-440244624478} (PUP.Optional.Crossrider) -> No action taken.
HKCR\Interface\{55555555-5555-5555-5555-550255625578} (PUP.Optional.Crossrider) -> No action taken.
HKCR\CrossriderApp0026278.BHO.1 (PUP.Optional.Crossrider) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110211621178} (PUP.Optional.Crossrider) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110211621178} (PUP.Optional.Crossrider) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110211621178} (PUP.Optional.Crossrider) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211621178} (PUP.Optional.Crossrider) -> No action taken.
HKCR\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB} (PUP.Optional.WeCare.A) -> No action taken.
HKCR\CrossriderApp0026278.BHO (PUP.Optional.Crossrider) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Solid Savings (PUP.Optional.SolidSavings.A) -> No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc (PUP.Optional.SearchProtect.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect (PUP.Optional.SearchProtect.A) -> No action taken.
 
Registry Values Detected: 2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SearchProtectAll (PUP.Optional.SearchProtect.A) -> Data: C:\Program Files (x86)\SearchProtect\bin\cltmng.exe -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SearchProtect (PUP.Optional.ConduitSearchProtect) -> Data: C:\Users\CBARRETT\AppData\Roaming\SearchProtect\bin\cltmng.exe -> No action taken.
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 10
C:\Program Files (x86)\Solid Savings (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\lib (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\images (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spsd (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spsd\images (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\ffprotect (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Users\CBARRETT\AppData\Local\Updater26278 (PUP.Optional.SolidSavings.A) -> No action taken.
 
Files Detected: 53
C:\Program Files (x86)\Solid Savings\Solid Savings-bho.dll (PUP.Optional.Crossrider) -> No action taken.
C:\Program Files (x86)\MixiDJ_V30\MixiDJ_V30ToolbarHelper.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Program Files (x86)\MixiDJ_V30\MixiDJ_V30ToolbarHelper1.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Solid Savings-bg.exe (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Solid Savings-buttonutil.exe (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Solid Savings-buttonutil64.exe (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Solid Savings-codedownloader.exe (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Users\CBARRETT\AppData\Local\Conduit\CT3298566\MixiDJ_V30AutoUpdateHelper.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\CBARRETT\AppData\Local\Updater26278\Updater26278.exe (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Users\CBARRETT\Downloads\foobar2000_Setup (1).exe (PUP.Optional.Ibryte) -> No action taken.
C:\Users\CBARRETT\Downloads\foobar2000_Setup.exe (PUP.Optional.Ibryte) -> No action taken.
C:\Users\CBARRETT\Downloads\Setup.exe (PUP.Optional.Ibryte) -> No action taken.
C:\Users\CBARRETT\Downloads\SoftonicDownloader_for_mkv-player.exe (PUP.Optional.Softonic) -> No action taken.
C:\Users\CBARRETT\Downloads\SoftonicDownloader_for_swf-player.exe (PUP.Optional.Softonic) -> No action taken.
C:\Program Files (x86)\Solid Savings\background.html (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Installer.log (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Solid Savings-buttonutil.dll (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Solid Savings-buttonutil64.dll (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Solid Savings-helper.exe (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Solid Savings.ico (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\Solid Savings\Uninstall.exe (PUP.Optional.SolidSavings.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\FirefoxModule.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\ChromeModule.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\cltmng.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\InternetExplorerModule.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\msvcp100.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\msvcr100.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\rep.dat (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\SPHook32.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\SPRunner.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\bin\uninstall.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\dialogsApi.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\lib\jquery.min.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\lib\json2.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\bubble.css (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\bubble.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\main.html (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\images\information.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\images\x-default-LTR.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\images\x-default-RTL.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\images\x-mouseover-LTR.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spbd\images\x-mouseover-RTL.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spsd\main.html (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spsd\SearchProtector.css (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spsd\settings.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spsd\images\ok-button.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spsd\images\separation-line.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\Dialogs\spsd\images\warning.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\ffprotect\nsprotector.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\ffprotect\abstraction.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Program Files (x86)\SearchProtect\ffprotect\application.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\bin\cltmng.exe (PUP.Optional.ConduitSearchProtect) -> No action taken.
 
(end)


#4 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 03:56 AM

TDSS Log:

04:53:32.0041 3996  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
04:53:32.0467 3996  ============================================================
04:53:32.0468 3996  Current date / time: 2013/08/07 04:53:32.0467
04:53:32.0468 3996  SystemInfo:
04:53:32.0468 3996  
04:53:32.0468 3996  OS Version: 6.1.7601 ServicePack: 1.0
04:53:32.0468 3996  Product type: Workstation
04:53:32.0468 3996  ComputerName: MICHAEL-PC
04:53:32.0469 3996  UserName: CBARRETT
04:53:32.0469 3996  Windows directory: C:\Windows
04:53:32.0469 3996  System windows directory: C:\Windows
04:53:32.0469 3996  Running under WOW64
04:53:32.0469 3996  Processor architecture: Intel x64
04:53:32.0469 3996  Number of processors: 8
04:53:32.0469 3996  Page size: 0x1000
04:53:32.0469 3996  Boot type: Normal boot
04:53:32.0469 3996  ============================================================
04:53:34.0038 3996  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:53:34.0062 3996  ============================================================
04:53:34.0062 3996  \Device\Harddisk0\DR0:
04:53:34.0063 3996  MBR partitions:
04:53:34.0063 3996  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x1749C000
04:53:34.0076 3996  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A69D000, BlocksNum 0x1FCE8800
04:53:34.0076 3996  ============================================================
04:53:34.0104 3996  C: <-> \Device\Harddisk0\DR0\Partition1
04:53:34.0132 3996  D: <-> \Device\Harddisk0\DR0\Partition2
04:53:34.0132 3996  ============================================================
04:53:34.0132 3996  Initialize success
04:53:34.0133 3996  ============================================================
04:53:54.0880 6296  ============================================================
04:53:54.0880 6296  Scan started
04:53:54.0880 6296  Mode: Manual; TDLFS; 
04:53:54.0880 6296  ============================================================
04:53:55.0858 6296  ================ Scan system memory ========================
04:53:55.0858 6296  System memory - ok
04:53:55.0859 6296  ================ Scan services =============================
04:53:56.0015 6296  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
04:53:56.0022 6296  1394ohci - ok
04:53:56.0047 6296  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
04:53:56.0057 6296  ACPI - ok
04:53:56.0076 6296  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
04:53:56.0079 6296  AcpiPmi - ok
04:53:56.0115 6296  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
04:53:56.0129 6296  adp94xx - ok
04:53:56.0153 6296  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
04:53:56.0163 6296  adpahci - ok
04:53:56.0185 6296  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
04:53:56.0192 6296  adpu320 - ok
04:53:56.0227 6296  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
04:53:56.0231 6296  AeLookupSvc - ok
04:53:56.0273 6296  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
04:53:56.0286 6296  AFD - ok
04:53:56.0302 6296  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
04:53:56.0305 6296  agp440 - ok
04:53:56.0333 6296  [ 16F6F6B7903B913AB41AB848C8BB5658 ] AiCharger       C:\Windows\system32\DRIVERS\AiCharger.sys
04:53:56.0336 6296  AiCharger - ok
04:53:56.0353 6296  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
04:53:56.0358 6296  ALG - ok
04:53:56.0378 6296  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
04:53:56.0381 6296  aliide - ok
04:53:56.0397 6296  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
04:53:56.0400 6296  amdide - ok
04:53:56.0421 6296  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
04:53:56.0425 6296  AmdK8 - ok
04:53:56.0440 6296  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
04:53:56.0444 6296  AmdPPM - ok
04:53:56.0468 6296  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
04:53:56.0472 6296  amdsata - ok
04:53:56.0493 6296  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
04:53:56.0501 6296  amdsbs - ok
04:53:56.0520 6296  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
04:53:56.0523 6296  amdxata - ok
04:53:56.0540 6296  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
04:53:56.0543 6296  AppID - ok
04:53:56.0557 6296  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
04:53:56.0560 6296  AppIDSvc - ok
04:53:56.0593 6296  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
04:53:56.0595 6296  Appinfo - ok
04:53:56.0693 6296  [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
04:53:56.0697 6296  Apple Mobile Device - ok
04:53:56.0717 6296  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
04:53:56.0722 6296  arc - ok
04:53:56.0742 6296  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
04:53:56.0747 6296  arcsas - ok
04:53:56.0805 6296  [ A3626C6D3F2DC95497F3F61842D7FD89 ] ASLDRService    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
04:53:56.0809 6296  ASLDRService - ok
04:53:56.0822 6296  [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64        C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
04:53:56.0824 6296  ASMMAP64 - ok
04:53:56.0907 6296  [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
04:53:56.0911 6296  aspnet_state - ok
04:53:56.0974 6296  [ B6EF28ECEE73B624D56DF30AD562AE8D ] AsusUacSvc      C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe
04:53:56.0978 6296  AsusUacSvc - ok
04:53:57.0008 6296  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
04:53:57.0010 6296  AsyncMac - ok
04:53:57.0044 6296  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
04:53:57.0047 6296  atapi - ok
04:53:57.0075 6296  [ CBE61B4494165F458BD87E37181EE934 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
04:53:57.0078 6296  AthBTPort - ok
04:53:57.0106 6296  [ 4C4A576818EA028257C624AE36FF7A03 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
04:53:57.0111 6296  Atheros Bt&Wlan Coex Agent - ok
04:53:57.0125 6296  [ 21753130331188C4B474E1D3B396E629 ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
04:53:57.0128 6296  AtherosSvc - ok
04:53:57.0226 6296  [ B4174564AD5834A1680610572477878C ] athr            C:\Windows\system32\DRIVERS\athrx.sys
04:53:57.0307 6296  athr - ok
04:53:57.0344 6296  [ DBC598E47E7A382E60E2A4745D41FEF9 ] ATKGFNEXSrv     C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
04:53:57.0347 6296  ATKGFNEXSrv - ok
04:53:57.0399 6296  [ 41CEAFFCF3550785E59E3EC9BEE8D97A ] ATKWMIACPIIO_   C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
04:53:57.0402 6296  ATKWMIACPIIO_ - ok
04:53:57.0453 6296  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
04:53:57.0469 6296  AudioEndpointBuilder - ok
04:53:57.0489 6296  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
04:53:57.0500 6296  AudioSrv - ok
04:53:57.0534 6296  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
04:53:57.0539 6296  AxInstSV - ok
04:53:57.0579 6296  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
04:53:57.0591 6296  b06bdrv - ok
04:53:57.0633 6296  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
04:53:57.0642 6296  b57nd60a - ok
04:53:57.0663 6296  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
04:53:57.0665 6296  BDESVC - ok
04:53:57.0683 6296  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
04:53:57.0687 6296  Beep - ok
04:53:57.0719 6296  [ 1680699C6EDCCBC1CC3AC2FF42FE5603 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
04:53:57.0722 6296  BEService - ok
04:53:57.0767 6296  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
04:53:57.0781 6296  BFE - ok
04:53:57.0829 6296  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
04:53:57.0873 6296  BITS - ok
04:53:57.0906 6296  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
04:53:57.0909 6296  blbdrive - ok
04:53:57.0949 6296  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
04:53:57.0960 6296  Bonjour Service - ok
04:53:57.0989 6296  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
04:53:57.0993 6296  bowser - ok
04:53:58.0014 6296  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
04:53:58.0017 6296  BrFiltLo - ok
04:53:58.0027 6296  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
04:53:58.0030 6296  BrFiltUp - ok
04:53:58.0065 6296  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
04:53:58.0071 6296  Browser - ok
04:53:58.0098 6296  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
04:53:58.0108 6296  Brserid - ok
04:53:58.0124 6296  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
04:53:58.0127 6296  BrSerWdm - ok
04:53:58.0139 6296  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
04:53:58.0142 6296  BrUsbMdm - ok
04:53:58.0150 6296  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
04:53:58.0152 6296  BrUsbSer - ok
04:53:58.0186 6296  [ FE70889A85C57A9268101B2DB0474509 ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
04:53:58.0195 6296  BTATH_A2DP - ok
04:53:58.0211 6296  [ A83A91D07D1FE6BBE7A9DB46CA00434B ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
04:53:58.0214 6296  BTATH_BUS - ok
04:53:58.0235 6296  [ C864FF85EE16D61C2BDD5EF76824625F ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
04:53:58.0242 6296  BTATH_HCRP - ok
04:53:58.0258 6296  [ 0DEA505EFB5D771826D177EF8B8A208F ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
04:53:58.0262 6296  BTATH_LWFLT - ok
04:53:58.0283 6296  [ 724C8088C96EFE7A3E63FEC21D4681C0 ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
04:53:58.0290 6296  BTATH_RCP - ok
04:53:58.0315 6296  [ AA0F5AFCF077C5246589B32ECEEAE566 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
04:53:58.0324 6296  BtFilter - ok
04:53:58.0355 6296  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
04:53:58.0359 6296  BthEnum - ok
04:53:58.0390 6296  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
04:53:58.0394 6296  BTHMODEM - ok
04:53:58.0416 6296  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
04:53:58.0421 6296  BthPan - ok
04:53:58.0452 6296  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
04:53:58.0467 6296  BTHPORT - ok
04:53:58.0504 6296  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
04:53:58.0506 6296  bthserv - ok
04:53:58.0525 6296  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
04:53:58.0530 6296  BTHUSB - ok
04:53:58.0549 6296  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
04:53:58.0553 6296  cdfs - ok
04:53:58.0580 6296  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
04:53:58.0598 6296  cdrom - ok
04:53:58.0621 6296  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
04:53:58.0624 6296  CertPropSvc - ok
04:53:58.0647 6296  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
04:53:58.0651 6296  circlass - ok
04:53:58.0674 6296  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
04:53:58.0684 6296  CLFS - ok
04:53:58.0746 6296  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
04:53:58.0748 6296  clr_optimization_v2.0.50727_32 - ok
04:53:58.0796 6296  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
04:53:58.0798 6296  clr_optimization_v2.0.50727_64 - ok
04:53:58.0846 6296  [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
04:53:58.0851 6296  clr_optimization_v4.0.30319_32 - ok
04:53:58.0867 6296  [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
04:53:58.0871 6296  clr_optimization_v4.0.30319_64 - ok
04:53:58.0935 6296  [ 2B9A15DFDC14B4ECB1E8FC13AE43E60F ] CltMngSvc       C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe
04:53:58.0937 6296  CltMngSvc - ok
04:53:58.0963 6296  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
04:53:58.0966 6296  CmBatt - ok
04:53:58.0984 6296  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
04:53:58.0993 6296  cmdide - ok
04:53:59.0048 6296  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
04:53:59.0057 6296  CNG - ok
04:53:59.0109 6296  [ 160CB4DE30043D4D000F81DAB24135C0 ] cnnctfy3        C:\Windows\system32\DRIVERS\cnnctfy3.sys
04:53:59.0137 6296  cnnctfy3 - ok
04:53:59.0160 6296  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
04:53:59.0163 6296  Compbatt - ok
04:53:59.0181 6296  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
04:53:59.0184 6296  CompositeBus - ok
04:53:59.0191 6296  COMSysApp - ok
04:53:59.0226 6296  [ 9813F31060F9CBE4158D7EAEA75F6333 ] Connectify      C:\Program Files (x86)\Connectify\ConnectifyService.exe
04:53:59.0232 6296  Connectify - ok
04:53:59.0252 6296  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
04:53:59.0255 6296  crcdisk - ok
04:53:59.0280 6296  [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
04:53:59.0284 6296  Creative ALchemy AL6 Licensing Service - ok
04:53:59.0299 6296  [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
04:53:59.0303 6296  Creative Audio Engine Licensing Service - ok
04:53:59.0334 6296  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
04:53:59.0341 6296  CryptSvc - ok
04:53:59.0411 6296  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
04:53:59.0447 6296  cvhsvc - ok
04:53:59.0485 6296  [ 88123E5A5572405DF6FE56E4A2A95BD4 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
04:53:59.0489 6296  dc3d - ok
04:53:59.0531 6296  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
04:53:59.0547 6296  DcomLaunch - ok
04:53:59.0576 6296  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
04:53:59.0585 6296  defragsvc - ok
04:53:59.0605 6296  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
04:53:59.0609 6296  DfsC - ok
04:53:59.0646 6296  [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
04:53:59.0651 6296  dg_ssudbus - ok
04:53:59.0682 6296  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
04:53:59.0691 6296  Dhcp - ok
04:53:59.0722 6296  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
04:53:59.0724 6296  discache - ok
04:53:59.0749 6296  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
04:53:59.0753 6296  Disk - ok
04:53:59.0776 6296  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
04:53:59.0782 6296  Dnscache - ok
04:53:59.0807 6296  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
04:53:59.0816 6296  dot3svc - ok
04:53:59.0835 6296  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
04:53:59.0841 6296  DPS - ok
04:53:59.0859 6296  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
04:53:59.0861 6296  drmkaud - ok
04:53:59.0910 6296  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
04:53:59.0935 6296  DXGKrnl - ok
04:53:59.0959 6296  EagleX64 - ok
04:53:59.0983 6296  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
04:53:59.0988 6296  EapHost - ok
04:54:00.0087 6296  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
04:54:00.0190 6296  ebdrv - ok
04:54:00.0230 6296  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
04:54:00.0233 6296  EFS - ok
04:54:00.0304 6296  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
04:54:00.0321 6296  ehRecvr - ok
04:54:00.0339 6296  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
04:54:00.0344 6296  ehSched - ok
04:54:00.0394 6296  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
04:54:00.0409 6296  elxstor - ok
04:54:00.0430 6296  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
04:54:00.0433 6296  ErrDev - ok
04:54:00.0475 6296  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
04:54:00.0487 6296  EventSystem - ok
04:54:00.0519 6296  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
04:54:00.0526 6296  exfat - ok
04:54:00.0551 6296  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
04:54:00.0558 6296  fastfat - ok
04:54:00.0588 6296  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
04:54:00.0606 6296  Fax - ok
04:54:00.0621 6296  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
04:54:00.0624 6296  fdc - ok
04:54:00.0649 6296  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
04:54:00.0652 6296  fdPHost - ok
04:54:00.0662 6296  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
04:54:00.0666 6296  FDResPub - ok
04:54:00.0685 6296  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
04:54:00.0690 6296  FileInfo - ok
04:54:00.0706 6296  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
04:54:00.0710 6296  Filetrace - ok
04:54:00.0754 6296  [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
04:54:00.0770 6296  FLEXnet Licensing Service - ok
04:54:00.0786 6296  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
04:54:00.0789 6296  flpydisk - ok
04:54:00.0810 6296  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
04:54:00.0818 6296  FltMgr - ok
04:54:00.0868 6296  [ 5F3982B51A5DF6F7FF5FD3A4CE0BFF5D ] FLxHCIc         C:\Windows\system32\DRIVERS\FLxHCIc.sys
04:54:00.0876 6296  FLxHCIc - ok
04:54:00.0915 6296  [ 1ACB3F124140A2EAB5A1E36286E37C0D ] FLxHCIh         C:\Windows\system32\DRIVERS\FLxHCIh.sys
04:54:00.0920 6296  FLxHCIh - ok
04:54:00.0981 6296  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
04:54:01.0025 6296  FontCache - ok
04:54:01.0064 6296  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
04:54:01.0065 6296  FontCache3.0.0.0 - ok
04:54:01.0087 6296  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
04:54:01.0090 6296  FsDepends - ok
04:54:01.0124 6296  [ 3DFA8D4E50D608F8F732014614C84DD2 ] fspad_win764    C:\Windows\system32\DRIVERS\fspad_win764.sys
04:54:01.0128 6296  fspad_win764 - ok
04:54:01.0174 6296  [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
04:54:01.0177 6296  fssfltr - ok
04:54:01.0260 6296  [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
04:54:01.0303 6296  fsssvc - ok
04:54:01.0340 6296  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
04:54:01.0342 6296  Fs_Rec - ok
04:54:01.0377 6296  [ 35FD2BB5131714E657B7AB3A78642854 ] FTDIBUS         C:\Windows\system32\drivers\ftdibus.sys
04:54:01.0381 6296  FTDIBUS - ok
04:54:01.0411 6296  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
04:54:01.0417 6296  fvevol - ok
04:54:01.0445 6296  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
04:54:01.0449 6296  gagp30kx - ok
04:54:01.0474 6296  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
04:54:01.0478 6296  GEARAspiWDM - ok
04:54:01.0517 6296  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
04:54:01.0542 6296  gpsvc - ok
04:54:01.0609 6296  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:54:01.0614 6296  gupdate - ok
04:54:01.0629 6296  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:54:01.0632 6296  gupdatem - ok
04:54:01.0657 6296  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
04:54:01.0664 6296  gusvc - ok
04:54:01.0708 6296  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
04:54:01.0712 6296  hamachi - ok
04:54:01.0811 6296  [ B1E3F445943F06E36DC079AF28D0F86B ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
04:54:01.0889 6296  Hamachi2Svc - ok
04:54:01.0915 6296  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
04:54:01.0919 6296  hcw85cir - ok
04:54:01.0953 6296  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
04:54:01.0963 6296  HdAudAddService - ok
04:54:01.0985 6296  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
04:54:01.0990 6296  HDAudBus - ok
04:54:02.0004 6296  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
04:54:02.0008 6296  HidBatt - ok
04:54:02.0029 6296  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
04:54:02.0034 6296  HidBth - ok
04:54:02.0056 6296  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
04:54:02.0060 6296  HidIr - ok
04:54:02.0086 6296  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
04:54:02.0090 6296  hidserv - ok
04:54:02.0109 6296  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
04:54:02.0112 6296  HidUsb - ok
04:54:02.0126 6296  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
04:54:02.0130 6296  hkmsvc - ok
04:54:02.0149 6296  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
04:54:02.0157 6296  HomeGroupListener - ok
04:54:02.0182 6296  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
04:54:02.0191 6296  HomeGroupProvider - ok
04:54:02.0210 6296  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
04:54:02.0214 6296  HpSAMD - ok
04:54:02.0250 6296  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
04:54:02.0267 6296  HTTP - ok
04:54:02.0283 6296  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
04:54:02.0284 6296  hwpolicy - ok
04:54:02.0312 6296  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
04:54:02.0317 6296  i8042prt - ok
04:54:02.0356 6296  [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
04:54:02.0364 6296  iaStor - ok
04:54:02.0398 6296  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
04:54:02.0409 6296  iaStorV - ok
04:54:02.0480 6296  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
04:54:02.0508 6296  idsvc - ok
04:54:02.0536 6296  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
04:54:02.0540 6296  iirsp - ok
04:54:02.0586 6296  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
04:54:02.0611 6296  IKEEXT - ok
04:54:02.0768 6296  [ 602788BF364D43E5878AA1B4F85C232B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
04:54:02.0905 6296  IntcAzAudAddService - ok
04:54:02.0923 6296  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
04:54:02.0926 6296  intelide - ok
04:54:02.0950 6296  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
04:54:02.0953 6296  intelppm - ok
04:54:02.0978 6296  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
04:54:02.0983 6296  IPBusEnum - ok
04:54:03.0003 6296  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
04:54:03.0007 6296  IpFilterDriver - ok
04:54:03.0047 6296  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
04:54:03.0063 6296  iphlpsvc - ok
04:54:03.0080 6296  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
04:54:03.0084 6296  IPMIDRV - ok
04:54:03.0107 6296  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
04:54:03.0111 6296  IPNAT - ok
04:54:03.0153 6296  [ 46D249F9DB7844CC01050A9345F0F61B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
04:54:03.0188 6296  iPod Service - ok
04:54:03.0210 6296  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
04:54:03.0212 6296  IRENUM - ok
04:54:03.0230 6296  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
04:54:03.0233 6296  isapnp - ok
04:54:03.0260 6296  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
04:54:03.0269 6296  iScsiPrt - ok
04:54:03.0285 6296  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
04:54:03.0288 6296  kbdclass - ok
04:54:03.0313 6296  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
04:54:03.0317 6296  kbdhid - ok
04:54:03.0349 6296  [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr         C:\Windows\system32\DRIVERS\kbfiltr.sys
04:54:03.0352 6296  kbfiltr - ok
04:54:03.0376 6296  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
04:54:03.0379 6296  KeyIso - ok
04:54:03.0407 6296  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
04:54:03.0410 6296  KSecDD - ok
04:54:03.0446 6296  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
04:54:03.0449 6296  KSecPkg - ok
04:54:03.0462 6296  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
04:54:03.0463 6296  ksthunk - ok
04:54:03.0501 6296  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
04:54:03.0512 6296  KtmRm - ok
04:54:03.0540 6296  [ 033B4AED2C5519072C0D81E00804D003 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
04:54:03.0544 6296  L1C - ok
04:54:03.0577 6296  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
04:54:03.0587 6296  LanmanServer - ok
04:54:03.0608 6296  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
04:54:03.0616 6296  LanmanWorkstation - ok
04:54:03.0655 6296  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
04:54:03.0657 6296  lltdio - ok
04:54:03.0684 6296  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
04:54:03.0691 6296  lltdsvc - ok
04:54:03.0704 6296  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
04:54:03.0707 6296  lmhosts - ok
04:54:03.0753 6296  [ 0803906D607A9B83184447B75B60ECC2 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
04:54:03.0762 6296  LMS - ok
04:54:03.0808 6296  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
04:54:03.0813 6296  LSI_FC - ok
04:54:03.0835 6296  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
04:54:03.0840 6296  LSI_SAS - ok
04:54:03.0860 6296  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
04:54:03.0864 6296  LSI_SAS2 - ok
04:54:03.0877 6296  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
04:54:03.0882 6296  LSI_SCSI - ok
04:54:03.0898 6296  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
04:54:03.0900 6296  luafv - ok
04:54:03.0935 6296  [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
04:54:03.0946 6296  LVRS64 - ok
04:54:04.0084 6296  [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
04:54:04.0230 6296  LVUVC64 - ok
04:54:04.0279 6296  [ 8FF2D95CBA49B405C5DE27039FF0BF35 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
04:54:04.0282 6296  MBfilt - ok
04:54:04.0310 6296  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
04:54:04.0315 6296  Mcx2Svc - ok
04:54:04.0332 6296  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
04:54:04.0336 6296  megasas - ok
04:54:04.0353 6296  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
04:54:04.0362 6296  MegaSR - ok
04:54:04.0397 6296  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
04:54:04.0401 6296  MEIx64 - ok
04:54:04.0419 6296  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
04:54:04.0424 6296  MMCSS - ok
04:54:04.0438 6296  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
04:54:04.0441 6296  Modem - ok
04:54:04.0460 6296  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
04:54:04.0461 6296  monitor - ok
04:54:04.0472 6296  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
04:54:04.0476 6296  mouclass - ok
04:54:04.0496 6296  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
04:54:04.0499 6296  mouhid - ok
04:54:04.0534 6296  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
04:54:04.0536 6296  mountmgr - ok
04:54:04.0589 6296  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
04:54:04.0596 6296  MpFilter - ok
04:54:04.0622 6296  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
04:54:04.0628 6296  mpio - ok
04:54:04.0644 6296  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
04:54:04.0646 6296  mpsdrv - ok
04:54:04.0691 6296  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
04:54:04.0705 6296  MpsSvc - ok
04:54:04.0725 6296  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
04:54:04.0730 6296  MRxDAV - ok
04:54:04.0766 6296  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
04:54:04.0770 6296  mrxsmb - ok
04:54:04.0789 6296  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
04:54:04.0798 6296  mrxsmb10 - ok
04:54:04.0813 6296  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
04:54:04.0818 6296  mrxsmb20 - ok
04:54:04.0831 6296  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
04:54:04.0834 6296  msahci - ok
04:54:04.0870 6296  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
04:54:04.0876 6296  msdsm - ok
04:54:04.0897 6296  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
04:54:04.0905 6296  MSDTC - ok
04:54:04.0936 6296  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
04:54:04.0937 6296  Msfs - ok
04:54:04.0950 6296  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
04:54:04.0952 6296  mshidkmdf - ok
04:54:04.0960 6296  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
04:54:04.0962 6296  msisadrv - ok
04:54:05.0002 6296  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
04:54:05.0009 6296  MSiSCSI - ok
04:54:05.0017 6296  msiserver - ok
04:54:05.0039 6296  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
04:54:05.0040 6296  MSKSSRV - ok
04:54:05.0105 6296  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
04:54:05.0106 6296  MsMpSvc - ok
04:54:05.0123 6296  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
04:54:05.0124 6296  MSPCLOCK - ok
04:54:05.0131 6296  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
04:54:05.0133 6296  MSPQM - ok
04:54:05.0162 6296  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
04:54:05.0173 6296  MsRPC - ok
04:54:05.0191 6296  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
04:54:05.0195 6296  mssmbios - ok
04:54:05.0202 6296  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
04:54:05.0204 6296  MSTEE - ok
04:54:05.0219 6296  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
04:54:05.0222 6296  MTConfig - ok
04:54:05.0239 6296  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
04:54:05.0242 6296  Mup - ok
04:54:05.0276 6296  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
04:54:05.0287 6296  napagent - ok
04:54:05.0318 6296  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
04:54:05.0323 6296  NativeWifiP - ok
04:54:05.0380 6296  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
04:54:05.0405 6296  NDIS - ok
04:54:05.0427 6296  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
04:54:05.0429 6296  NdisCap - ok
04:54:05.0451 6296  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
04:54:05.0453 6296  NdisTapi - ok
04:54:05.0473 6296  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
04:54:05.0476 6296  Ndisuio - ok
04:54:05.0500 6296  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
04:54:05.0507 6296  NdisWan - ok
04:54:05.0522 6296  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
04:54:05.0527 6296  NDProxy - ok
04:54:05.0545 6296  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
04:54:05.0547 6296  NetBIOS - ok
04:54:05.0563 6296  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
04:54:05.0568 6296  NetBT - ok
04:54:05.0591 6296  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
04:54:05.0594 6296  Netlogon - ok
04:54:05.0623 6296  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
04:54:05.0633 6296  Netman - ok
04:54:05.0662 6296  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:54:05.0668 6296  NetMsmqActivator - ok
04:54:05.0682 6296  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:54:05.0685 6296  NetPipeActivator - ok
04:54:05.0711 6296  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
04:54:05.0723 6296  netprofm - ok
04:54:05.0733 6296  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:54:05.0736 6296  NetTcpActivator - ok
04:54:05.0744 6296  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:54:05.0747 6296  NetTcpPortSharing - ok
04:54:05.0776 6296  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
04:54:05.0780 6296  nfrd960 - ok
04:54:05.0836 6296  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
04:54:05.0841 6296  NisDrv - ok
04:54:05.0860 6296  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
04:54:05.0873 6296  NisSrv - ok
04:54:05.0931 6296  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
04:54:05.0941 6296  NlaSvc - ok
04:54:05.0953 6296  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
04:54:05.0955 6296  Npfs - ok
04:54:05.0984 6296  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
04:54:05.0988 6296  nsi - ok
04:54:05.0999 6296  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
04:54:06.0001 6296  nsiproxy - ok
04:54:06.0068 6296  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
04:54:06.0103 6296  Ntfs - ok
04:54:06.0142 6296  [ 317020D31F1696334679B9D0416EB62E ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
04:54:06.0145 6296  NuidFltr - ok
04:54:06.0172 6296  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
04:54:06.0173 6296  Null - ok
04:54:06.0205 6296  [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
04:54:06.0211 6296  NVHDA - ok
04:54:06.0522 6296  [ 48D26FF990099C1AD51F81BAEDDB3B98 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
04:54:06.0814 6296  nvlddmkm - ok
04:54:06.0848 6296  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
04:54:06.0854 6296  nvraid - ok
04:54:06.0898 6296  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
04:54:06.0905 6296  nvstor - ok
04:54:06.0957 6296  [ 708547B06809A454B953803CBC449BC0 ] nvsvc           C:\Windows\system32\nvvsvc.exe
04:54:06.0992 6296  nvsvc - ok
04:54:07.0069 6296  [ CEA3A0FBE6B86EF7A85B62EB41ED5DCB ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
04:54:07.0109 6296  nvUpdatusService - ok
04:54:07.0135 6296  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
04:54:07.0140 6296  nv_agp - ok
04:54:07.0160 6296  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
04:54:07.0165 6296  ohci1394 - ok
04:54:07.0199 6296  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
04:54:07.0204 6296  ose - ok
04:54:07.0374 6296  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
04:54:07.0518 6296  osppsvc - ok
04:54:07.0550 6296  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
04:54:07.0561 6296  p2pimsvc - ok
04:54:07.0595 6296  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
04:54:07.0609 6296  p2psvc - ok
04:54:07.0631 6296  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
04:54:07.0636 6296  Parport - ok
04:54:07.0666 6296  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
04:54:07.0670 6296  partmgr - ok
04:54:07.0689 6296  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
04:54:07.0697 6296  PcaSvc - ok
04:54:07.0716 6296  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
04:54:07.0722 6296  pci - ok
04:54:07.0738 6296  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
04:54:07.0741 6296  pciide - ok
04:54:07.0762 6296  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
04:54:07.0769 6296  pcmcia - ok
04:54:07.0790 6296  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
04:54:07.0793 6296  pcw - ok
04:54:07.0821 6296  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
04:54:07.0837 6296  PEAUTH - ok
04:54:07.0913 6296  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
04:54:07.0916 6296  PerfHost - ok
04:54:07.0994 6296  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
04:54:08.0037 6296  pla - ok
04:54:08.0079 6296  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
04:54:08.0092 6296  PlugPlay - ok
04:54:08.0119 6296  PnkBstrA - ok
04:54:08.0137 6296  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
04:54:08.0141 6296  PNRPAutoReg - ok
04:54:08.0175 6296  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
04:54:08.0183 6296  PNRPsvc - ok
04:54:08.0226 6296  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
04:54:08.0229 6296  Point64 - ok
04:54:08.0264 6296  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
04:54:08.0273 6296  PolicyAgent - ok
04:54:08.0305 6296  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
04:54:08.0313 6296  Power - ok
04:54:08.0337 6296  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
04:54:08.0341 6296  PptpMiniport - ok
04:54:08.0360 6296  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
04:54:08.0364 6296  Processor - ok
04:54:08.0400 6296  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
04:54:08.0409 6296  ProfSvc - ok
04:54:08.0423 6296  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
04:54:08.0426 6296  ProtectedStorage - ok
04:54:08.0459 6296  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
04:54:08.0464 6296  Psched - ok
04:54:08.0516 6296  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
04:54:08.0559 6296  ql2300 - ok
04:54:08.0583 6296  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
04:54:08.0588 6296  ql40xx - ok
04:54:08.0626 6296  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
04:54:08.0637 6296  QWAVE - ok
04:54:08.0652 6296  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
04:54:08.0654 6296  QWAVEdrv - ok
04:54:08.0669 6296  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
04:54:08.0672 6296  RasAcd - ok
04:54:08.0692 6296  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
04:54:08.0696 6296  RasAgileVpn - ok
04:54:08.0712 6296  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
04:54:08.0719 6296  RasAuto - ok
04:54:08.0735 6296  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
04:54:08.0741 6296  Rasl2tp - ok
04:54:08.0766 6296  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
04:54:08.0779 6296  RasMan - ok
04:54:08.0797 6296  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
04:54:08.0801 6296  RasPppoe - ok
04:54:08.0819 6296  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
04:54:08.0823 6296  RasSstp - ok
04:54:08.0846 6296  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
04:54:08.0856 6296  rdbss - ok
04:54:08.0873 6296  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
04:54:08.0877 6296  rdpbus - ok
04:54:08.0891 6296  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
04:54:08.0892 6296  RDPCDD - ok
04:54:08.0922 6296  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
04:54:08.0924 6296  RDPENCDD - ok
04:54:08.0935 6296  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
04:54:08.0936 6296  RDPREFMP - ok
04:54:08.0992 6296  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
04:54:08.0994 6296  RdpVideoMiniport - ok
04:54:09.0020 6296  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
04:54:09.0027 6296  RDPWD - ok
04:54:09.0053 6296  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
04:54:09.0060 6296  rdyboost - ok
04:54:09.0081 6296  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
04:54:09.0087 6296  RemoteAccess - ok
04:54:09.0111 6296  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
04:54:09.0119 6296  RemoteRegistry - ok
04:54:09.0146 6296  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
04:54:09.0152 6296  RFCOMM - ok
04:54:09.0168 6296  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
04:54:09.0174 6296  RpcEptMapper - ok
04:54:09.0197 6296  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
04:54:09.0201 6296  RpcLocator - ok
04:54:09.0232 6296  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
04:54:09.0243 6296  RpcSs - ok
04:54:09.0254 6296  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
04:54:09.0256 6296  rspndr - ok
04:54:09.0302 6296  [ E57FAC2CDB73F06586ED2ED310B80932 ] RSUSBVSTOR      C:\Windows\system32\Drivers\RtsUVStor.sys
04:54:09.0308 6296  RSUSBVSTOR - ok
04:54:09.0348 6296  [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
04:54:09.0361 6296  RTL8167 - ok
04:54:09.0402 6296  [ 248ABD858FF7DCC966E5A54529DDD225 ] SaiH040B        C:\Windows\system32\DRIVERS\SaiH040B.sys
04:54:09.0457 6296  SaiH040B - ok
04:54:09.0488 6296  [ 547B16D072A3AFCE5807BE20C3F4734B ] SaiU040B        C:\Windows\system32\DRIVERS\SaiU040B.sys
04:54:09.0524 6296  SaiU040B - ok
04:54:09.0543 6296  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
04:54:09.0546 6296  SamSs - ok
04:54:09.0569 6296  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
04:54:09.0573 6296  sbp2port - ok
04:54:09.0600 6296  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
04:54:09.0608 6296  SCardSvr - ok
04:54:09.0621 6296  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
04:54:09.0623 6296  scfilter - ok
04:54:09.0661 6296  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
04:54:09.0698 6296  Schedule - ok
04:54:09.0721 6296  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
04:54:09.0724 6296  SCPolicySvc - ok
04:54:09.0747 6296  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
04:54:09.0756 6296  SDRSVC - ok
04:54:09.0780 6296  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
04:54:09.0783 6296  secdrv - ok
04:54:09.0798 6296  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
04:54:09.0803 6296  seclogon - ok
04:54:09.0819 6296  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
04:54:09.0823 6296  SENS - ok
04:54:09.0834 6296  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
04:54:09.0838 6296  SensrSvc - ok
04:54:09.0864 6296  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
04:54:09.0867 6296  Serenum - ok
04:54:09.0884 6296  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
04:54:09.0889 6296  Serial - ok
04:54:09.0909 6296  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
04:54:09.0914 6296  sermouse - ok
04:54:09.0949 6296  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
04:54:09.0956 6296  SessionEnv - ok
04:54:10.0003 6296  sf - ok
04:54:10.0018 6296  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
04:54:10.0022 6296  sffdisk - ok
04:54:10.0032 6296  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
04:54:10.0035 6296  sffp_mmc - ok
04:54:10.0051 6296  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
04:54:10.0055 6296  sffp_sd - ok
04:54:10.0065 6296  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
04:54:10.0069 6296  sfloppy - ok
04:54:10.0116 6296  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
04:54:10.0135 6296  Sftfs - ok
04:54:10.0182 6296  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
04:54:10.0195 6296  sftlist - ok
04:54:10.0219 6296  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
04:54:10.0228 6296  Sftplay - ok
04:54:10.0243 6296  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
04:54:10.0247 6296  Sftredir - ok
04:54:10.0258 6296  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
04:54:10.0261 6296  Sftvol - ok
04:54:10.0279 6296  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
04:54:10.0286 6296  sftvsa - ok
04:54:10.0326 6296  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
04:54:10.0334 6296  SharedAccess - ok
04:54:10.0369 6296  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
04:54:10.0382 6296  ShellHWDetection - ok
04:54:10.0399 6296  [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH        C:\Windows\system32\DRIVERS\SiSG664.sys
04:54:10.0403 6296  SiSGbeLH - ok
04:54:10.0440 6296  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
04:54:10.0443 6296  SiSRaid2 - ok
04:54:10.0456 6296  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
04:54:10.0461 6296  SiSRaid4 - ok
04:54:10.0500 6296  [ CA355B308AA537C6B9D67CD3A5485AF9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
04:54:10.0506 6296  SkypeUpdate - ok
04:54:10.0529 6296  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
04:54:10.0532 6296  Smb - ok
04:54:10.0562 6296  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
04:54:10.0567 6296  SNMPTRAP - ok
04:54:10.0580 6296  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
04:54:10.0583 6296  spldr - ok
04:54:10.0617 6296  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
04:54:10.0634 6296  Spooler - ok
04:54:10.0736 6296  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
04:54:10.0837 6296  sppsvc - ok
04:54:10.0864 6296  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
04:54:10.0870 6296  sppuinotify - ok
04:54:10.0899 6296  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
04:54:10.0911 6296  srv - ok
04:54:10.0937 6296  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
04:54:10.0948 6296  srv2 - ok
04:54:10.0969 6296  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
04:54:10.0975 6296  srvnet - ok
04:54:10.0995 6296  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
04:54:11.0004 6296  SSDPSRV - ok
04:54:11.0020 6296  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
04:54:11.0026 6296  SstpSvc - ok
04:54:11.0062 6296  [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
04:54:11.0072 6296  ssudmdm - ok
04:54:11.0122 6296  [ 9E1380328C39D661E085B24D6A6E044E ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
04:54:11.0135 6296  Steam Client Service - ok
04:54:11.0204 6296  [ C321084609422404F8DD1513C988DBEA ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
04:54:11.0213 6296  Stereo Service - ok
04:54:11.0237 6296  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
04:54:11.0240 6296  stexstor - ok
04:54:11.0290 6296  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
04:54:11.0308 6296  stisvc - ok
04:54:11.0321 6296  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
04:54:11.0324 6296  swenum - ok
04:54:11.0362 6296  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
04:54:11.0378 6296  swprv - ok
04:54:11.0387 6296  SWVNIC - ok
04:54:11.0442 6296  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
04:54:11.0491 6296  SysMain - ok
04:54:11.0507 6296  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
04:54:11.0514 6296  TabletInputService - ok
04:54:11.0538 6296  [ D5462D5C8F4AF904D109C5B41B8CD43A ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
04:54:11.0562 6296  tap0901 - ok
04:54:11.0585 6296  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
04:54:11.0597 6296  TapiSrv - ok
04:54:11.0611 6296  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
04:54:11.0617 6296  TBS - ok
04:54:11.0684 6296  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
04:54:11.0744 6296  Tcpip - ok
04:54:11.0816 6296  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
04:54:11.0844 6296  TCPIP6 - ok
04:54:11.0890 6296  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
04:54:11.0892 6296  tcpipreg - ok
04:54:11.0922 6296  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
04:54:11.0925 6296  TDPIPE - ok
04:54:11.0950 6296  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
04:54:11.0953 6296  TDTCP - ok
04:54:11.0967 6296  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
04:54:11.0972 6296  tdx - ok
04:54:11.0988 6296  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
04:54:11.0993 6296  TermDD - ok
04:54:12.0029 6296  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
04:54:12.0057 6296  TermService - ok
04:54:12.0073 6296  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
04:54:12.0081 6296  Themes - ok
04:54:12.0102 6296  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
04:54:12.0106 6296  THREADORDER - ok
04:54:12.0124 6296  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
04:54:12.0132 6296  TrkWks - ok
04:54:12.0179 6296  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
04:54:12.0185 6296  TrustedInstaller - ok
04:54:12.0209 6296  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
04:54:12.0213 6296  tssecsrv - ok
04:54:12.0247 6296  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
04:54:12.0250 6296  TsUsbFlt - ok
04:54:12.0284 6296  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
04:54:12.0287 6296  TsUsbGD - ok
04:54:12.0318 6296  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
04:54:12.0323 6296  tunnel - ok
04:54:12.0353 6296  [ FD24F98D2898BE093FE926604BE7DB99 ] TurboB          C:\Windows\system32\DRIVERS\TurboB.sys
04:54:12.0396 6296  TurboB - ok
04:54:12.0425 6296  [ 600B406A04D90F577FEA8A88D7379F08 ] TurboBoost      C:\Program Files\Intel\TurboBoost\TurboBoost.exe
04:54:12.0430 6296  TurboBoost - ok
04:54:12.0447 6296  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
04:54:12.0451 6296  uagp35 - ok
04:54:12.0475 6296  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
04:54:12.0485 6296  udfs - ok
04:54:12.0515 6296  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
04:54:12.0521 6296  UI0Detect - ok
04:54:12.0536 6296  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
04:54:12.0541 6296  uliagpkx - ok
04:54:12.0559 6296  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
04:54:12.0564 6296  umbus - ok
04:54:12.0584 6296  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
04:54:12.0587 6296  UmPass - ok
04:54:12.0627 6296  [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
04:54:12.0638 6296  UMVPFSrv - ok
04:54:12.0749 6296  [ EB79C6C91A99930015EF29AE7FA802D1 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
04:54:12.0827 6296  UNS - ok
04:54:12.0854 6296  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
04:54:12.0868 6296  upnphost - ok
04:54:12.0899 6296  [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
04:54:12.0934 6296  USBAAPL64 - ok
04:54:12.0967 6296  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
04:54:12.0972 6296  usbaudio - ok
04:54:12.0998 6296  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
04:54:13.0002 6296  usbccgp - ok
04:54:13.0031 6296  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
04:54:13.0035 6296  usbcir - ok
04:54:13.0052 6296  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
04:54:13.0056 6296  usbehci - ok
04:54:13.0083 6296  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
04:54:13.0093 6296  usbhub - ok
04:54:13.0115 6296  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
04:54:13.0119 6296  usbohci - ok
04:54:13.0141 6296  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
04:54:13.0144 6296  usbprint - ok
04:54:13.0188 6296  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
04:54:13.0192 6296  usbscan - ok
04:54:13.0212 6296  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
04:54:13.0216 6296  USBSTOR - ok
04:54:13.0234 6296  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
04:54:13.0238 6296  usbuhci - ok
04:54:13.0262 6296  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
04:54:13.0269 6296  usbvideo - ok
04:54:13.0290 6296  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
04:54:13.0295 6296  UxSms - ok
04:54:13.0307 6296  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
04:54:13.0310 6296  VaultSvc - ok
04:54:13.0324 6296  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
04:54:13.0327 6296  vdrvroot - ok
04:54:13.0353 6296  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
04:54:13.0371 6296  vds - ok
04:54:13.0394 6296  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
04:54:13.0398 6296  vga - ok
04:54:13.0411 6296  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
04:54:13.0414 6296  VgaSave - ok
04:54:13.0439 6296  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
04:54:13.0447 6296  vhdmp - ok
04:54:13.0469 6296  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
04:54:13.0473 6296  viaide - ok
04:54:13.0490 6296  vmci - ok
04:54:13.0506 6296  VMnetAdapter - ok
04:54:13.0524 6296  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
04:54:13.0528 6296  volmgr - ok
04:54:13.0553 6296  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
04:54:13.0564 6296  volmgrx - ok
04:54:13.0586 6296  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
04:54:13.0596 6296  volsnap - ok
04:54:13.0627 6296  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
04:54:13.0633 6296  vsmraid - ok
04:54:13.0689 6296  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
04:54:13.0741 6296  VSS - ok
04:54:13.0762 6296  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
04:54:13.0764 6296  vwifibus - ok
04:54:13.0778 6296  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
04:54:13.0781 6296  vwififlt - ok
04:54:13.0808 6296  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
04:54:13.0811 6296  vwifimp - ok
04:54:13.0838 6296  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
04:54:13.0852 6296  W32Time - ok
04:54:13.0875 6296  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
04:54:13.0879 6296  WacomPen - ok
04:54:13.0903 6296  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
04:54:13.0907 6296  WANARP - ok
04:54:13.0915 6296  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
04:54:13.0918 6296  Wanarpv6 - ok
04:54:13.0992 6296  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
04:54:14.0035 6296  WatAdminSvc - ok
04:54:14.0097 6296  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
04:54:14.0148 6296  wbengine - ok
04:54:14.0166 6296  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
04:54:14.0176 6296  WbioSrvc - ok
04:54:14.0197 6296  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
04:54:14.0210 6296  wcncsvc - ok
04:54:14.0225 6296  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
04:54:14.0231 6296  WcsPlugInService - ok
04:54:14.0250 6296  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
04:54:14.0253 6296  Wd - ok
04:54:14.0300 6296  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
04:54:14.0302 6296  WDC_SAM - ok
04:54:14.0348 6296  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
04:54:14.0374 6296  Wdf01000 - ok
04:54:14.0392 6296  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
04:54:14.0400 6296  WdiServiceHost - ok
04:54:14.0408 6296  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
04:54:14.0413 6296  WdiSystemHost - ok
04:54:14.0431 6296  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
04:54:14.0442 6296  WebClient - ok
04:54:14.0463 6296  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
04:54:14.0475 6296  Wecsvc - ok
04:54:14.0493 6296  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
04:54:14.0500 6296  wercplsupport - ok
04:54:14.0529 6296  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
04:54:14.0536 6296  WerSvc - ok
04:54:14.0568 6296  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
04:54:14.0571 6296  WfpLwf - ok
04:54:14.0613 6296  [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
04:54:14.0619 6296  WimFltr - ok
04:54:14.0636 6296  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
04:54:14.0640 6296  WIMMount - ok
04:54:14.0659 6296  WinDefend - ok
04:54:14.0685 6296  WinHttpAutoProxySvc - ok
04:54:14.0735 6296  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
04:54:14.0740 6296  Winmgmt - ok
04:54:14.0809 6296  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
04:54:14.0885 6296  WinRM - ok
04:54:14.0933 6296  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
04:54:14.0937 6296  WinUsb - ok
04:54:14.0977 6296  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
04:54:14.0995 6296  Wlansvc - ok
04:54:15.0054 6296  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
04:54:15.0059 6296  wlcrasvc - ok
04:54:15.0189 6296  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
04:54:15.0258 6296  wlidsvc - ok
04:54:15.0282 6296  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
04:54:15.0285 6296  WmiAcpi - ok
04:54:15.0321 6296  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
04:54:15.0327 6296  wmiApSrv - ok
04:54:15.0351 6296  WMPNetworkSvc - ok
04:54:15.0382 6296  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
04:54:15.0388 6296  WPCSvc - ok
04:54:15.0407 6296  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
04:54:15.0415 6296  WPDBusEnum - ok
04:54:15.0441 6296  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
04:54:15.0444 6296  ws2ifsl - ok
04:54:15.0464 6296  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
04:54:15.0470 6296  wscsvc - ok
04:54:15.0499 6296  [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
04:54:15.0502 6296  WSDPrintDevice - ok
04:54:15.0521 6296  [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
04:54:15.0524 6296  WSDScan - ok
04:54:15.0531 6296  WSearch - ok
04:54:15.0617 6296  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
04:54:15.0695 6296  wuauserv - ok
04:54:15.0727 6296  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
04:54:15.0731 6296  WudfPf - ok
04:54:15.0764 6296  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
04:54:15.0772 6296  WUDFRd - ok
04:54:15.0790 6296  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
04:54:15.0797 6296  wudfsvc - ok
04:54:15.0825 6296  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
04:54:15.0836 6296  WwanSvc - ok
04:54:15.0885 6296  [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
04:54:15.0889 6296  xusb21 - ok
04:54:15.0933 6296  ================ Scan global ===============================
04:54:15.0951 6296  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
04:54:15.0990 6296  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
04:54:16.0008 6296  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
04:54:16.0030 6296  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
04:54:16.0061 6296  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
04:54:16.0073 6296  [Global] - ok
04:54:16.0074 6296  ================ Scan MBR ==================================
04:54:16.0090 6296  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
04:54:16.0468 6296  \Device\Harddisk0\DR0 - ok
04:54:16.0470 6296  ================ Scan VBR ==================================
04:54:16.0474 6296  [ B64A48BFD40272B21C9532B283E55DD8 ] \Device\Harddisk0\DR0\Partition1
04:54:16.0478 6296  \Device\Harddisk0\DR0\Partition1 - ok
04:54:16.0501 6296  [ EFBB7525EE2EE87DF5BA32BBAD45C7A5 ] \Device\Harddisk0\DR0\Partition2
04:54:16.0505 6296  \Device\Harddisk0\DR0\Partition2 - ok
04:54:16.0506 6296  ============================================================
04:54:16.0506 6296  Scan finished
04:54:16.0506 6296  ============================================================
04:54:16.0529 7228  Detected object count: 0
04:54:16.0529 7228  Actual detected object count: 0


#5 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:26 PM

Posted 07 August 2013 - 06:48 AM

Quarantines the infections found by MBAM, then proceed with ESET.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#6 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 10:05 AM

C:\Program Files (x86)\Cheat Engine 6.2\cheatengine-i386.exe a variant of Win32/HackTool.CheatEngine.AB application
C:\Program Files (x86)\Cheat Engine 6.2\standalonephase1.dat a variant of Win32/HackTool.CheatEngine.AF application
C:\Program Files (x86)\SearchProtect\bin\ChromeModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Program Files (x86)\SearchProtect\bin\cltmng.exe a variant of Win32/Conduit.SearchProtect.B application
C:\Program Files (x86)\SearchProtect\bin\FirefoxModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Program Files (x86)\SearchProtect\bin\InternetExplorerModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Program Files (x86)\SearchProtect\bin\SPHook32.dll probably a variant of Win32/Conduit.SearchProtect.C application
C:\Program Files (x86)\SearchProtect\ffprotect\application.js Win32/Conduit.SearchProtect.A application
C:\Program Files (x86)\SearchProtect\ffprotect\nsprotector.js Win32/Conduit.SearchProtect.A application
C:\Program Files (x86)\Solid Savings\Solid Savings-bho.dll probably a variant of Win32/Toolbar.CrossRider.A application
C:\Program Files (x86)\Solid Savings\Uninstall.exe a variant of Win32/Packed.VMDetector.A application
C:\Users\CBARRETT\AppData\Local\Updater26278\Updater26278.exe a variant of Win32/Toolbar.CrossRider.C application
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\bin\ChromeModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\bin\cltmng.exe a variant of Win32/Conduit.SearchProtect.B application
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\bin\FirefoxModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\bin\InternetExplorerModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\bin\SPHook32.dll probably a variant of Win32/Conduit.SearchProtect.C application
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\ffprotect\application.js Win32/Conduit.SearchProtect.A application
C:\Users\CBARRETT\AppData\Roaming\SearchProtect\ffprotect\nsprotector.js Win32/Conduit.SearchProtect.A application
C:\Users\CBARRETT\Desktop\MKVPlayerSetupD.exe a variant of Win32/Toolbar.Funmoods.B application
C:\Users\CBARRETT\Downloads\CheatEngine62.exe multiple threats
C:\Users\CBARRETT\Downloads\foobar2000_Setup (1).exe a variant of Win32/Adware.iBryte.G application
C:\Users\CBARRETT\Downloads\foobar2000_Setup.exe a variant of Win32/Adware.iBryte.G application
C:\Users\CBARRETT\Downloads\Setup.exe a variant of Win32/Adware.iBryte.G application
C:\Users\CBARRETT\Downloads\SoftonicDownloader_for_mkv-player.exe Win32/SoftonicDownloader.E application
C:\Users\CBARRETT\Downloads\SoftonicDownloader_for_swf-player.exe Win32/SoftonicDownloader.E application
C:\Users\CBARRETT\Downloads\ZipOpenerSetup.exe Win32/InstallCore.BN application
C:\Users\michael\AppData\Local\Temp\AskSLib.dll a variant of Win32/Bundled.Toolbar.Ask application
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\bin\ChromeModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\bin\cltmng.exe a variant of Win32/Conduit.SearchProtect.B application
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\bin\FirefoxModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\bin\InternetExplorerModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\bin\SPHook32.dll probably a variant of Win32/Conduit.SearchProtect.C application
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\ffprotect\application.js Win32/Conduit.SearchProtect.A application
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\ffprotect\nsprotector.js Win32/Conduit.SearchProtect.A application
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\bin\ChromeModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\bin\cltmng.exe a variant of Win32/Conduit.SearchProtect.B application
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\bin\FirefoxModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\bin\InternetExplorerModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\bin\SPHook32.dll probably a variant of Win32/Conduit.SearchProtect.C application
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\ffprotect\application.js Win32/Conduit.SearchProtect.A application
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\ffprotect\nsprotector.js Win32/Conduit.SearchProtect.A application
Operating memory multiple threats


#7 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 10:06 AM

To Quarantine the infections do I need to remove the previously found ones?

Thanks!



#8 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 11:33 AM

The game Dark Souls is now currently unplayable



#9 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:26 PM

Posted 07 August 2013 - 12:32 PM

Some game compenents were classified as infected and removed or quarantined, reinstall the game. 


Edited by GodfatherKing, 07 August 2013 - 12:32 PM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#10 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 12:38 PM

When I meant unplayable, I can load up the game and start it fine, but the FPS is so low that the game actually tells me "Frame late too low for online play" and returns me to the menu.



#11 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 12:42 PM

Oh and the last log I posted was the ESET log



#12 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:26 PM

Posted 07 August 2013 - 12:42 PM

Was this issue there before we have run the scans?

 

ESET and MBAM have found infections related to CheatEngine, this is a false-postive or not a serious threat.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#13 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 12:45 PM

I haven't tried running Dark souls before doing the scans, but the game Sleeping Dogs had slight lag issues before the scans. 



#14 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:26 PM

Posted 07 August 2013 - 01:00 PM

:step1: Rerun MBAM and quarantines all infections (if found)

 

:step2: Remove SearchProtect (Start > Control panel > Add/remove programs)

 

:step3: Rerun ESET:

 

  • Under scan settings, check "Scan Archives" and » CHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Enable Anti-Stealth technology

 

Note: ESET can remove some of your Cheattools for a game, you'll need to install it back.


Edited by GodfatherKing, 07 August 2013 - 01:01 PM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#15 Cbarrett

Cbarrett
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:26 AM

Posted 07 August 2013 - 02:12 PM

How do I quarantine the found threats? I currently have the list of threats from mbam open.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users