Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected.. scans not fully fixing issue


  • Please log in to reply
17 replies to this topic

#1 empaige

empaige

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 07 August 2013 - 12:26 PM

I am running windows 7. My anti-virus was disabled for unknown reason.. Computer started running very,very slow, and everytime I open up chrome or IE, there are new tooldbars, search engines, and freezing up etc. I deleted webroot, and installed mcafee. ran a scan and it found and fixed 3 items. I went into control panel bf the scan and remved different search engines and add ons. Still having issues, One of the programs I can't delete is whitesmoke ? Please help!!   :) Thanks in advance!

 

Moderator Edit: Moved from Windows 7 to a more appropriate forum

Roger


Edited by rotor123, 07 August 2013 - 12:42 PM.


BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:35 AM

Posted 07 August 2013 - 01:24 PM

:welcome:

 

:step1: Install and run MBAM

===================================================

 

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run.
  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step3: ESET Online Scanner

 

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 empaige

empaige
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 07 August 2013 - 06:10 PM

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.08.07.08
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
Emily :: EMILY-PC [administrator]
 
Protection: Enabled
 
8/7/2013 4:41:02 PM
mbam-log-2013-08-07 (16-41-02).txt
 
Scan type: Full scan (C:\|D:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 402134
Time elapsed: 1 hour(s), 3 minute(s), 58 second(s)
 
Memory Processes Detected: 1
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (PUP.Optional.SweetIM) -> 1144 -> Delete on reboot.
 
Memory Modules Detected: 8
C:\Program Files (x86)\SweetIM\Messenger\mgAdaptersProxy.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgUpdateSupport.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgsimcommon.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgcommon.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgcommunication.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mghooking.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgxml_wrapper.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgconfig.dll (PUP.Optional.SweetIM) -> Delete on reboot.
 
Registry Keys Detected: 32
HKCR\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\Interface\{EEE6C358-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\SWEETIE.IEToolbar.1 (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\SWEETIE.IEToolbar (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\Toolbar3.SWEETIE.1 (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\Toolbar3.SWEETIE (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\CLSID\{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{1BB8B3AE-757D-443F-B3A4-0629E709B0D9} (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
HKCR\Toolbar.CT3289847 (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1BB8B3AE-757D-443F-B3A4-0629E709B0D9} (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1BB8B3AE-757D-443F-B3A4-0629E709B0D9} (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A} (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19} (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\Interface\{A439801C-961D-452C-AB42-7848E9CBD289} (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\MgMediaPlayer.GifAnimator.1 (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\MgMediaPlayer.GifAnimator (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook.1 (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WhiteSmoke_New Toolbar (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
 
Registry Values Detected: 12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SweetIM (PUP.Optional.SweetIM) -> Data: C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Data:  -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Data: @ùsîÅ«K~'”®hz -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Data:  -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Data: WhiteSmoke New Toolbar -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Data:  -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{739DF940-C5EE-4BAB-9D7E-270894AE687A} (PUP.Optional.WhiteSmoke.A) -> Data:  -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{739df940-c5ee-4bab-9d7e-270894ae687a} (PUP.Optional.WhiteSmoke.A) -> Data:  -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{739df940-c5ee-4bab-9d7e-270894ae687a} (PUP.Optional.WhiteSmoke.A) -> Data:  -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{739df940-c5ee-4bab-9d7e-270894ae687a} (PUP.Optional.WhiteSmoke.A) -> Data:  -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\PROGRAM FILES (X86)\SWEETIM\TOOLBARS\INTERNET EXPLORER\MGHELPERAPP.EXE (PUP.Optional.SweetIM) -> Data: 1 -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\PROGRAM FILES (X86)\SWEETIM\TOOLBARS\INTERNET EXPLORER\MGTOOLBARPROXY.DLL (PUP.Optional.SweetIM) -> Data: 1 -> Quarantined and deleted successfully.
 
Registry Data Items Detected: 1
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.Conduit) -> Bad: (http://search.conduit.com?SearchSource=10&CUI=UN23481440126238219&UM=2&ctid=CT3289847&SSPV=TB_CS7) Good: (http://www.google.com) -> Quarantined and repaired successfully.
 
Folders Detected: 1
C:\Program Files (x86)\WhiteSmoke_New (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
 
Files Detected: 63
C:\Program Files (x86)\SweetIM\Messenger\mgAdaptersProxy.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgUpdateSupport.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgsimcommon.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgcommon.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgcommunication.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mghooking.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgxml_wrapper.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Messenger\mgconfig.dll (PUP.Optional.SweetIM) -> Delete on reboot.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\prxtbWhit.dll (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\$Recycle.Bin\S-1-5-21-3205443379-4256330936-1006870947-1000\$fe701b6b144cd079585b9e196f361888\n (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\ContentPackagesActivationHandler.exe (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgArchive.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgFlashPlayer.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgICQAuto.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgICQMessengerAdapter.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mglogger.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgMediaPlayer.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgMsnAuto.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgMsnMessengerAdapter.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgSweetIM.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgYahooAuto.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\mgYahooMessengerAdapter.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Messenger\resources\sqlite\mgSqlite3.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\ClearHist.exe (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgcommon.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgconfig.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mghooking.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mglogger.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\WhiteSmoke_NewToolbarHelper.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\ProgramData\SweetIM\Messenger\update\sweetimsetup.exe (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Conduit\CT3289847\WhiteSmoke_NewAutoUpdateHelper.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\BundleSweetIMSetup.exe (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\dlLogic.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\Installer.exe (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\QuickShare1_20130718.exe (PUP.Optional.QuickShare.A) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\setup__155_20130710.exe (PUP.Optional.Amonetize) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\ToolbarHelper.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\UpdUninstall.exe (PUP.Optional.Amonetize) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\Wajam_download.exe (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\ct3289847\chlogic.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\ct3289847\ctbe.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\ct3289847\ielogic.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Emily\AppData\Local\Temp\ct3289847\statisticsStub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Windows\Installer\37d90180.msi (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Windows\Installer\37d90186.msi (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Users\Emily\Local Settings\TempDIR\BetterInstaller.exe (PUP.BundleInstaller.Somoto) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\ToolbarContextMenu.xml (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\GottenAppsContextMenu.xml (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\hk64tbWhit.dll (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\hktbWhit.dll (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\ldrtbWhit.dll (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\OtherAppsContextMenu.xml (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\SharedAppsContextMenu.xml (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\tbWhit.dll (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\toolbar.cfg (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WhiteSmoke_New\uninstall.exe (PUP.Optional.WhiteSmoke.A) -> Quarantined and deleted successfully.
 
(end)


#4 empaige

empaige
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 07 August 2013 - 06:24 PM

18:15:32.0769 7992  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:15:34.0121 7992  ============================================================
18:15:34.0121 7992  Current date / time: 2013/08/07 18:15:34.0121
18:15:34.0121 7992  SystemInfo:
18:15:34.0121 7992  
18:15:34.0122 7992  OS Version: 6.1.7601 ServicePack: 1.0
18:15:34.0122 7992  Product type: Workstation
18:15:34.0122 7992  ComputerName: EMILY-PC
18:15:34.0122 7992  UserName: Emily
18:15:34.0122 7992  Windows directory: C:\windows
18:15:34.0122 7992  System windows directory: C:\windows
18:15:34.0122 7992  Running under WOW64
18:15:34.0122 7992  Processor architecture: Intel x64
18:15:34.0122 7992  Number of processors: 2
18:15:34.0122 7992  Page size: 0x1000
18:15:34.0122 7992  Boot type: Normal boot
18:15:34.0122 7992  ============================================================
18:15:35.0312 7992  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:15:35.0315 7992  ============================================================
18:15:35.0315 7992  \Device\Harddisk0\DR0:
18:15:35.0315 7992  MBR partitions:
18:15:35.0315 7992  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x2346E000
18:15:35.0315 7992  ============================================================
18:15:35.0375 7992  C: <-> \Device\Harddisk0\DR0\Partition1
18:15:35.0375 7992  ============================================================
18:15:35.0375 7992  Initialize success
18:15:35.0375 7992  ============================================================
18:15:54.0805 7172  ============================================================
18:15:54.0805 7172  Scan started
18:15:54.0805 7172  Mode: Manual; TDLFS; 
18:15:54.0805 7172  ============================================================
18:15:58.0315 7172  ================ Scan system memory ========================
18:15:58.0315 7172  System memory - ok
18:15:58.0318 7172  ================ Scan services =============================
18:15:58.0723 7172  0158351375916384mcinstcleanup - ok
18:15:58.0894 7172  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
18:15:58.0971 7172  1394ohci - ok
18:15:59.0024 7172  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
18:15:59.0029 7172  ACPI - ok
18:15:59.0075 7172  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
18:15:59.0220 7172  AcpiPmi - ok
18:15:59.0373 7172  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:15:59.0380 7172  AdobeFlashPlayerUpdateSvc - ok
18:15:59.0485 7172  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
18:15:59.0497 7172  adp94xx - ok
18:15:59.0577 7172  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\drivers\adpahci.sys
18:15:59.0588 7172  adpahci - ok
18:15:59.0613 7172  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\drivers\adpu320.sys
18:15:59.0620 7172  adpu320 - ok
18:15:59.0661 7172  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
18:15:59.0669 7172  AeLookupSvc - ok
18:15:59.0753 7172  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\windows\system32\drivers\afd.sys
18:15:59.0764 7172  AFD - ok
18:15:59.0833 7172  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
18:15:59.0841 7172  agp440 - ok
18:15:59.0926 7172  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
18:15:59.0948 7172  ALG - ok
18:16:00.0086 7172  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
18:16:00.0090 7172  aliide - ok
18:16:00.0109 7172  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
18:16:00.0133 7172  amdide - ok
18:16:00.0212 7172  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
18:16:00.0217 7172  AmdK8 - ok
18:16:00.0231 7172  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
18:16:00.0238 7172  AmdPPM - ok
18:16:00.0286 7172  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
18:16:00.0368 7172  amdsata - ok
18:16:00.0432 7172  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
18:16:00.0440 7172  amdsbs - ok
18:16:00.0473 7172  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
18:16:00.0524 7172  amdxata - ok
18:16:00.0608 7172  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
18:16:00.0677 7172  AppID - ok
18:16:00.0702 7172  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
18:16:00.0714 7172  AppIDSvc - ok
18:16:00.0791 7172  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\windows\System32\appinfo.dll
18:16:00.0810 7172  Appinfo - ok
18:16:01.0042 7172  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:16:01.0044 7172  Apple Mobile Device - ok
18:16:01.0122 7172  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\drivers\arc.sys
18:16:01.0142 7172  arc - ok
18:16:01.0173 7172  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\drivers\arcsas.sys
18:16:01.0179 7172  arcsas - ok
18:16:01.0239 7172  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
18:16:01.0244 7172  AsyncMac - ok
18:16:01.0270 7172  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
18:16:01.0274 7172  atapi - ok
18:16:01.0362 7172  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
18:16:01.0370 7172  AudioEndpointBuilder - ok
18:16:01.0380 7172  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
18:16:01.0385 7172  AudioSrv - ok
18:16:01.0503 7172  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
18:16:01.0540 7172  AxInstSV - ok
18:16:01.0620 7172  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
18:16:01.0634 7172  b06bdrv - ok
18:16:01.0690 7172  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
18:16:01.0699 7172  b57nd60a - ok
18:16:01.0784 7172  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
18:16:01.0803 7172  BDESVC - ok
18:16:01.0862 7172  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
18:16:01.0868 7172  Beep - ok
18:16:01.0995 7172  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\windows\System32\bfe.dll
18:16:02.0168 7172  BFE - ok
18:16:02.0279 7172  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\windows\System32\qmgr.dll
18:16:02.0423 7172  BITS - ok
18:16:02.0483 7172  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
18:16:02.0488 7172  blbdrive - ok
18:16:02.0600 7172  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:16:02.0603 7172  Bonjour Service - ok
18:16:02.0680 7172  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
18:16:02.0739 7172  bowser - ok
18:16:02.0827 7172  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
18:16:02.0839 7172  BrFiltLo - ok
18:16:02.0886 7172  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
18:16:02.0893 7172  BrFiltUp - ok
18:16:02.0956 7172  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
18:16:02.0960 7172  Browser - ok
18:16:02.0997 7172  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
18:16:03.0006 7172  Brserid - ok
18:16:03.0027 7172  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
18:16:03.0032 7172  BrSerWdm - ok
18:16:03.0104 7172  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
18:16:03.0118 7172  BrUsbMdm - ok
18:16:03.0121 7172  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
18:16:03.0124 7172  BrUsbSer - ok
18:16:03.0142 7172  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
18:16:03.0147 7172  BTHMODEM - ok
18:16:03.0224 7172  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
18:16:03.0249 7172  bthserv - ok
18:16:03.0267 7172  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
18:16:03.0272 7172  cdfs - ok
18:16:03.0327 7172  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
18:16:03.0377 7172  cdrom - ok
18:16:03.0426 7172  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
18:16:03.0511 7172  CertPropSvc - ok
18:16:03.0608 7172  [ D2B3252AD4EB499C935A56467997AA3C ] cfwids          C:\windows\system32\drivers\cfwids.sys
18:16:03.0616 7172  cfwids - ok
18:16:03.0692 7172  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\drivers\circlass.sys
18:16:03.0695 7172  circlass - ok
18:16:03.0728 7172  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
18:16:03.0743 7172  CLFS - ok
18:16:03.0820 7172  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:16:03.0829 7172  clr_optimization_v2.0.50727_32 - ok
18:16:03.0846 7172  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:16:03.0857 7172  clr_optimization_v2.0.50727_64 - ok
18:16:03.0955 7172  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:16:04.0106 7172  clr_optimization_v4.0.30319_32 - ok
18:16:04.0209 7172  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:16:04.0214 7172  clr_optimization_v4.0.30319_64 - ok
18:16:04.0281 7172  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
18:16:04.0287 7172  CmBatt - ok
18:16:04.0290 7172  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
18:16:04.0294 7172  cmdide - ok
18:16:04.0345 7172  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\windows\system32\Drivers\cng.sys
18:16:04.0438 7172  CNG - ok
18:16:04.0492 7172  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
18:16:04.0498 7172  Compbatt - ok
18:16:04.0558 7172  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
18:16:04.0676 7172  CompositeBus - ok
18:16:04.0716 7172  COMSysApp - ok
18:16:04.0747 7172  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
18:16:04.0763 7172  crcdisk - ok
18:16:04.0825 7172  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\windows\system32\cryptsvc.dll
18:16:04.0828 7172  CryptSvc - ok
18:16:05.0012 7172  [ 61A86809B62769643892BC0812B204AA ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
18:16:05.0123 7172  cvhsvc - ok
18:16:05.0219 7172  [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d            C:\windows\system32\DRIVERS\dc3d.sys
18:16:05.0274 7172  dc3d - ok
18:16:05.0355 7172  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
18:16:05.0363 7172  DcomLaunch - ok
18:16:05.0432 7172  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
18:16:05.0456 7172  defragsvc - ok
18:16:05.0543 7172  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
18:16:05.0618 7172  DfsC - ok
18:16:05.0681 7172  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
18:16:05.0696 7172  Dhcp - ok
18:16:05.0724 7172  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
18:16:05.0725 7172  discache - ok
18:16:05.0817 7172  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\drivers\disk.sys
18:16:05.0831 7172  Disk - ok
18:16:05.0868 7172  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
18:16:05.0872 7172  Dnscache - ok
18:16:05.0879 7172  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
18:16:05.0950 7172  dot3svc - ok
18:16:05.0974 7172  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
18:16:05.0977 7172  DPS - ok
18:16:06.0058 7172  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
18:16:06.0069 7172  drmkaud - ok
18:16:06.0120 7172  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
18:16:06.0216 7172  DXGKrnl - ok
18:16:06.0290 7172  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
18:16:06.0295 7172  EapHost - ok
18:16:06.0550 7172  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\drivers\evbda.sys
18:16:06.0700 7172  ebdrv - ok
18:16:06.0733 7172  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\windows\System32\lsass.exe
18:16:06.0785 7172  EFS - ok
18:16:06.0986 7172  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
18:16:07.0176 7172  ehRecvr - ok
18:16:07.0244 7172  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
18:16:07.0265 7172  ehSched - ok
18:16:07.0347 7172  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\drivers\elxstor.sys
18:16:07.0371 7172  elxstor - ok
18:16:07.0386 7172  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
18:16:07.0398 7172  ErrDev - ok
18:16:07.0493 7172  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
18:16:07.0537 7172  EventSystem - ok
18:16:07.0580 7172  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
18:16:07.0602 7172  exfat - ok
18:16:07.0760 7172  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
18:16:07.0786 7172  fastfat - ok
18:16:07.0979 7172  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
18:16:08.0185 7172  Fax - ok
18:16:08.0256 7172  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\drivers\fdc.sys
18:16:08.0264 7172  fdc - ok
18:16:08.0361 7172  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
18:16:08.0378 7172  fdPHost - ok
18:16:08.0415 7172  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
18:16:08.0431 7172  FDResPub - ok
18:16:08.0504 7172  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
18:16:08.0528 7172  FileInfo - ok
18:16:08.0600 7172  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
18:16:08.0610 7172  Filetrace - ok
18:16:08.0801 7172  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
18:16:08.0813 7172  flpydisk - ok
18:16:08.0889 7172  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
18:16:09.0016 7172  FltMgr - ok
18:16:09.0119 7172  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\windows\system32\FntCache.dll
18:16:09.0143 7172  FontCache - ok
18:16:09.0272 7172  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:16:09.0290 7172  FontCache3.0.0.0 - ok
18:16:09.0332 7172  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
18:16:09.0337 7172  FsDepends - ok
18:16:09.0393 7172  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
18:16:09.0494 7172  Fs_Rec - ok
18:16:09.0574 7172  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
18:16:09.0577 7172  fvevol - ok
18:16:09.0692 7172  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
18:16:09.0718 7172  gagp30kx - ok
18:16:09.0872 7172  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
18:16:09.0998 7172  GamesAppService - ok
18:16:10.0162 7172  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
18:16:10.0211 7172  GEARAspiWDM - ok
18:16:10.0346 7172  [ FA07EC01952729DDDDC5BF4BAE06B09E ] GFNEXSrv        C:\Windows\System32\GFNEXSrv.exe
18:16:10.0397 7172  GFNEXSrv - ok
18:16:10.0513 7172  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
18:16:10.0534 7172  gpsvc - ok
18:16:10.0697 7172  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:16:10.0712 7172  gupdate - ok
18:16:10.0788 7172  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:16:10.0789 7172  gupdatem - ok
18:16:10.0865 7172  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
18:16:10.0868 7172  hcw85cir - ok
18:16:10.0999 7172  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:16:11.0079 7172  HdAudAddService - ok
18:16:11.0137 7172  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
18:16:11.0197 7172  HDAudBus - ok
18:16:11.0211 7172  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
18:16:11.0227 7172  HidBatt - ok
18:16:11.0262 7172  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\drivers\hidbth.sys
18:16:11.0268 7172  HidBth - ok
18:16:11.0297 7172  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\drivers\hidir.sys
18:16:11.0318 7172  HidIr - ok
18:16:11.0388 7172  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\system32\hidserv.dll
18:16:11.0406 7172  hidserv - ok
18:16:11.0496 7172  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
18:16:11.0585 7172  HidUsb - ok
18:16:11.0855 7172  [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK      C:\windows\system32\drivers\HipShieldK.sys
18:16:12.0090 7172  HipShieldK - ok
18:16:12.0137 7172  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
18:16:12.0249 7172  hkmsvc - ok
18:16:12.0291 7172  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
18:16:12.0306 7172  HomeGroupListener - ok
18:16:12.0360 7172  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
18:16:12.0379 7172  HomeGroupProvider - ok
18:16:12.0454 7172  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
18:16:12.0603 7172  HpSAMD - ok
18:16:12.0712 7172  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
18:16:12.0757 7172  HTTP - ok
18:16:12.0777 7172  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
18:16:12.0778 7172  hwpolicy - ok
18:16:12.0861 7172  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
18:16:12.0870 7172  i8042prt - ok
18:16:12.0971 7172  [ D469B77687E12FE43E344806740B624D ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
18:16:12.0975 7172  iaStor - ok
18:16:13.0063 7172  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
18:16:13.0234 7172  iaStorV - ok
18:16:13.0352 7172  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:16:13.0566 7172  idsvc - ok
18:16:14.0393 7172  [ 370C2A8629B30F910F740387795DDC6F ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
18:16:15.0393 7172  igfx - ok
18:16:15.0451 7172  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\drivers\iirsp.sys
18:16:15.0467 7172  iirsp - ok
18:16:15.0600 7172  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\windows\System32\ikeext.dll
18:16:15.0659 7172  IKEEXT - ok
18:16:15.0967 7172  [ 028E40182A6F0374978C755F85B9F07C ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
18:16:16.0504 7172  IntcAzAudAddService - ok
18:16:16.0834 7172  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
18:16:16.0912 7172  IntcDAud - ok
18:16:16.0944 7172  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
18:16:16.0953 7172  intelide - ok
18:16:17.0055 7172  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
18:16:17.0061 7172  intelppm - ok
18:16:17.0112 7172  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
18:16:17.0135 7172  IPBusEnum - ok
18:16:17.0157 7172  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
18:16:17.0249 7172  IpFilterDriver - ok
18:16:17.0390 7172  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
18:16:17.0421 7172  iphlpsvc - ok
18:16:17.0433 7172  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
18:16:17.0532 7172  IPMIDRV - ok
18:16:17.0649 7172  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
18:16:17.0661 7172  IPNAT - ok
18:16:17.0933 7172  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
18:16:17.0940 7172  iPod Service - ok
18:16:17.0988 7172  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
18:16:18.0006 7172  IRENUM - ok
18:16:18.0055 7172  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
18:16:18.0063 7172  isapnp - ok
18:16:18.0109 7172  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
18:16:18.0282 7172  iScsiPrt - ok
18:16:18.0329 7172  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
18:16:18.0353 7172  kbdclass - ok
18:16:18.0459 7172  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
18:16:18.0619 7172  kbdhid - ok
18:16:18.0701 7172  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\windows\system32\lsass.exe
18:16:18.0705 7172  KeyIso - ok
18:16:18.0759 7172  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
18:16:18.0835 7172  KSecDD - ok
18:16:18.0891 7172  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
18:16:19.0017 7172  KSecPkg - ok
18:16:19.0099 7172  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
18:16:19.0120 7172  ksthunk - ok
18:16:19.0163 7172  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
18:16:19.0188 7172  KtmRm - ok
18:16:19.0302 7172  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\system32\srvsvc.dll
18:16:19.0314 7172  LanmanServer - ok
18:16:19.0396 7172  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
18:16:19.0410 7172  LanmanWorkstation - ok
18:16:19.0525 7172  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
18:16:19.0536 7172  lltdio - ok
18:16:19.0645 7172  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
18:16:19.0653 7172  lltdsvc - ok
18:16:19.0683 7172  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
18:16:19.0694 7172  lmhosts - ok
18:16:19.0849 7172  [ 7F32D4C47A50E7223491E8FB9359907D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:16:19.0852 7172  LMS - ok
18:16:19.0900 7172  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
18:16:19.0912 7172  LSI_FC - ok
18:16:19.0953 7172  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
18:16:19.0968 7172  LSI_SAS - ok
18:16:20.0009 7172  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
18:16:20.0027 7172  LSI_SAS2 - ok
18:16:20.0072 7172  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
18:16:20.0076 7172  LSI_SCSI - ok
18:16:20.0137 7172  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
18:16:20.0154 7172  luafv - ok
18:16:20.0331 7172  [ 3D1516114F5B1548864D043177F992A6 ] lxeaCATSCustConnectService C:\windows\system32\spool\DRIVERS\x64\3\\lxeaserv.exe
18:16:20.0333 7172  lxeaCATSCustConnectService - ok
18:16:20.0475 7172  lxea_device - ok
18:16:20.0608 7172  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
18:16:20.0696 7172  MBAMProtector - ok
18:16:20.0870 7172  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:16:20.0936 7172  MBAMScheduler - ok
18:16:21.0072 7172  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:16:21.0141 7172  MBAMService - ok
18:16:21.0410 7172  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:16:21.0412 7172  McAfee SiteAdvisor Service - ok
18:16:21.0609 7172  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:16:21.0611 7172  McMPFSvc - ok
18:16:21.0653 7172  [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:16:21.0655 7172  mcmscsvc - ok
18:16:21.0898 7172  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:16:21.0900 7172  McNaiAnn - ok
18:16:22.0087 7172  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc         C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:16:22.0142 7172  McNASvc - ok
18:16:22.0450 7172  [ 5D57D4B57CCC07450F97C4E929D0483F ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
18:16:22.0455 7172  McODS - ok
18:16:22.0687 7172  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy         C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:16:22.0689 7172  McProxy - ok
18:16:22.0849 7172  [ 21F81090A00932C5E96700EDF2977582 ] McShield        C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
18:16:22.0936 7172  McShield - ok
18:16:22.0977 7172  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
18:16:23.0014 7172  Mcx2Svc - ok
18:16:23.0046 7172  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\drivers\megasas.sys
18:16:23.0066 7172  megasas - ok
18:16:23.0088 7172  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
18:16:23.0115 7172  MegaSR - ok
18:16:23.0176 7172  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
18:16:23.0244 7172  MEIx64 - ok
18:16:23.0429 7172  [ B1720E97FABBDF7D30B36DAF19C3DEE8 ] mfeapfk         C:\windows\system32\drivers\mfeapfk.sys
18:16:23.0450 7172  mfeapfk - ok
18:16:23.0756 7172  [ 113F1534B80D65DFDCA660F19967A3B7 ] mfeavfk         C:\windows\system32\drivers\mfeavfk.sys
18:16:24.0014 7172  mfeavfk - ok
18:16:24.0046 7172  mfeavfk01 - ok
18:16:24.0255 7172  [ C4F521310E40327BBC8E8E71DA344F48 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
18:16:24.0375 7172  mfefire - ok
18:16:24.0519 7172  [ CECC9841D036EE008091825272D91331 ] mfefirek        C:\windows\system32\drivers\mfefirek.sys
18:16:24.0554 7172  mfefirek - ok
18:16:24.0712 7172  [ EF0F85EDBDF6C0AB467E88E0CEE2B346 ] mfehidk         C:\windows\system32\drivers\mfehidk.sys
18:16:24.0818 7172  mfehidk - ok
18:16:25.0023 7172  [ 6E3A46BF6CBB80450CC24F80FE03ED5A ] mferkdet        C:\windows\system32\drivers\mferkdet.sys
18:16:25.0043 7172  mferkdet - ok
18:16:25.0271 7172  [ 341BFCAA3A55C08E8C9ECB1654ACA905 ] mfevtp          C:\windows\system32\mfevtps.exe
18:16:25.0273 7172  mfevtp - ok
18:16:25.0419 7172  [ 2802D09F1B6ED502237539563F3C4992 ] mfewfpk         C:\windows\system32\drivers\mfewfpk.sys
18:16:25.0634 7172  mfewfpk - ok
18:16:25.0682 7172  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
18:16:25.0697 7172  MMCSS - ok
18:16:25.0712 7172  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
18:16:25.0715 7172  Modem - ok
18:16:25.0856 7172  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
18:16:25.0863 7172  monitor - ok
18:16:25.0918 7172  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
18:16:25.0930 7172  mouclass - ok
18:16:26.0054 7172  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
18:16:26.0065 7172  mouhid - ok
18:16:26.0100 7172  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
18:16:26.0102 7172  mountmgr - ok
18:16:26.0151 7172  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
18:16:26.0246 7172  mpio - ok
18:16:26.0298 7172  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
18:16:26.0309 7172  mpsdrv - ok
18:16:26.0421 7172  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\windows\system32\mpssvc.dll
18:16:26.0472 7172  MpsSvc - ok
18:16:26.0492 7172  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
18:16:26.0590 7172  MRxDAV - ok
18:16:26.0634 7172  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
18:16:26.0822 7172  mrxsmb - ok
18:16:26.0857 7172  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
18:16:27.0002 7172  mrxsmb10 - ok
18:16:27.0020 7172  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
18:16:27.0165 7172  mrxsmb20 - ok
18:16:27.0209 7172  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\DRIVERS\msahci.sys
18:16:27.0331 7172  msahci - ok
18:16:27.0351 7172  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
18:16:27.0410 7172  msdsm - ok
18:16:27.0451 7172  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
18:16:27.0459 7172  MSDTC - ok
18:16:27.0565 7172  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
18:16:27.0575 7172  Msfs - ok
18:16:27.0596 7172  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
18:16:27.0601 7172  mshidkmdf - ok
18:16:27.0620 7172  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
18:16:27.0637 7172  msisadrv - ok
18:16:27.0742 7172  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
18:16:27.0761 7172  MSiSCSI - ok
18:16:27.0777 7172  msiserver - ok
18:16:27.0911 7172  [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service    C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:16:27.0922 7172  MSK80Service - ok
18:16:28.0020 7172  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
18:16:28.0033 7172  MSKSSRV - ok
18:16:28.0096 7172  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
18:16:28.0108 7172  MSPCLOCK - ok
18:16:28.0174 7172  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
18:16:28.0180 7172  MSPQM - ok
18:16:28.0233 7172  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
18:16:28.0331 7172  MsRPC - ok
18:16:28.0364 7172  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
18:16:28.0368 7172  mssmbios - ok
18:16:28.0435 7172  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
18:16:28.0446 7172  MSTEE - ok
18:16:28.0486 7172  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
18:16:28.0497 7172  MTConfig - ok
18:16:28.0519 7172  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
18:16:28.0531 7172  Mup - ok
18:16:28.0591 7172  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
18:16:28.0714 7172  napagent - ok
18:16:28.0883 7172  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
18:16:28.0894 7172  NativeWifiP - ok
18:16:29.0125 7172  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
18:16:29.0157 7172  NDIS - ok
18:16:29.0251 7172  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
18:16:29.0265 7172  NdisCap - ok
18:16:29.0362 7172  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
18:16:29.0386 7172  NdisTapi - ok
18:16:29.0452 7172  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
18:16:29.0516 7172  Ndisuio - ok
18:16:29.0546 7172  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
18:16:29.0702 7172  NdisWan - ok
18:16:29.0739 7172  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
18:16:29.0916 7172  NDProxy - ok
18:16:29.0960 7172  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
18:16:29.0967 7172  NetBIOS - ok
18:16:30.0058 7172  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
18:16:30.0066 7172  NetBT - ok
18:16:30.0089 7172  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\windows\system32\lsass.exe
18:16:30.0101 7172  Netlogon - ok
18:16:30.0203 7172  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
18:16:30.0210 7172  Netman - ok
18:16:30.0237 7172  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
18:16:30.0255 7172  netprofm - ok
18:16:30.0282 7172  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:16:30.0295 7172  NetTcpPortSharing - ok
18:16:30.0370 7172  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
18:16:30.0379 7172  nfrd960 - ok
18:16:30.0505 7172  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
18:16:30.0511 7172  NlaSvc - ok
18:16:30.0743 7172  [ 6A12E8B9CA7A29BB9A7B536F851D3DF3 ] Norton PC Checkup Application Launcher C:\Program Files (x86)\PC Checkup\SymcPCCULaunchSvc.exe
18:16:30.0747 7172  Norton PC Checkup Application Launcher - ok
18:16:30.0779 7172  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
18:16:30.0782 7172  Npfs - ok
18:16:30.0826 7172  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
18:16:30.0848 7172  nsi - ok
18:16:30.0894 7172  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
18:16:30.0896 7172  nsiproxy - ok
18:16:31.0076 7172  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
18:16:31.0386 7172  Ntfs - ok
18:16:31.0551 7172  [ 317020D31F1696334679B9D0416EB62E ] NuidFltr        C:\windows\system32\DRIVERS\NuidFltr.sys
18:16:31.0701 7172  NuidFltr - ok
18:16:31.0738 7172  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
18:16:31.0747 7172  Null - ok
18:16:31.0809 7172  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
18:16:31.0919 7172  nvraid - ok
18:16:32.0019 7172  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
18:16:32.0099 7172  nvstor - ok
18:16:32.0142 7172  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
18:16:32.0188 7172  nv_agp - ok
18:16:32.0207 7172  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
18:16:32.0222 7172  ohci1394 - ok
18:16:32.0273 7172  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:16:32.0435 7172  ose - ok
18:16:33.0169 7172  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:16:34.0653 7172  osppsvc - ok
18:16:34.0745 7172  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
18:16:34.0768 7172  p2pimsvc - ok
18:16:34.0851 7172  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
18:16:34.0870 7172  p2psvc - ok
18:16:34.0941 7172  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\drivers\parport.sys
18:16:34.0953 7172  Parport - ok
18:16:35.0004 7172  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
18:16:35.0088 7172  partmgr - ok
18:16:35.0130 7172  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
18:16:35.0148 7172  PcaSvc - ok
18:16:35.0275 7172  [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr      C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
18:16:35.0276 7172  PCCUJobMgr - ok
18:16:35.0354 7172  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
18:16:35.0358 7172  pci - ok
18:16:35.0406 7172  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\DRIVERS\pciide.sys
18:16:35.0411 7172  pciide - ok
18:16:35.0434 7172  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
18:16:35.0469 7172  pcmcia - ok
18:16:35.0500 7172  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
18:16:35.0528 7172  pcw - ok
18:16:35.0644 7172  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
18:16:35.0669 7172  PEAUTH - ok
18:16:35.0895 7172  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
18:16:35.0910 7172  PerfHost - ok
18:16:36.0018 7172  [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect        C:\windows\system32\DRIVERS\pgeffect.sys
18:16:36.0091 7172  PGEffect - ok
18:16:36.0292 7172  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
18:16:36.0465 7172  pla - ok
18:16:36.0576 7172  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
18:16:36.0607 7172  PlugPlay - ok
18:16:36.0655 7172  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
18:16:36.0669 7172  PNRPAutoReg - ok
18:16:36.0716 7172  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
18:16:36.0719 7172  PNRPsvc - ok
18:16:36.0814 7172  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\windows\system32\DRIVERS\point64.sys
18:16:36.0953 7172  Point64 - ok
18:16:37.0037 7172  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
18:16:37.0047 7172  PolicyAgent - ok
18:16:37.0118 7172  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
18:16:37.0126 7172  Power - ok
18:16:37.0203 7172  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
18:16:37.0205 7172  PptpMiniport - ok
18:16:37.0233 7172  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\drivers\processr.sys
18:16:37.0237 7172  Processor - ok
18:16:37.0282 7172  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
18:16:37.0298 7172  ProfSvc - ok
18:16:37.0312 7172  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
18:16:37.0326 7172  ProtectedStorage - ok
18:16:37.0396 7172  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
18:16:37.0398 7172  Psched - ok
18:16:37.0584 7172  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\drivers\ql2300.sys
18:16:37.0673 7172  ql2300 - ok
18:16:37.0733 7172  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
18:16:37.0749 7172  ql40xx - ok
18:16:37.0787 7172  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
18:16:37.0807 7172  QWAVE - ok
18:16:37.0843 7172  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
18:16:37.0865 7172  QWAVEdrv - ok
18:16:37.0894 7172  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
18:16:37.0898 7172  RasAcd - ok
18:16:38.0013 7172  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
18:16:38.0032 7172  RasAgileVpn - ok
18:16:38.0062 7172  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
18:16:38.0085 7172  RasAuto - ok
18:16:38.0163 7172  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
18:16:38.0329 7172  Rasl2tp - ok
18:16:38.0359 7172  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
18:16:38.0435 7172  RasMan - ok
18:16:38.0488 7172  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
18:16:38.0490 7172  RasPppoe - ok
18:16:38.0520 7172  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
18:16:38.0522 7172  RasSstp - ok
18:16:38.0567 7172  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
18:16:38.0753 7172  rdbss - ok
18:16:38.0794 7172  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
18:16:38.0806 7172  rdpbus - ok
18:16:38.0825 7172  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
18:16:38.0827 7172  RDPCDD - ok
18:16:38.0876 7172  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
18:16:38.0878 7172  RDPENCDD - ok
18:16:38.0974 7172  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
18:16:38.0987 7172  RDPREFMP - ok
18:16:39.0051 7172  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
18:16:39.0171 7172  RDPWD - ok
18:16:39.0224 7172  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
18:16:39.0364 7172  rdyboost - ok
18:16:39.0416 7172  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
18:16:39.0430 7172  RemoteAccess - ok
18:16:39.0483 7172  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
18:16:39.0498 7172  RemoteRegistry - ok
18:16:39.0528 7172  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
18:16:39.0539 7172  RpcEptMapper - ok
18:16:39.0593 7172  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
18:16:39.0606 7172  RpcLocator - ok
18:16:39.0690 7172  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
18:16:39.0695 7172  RpcSs - ok
18:16:39.0819 7172  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
18:16:39.0823 7172  rspndr - ok
18:16:40.0021 7172  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
18:16:40.0126 7172  RSUSBSTOR - ok
18:16:40.0275 7172  [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
18:16:40.0420 7172  RTL8167 - ok
18:16:40.0586 7172  [ E7D79600575F755614DD5D79B044D588 ] RTL8192Ce       C:\windows\system32\DRIVERS\rtl8192Ce.sys
18:16:40.0667 7172  RTL8192Ce - ok
18:16:40.0701 7172  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\windows\system32\lsass.exe
18:16:40.0705 7172  SamSs - ok
18:16:40.0778 7172  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
18:16:40.0946 7172  sbp2port - ok
18:16:41.0044 7172  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
18:16:41.0068 7172  SCardSvr - ok
18:16:41.0142 7172  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
18:16:41.0262 7172  scfilter - ok
18:16:41.0348 7172  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
18:16:41.0371 7172  Schedule - ok
18:16:41.0415 7172  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
18:16:41.0417 7172  SCPolicySvc - ok
18:16:41.0498 7172  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
18:16:41.0578 7172  SDRSVC - ok
18:16:41.0716 7172  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
18:16:41.0723 7172  secdrv - ok
18:16:41.0836 7172  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
18:16:42.0001 7172  seclogon - ok
18:16:42.0032 7172  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\System32\sens.dll
18:16:42.0061 7172  SENS - ok
18:16:42.0092 7172  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
18:16:42.0114 7172  SensrSvc - ok
18:16:42.0160 7172  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\drivers\serenum.sys
18:16:42.0164 7172  Serenum - ok
18:16:42.0237 7172  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\drivers\serial.sys
18:16:42.0259 7172  Serial - ok
18:16:42.0300 7172  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\drivers\sermouse.sys
18:16:42.0304 7172  sermouse - ok
18:16:42.0393 7172  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
18:16:42.0446 7172  SessionEnv - ok
18:16:42.0514 7172  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
18:16:42.0563 7172  sffdisk - ok
18:16:42.0578 7172  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
18:16:42.0597 7172  sffp_mmc - ok
18:16:42.0606 7172  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
18:16:42.0831 7172  sffp_sd - ok
18:16:42.0891 7172  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
18:16:42.0920 7172  sfloppy - ok
18:16:43.0185 7172  [ D5183ED285D2795491DC15BDDCBEE5AD ] Sftfs           C:\windows\system32\DRIVERS\Sftfslh.sys
18:16:43.0320 7172  Sftfs - ok
18:16:43.0528 7172  [ BFDB58616FF5EA540A5F58301D50641E ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
18:16:43.0738 7172  sftlist - ok
18:16:43.0776 7172  [ 76A827DF5640BFE16A0CDBB4108ADECA ] Sftredir        C:\windows\system32\DRIVERS\Sftredirlh.sys
18:16:43.0879 7172  Sftredir - ok
18:16:43.0895 7172  [ 1B4C9701645086BAB8CAFFFCE30ED284 ] Sftvol          C:\windows\system32\DRIVERS\Sftvollh.sys
18:16:44.0036 7172  Sftvol - ok
18:16:44.0070 7172  [ B94C3C4DCA2093243C76CA218EDE2A97 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
18:16:44.0072 7172  sftvsa - ok
18:16:44.0203 7172  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
18:16:44.0214 7172  SharedAccess - ok
18:16:44.0324 7172  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
18:16:44.0344 7172  ShellHWDetection - ok
18:16:44.0430 7172  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
18:16:44.0443 7172  SiSRaid2 - ok
18:16:44.0479 7172  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
18:16:44.0504 7172  SiSRaid4 - ok
18:16:44.0562 7172  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
18:16:44.0574 7172  Smb - ok
18:16:44.0710 7172  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
18:16:44.0731 7172  SNMPTRAP - ok
18:16:44.0746 7172  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
18:16:44.0751 7172  spldr - ok
18:16:44.0814 7172  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
18:16:44.0869 7172  Spooler - ok
18:16:45.0014 7172  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
18:16:45.0093 7172  sppsvc - ok
18:16:45.0128 7172  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
18:16:45.0135 7172  sppuinotify - ok
18:16:45.0218 7172  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
18:16:45.0308 7172  srv - ok
18:16:45.0334 7172  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
18:16:45.0404 7172  srv2 - ok
18:16:45.0451 7172  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
18:16:45.0574 7172  srvnet - ok
18:16:45.0687 7172  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
18:16:45.0697 7172  SSDPSRV - ok
18:16:45.0738 7172  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
18:16:45.0758 7172  SstpSvc - ok
18:16:45.0779 7172  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\drivers\stexstor.sys
18:16:45.0783 7172  stexstor - ok
18:16:45.0856 7172  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
18:16:45.0865 7172  stisvc - ok
18:16:45.0886 7172  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
18:16:45.0890 7172  swenum - ok
18:16:45.0948 7172  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
18:16:45.0976 7172  swprv - ok
18:16:46.0140 7172  [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
18:16:46.0208 7172  SynTP - ok
18:16:46.0313 7172  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
18:16:46.0334 7172  SysMain - ok
18:16:46.0357 7172  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
18:16:46.0443 7172  TabletInputService - ok
18:16:46.0483 7172  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
18:16:46.0576 7172  TapiSrv - ok
18:16:46.0611 7172  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
18:16:46.0616 7172  TBS - ok
18:16:46.0756 7172  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\windows\system32\drivers\tcpip.sys
18:16:46.0820 7172  Tcpip - ok
18:16:46.0965 7172  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
18:16:46.0988 7172  TCPIP6 - ok
18:16:47.0022 7172  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
18:16:47.0121 7172  tcpipreg - ok
18:16:47.0160 7172  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\windows\system32\DRIVERS\tdcmdpst.sys
18:16:47.0222 7172  tdcmdpst - ok
18:16:47.0266 7172  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
18:16:47.0294 7172  TDPIPE - ok
18:16:47.0331 7172  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
18:16:47.0402 7172  TDTCP - ok
18:16:47.0454 7172  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
18:16:47.0507 7172  tdx - ok
18:16:47.0531 7172  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
18:16:47.0602 7172  TermDD - ok
18:16:47.0663 7172  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
18:16:47.0748 7172  TermService - ok
18:16:47.0779 7172  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
18:16:47.0782 7172  Themes - ok
18:16:47.0794 7172  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
18:16:47.0796 7172  THREADORDER - ok
18:16:47.0868 7172  [ 71C321649B28638EE80A2EEB164C1DC8 ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
18:16:47.0869 7172  TMachInfo - ok
18:16:47.0909 7172  [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv         C:\windows\system32\TODDSrv.exe
18:16:47.0912 7172  TODDSrv - ok
18:16:48.0078 7172  [ 1C73689B900428C7D054A41C4687F55C ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
18:16:48.0082 7172  TosCoSrv - ok
18:16:48.0144 7172  [ 63AAFCF3EA5DBB17123E0BAE9AFE4D58 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
18:16:48.0147 7172  TOSHIBA eco Utility Service - ok
18:16:48.0196 7172  [ 29D0886CF250FCEF1BF9E65AB8D2C0C8 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
18:16:48.0199 7172  TOSHIBA HDD SSD Alert Service - ok
18:16:48.0243 7172  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\windows\system32\DRIVERS\tos_sps64.sys
18:16:48.0366 7172  tos_sps64 - ok
18:16:48.0476 7172  [ 098B8A408C17E125A3D9A8E1166780C8 ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
18:16:48.0613 7172  TPCHSrv - ok
18:16:48.0683 7172  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
18:16:48.0699 7172  TrkWks - ok
18:16:48.0755 7172  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:16:48.0757 7172  TrustedInstaller - ok
18:16:48.0806 7172  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
18:16:48.0885 7172  tssecsrv - ok
18:16:48.0928 7172  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
18:16:49.0002 7172  TsUsbFlt - ok
18:16:49.0014 7172  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
18:16:49.0083 7172  TsUsbGD - ok
18:16:49.0185 7172  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
18:16:49.0187 7172  tunnel - ok
18:16:49.0304 7172  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\windows\system32\DRIVERS\TVALZ_O.SYS
18:16:49.0419 7172  TVALZ - ok
18:16:49.0458 7172  [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL         C:\windows\system32\DRIVERS\TVALZFL.sys
18:16:49.0522 7172  TVALZFL - ok
18:16:49.0534 7172  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\drivers\uagp35.sys
18:16:49.0539 7172  uagp35 - ok
18:16:49.0582 7172  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
18:16:49.0698 7172  udfs - ok
18:16:49.0728 7172  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
18:16:49.0730 7172  UI0Detect - ok
18:16:49.0796 7172  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
18:16:49.0800 7172  uliagpkx - ok
18:16:49.0871 7172  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
18:16:49.0933 7172  umbus - ok
18:16:49.0955 7172  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\drivers\umpass.sys
18:16:49.0961 7172  UmPass - ok
18:16:50.0124 7172  [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:16:50.0141 7172  UNS - ok
18:16:50.0178 7172  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
18:16:50.0183 7172  upnphost - ok
18:16:50.0260 7172  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
18:16:50.0334 7172  USBAAPL64 - ok
18:16:50.0369 7172  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
18:16:50.0449 7172  usbccgp - ok
18:16:50.0501 7172  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\drivers\usbcir.sys
18:16:50.0506 7172  usbcir - ok
18:16:50.0525 7172  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\windows\system32\DRIVERS\usbehci.sys
18:16:50.0595 7172  usbehci - ok
18:16:50.0615 7172  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
18:16:50.0716 7172  usbhub - ok
18:16:50.0732 7172  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\windows\system32\drivers\usbohci.sys
18:16:50.0842 7172  usbohci - ok
18:16:50.0898 7172  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
18:16:50.0902 7172  usbprint - ok
18:16:50.0923 7172  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
18:16:50.0926 7172  usbscan - ok
18:16:50.0951 7172  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
18:16:51.0018 7172  USBSTOR - ok
18:16:51.0033 7172  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
18:16:51.0126 7172  usbuhci - ok
18:16:51.0188 7172  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\windows\system32\Drivers\usbvideo.sys
18:16:51.0274 7172  usbvideo - ok
18:16:51.0299 7172  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
18:16:51.0304 7172  UxSms - ok
18:16:51.0324 7172  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\windows\system32\lsass.exe
18:16:51.0326 7172  VaultSvc - ok
18:16:51.0366 7172  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
18:16:51.0372 7172  vdrvroot - ok
18:16:51.0398 7172  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
18:16:51.0474 7172  vds - ok
18:16:51.0521 7172  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
18:16:51.0525 7172  vga - ok
18:16:51.0529 7172  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
18:16:51.0534 7172  VgaSave - ok
18:16:51.0551 7172  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
18:16:51.0643 7172  vhdmp - ok
18:16:51.0665 7172  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
18:16:51.0689 7172  viaide - ok
18:16:51.0726 7172  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
18:16:51.0801 7172  volmgr - ok
18:16:51.0847 7172  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
18:16:51.0851 7172  volmgrx - ok
18:16:51.0880 7172  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\windows\system32\drivers\volsnap.sys
18:16:51.0972 7172  volsnap - ok
18:16:52.0089 7172  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
18:16:52.0103 7172  vsmraid - ok
18:16:52.0304 7172  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
18:16:52.0422 7172  VSS - ok
18:16:52.0443 7172  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
18:16:52.0446 7172  vwifibus - ok
18:16:52.0488 7172  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
18:16:52.0495 7172  vwififlt - ok
18:16:52.0533 7172  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
18:16:52.0538 7172  vwifimp - ok
18:16:52.0564 7172  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
18:16:52.0575 7172  W32Time - ok
18:16:52.0609 7172  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\drivers\wacompen.sys
18:16:52.0621 7172  WacomPen - ok
18:16:52.0693 7172  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
18:16:52.0773 7172  WANARP - ok
18:16:52.0778 7172  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
18:16:52.0779 7172  Wanarpv6 - ok
18:16:52.0862 7172  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
18:16:52.0993 7172  WatAdminSvc - ok
18:16:53.0066 7172  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
18:16:53.0181 7172  wbengine - ok
18:16:53.0231 7172  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
18:16:53.0239 7172  WbioSrvc - ok
18:16:53.0257 7172  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
18:16:53.0337 7172  wcncsvc - ok
18:16:53.0362 7172  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:16:53.0368 7172  WcsPlugInService - ok
18:16:53.0411 7172  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\drivers\wd.sys
18:16:53.0415 7172  Wd - ok
18:16:53.0480 7172  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
18:16:53.0575 7172  Wdf01000 - ok
18:16:53.0592 7172  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
18:16:53.0595 7172  WdiServiceHost - ok
18:16:53.0600 7172  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
18:16:53.0602 7172  WdiSystemHost - ok
18:16:53.0632 7172  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\windows\System32\webclnt.dll
18:16:53.0694 7172  WebClient - ok
18:16:53.0722 7172  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
18:16:53.0732 7172  Wecsvc - ok
18:16:53.0742 7172  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
18:16:53.0745 7172  wercplsupport - ok
18:16:53.0789 7172  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
18:16:53.0792 7172  WerSvc - ok
18:16:53.0864 7172  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
18:16:53.0867 7172  WfpLwf - ok
18:16:53.0889 7172  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
18:16:53.0892 7172  WIMMount - ok
18:16:53.0906 7172  WinDefend - ok
18:16:53.0912 7172  WinHttpAutoProxySvc - ok
18:16:54.0198 7172  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
18:16:54.0202 7172  Winmgmt - ok
18:16:54.0368 7172  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
18:16:54.0426 7172  WinRM - ok
18:16:54.0502 7172  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
18:16:54.0571 7172  WinUsb - ok
18:16:54.0618 7172  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
18:16:54.0630 7172  Wlansvc - ok
18:16:54.0708 7172  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:16:54.0778 7172  wlcrasvc - ok
18:16:54.0896 7172  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:16:54.0920 7172  wlidsvc - ok
18:16:54.0974 7172  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
18:16:54.0978 7172  WmiAcpi - ok
18:16:55.0018 7172  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
18:16:55.0026 7172  wmiApSrv - ok
18:16:55.0090 7172  WMPNetworkSvc - ok
18:16:55.0131 7172  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
18:16:55.0158 7172  WPCSvc - ok
18:16:55.0268 7172  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
18:16:55.0348 7172  WPDBusEnum - ok
18:16:55.0405 7172  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
18:16:55.0418 7172  ws2ifsl - ok
18:16:55.0455 7172  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\windows\System32\wscsvc.dll
18:16:55.0459 7172  wscsvc - ok
18:16:55.0463 7172  WSearch - ok
18:16:55.0565 7172  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
18:16:55.0596 7172  wuauserv - ok
18:16:55.0652 7172  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
18:16:55.0773 7172  WudfPf - ok
18:16:55.0853 7172  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
18:16:55.0943 7172  WUDFRd - ok
18:16:55.0982 7172  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
18:16:56.0272 7172  wudfsvc - ok
18:16:56.0414 7172  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\windows\System32\wwansvc.dll
18:16:56.0457 7172  WwanSvc - ok
18:16:56.0788 7172  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
18:16:56.0793 7172  YahooAUService - ok
18:16:56.0856 7172  ================ Scan global ===============================
18:16:56.0908 7172  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
18:16:56.0955 7172  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
18:16:57.0035 7172  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
18:16:57.0063 7172  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
18:16:57.0085 7172  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
18:16:57.0091 7172  [Global] - ok
18:16:57.0091 7172  ================ Scan MBR ==================================
18:16:57.0104 7172  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
18:16:57.0588 7172  \Device\Harddisk0\DR0 - ok
18:16:57.0589 7172  ================ Scan VBR ==================================
18:16:57.0644 7172  [ EEBFFFE9D8094D6615FD4D9C9E467CDE ] \Device\Harddisk0\DR0\Partition1
18:16:57.0689 7172  \Device\Harddisk0\DR0\Partition1 - ok
18:16:57.0689 7172  ============================================================
18:16:57.0689 7172  Scan finished
18:16:57.0689 7172  ============================================================
18:16:57.0704 5236  Detected object count: 0
18:16:57.0704 5236  Actual detected object count: 0


#5 monkeymom

monkeymom

  • Members
  • 47 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 08 August 2013 - 07:50 AM

C:\Users\Emily\jqs.exe a variant of Win32/Kryptik.BHMF trojan
C:\Users\Emily\AppData\Local\Google\Chrome\User Data\Default\Users\mmobgjkdejmodgeigjdjejahipfceeam\background.js Win32/TrojanDownloader.Tracur.AH trojan
C:\Users\Emily\AppData\Local\Google\Chrome\User Data\Default\Users\mmobgjkdejmodgeigjdjejahipfceeam\cs.js Win32/TrojanDownloader.Tracur.AH trojan
C:\Users\Emily\AppData\Local\Temp\DB56.tmp Win32/OpenCandy application
C:\Users\Emily\AppData\Local\Temp\jar_cache4534198134137851085.tmp a variant of Java/Exploit.CVE-2012-4681.DD trojan
C:\Users\Emily\AppData\Local\Temp\PCFixSpeedSetup_253.exe multiple threats
C:\Users\Emily\AppData\Local\Temp\SolidSavings_20130712.exe a variant of Win32/Packed.VMDetector.A application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\BrowserConnection.dll Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\DataMngr.dll Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\DataMngrUI.exe a variant of Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\DnsBHO.dll Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\IEBHO.dll Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\x64\DataMngr.dll a variant of Win64/Toolbar.SearchSuite.A application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\x64\IEBHO.dll a variant of Win64/Toolbar.SearchSuite.A application
C:\Users\Emily\AppData\Local\Temp\nsyA8CD.tmp\util_ex.dll a variant of Win32/ExFriendAlert.B application
C:\Users\Emily\AppData\Local\Temp\~nsu.tmp\Au_.exe a variant of Win32/ExFriendAlert.B application


#6 monkeymom

monkeymom

  • Members
  • 47 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 08 August 2013 - 08:03 AM

posted for a friend  above.  her computer is not allowing her to post last log.  



#7 empaige

empaige
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 09 August 2013 - 02:23 PM

Anyone still here to help? Maybe I should run scans again?? 



#8 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:35 AM

Posted 09 August 2013 - 04:01 PM

:step1:  Run them again.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#9 empaige

empaige
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 09 August 2013 - 05:25 PM

should I still have it NOT remove found threats as listed in ESET scan instructions above?

Thanks for all of your help!! :)



#10 empaige

empaige
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 09 August 2013 - 07:42 PM

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.08.09.07
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
Emily :: EMILY-PC [administrator]
 
Protection: Enabled
 
8/9/2013 5:30:08 PM
mbam-log-2013-08-09 (17-30-08).txt
 
Scan type: Full scan (C:\|D:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 392615
Time elapsed: 1 hour(s), 37 minute(s), 15 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 1
C:\Users\Emily\csrss.exe (Trojan.Agent) -> Quarantined and deleted successfully.
 
(end)


19:39:45.0838 8320  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:39:47.0573 8320  ============================================================
19:39:47.0574 8320  Current date / time: 2013/08/09 19:39:47.0573
19:39:47.0574 8320  SystemInfo:
19:39:47.0574 8320  
19:39:47.0613 8320  OS Version: 6.1.7601 ServicePack: 1.0
19:39:47.0613 8320  Product type: Workstation
19:39:47.0614 8320  ComputerName: EMILY-PC
19:39:47.0614 8320  UserName: Emily
19:39:47.0614 8320  Windows directory: C:\windows
19:39:47.0614 8320  System windows directory: C:\windows
19:39:47.0614 8320  Running under WOW64
19:39:47.0614 8320  Processor architecture: Intel x64
19:39:47.0614 8320  Number of processors: 2
19:39:47.0614 8320  Page size: 0x1000
19:39:47.0614 8320  Boot type: Normal boot
19:39:47.0614 8320  ============================================================
19:39:48.0441 8320  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:39:48.0444 8320  ============================================================
19:39:48.0444 8320  \Device\Harddisk0\DR0:
19:39:48.0445 8320  MBR partitions:
19:39:48.0445 8320  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x2346E000
19:39:48.0445 8320  ============================================================
19:39:48.0475 8320  C: <-> \Device\Harddisk0\DR0\Partition1
19:39:48.0475 8320  ============================================================
19:39:48.0475 8320  Initialize success
19:39:48.0475 8320  ============================================================
19:40:22.0198 5940  ============================================================
19:40:22.0198 5940  Scan started
19:40:22.0198 5940  Mode: Manual; TDLFS; 
19:40:22.0198 5940  ============================================================
19:40:23.0179 5940  ================ Scan system memory ========================
19:40:23.0179 5940  System memory - ok
19:40:23.0180 5940  ================ Scan services =============================
19:40:23.0512 5940  0137641376086334mcinstcleanup - ok
19:40:23.0648 5940  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
19:40:23.0740 5940  1394ohci - ok
19:40:23.0790 5940  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
19:40:23.0798 5940  ACPI - ok
19:40:23.0860 5940  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
19:40:23.0939 5940  AcpiPmi - ok
19:40:24.0124 5940  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:40:24.0130 5940  AdobeFlashPlayerUpdateSvc - ok
19:40:24.0206 5940  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
19:40:24.0234 5940  adp94xx - ok
19:40:24.0306 5940  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\drivers\adpahci.sys
19:40:24.0329 5940  adpahci - ok
19:40:24.0399 5940  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\drivers\adpu320.sys
19:40:24.0415 5940  adpu320 - ok
19:40:24.0457 5940  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
19:40:24.0461 5940  AeLookupSvc - ok
19:40:24.0541 5940  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\windows\system32\drivers\afd.sys
19:40:24.0554 5940  AFD - ok
19:40:24.0617 5940  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
19:40:24.0628 5940  agp440 - ok
19:40:24.0689 5940  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
19:40:24.0700 5940  ALG - ok
19:40:24.0770 5940  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
19:40:24.0780 5940  aliide - ok
19:40:24.0787 5940  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
19:40:24.0793 5940  amdide - ok
19:40:24.0808 5940  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
19:40:24.0818 5940  AmdK8 - ok
19:40:24.0839 5940  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
19:40:24.0848 5940  AmdPPM - ok
19:40:24.0905 5940  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
19:40:25.0001 5940  amdsata - ok
19:40:25.0015 5940  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
19:40:25.0025 5940  amdsbs - ok
19:40:25.0035 5940  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
19:40:25.0097 5940  amdxata - ok
19:40:25.0148 5940  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
19:40:25.0152 5940  AppID - ok
19:40:25.0187 5940  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
19:40:25.0190 5940  AppIDSvc - ok
19:40:25.0221 5940  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\windows\System32\appinfo.dll
19:40:25.0224 5940  Appinfo - ok
19:40:25.0382 5940  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:40:25.0487 5940  Apple Mobile Device - ok
19:40:25.0551 5940  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\drivers\arc.sys
19:40:25.0560 5940  arc - ok
19:40:25.0580 5940  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\drivers\arcsas.sys
19:40:25.0595 5940  arcsas - ok
19:40:25.0635 5940  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
19:40:25.0646 5940  AsyncMac - ok
19:40:25.0680 5940  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
19:40:25.0687 5940  atapi - ok
19:40:25.0752 5940  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
19:40:25.0767 5940  AudioEndpointBuilder - ok
19:40:25.0786 5940  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
19:40:25.0797 5940  AudioSrv - ok
19:40:25.0877 5940  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
19:40:25.0881 5940  AxInstSV - ok
19:40:25.0942 5940  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
19:40:25.0965 5940  b06bdrv - ok
19:40:26.0032 5940  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
19:40:26.0049 5940  b57nd60a - ok
19:40:26.0113 5940  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
19:40:26.0118 5940  BDESVC - ok
19:40:26.0147 5940  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
19:40:26.0149 5940  Beep - ok
19:40:26.0240 5940  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\windows\System32\bfe.dll
19:40:26.0257 5940  BFE - ok
19:40:26.0303 5940  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\windows\System32\qmgr.dll
19:40:26.0427 5940  BITS - ok
19:40:26.0490 5940  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
19:40:26.0505 5940  blbdrive - ok
19:40:26.0610 5940  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:40:26.0707 5940  Bonjour Service - ok
19:40:26.0776 5940  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
19:40:26.0780 5940  bowser - ok
19:40:26.0800 5940  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
19:40:26.0814 5940  BrFiltLo - ok
19:40:26.0848 5940  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
19:40:26.0853 5940  BrFiltUp - ok
19:40:26.0895 5940  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
19:40:26.0897 5940  Browser - ok
19:40:26.0950 5940  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
19:40:26.0976 5940  Brserid - ok
19:40:27.0000 5940  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
19:40:27.0005 5940  BrSerWdm - ok
19:40:27.0033 5940  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
19:40:27.0037 5940  BrUsbMdm - ok
19:40:27.0041 5940  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
19:40:27.0044 5940  BrUsbSer - ok
19:40:27.0060 5940  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
19:40:27.0063 5940  BTHMODEM - ok
19:40:27.0097 5940  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
19:40:27.0100 5940  bthserv - ok
19:40:27.0162 5940  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
19:40:27.0164 5940  cdfs - ok
19:40:27.0225 5940  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
19:40:27.0294 5940  cdrom - ok
19:40:27.0355 5940  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
19:40:27.0415 5940  CertPropSvc - ok
19:40:27.0504 5940  [ D2B3252AD4EB499C935A56467997AA3C ] cfwids          C:\windows\system32\drivers\cfwids.sys
19:40:27.0605 5940  cfwids - ok
19:40:27.0655 5940  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\drivers\circlass.sys
19:40:27.0662 5940  circlass - ok
19:40:27.0727 5940  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
19:40:27.0736 5940  CLFS - ok
19:40:27.0805 5940  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:40:27.0809 5940  clr_optimization_v2.0.50727_32 - ok
19:40:27.0864 5940  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:40:27.0869 5940  clr_optimization_v2.0.50727_64 - ok
19:40:27.0950 5940  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:40:28.0037 5940  clr_optimization_v4.0.30319_32 - ok
19:40:28.0083 5940  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:40:28.0173 5940  clr_optimization_v4.0.30319_64 - ok
19:40:28.0232 5940  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
19:40:28.0243 5940  CmBatt - ok
19:40:28.0250 5940  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
19:40:28.0258 5940  cmdide - ok
19:40:28.0321 5940  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\windows\system32\Drivers\cng.sys
19:40:28.0397 5940  CNG - ok
19:40:28.0454 5940  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
19:40:28.0465 5940  Compbatt - ok
19:40:28.0510 5940  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
19:40:28.0597 5940  CompositeBus - ok
19:40:28.0622 5940  COMSysApp - ok
19:40:28.0642 5940  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
19:40:28.0647 5940  crcdisk - ok
19:40:28.0710 5940  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\windows\system32\cryptsvc.dll
19:40:28.0716 5940  CryptSvc - ok
19:40:28.0864 5940  [ 61A86809B62769643892BC0812B204AA ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
19:40:28.0968 5940  cvhsvc - ok
19:40:29.0027 5940  [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d            C:\windows\system32\DRIVERS\dc3d.sys
19:40:29.0107 5940  dc3d - ok
19:40:29.0176 5940  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
19:40:29.0188 5940  DcomLaunch - ok
19:40:29.0253 5940  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
19:40:29.0275 5940  defragsvc - ok
19:40:29.0307 5940  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
19:40:29.0311 5940  DfsC - ok
19:40:29.0391 5940  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
19:40:29.0400 5940  Dhcp - ok
19:40:29.0432 5940  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
19:40:29.0435 5940  discache - ok
19:40:29.0503 5940  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\drivers\disk.sys
19:40:29.0515 5940  Disk - ok
19:40:29.0555 5940  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
19:40:29.0561 5940  Dnscache - ok
19:40:29.0573 5940  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
19:40:29.0581 5940  dot3svc - ok
19:40:29.0604 5940  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
19:40:29.0610 5940  DPS - ok
19:40:29.0665 5940  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
19:40:29.0678 5940  drmkaud - ok
19:40:29.0735 5940  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
19:40:29.0756 5940  DXGKrnl - ok
19:40:29.0821 5940  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
19:40:29.0826 5940  EapHost - ok
19:40:29.0943 5940  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\drivers\evbda.sys
19:40:30.0015 5940  ebdrv - ok
19:40:30.0052 5940  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\windows\System32\lsass.exe
19:40:30.0056 5940  EFS - ok
19:40:30.0110 5940  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
19:40:30.0125 5940  ehRecvr - ok
19:40:30.0141 5940  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
19:40:30.0146 5940  ehSched - ok
19:40:30.0212 5940  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\drivers\elxstor.sys
19:40:30.0235 5940  elxstor - ok
19:40:30.0249 5940  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
19:40:30.0259 5940  ErrDev - ok
19:40:30.0314 5940  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
19:40:30.0324 5940  EventSystem - ok
19:40:30.0375 5940  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
19:40:30.0380 5940  exfat - ok
19:40:30.0413 5940  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
19:40:30.0420 5940  fastfat - ok
19:40:30.0505 5940  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
19:40:30.0604 5940  Fax - ok
19:40:30.0619 5940  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\drivers\fdc.sys
19:40:30.0623 5940  fdc - ok
19:40:30.0657 5940  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
19:40:30.0660 5940  fdPHost - ok
19:40:30.0672 5940  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
19:40:30.0675 5940  FDResPub - ok
19:40:30.0735 5940  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
19:40:30.0738 5940  FileInfo - ok
19:40:30.0752 5940  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
19:40:30.0755 5940  Filetrace - ok
19:40:30.0776 5940  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
19:40:30.0784 5940  flpydisk - ok
19:40:30.0809 5940  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
19:40:30.0886 5940  FltMgr - ok
19:40:30.0980 5940  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\windows\system32\FntCache.dll
19:40:31.0008 5940  FontCache - ok
19:40:31.0068 5940  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:40:31.0072 5940  FontCache3.0.0.0 - ok
19:40:31.0107 5940  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
19:40:31.0110 5940  FsDepends - ok
19:40:31.0145 5940  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
19:40:31.0148 5940  Fs_Rec - ok
19:40:31.0214 5940  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
19:40:31.0298 5940  fvevol - ok
19:40:31.0355 5940  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
19:40:31.0369 5940  gagp30kx - ok
19:40:31.0445 5940  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
19:40:31.0555 5940  GamesAppService - ok
19:40:31.0636 5940  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
19:40:31.0700 5940  GEARAspiWDM - ok
19:40:31.0766 5940  [ FA07EC01952729DDDDC5BF4BAE06B09E ] GFNEXSrv        C:\Windows\System32\GFNEXSrv.exe
19:40:31.0772 5940  GFNEXSrv - ok
19:40:31.0825 5940  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
19:40:31.0904 5940  gpsvc - ok
19:40:32.0017 5940  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:40:32.0021 5940  gupdate - ok
19:40:32.0042 5940  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:40:32.0044 5940  gupdatem - ok
19:40:32.0084 5940  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
19:40:32.0089 5940  hcw85cir - ok
19:40:32.0161 5940  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
19:40:32.0245 5940  HdAudAddService - ok
19:40:32.0290 5940  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
19:40:32.0354 5940  HDAudBus - ok
19:40:32.0363 5940  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
19:40:32.0366 5940  HidBatt - ok
19:40:32.0392 5940  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\drivers\hidbth.sys
19:40:32.0400 5940  HidBth - ok
19:40:32.0450 5940  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\drivers\hidir.sys
19:40:32.0457 5940  HidIr - ok
19:40:32.0484 5940  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\system32\hidserv.dll
19:40:32.0488 5940  hidserv - ok
19:40:32.0548 5940  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
19:40:32.0636 5940  HidUsb - ok
19:40:32.0730 5940  [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK      C:\windows\system32\drivers\HipShieldK.sys
19:40:32.0816 5940  HipShieldK - ok
19:40:32.0856 5940  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
19:40:32.0917 5940  hkmsvc - ok
19:40:32.0932 5940  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
19:40:32.0936 5940  HomeGroupListener - ok
19:40:32.0969 5940  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
19:40:32.0977 5940  HomeGroupProvider - ok
19:40:33.0029 5940  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
19:40:33.0114 5940  HpSAMD - ok
19:40:33.0192 5940  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
19:40:33.0209 5940  HTTP - ok
19:40:33.0229 5940  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
19:40:33.0283 5940  hwpolicy - ok
19:40:33.0358 5940  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
19:40:33.0373 5940  i8042prt - ok
19:40:33.0438 5940  [ D469B77687E12FE43E344806740B624D ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
19:40:33.0447 5940  iaStor - ok
19:40:33.0499 5940  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
19:40:33.0582 5940  iaStorV - ok
19:40:33.0636 5940  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:40:33.0702 5940  idsvc - ok
19:40:33.0958 5940  [ 370C2A8629B30F910F740387795DDC6F ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
19:40:34.0314 5940  igfx - ok
19:40:34.0370 5940  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\drivers\iirsp.sys
19:40:34.0382 5940  iirsp - ok
19:40:34.0492 5940  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\windows\System32\ikeext.dll
19:40:34.0525 5940  IKEEXT - ok
19:40:34.0671 5940  [ 028E40182A6F0374978C755F85B9F07C ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
19:40:34.0796 5940  IntcAzAudAddService - ok
19:40:34.0866 5940  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
19:40:34.0953 5940  IntcDAud - ok
19:40:34.0962 5940  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
19:40:34.0965 5940  intelide - ok
19:40:35.0028 5940  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
19:40:35.0032 5940  intelppm - ok
19:40:35.0063 5940  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
19:40:35.0068 5940  IPBusEnum - ok
19:40:35.0087 5940  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
19:40:35.0090 5940  IpFilterDriver - ok
19:40:35.0164 5940  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
19:40:35.0179 5940  iphlpsvc - ok
19:40:35.0196 5940  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
19:40:35.0282 5940  IPMIDRV - ok
19:40:35.0311 5940  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
19:40:35.0314 5940  IPNAT - ok
19:40:35.0405 5940  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:40:35.0420 5940  iPod Service - ok
19:40:35.0473 5940  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
19:40:35.0481 5940  IRENUM - ok
19:40:35.0502 5940  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
19:40:35.0509 5940  isapnp - ok
19:40:35.0539 5940  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
19:40:35.0623 5940  iScsiPrt - ok
19:40:35.0658 5940  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
19:40:35.0663 5940  kbdclass - ok
19:40:35.0702 5940  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
19:40:35.0794 5940  kbdhid - ok
19:40:35.0830 5940  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\windows\system32\lsass.exe
19:40:35.0832 5940  KeyIso - ok
19:40:35.0866 5940  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
19:40:35.0936 5940  KSecDD - ok
19:40:35.0982 5940  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
19:40:35.0987 5940  KSecPkg - ok
19:40:36.0072 5940  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
19:40:36.0083 5940  ksthunk - ok
19:40:36.0127 5940  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
19:40:36.0152 5940  KtmRm - ok
19:40:36.0231 5940  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\system32\srvsvc.dll
19:40:36.0253 5940  LanmanServer - ok
19:40:36.0292 5940  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
19:40:36.0299 5940  LanmanWorkstation - ok
19:40:36.0354 5940  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
19:40:36.0358 5940  lltdio - ok
19:40:36.0397 5940  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
19:40:36.0415 5940  lltdsvc - ok
19:40:36.0457 5940  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
19:40:36.0460 5940  lmhosts - ok
19:40:36.0547 5940  [ 7F32D4C47A50E7223491E8FB9359907D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:40:36.0672 5940  LMS - ok
19:40:36.0719 5940  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
19:40:36.0730 5940  LSI_FC - ok
19:40:36.0761 5940  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
19:40:36.0770 5940  LSI_SAS - ok
19:40:36.0805 5940  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
19:40:36.0812 5940  LSI_SAS2 - ok
19:40:36.0822 5940  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
19:40:36.0834 5940  LSI_SCSI - ok
19:40:36.0855 5940  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
19:40:36.0859 5940  luafv - ok
19:40:36.0960 5940  [ 3D1516114F5B1548864D043177F992A6 ] lxeaCATSCustConnectService C:\windows\system32\spool\DRIVERS\x64\3\\lxeaserv.exe
19:40:37.0050 5940  lxeaCATSCustConnectService - ok
19:40:37.0094 5940  lxea_device - ok
19:40:37.0140 5940  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
19:40:37.0211 5940  MBAMProtector - ok
19:40:37.0285 5940  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:40:37.0380 5940  MBAMScheduler - ok
19:40:37.0448 5940  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:40:37.0545 5940  MBAMService - ok
19:40:37.0683 5940  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:40:37.0686 5940  McAfee SiteAdvisor Service - ok
19:40:37.0725 5940  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:40:37.0729 5940  McMPFSvc - ok
19:40:37.0739 5940  [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:40:37.0742 5940  mcmscsvc - ok
19:40:37.0751 5940  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:40:37.0755 5940  McNaiAnn - ok
19:40:37.0840 5940  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc         C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:40:37.0844 5940  McNASvc - ok
19:40:38.0049 5940  [ 5D57D4B57CCC07450F97C4E929D0483F ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
19:40:38.0143 5940  McODS - ok
19:40:38.0217 5940  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy         C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:40:38.0222 5940  McProxy - ok
19:40:38.0324 5940  [ 21F81090A00932C5E96700EDF2977582 ] McShield        C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
19:40:38.0331 5940  McShield - ok
19:40:38.0374 5940  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
19:40:38.0380 5940  Mcx2Svc - ok
19:40:38.0420 5940  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\drivers\megasas.sys
19:40:38.0432 5940  megasas - ok
19:40:38.0485 5940  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
19:40:38.0504 5940  MegaSR - ok
19:40:38.0561 5940  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
19:40:38.0652 5940  MEIx64 - ok
19:40:38.0725 5940  [ B1720E97FABBDF7D30B36DAF19C3DEE8 ] mfeapfk         C:\windows\system32\drivers\mfeapfk.sys
19:40:38.0820 5940  mfeapfk - ok
19:40:38.0896 5940  [ 113F1534B80D65DFDCA660F19967A3B7 ] mfeavfk         C:\windows\system32\drivers\mfeavfk.sys
19:40:38.0981 5940  mfeavfk - ok
19:40:39.0030 5940  mfeavfk01 - ok
19:40:39.0093 5940  [ C4F521310E40327BBC8E8E71DA344F48 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
19:40:39.0189 5940  mfefire - ok
19:40:39.0259 5940  [ CECC9841D036EE008091825272D91331 ] mfefirek        C:\windows\system32\drivers\mfefirek.sys
19:40:39.0355 5940  mfefirek - ok
19:40:39.0430 5940  [ EF0F85EDBDF6C0AB467E88E0CEE2B346 ] mfehidk         C:\windows\system32\drivers\mfehidk.sys
19:40:39.0518 5940  mfehidk - ok
19:40:39.0585 5940  [ 6E3A46BF6CBB80450CC24F80FE03ED5A ] mferkdet        C:\windows\system32\drivers\mferkdet.sys
19:40:39.0651 5940  mferkdet - ok
19:40:39.0700 5940  mferkdet01 - ok
19:40:39.0779 5940  [ 341BFCAA3A55C08E8C9ECB1654ACA905 ] mfevtp          C:\windows\system32\mfevtps.exe
19:40:39.0902 5940  mfevtp - ok
19:40:39.0959 5940  [ 2802D09F1B6ED502237539563F3C4992 ] mfewfpk         C:\windows\system32\drivers\mfewfpk.sys
19:40:40.0084 5940  mfewfpk - ok
19:40:40.0112 5940  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
19:40:40.0116 5940  MMCSS - ok
19:40:40.0130 5940  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
19:40:40.0133 5940  Modem - ok
19:40:40.0180 5940  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
19:40:40.0190 5940  monitor - ok
19:40:40.0222 5940  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
19:40:40.0234 5940  mouclass - ok
19:40:40.0306 5940  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
19:40:40.0317 5940  mouhid - ok
19:40:40.0363 5940  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
19:40:40.0367 5940  mountmgr - ok
19:40:40.0400 5940  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
19:40:40.0482 5940  mpio - ok
19:40:40.0494 5940  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
19:40:40.0495 5940  mpsdrv - ok
19:40:40.0549 5940  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\windows\system32\mpssvc.dll
19:40:40.0568 5940  MpsSvc - ok
19:40:40.0588 5940  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
19:40:40.0593 5940  MRxDAV - ok
19:40:40.0630 5940  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
19:40:40.0634 5940  mrxsmb - ok
19:40:40.0677 5940  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
19:40:40.0683 5940  mrxsmb10 - ok
19:40:40.0705 5940  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
19:40:40.0709 5940  mrxsmb20 - ok
19:40:40.0738 5940  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\DRIVERS\msahci.sys
19:40:40.0827 5940  msahci - ok
19:40:40.0846 5940  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
19:40:40.0911 5940  msdsm - ok
19:40:40.0937 5940  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
19:40:40.0944 5940  MSDTC - ok
19:40:40.0982 5940  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
19:40:40.0984 5940  Msfs - ok
19:40:41.0025 5940  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
19:40:41.0036 5940  mshidkmdf - ok
19:40:41.0042 5940  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
19:40:41.0048 5940  msisadrv - ok
19:40:41.0091 5940  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
19:40:41.0106 5940  MSiSCSI - ok
19:40:41.0113 5940  msiserver - ok
19:40:41.0195 5940  [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service    C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:40:41.0199 5940  MSK80Service - ok
19:40:41.0260 5940  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
19:40:41.0262 5940  MSKSSRV - ok
19:40:41.0281 5940  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
19:40:41.0283 5940  MSPCLOCK - ok
19:40:41.0303 5940  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
19:40:41.0306 5940  MSPQM - ok
19:40:41.0334 5940  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
19:40:41.0415 5940  MsRPC - ok
19:40:41.0449 5940  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
19:40:41.0451 5940  mssmbios - ok
19:40:41.0497 5940  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
19:40:41.0500 5940  MSTEE - ok
19:40:41.0515 5940  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
19:40:41.0525 5940  MTConfig - ok
19:40:41.0533 5940  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
19:40:41.0539 5940  Mup - ok
19:40:41.0586 5940  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
19:40:41.0599 5940  napagent - ok
19:40:41.0677 5940  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
19:40:41.0686 5940  NativeWifiP - ok
19:40:41.0770 5940  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
19:40:41.0790 5940  NDIS - ok
19:40:41.0859 5940  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
19:40:41.0862 5940  NdisCap - ok
19:40:41.0913 5940  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
19:40:41.0916 5940  NdisTapi - ok
19:40:41.0925 5940  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
19:40:41.0929 5940  Ndisuio - ok
19:40:41.0948 5940  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
19:40:41.0954 5940  NdisWan - ok
19:40:42.0002 5940  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
19:40:42.0107 5940  NDProxy - ok
19:40:42.0127 5940  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
19:40:42.0129 5940  NetBIOS - ok
19:40:42.0154 5940  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
19:40:42.0159 5940  NetBT - ok
19:40:42.0196 5940  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\windows\system32\lsass.exe
19:40:42.0198 5940  Netlogon - ok
19:40:42.0266 5940  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
19:40:42.0277 5940  Netman - ok
19:40:42.0303 5940  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
19:40:42.0325 5940  netprofm - ok
19:40:42.0356 5940  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:40:42.0360 5940  NetTcpPortSharing - ok
19:40:42.0421 5940  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
19:40:42.0430 5940  nfrd960 - ok
19:40:42.0496 5940  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
19:40:42.0632 5940  NlaSvc - ok
19:40:42.0719 5940  [ 6A12E8B9CA7A29BB9A7B536F851D3DF3 ] Norton PC Checkup Application Launcher C:\Program Files (x86)\PC Checkup\SymcPCCULaunchSvc.exe
19:40:42.0841 5940  Norton PC Checkup Application Launcher - ok
19:40:42.0864 5940  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
19:40:42.0866 5940  Npfs - ok
19:40:42.0900 5940  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
19:40:42.0904 5940  nsi - ok
19:40:42.0935 5940  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
19:40:42.0938 5940  nsiproxy - ok
19:40:43.0029 5940  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
19:40:43.0060 5940  Ntfs - ok
19:40:43.0113 5940  [ 317020D31F1696334679B9D0416EB62E ] NuidFltr        C:\windows\system32\DRIVERS\NuidFltr.sys
19:40:43.0201 5940  NuidFltr - ok
19:40:43.0223 5940  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
19:40:43.0230 5940  Null - ok
19:40:43.0247 5940  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
19:40:43.0309 5940  nvraid - ok
19:40:43.0321 5940  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
19:40:43.0373 5940  nvstor - ok
19:40:43.0382 5940  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
19:40:43.0389 5940  nv_agp - ok
19:40:43.0402 5940  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
19:40:43.0409 5940  ohci1394 - ok
19:40:43.0435 5940  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:40:43.0496 5940  ose - ok
19:40:43.0657 5940  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:40:44.0157 5940  osppsvc - ok
19:40:44.0193 5940  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
19:40:44.0198 5940  p2pimsvc - ok
19:40:44.0220 5940  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
19:40:44.0227 5940  p2psvc - ok
19:40:44.0258 5940  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\drivers\parport.sys
19:40:44.0264 5940  Parport - ok
19:40:44.0287 5940  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
19:40:44.0342 5940  partmgr - ok
19:40:44.0368 5940  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
19:40:44.0376 5940  PcaSvc - ok
19:40:44.0459 5940  [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr      C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
19:40:44.0554 5940  PCCUJobMgr - ok
19:40:44.0599 5940  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
19:40:44.0680 5940  pci - ok
19:40:44.0690 5940  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\DRIVERS\pciide.sys
19:40:44.0695 5940  pciide - ok
19:40:44.0706 5940  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
19:40:44.0713 5940  pcmcia - ok
19:40:44.0740 5940  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
19:40:44.0742 5940  pcw - ok
19:40:44.0806 5940  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
19:40:44.0829 5940  PEAUTH - ok
19:40:44.0934 5940  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
19:40:44.0941 5940  PerfHost - ok
19:40:45.0013 5940  [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect        C:\windows\system32\DRIVERS\pgeffect.sys
19:40:45.0103 5940  PGEffect - ok
19:40:45.0168 5940  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
19:40:45.0198 5940  pla - ok
19:40:45.0270 5940  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
19:40:45.0282 5940  PlugPlay - ok
19:40:45.0294 5940  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
19:40:45.0299 5940  PNRPAutoReg - ok
19:40:45.0329 5940  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
19:40:45.0337 5940  PNRPsvc - ok
19:40:45.0364 5940  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\windows\system32\DRIVERS\point64.sys
19:40:45.0472 5940  Point64 - ok
19:40:45.0514 5940  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
19:40:45.0526 5940  PolicyAgent - ok
19:40:45.0575 5940  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
19:40:45.0590 5940  Power - ok
19:40:45.0665 5940  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
19:40:45.0670 5940  PptpMiniport - ok
19:40:45.0684 5940  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\drivers\processr.sys
19:40:45.0691 5940  Processor - ok
19:40:45.0734 5940  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
19:40:45.0803 5940  ProfSvc - ok
19:40:45.0818 5940  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
19:40:45.0820 5940  ProtectedStorage - ok
19:40:45.0879 5940  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
19:40:45.0951 5940  Psched - ok
19:40:46.0054 5940  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\drivers\ql2300.sys
19:40:46.0110 5940  ql2300 - ok
19:40:46.0129 5940  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
19:40:46.0135 5940  ql40xx - ok
19:40:46.0172 5940  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
19:40:46.0189 5940  QWAVE - ok
19:40:46.0227 5940  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
19:40:46.0231 5940  QWAVEdrv - ok
19:40:46.0245 5940  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
19:40:46.0253 5940  RasAcd - ok
19:40:46.0319 5940  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
19:40:46.0322 5940  RasAgileVpn - ok
19:40:46.0359 5940  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
19:40:46.0365 5940  RasAuto - ok
19:40:46.0426 5940  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
19:40:46.0524 5940  Rasl2tp - ok
19:40:46.0556 5940  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
19:40:46.0567 5940  RasMan - ok
19:40:46.0618 5940  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
19:40:46.0622 5940  RasPppoe - ok
19:40:46.0638 5940  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
19:40:46.0642 5940  RasSstp - ok
19:40:46.0671 5940  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
19:40:46.0678 5940  rdbss - ok
19:40:46.0712 5940  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
19:40:46.0722 5940  rdpbus - ok
19:40:46.0776 5940  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
19:40:46.0779 5940  RDPCDD - ok
19:40:46.0792 5940  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
19:40:46.0795 5940  RDPENCDD - ok
19:40:46.0814 5940  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
19:40:46.0817 5940  RDPREFMP - ok
19:40:46.0856 5940  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
19:40:46.0863 5940  RDPWD - ok
19:40:46.0910 5940  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
19:40:47.0002 5940  rdyboost - ok
19:40:47.0035 5940  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
19:40:47.0048 5940  RemoteAccess - ok
19:40:47.0082 5940  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
19:40:47.0089 5940  RemoteRegistry - ok
19:40:47.0113 5940  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
19:40:47.0118 5940  RpcEptMapper - ok
19:40:47.0155 5940  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
19:40:47.0169 5940  RpcLocator - ok
19:40:47.0211 5940  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
19:40:47.0223 5940  RpcSs - ok
19:40:47.0282 5940  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
19:40:47.0286 5940  rspndr - ok
19:40:47.0341 5940  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
19:40:47.0436 5940  RSUSBSTOR - ok
19:40:47.0449 5940  [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
19:40:47.0506 5940  RTL8167 - ok
19:40:47.0593 5940  [ E7D79600575F755614DD5D79B044D588 ] RTL8192Ce       C:\windows\system32\DRIVERS\rtl8192Ce.sys
19:40:47.0679 5940  RTL8192Ce - ok
19:40:47.0697 5940  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\windows\system32\lsass.exe
19:40:47.0699 5940  SamSs - ok
19:40:47.0719 5940  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
19:40:47.0795 5940  sbp2port - ok
19:40:47.0825 5940  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
19:40:47.0833 5940  SCardSvr - ok
19:40:47.0860 5940  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
19:40:47.0862 5940  scfilter - ok
19:40:47.0918 5940  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
19:40:47.0941 5940  Schedule - ok
19:40:47.0978 5940  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
19:40:47.0981 5940  SCPolicySvc - ok
19:40:48.0017 5940  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
19:40:48.0023 5940  SDRSVC - ok
19:40:48.0078 5940  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
19:40:48.0082 5940  secdrv - ok
19:40:48.0110 5940  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
19:40:48.0115 5940  seclogon - ok
19:40:48.0140 5940  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\System32\sens.dll
19:40:48.0146 5940  SENS - ok
19:40:48.0155 5940  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
19:40:48.0160 5940  SensrSvc - ok
19:40:48.0178 5940  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\drivers\serenum.sys
19:40:48.0186 5940  Serenum - ok
19:40:48.0233 5940  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\drivers\serial.sys
19:40:48.0241 5940  Serial - ok
19:40:48.0249 5940  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\drivers\sermouse.sys
19:40:48.0257 5940  sermouse - ok
19:40:48.0301 5940  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
19:40:48.0308 5940  SessionEnv - ok
19:40:48.0321 5940  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
19:40:48.0332 5940  sffdisk - ok
19:40:48.0340 5940  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
19:40:48.0352 5940  sffp_mmc - ok
19:40:48.0365 5940  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
19:40:48.0432 5940  sffp_sd - ok
19:40:48.0435 5940  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
19:40:48.0439 5940  sfloppy - ok
19:40:48.0515 5940  [ D5183ED285D2795491DC15BDDCBEE5AD ] Sftfs           C:\windows\system32\DRIVERS\Sftfslh.sys
19:40:48.0612 5940  Sftfs - ok
19:40:48.0652 5940  [ BFDB58616FF5EA540A5F58301D50641E ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
19:40:48.0763 5940  sftlist - ok
19:40:48.0783 5940  [ 76A827DF5640BFE16A0CDBB4108ADECA ] Sftredir        C:\windows\system32\DRIVERS\Sftredirlh.sys
19:40:48.0832 5940  Sftredir - ok
19:40:48.0846 5940  [ 1B4C9701645086BAB8CAFFFCE30ED284 ] Sftvol          C:\windows\system32\DRIVERS\Sftvollh.sys
19:40:48.0895 5940  Sftvol - ok
19:40:48.0934 5940  [ B94C3C4DCA2093243C76CA218EDE2A97 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
19:40:48.0940 5940  sftvsa - ok
19:40:48.0990 5940  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
19:40:49.0012 5940  SharedAccess - ok
19:40:49.0052 5940  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
19:40:49.0062 5940  ShellHWDetection - ok
19:40:49.0115 5940  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
19:40:49.0125 5940  SiSRaid2 - ok
19:40:49.0142 5940  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
19:40:49.0153 5940  SiSRaid4 - ok
19:40:49.0194 5940  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
19:40:49.0198 5940  Smb - ok
19:40:49.0273 5940  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
19:40:49.0277 5940  SNMPTRAP - ok
19:40:49.0286 5940  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
19:40:49.0289 5940  spldr - ok
19:40:49.0336 5940  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
19:40:49.0349 5940  Spooler - ok
19:40:49.0475 5940  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
19:40:49.0681 5940  sppsvc - ok
19:40:49.0691 5940  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
19:40:49.0694 5940  sppuinotify - ok
19:40:49.0739 5940  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
19:40:49.0751 5940  srv - ok
19:40:49.0789 5940  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
19:40:49.0799 5940  srv2 - ok
19:40:49.0848 5940  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
19:40:49.0854 5940  srvnet - ok
19:40:49.0917 5940  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
19:40:49.0925 5940  SSDPSRV - ok
19:40:49.0946 5940  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
19:40:49.0959 5940  SstpSvc - ok
19:40:49.0986 5940  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\drivers\stexstor.sys
19:40:49.0992 5940  stexstor - ok
19:40:50.0090 5940  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
19:40:50.0106 5940  stisvc - ok
19:40:50.0141 5940  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
19:40:50.0151 5940  swenum - ok
19:40:50.0203 5940  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
19:40:50.0216 5940  swprv - ok
19:40:50.0324 5940  [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
19:40:50.0421 5940  SynTP - ok
19:40:50.0489 5940  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
19:40:50.0526 5940  SysMain - ok
19:40:50.0543 5940  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
19:40:50.0549 5940  TabletInputService - ok
19:40:50.0615 5940  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
19:40:50.0641 5940  TapiSrv - ok
19:40:50.0674 5940  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
19:40:50.0685 5940  TBS - ok
19:40:50.0808 5940  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\windows\system32\drivers\tcpip.sys
19:40:50.0911 5940  Tcpip - ok
19:40:50.0985 5940  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
19:40:51.0008 5940  TCPIP6 - ok
19:40:51.0040 5940  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
19:40:51.0043 5940  tcpipreg - ok
19:40:51.0078 5940  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\windows\system32\DRIVERS\tdcmdpst.sys
19:40:51.0158 5940  tdcmdpst - ok
19:40:51.0185 5940  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
19:40:51.0190 5940  TDPIPE - ok
19:40:51.0227 5940  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
19:40:51.0230 5940  TDTCP - ok
19:40:51.0251 5940  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
19:40:51.0256 5940  tdx - ok
19:40:51.0271 5940  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
19:40:51.0348 5940  TermDD - ok
19:40:51.0399 5940  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
19:40:51.0478 5940  TermService - ok
19:40:51.0497 5940  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
19:40:51.0500 5940  Themes - ok
19:40:51.0512 5940  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
19:40:51.0514 5940  THREADORDER - ok
19:40:51.0576 5940  [ 71C321649B28638EE80A2EEB164C1DC8 ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
19:40:51.0579 5940  TMachInfo - ok
19:40:51.0617 5940  [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv         C:\windows\system32\TODDSrv.exe
19:40:51.0708 5940  TODDSrv - ok
19:40:51.0822 5940  [ 1C73689B900428C7D054A41C4687F55C ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
19:40:51.0919 5940  TosCoSrv - ok
19:40:52.0021 5940  [ 63AAFCF3EA5DBB17123E0BAE9AFE4D58 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
19:40:52.0127 5940  TOSHIBA eco Utility Service - ok
19:40:52.0171 5940  [ 29D0886CF250FCEF1BF9E65AB8D2C0C8 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
19:40:52.0176 5940  TOSHIBA HDD SSD Alert Service - ok
19:40:52.0221 5940  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\windows\system32\DRIVERS\tos_sps64.sys
19:40:52.0322 5940  tos_sps64 - ok
19:40:52.0372 5940  [ 098B8A408C17E125A3D9A8E1166780C8 ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
19:40:52.0492 5940  TPCHSrv - ok
19:40:52.0523 5940  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
19:40:52.0530 5940  TrkWks - ok
19:40:52.0596 5940  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
19:40:52.0603 5940  TrustedInstaller - ok
19:40:52.0636 5940  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
19:40:52.0640 5940  tssecsrv - ok
19:40:52.0673 5940  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
19:40:52.0677 5940  TsUsbFlt - ok
19:40:52.0701 5940  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
19:40:52.0780 5940  TsUsbGD - ok
19:40:52.0859 5940  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
19:40:52.0943 5940  tunnel - ok
19:40:53.0001 5940  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\windows\system32\DRIVERS\TVALZ_O.SYS
19:40:53.0075 5940  TVALZ - ok
19:40:53.0109 5940  [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL         C:\windows\system32\DRIVERS\TVALZFL.sys
19:40:53.0158 5940  TVALZFL - ok
19:40:53.0175 5940  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\drivers\uagp35.sys
19:40:53.0180 5940  uagp35 - ok
19:40:53.0211 5940  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
19:40:53.0289 5940  udfs - ok
19:40:53.0324 5940  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
19:40:53.0326 5940  UI0Detect - ok
19:40:53.0337 5940  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
19:40:53.0346 5940  uliagpkx - ok
19:40:53.0412 5940  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
19:40:53.0494 5940  umbus - ok
19:40:53.0506 5940  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\drivers\umpass.sys
19:40:53.0509 5940  UmPass - ok
19:40:53.0664 5940  [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:40:53.0698 5940  UNS - ok
19:40:53.0730 5940  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
19:40:53.0737 5940  upnphost - ok
19:40:53.0790 5940  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
19:40:53.0854 5940  USBAAPL64 - ok
19:40:53.0888 5940  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
19:40:53.0936 5940  usbccgp - ok
19:40:53.0961 5940  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\drivers\usbcir.sys
19:40:53.0967 5940  usbcir - ok
19:40:53.0999 5940  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\windows\system32\DRIVERS\usbehci.sys
19:40:54.0074 5940  usbehci - ok
19:40:54.0101 5940  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
19:40:54.0222 5940  usbhub - ok
19:40:54.0239 5940  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\windows\system32\drivers\usbohci.sys
19:40:54.0302 5940  usbohci - ok
19:40:54.0319 5940  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
19:40:54.0323 5940  usbprint - ok
19:40:54.0352 5940  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
19:40:54.0358 5940  usbscan - ok
19:40:54.0392 5940  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
19:40:54.0489 5940  USBSTOR - ok
19:40:54.0507 5940  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
19:40:54.0565 5940  usbuhci - ok
19:40:54.0630 5940  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\windows\system32\Drivers\usbvideo.sys
19:40:54.0737 5940  usbvideo - ok
19:40:54.0773 5940  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
19:40:54.0781 5940  UxSms - ok
19:40:54.0808 5940  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\windows\system32\lsass.exe
19:40:54.0811 5940  VaultSvc - ok
19:40:54.0862 5940  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
19:40:54.0875 5940  vdrvroot - ok
19:40:54.0931 5940  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
19:40:55.0038 5940  vds - ok
19:40:55.0061 5940  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
19:40:55.0066 5940  vga - ok
19:40:55.0071 5940  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
19:40:55.0077 5940  VgaSave - ok
19:40:55.0092 5940  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
19:40:55.0165 5940  vhdmp - ok
19:40:55.0171 5940  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
19:40:55.0176 5940  viaide - ok
19:40:55.0210 5940  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
19:40:55.0261 5940  volmgr - ok
19:40:55.0286 5940  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
19:40:55.0291 5940  volmgrx - ok
19:40:55.0308 5940  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\windows\system32\drivers\volsnap.sys
19:40:55.0364 5940  volsnap - ok
19:40:55.0430 5940  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
19:40:55.0446 5940  vsmraid - ok
19:40:55.0526 5940  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
19:40:55.0631 5940  VSS - ok
19:40:55.0649 5940  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
19:40:55.0652 5940  vwifibus - ok
19:40:55.0706 5940  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
19:40:55.0710 5940  vwififlt - ok
19:40:55.0771 5940  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
19:40:55.0774 5940  vwifimp - ok
19:40:55.0838 5940  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
19:40:55.0851 5940  W32Time - ok
19:40:55.0864 5940  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\drivers\wacompen.sys
19:40:55.0877 5940  WacomPen - ok
19:40:55.0943 5940  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
19:40:55.0946 5940  WANARP - ok
19:40:55.0951 5940  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
19:40:55.0953 5940  Wanarpv6 - ok
19:40:56.0092 5940  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
19:40:56.0229 5940  WatAdminSvc - ok
19:40:56.0295 5940  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
19:40:56.0328 5940  wbengine - ok
19:40:56.0350 5940  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
19:40:56.0358 5940  WbioSrvc - ok
19:40:56.0388 5940  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
19:40:56.0400 5940  wcncsvc - ok
19:40:56.0435 5940  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
19:40:56.0440 5940  WcsPlugInService - ok
19:40:56.0470 5940  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\drivers\wd.sys
19:40:56.0482 5940  Wd - ok
19:40:56.0548 5940  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
19:40:56.0565 5940  Wdf01000 - ok
19:40:56.0598 5940  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
19:40:56.0605 5940  WdiServiceHost - ok
19:40:56.0614 5940  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
19:40:56.0619 5940  WdiSystemHost - ok
19:40:56.0662 5940  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\windows\System32\webclnt.dll
19:40:56.0672 5940  WebClient - ok
19:40:56.0697 5940  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
19:40:56.0706 5940  Wecsvc - ok
19:40:56.0727 5940  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
19:40:56.0733 5940  wercplsupport - ok
19:40:56.0783 5940  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
19:40:56.0790 5940  WerSvc - ok
19:40:56.0837 5940  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
19:40:56.0839 5940  WfpLwf - ok
19:40:56.0862 5940  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
19:40:56.0865 5940  WIMMount - ok
19:40:56.0890 5940  WinDefend - ok
19:40:56.0904 5940  WinHttpAutoProxySvc - ok
19:40:56.0972 5940  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
19:40:56.0988 5940  Winmgmt - ok
19:40:57.0090 5940  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
19:40:57.0207 5940  WinRM - ok
19:40:57.0286 5940  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
19:40:57.0366 5940  WinUsb - ok
19:40:57.0413 5940  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
19:40:57.0434 5940  Wlansvc - ok
19:40:57.0503 5940  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:40:57.0615 5940  wlcrasvc - ok
19:40:57.0750 5940  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:40:57.0854 5940  wlidsvc - ok
19:40:57.0869 5940  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
19:40:57.0873 5940  WmiAcpi - ok
19:40:57.0913 5940  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
19:40:57.0916 5940  wmiApSrv - ok
19:40:57.0975 5940  WMPNetworkSvc - ok
19:40:58.0026 5940  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
19:40:58.0032 5940  WPCSvc - ok
19:40:58.0064 5940  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
19:40:58.0070 5940  WPDBusEnum - ok
19:40:58.0111 5940  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
19:40:58.0114 5940  ws2ifsl - ok
19:40:58.0126 5940  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\windows\System32\wscsvc.dll
19:40:58.0133 5940  wscsvc - ok
19:40:58.0141 5940  WSearch - ok
19:40:58.0243 5940  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
19:40:58.0320 5940  wuauserv - ok
19:40:58.0358 5940  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
19:40:58.0360 5940  WudfPf - ok
19:40:58.0394 5940  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
19:40:58.0400 5940  WUDFRd - ok
19:40:58.0422 5940  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
19:40:58.0429 5940  wudfsvc - ok
19:40:58.0467 5940  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\windows\System32\wwansvc.dll
19:40:58.0476 5940  WwanSvc - ok
19:40:58.0633 5940  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:40:58.0780 5940  YahooAUService - ok
19:40:58.0807 5940  ================ Scan global ===============================
19:40:58.0848 5940  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
19:40:58.0896 5940  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
19:40:58.0913 5940  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
19:40:58.0947 5940  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
19:40:58.0983 5940  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
19:40:59.0003 5940  [Global] - ok
19:40:59.0004 5940  ================ Scan MBR ==================================
19:40:59.0021 5940  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
19:40:59.0394 5940  \Device\Harddisk0\DR0 - ok
19:40:59.0395 5940  ================ Scan VBR ==================================
19:40:59.0428 5940  [ EEBFFFE9D8094D6615FD4D9C9E467CDE ] \Device\Harddisk0\DR0\Partition1
19:40:59.0431 5940  \Device\Harddisk0\DR0\Partition1 - ok
19:40:59.0432 5940  ============================================================
19:40:59.0432 5940  Scan finished
19:40:59.0432 5940  ============================================================
19:40:59.0450 1904  Detected object count: 0
19:40:59.0450 1904  Actual detected object count: 0


#11 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:35 AM

Posted 10 August 2013 - 04:09 AM

Proceed with ESET. 


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#12 empaige

empaige
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 10 August 2013 - 09:43 AM

C:\Users\Emily\AppData\Local\Google\Chrome\User Data\Default\Users\mmobgjkdejmodgeigjdjejahipfceeam\background.js Win32/TrojanDownloader.Tracur.AH trojan
C:\Users\Emily\AppData\Local\Google\Chrome\User Data\Default\Users\mmobgjkdejmodgeigjdjejahipfceeam\cs.js Win32/TrojanDownloader.Tracur.AH trojan
C:\Users\Emily\AppData\Local\Temp\DB56.tmp Win32/OpenCandy application
C:\Users\Emily\AppData\Local\Temp\jar_cache4534198134137851085.tmp a variant of Java/Exploit.CVE-2012-4681.DD trojan
C:\Users\Emily\AppData\Local\Temp\PCFixSpeedSetup_253.exe multiple threats
C:\Users\Emily\AppData\Local\Temp\SolidSavings_20130712.exe a variant of Win32/Packed.VMDetector.A application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\BrowserConnection.dll Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\DataMngr.dll Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\DataMngrUI.exe a variant of Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\DnsBHO.dll Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\IEBHO.dll Win32/Toolbar.SearchSuite application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\x64\DataMngr.dll a variant of Win64/Toolbar.SearchSuite.A application
C:\Users\Emily\AppData\Local\Temp\BearShare_DM\x64\IEBHO.dll a variant of Win64/Toolbar.SearchSuite.A application
C:\Users\Emily\AppData\Local\Temp\nsyA8CD.tmp\util_ex.dll a variant of Win32/ExFriendAlert.B application
C:\Users\Emily\AppData\Local\Temp\~nsu.tmp\Au_.exe a variant of Win32/ExFriendAlert.B application


#13 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:35 AM

Posted 10 August 2013 - 10:53 AM

Download TFC from the download link above and save the file on your desktop.

 
Note 1: Depending on how much data is currently stored in the Temp folders, this process can take quite a while to remove all of the files, so please be patient.
 
Note 2: This program will not delete your Cookies or Browser History.
  • Close ALL running applications as TFC will terminate them before attempting to clean up the temporary files.
  • Double-click on the TFC icon.
  • When the program starts, click on the Start button.  TFC will terminate the Explorer process and all running applications and then begin the process of cleaning out all of your temp folders.
  • When done, press OK to reboot your computer and finish the cleanup.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#14 empaige

empaige
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 10 August 2013 - 11:29 AM

ok. all done! should I run anything else?

thank you!



#15 empaige

empaige
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:35 PM

Posted 10 August 2013 - 11:31 AM

ok.. As soon as i rebooted and started chrome..it looked normal. Exited out and clicked chrome again..was "conduit search" with "whitesmoke" on the bottom.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users