Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 8 Won't Boot!


  • Please log in to reply
18 replies to this topic

#1 Etng03

Etng03

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:17 AM

Posted 08 August 2013 - 07:59 AM

Hello!

 

This morning, my computer froze at the boot screen (screen with the windows flag on it). The little loading circle kept spinning, and even after letting it run for one hour, it still won't boot. Since I am currently booted into Safe Mode with Networking, I know that my computer can be restored. I then checked Event Viewer. One error in Windows Logs > System was this:

 

DCOM got error "1084" attempting to start the service WSearch with arguments "Unavailable" in order to run the server:

{9E175B68-F52A-11D8-B9A5-505054503030}

 

So, according to the question that this forum asks,

 

am I infected? :thumbup2:

 

Thanks for all your help beforehand!


Edited by Etng03, 08 August 2013 - 09:22 AM.


BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:17 PM

Posted 08 August 2013 - 09:31 AM

:welcome:

 

Let's run some tests, if you're infected or not:

 

  :step1: Run Rkill http://www.bleepingcomputer.com/forums/t/308364/rkill-what-it-does-and-what-it-doesnt-a-brief-introduction-to-the-program/

 

       Note: Sometimes AV's thinks Rkill is infected, this isn't true, it's just a false-positive. Just let it terminate the malware processes. Provide the Rkill log.

 

:step2:  Install and run MBAM

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================


Edited by GodfatherKing, 08 August 2013 - 09:33 AM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 Etng03

Etng03
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:17 AM

Posted 08 August 2013 - 12:52 PM

Hello Godfatherking,

 

Here are the logs you requested. Surprisingly, nothing was detected.

 

MBAM log:

 

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.08.06.07

Windows 8 x64 NTFS (Safe Mode/Networking)
Internet Explorer 10.0.9200.16635
Ethan :: ETHAN-PC [administrator]

Protection: Disabled

8/8/2013 10:26:27 AM
mbam-log-2013-08-08 (10-26-27).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 1021420
Time elapsed: 3 hour(s), 11 minute(s), 37 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

 

TDSSKiller log:

 

10:27:46.0341 1604  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:27:46.0748 1604  ============================================================
10:27:46.0748 1604  Current date / time: 2013/08/08 10:27:46.0748
10:27:46.0748 1604  SystemInfo:
10:27:46.0748 1604 
10:27:46.0763 1604  OS Version: 6.2.9200 ServicePack: 0.0
10:27:46.0763 1604  Product type: Workstation
10:27:46.0763 1604  ComputerName: ETHAN-PC
10:27:46.0763 1604  UserName: Ethan
10:27:46.0763 1604  Windows directory: C:\WINDOWS
10:27:46.0763 1604  System windows directory: C:\WINDOWS
10:27:46.0763 1604  Running under WOW64
10:27:46.0763 1604  Processor architecture: Intel x64
10:27:46.0763 1604  Number of processors: 8
10:27:46.0763 1604  Page size: 0x1000
10:27:46.0763 1604  Boot type: Safe boot with network
10:27:46.0763 1604  ============================================================
10:27:47.0091 1604  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:27:47.0091 1604  Drive \Device\Harddisk1\DR1 - Size: 0x1DD180000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:27:47.0091 1604  Drive \Device\Harddisk2\DR2 - Size: 0xF0100000 (3.75 Gb), SectorSize: 0x200, Cylinders: 0x1E9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:27:47.0091 1604  Drive \Device\Harddisk3\DR3 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:27:47.0498 1604  ============================================================
10:27:47.0498 1604  \Device\Harddisk0\DR0:
10:27:47.0560 1604  MBR partitions:
10:27:47.0560 1604  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
10:27:47.0560 1604  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x51B2C4EC
10:27:47.0560 1604  \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x56D56800, BlocksNum 0x7EF000
10:27:47.0607 1604  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x56942430, BlocksNum 0x41344B
10:27:47.0607 1604  \Device\Harddisk1\DR1:
10:27:47.0607 1604  MBR partitions:
10:27:47.0607 1604  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xEE8BE0
10:27:47.0607 1604  \Device\Harddisk2\DR2:
10:27:47.0607 1604  MBR partitions:
10:27:47.0607 1604  \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0xC38, BlocksNum 0x77FBC8
10:27:47.0607 1604  \Device\Harddisk3\DR3:
10:27:47.0607 1604  MBR partitions:
10:27:47.0607 1604  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384FB1
10:27:47.0607 1604  ============================================================
10:27:47.0654 1604  C: <-> \Device\Harddisk0\DR0\Partition2
10:27:47.0670 1604  E: <-> \Device\Harddisk0\DR0\Partition3
10:27:47.0701 1604  H: <-> \Device\Harddisk3\DR3\Partition1
10:27:47.0701 1604  T: <-> \Device\Harddisk0\DR0\Partition4
10:27:47.0701 1604  ============================================================
10:27:47.0701 1604  Initialize success
10:27:47.0701 1604  ============================================================
10:27:52.0467 1812  ============================================================
10:27:52.0467 1812  Scan started
10:27:52.0467 1812  Mode: Manual; TDLFS;
10:27:52.0467 1812  ============================================================
10:27:52.0779 1812  ================ Scan system memory ========================
10:27:52.0779 1812  System memory - ok
10:27:52.0779 1812  ================ Scan services =============================
10:27:52.0904 1812  [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
10:27:52.0920 1812  1394ohci - ok
10:27:52.0951 1812  [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
10:27:52.0951 1812  3ware - ok
10:27:52.0967 1812  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer   C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
10:27:52.0982 1812  Accelerometer - ok
10:27:53.0045 1812  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
10:27:53.0045 1812  ACDaemon - ok
10:27:53.0076 1812  [ 975AABEB243B800C23626D6B652C5A9C ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
10:27:53.0076 1812  ACPI - ok
10:27:53.0092 1812  [ DC968C37822117E576B933F34A2D130C ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
10:27:53.0092 1812  acpiex - ok
10:27:53.0123 1812  [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
10:27:53.0123 1812  acpipagr - ok
10:27:53.0139 1812  [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
10:27:53.0139 1812  AcpiPmi - ok
10:27:53.0170 1812  [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
10:27:53.0170 1812  acpitime - ok
10:27:53.0201 1812  [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
10:27:53.0201 1812  Adobe LM Service - ok
10:27:53.0248 1812  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:27:53.0248 1812  AdobeARMservice - ok
10:27:53.0326 1812  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:27:53.0326 1812  AdobeFlashPlayerUpdateSvc - ok
10:27:53.0357 1812  [ 93C6388592B99925C1D1576E465BC80F ] adp94xx         C:\WINDOWS\system32\drivers\adp94xx.sys
10:27:53.0357 1812  adp94xx - ok
10:27:53.0404 1812  [ D27763E0247292654E7F7D16444C7C72 ] adpahci         C:\WINDOWS\system32\drivers\adpahci.sys
10:27:53.0404 1812  adpahci - ok
10:27:53.0435 1812  [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320         C:\WINDOWS\system32\drivers\adpu320.sys
10:27:53.0435 1812  adpu320 - ok
10:27:53.0467 1812  [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
10:27:53.0482 1812  AeLookupSvc - ok
10:27:53.0560 1812  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
10:27:53.0560 1812  AESTFilters - ok
10:27:53.0592 1812  [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD             C:\WINDOWS\system32\drivers\afd.sys
10:27:53.0592 1812  AFD - ok
10:27:53.0607 1812  [ 01590377A5AB19E792528C628A2A68F9 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
10:27:53.0607 1812  agp440 - ok
10:27:53.0623 1812  AirPrint - ok
10:27:53.0639 1812  [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG             C:\WINDOWS\System32\alg.exe
10:27:53.0639 1812  ALG - ok
10:27:53.0685 1812  [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
10:27:53.0685 1812  AllUserInstallAgent - ok
10:27:53.0701 1812  [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
10:27:53.0701 1812  AmdK8 - ok
10:27:53.0717 1812  [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
10:27:53.0717 1812  AmdPPM - ok
10:27:53.0764 1812  [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
10:27:53.0764 1812  amdsata - ok
10:27:53.0779 1812  [ 00452671904F5EE94B50BF0219C97164 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
10:27:53.0779 1812  amdsbs - ok
10:27:53.0795 1812  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
10:27:53.0795 1812  amdxata - ok
10:27:53.0842 1812  [ 5451A638FACAA57F2F179837BC29A543 ] AMPPAL          C:\WINDOWS\System32\drivers\AMPPAL.sys
10:27:53.0842 1812  AMPPAL - ok
10:27:53.0842 1812  [ 5451A638FACAA57F2F179837BC29A543 ] AMPPALP         C:\WINDOWS\system32\DRIVERS\amppal.sys
10:27:53.0842 1812  AMPPALP - ok
10:27:53.0889 1812  [ CCB61487A9D9416EC8985279E37608BF ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
10:27:53.0904 1812  AMPPALR3 - ok
10:27:53.0982 1812  [ EB4E26AD3A0E681C2FAABBACB0691A34 ] Apache2.2       C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe
10:27:53.0982 1812  Apache2.2 - ok
10:27:54.0029 1812  [ 823F34D1DEF120A657BB7529ABF4461F ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
10:27:54.0029 1812  AppHostSvc - ok
10:27:54.0061 1812  [ 83B3682CE922FB0F415734B26D9D6233 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
10:27:54.0061 1812  AppID - ok
10:27:54.0092 1812  [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
10:27:54.0107 1812  AppIDSvc - ok
10:27:54.0139 1812  [ 4F750B7EFCB6520AE01E01D082D7D476 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
10:27:54.0139 1812  Appinfo - ok
10:27:54.0217 1812  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:27:54.0217 1812  Apple Mobile Device - ok
10:27:54.0232 1812  [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
10:27:54.0232 1812  AppMgmt - ok
10:27:54.0264 1812  [ E933401B392387F4BE34DE8BAF1722A7 ] arc             C:\WINDOWS\system32\drivers\arc.sys
10:27:54.0279 1812  arc - ok
10:27:54.0295 1812  [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
10:27:54.0295 1812  arcsas - ok
10:27:54.0389 1812  [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:27:54.0389 1812  aspnet_state - ok
10:27:54.0420 1812  [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:27:54.0420 1812  AsyncMac - ok
10:27:54.0436 1812  [ A721FF570C2387E383BDDEA9632863C9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
10:27:54.0436 1812  atapi - ok
10:27:54.0482 1812  [ BCD7A47EF587DC00DD61D12D9C2D1E44 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
10:27:54.0482 1812  AudioEndpointBuilder - ok
10:27:54.0529 1812  [ 599B3F685A263A114FFAF3BE29C49C75 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
10:27:54.0545 1812  Audiosrv - ok
10:27:54.0561 1812  [ 89491EF71D5EA011127832C588002853 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
10:27:54.0561 1812  AxInstSV - ok
10:27:54.0592 1812  [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
10:27:54.0592 1812  b06bdrv - ok
10:27:54.0623 1812  [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
10:27:54.0623 1812  BasicDisplay - ok
10:27:54.0654 1812  [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
10:27:54.0654 1812  BasicRender - ok
10:27:54.0732 1812  [ 5C5224541DD7BAAF94989AD0C32189B1 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.2.237.0\BBSvc.exe
10:27:54.0732 1812  BBSvc - ok
10:27:54.0748 1812  [ 6EA04FAB9EE94F1DEA9165BF2C0576CD ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.2.237.0\SeaPort.exe
10:27:54.0748 1812  BBUpdate - ok
10:27:54.0779 1812  [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
10:27:54.0779 1812  BDESVC - ok
10:27:54.0811 1812  [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
10:27:54.0811 1812  Beep - ok
10:27:54.0857 1812  [ 9E6A544F465C582AB42444A217CF04DC ] BFE             C:\WINDOWS\System32\bfe.dll
10:27:54.0857 1812  BFE - ok
10:27:54.0889 1812  [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS            C:\WINDOWS\System32\qmgr.dll
10:27:55.0467 1812  BITS - ok
10:27:55.0514 1812  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:27:55.0514 1812  Bonjour Service - ok
10:27:55.0545 1812  [ B17AC10B47C7FCB44D22A1F06415840E ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
10:27:55.0545 1812  bowser - ok
10:27:55.0592 1812  [ 038FA1B55531E7020DB705B42FCCE373 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
10:27:55.0592 1812  BrokerInfrastructure - ok
10:27:55.0623 1812  [ 310068BDA80B1D55C36580FD8A873FAF ] Browser         C:\WINDOWS\System32\browser.dll
10:27:55.0623 1812  Browser - ok
10:27:55.0670 1812  [ 6695200F455E251F0BCC9CE4D0978D59 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
10:27:55.0670 1812  BthAvrcpTg - ok
10:27:55.0701 1812  [ A8B20D852B07AE19A13B5D47EC4E4C3B ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
10:27:55.0701 1812  BthEnum - ok
10:27:55.0717 1812  [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
10:27:55.0717 1812  BthHFEnum - ok
10:27:55.0748 1812  [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
10:27:55.0748 1812  bthhfhid - ok
10:27:55.0764 1812  [ EB4CBCB3288233CD964716D0A5E1CFC5 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
10:27:55.0764 1812  BTHMODEM - ok
10:27:55.0795 1812  [ 091BB978E9504D0AD14586929431A957 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
10:27:55.0795 1812  BthPan - ok
10:27:55.0842 1812  [ 13795CAA34239D97A7211E7F9D96E012 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
10:27:55.0857 1812  BTHPORT - ok
10:27:55.0873 1812  [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv         C:\WINDOWS\system32\bthserv.dll
10:27:55.0873 1812  bthserv - ok
10:27:55.0920 1812  [ D30286FF3C7B6318C024D2BC2955C1BF ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
10:27:55.0920 1812  BTHSSecurityMgr - ok
10:27:55.0936 1812  [ 1F715957F5236D30B6020A19A4271F6A ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
10:27:55.0936 1812  BTHUSB - ok
10:27:55.0951 1812  [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf          C:\WINDOWS\system32\DRIVERS\btmhsf.sys
10:27:55.0951 1812  btmhsf - ok
10:27:55.0982 1812  [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
10:27:55.0982 1812  cdfs - ok
10:27:55.0998 1812  [ 339BFF85D788268752DA8C9644B188EE ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
10:27:55.0998 1812  cdrom - ok
10:27:56.0014 1812  [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
10:27:56.0014 1812  CertPropSvc - ok
10:27:56.0092 1812  [ 213B6EC3DE19E35373A1906397588429 ] CGVPNCliSrvc    C:\Program Files\CyberGhost VPN\CGVPNCliService.exe
10:27:56.0123 1812  CGVPNCliSrvc - ok
10:27:56.0139 1812  [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
10:27:56.0139 1812  circlass - ok
10:27:56.0170 1812  [ 9905168708DB68849B879B5548F68AB3 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
10:27:56.0186 1812  CLFS - ok
10:27:56.0201 1812  [ 2DC8538A2260647484A6C921CA837313 ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
10:27:56.0201 1812  CmBatt - ok
10:27:56.0232 1812  [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
10:27:56.0232 1812  CNG - ok
10:27:56.0248 1812  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
10:27:56.0248 1812  CompositeBus - ok
10:27:56.0264 1812  COMSysApp - ok
10:27:56.0279 1812  [ D9CB0782AF819548072AA45B70F8B22D ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
10:27:56.0279 1812  condrv - ok
10:27:56.0326 1812  [ 78AF1C499BF02F9814DF959A04A4F9C9 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
10:27:56.0342 1812  cphs - ok
10:27:56.0342 1812  CpqDfw - ok
10:27:56.0420 1812  cpuz135 - ok
10:27:56.0451 1812  cpuz136 - ok
10:27:56.0514 1812  [ 2C53AB51F07EF7B58D32C36D8F2F8C16 ] CronService     C:\Prey\platform\windows\cronsvc.exe
10:27:56.0514 1812  CronService - ok
10:27:56.0545 1812  [ AFA426B0E7975CEB21F8B6711EFA8945 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
10:27:56.0545 1812  CryptSvc - ok
10:27:56.0576 1812  [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
10:27:56.0576 1812  CSC - ok
10:27:56.0608 1812  [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService      C:\WINDOWS\System32\cscsvc.dll
10:27:56.0623 1812  CscService - ok
10:27:56.0639 1812  [ C4D01BD86D6B207275FC143EEA951D75 ] dam             C:\WINDOWS\system32\drivers\dam.sys
10:27:56.0639 1812  dam - ok
10:27:56.0686 1812  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
10:27:56.0686 1812  DcomLaunch - ok
10:27:56.0717 1812  [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
10:27:56.0717 1812  defragsvc - ok
10:27:56.0748 1812  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
10:27:56.0748 1812  DeviceAssociationService - ok
10:27:56.0764 1812  [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
10:27:56.0779 1812  DeviceInstall - ok
10:27:56.0795 1812  [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
10:27:56.0795 1812  Dfsc - ok
10:27:56.0826 1812  [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
10:27:56.0826 1812  Dhcp - ok
10:27:56.0858 1812  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache        C:\WINDOWS\system32\drivers\discache.sys
10:27:56.0858 1812  discache - ok
10:27:56.0889 1812  [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk            C:\WINDOWS\system32\drivers\disk.sys
10:27:56.0889 1812  disk - ok
10:27:56.0904 1812  [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
10:27:56.0904 1812  dmvsc - ok
10:27:56.0920 1812  [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
10:27:56.0936 1812  Dnscache - ok
10:27:56.0951 1812  [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
10:27:56.0951 1812  dot3svc - ok
10:27:56.0998 1812  [ 27069CFFF29B7F04F4B1BB10154BE52B ] dot4            C:\WINDOWS\system32\DRIVERS\Dot4.sys
10:27:56.0998 1812  dot4 - ok
10:27:57.0029 1812  [ 0BD906A79F9CE3013F7D9D0AC45F9F9D ] Dot4Print       C:\WINDOWS\System32\drivers\Dot4Prt.sys
10:27:57.0029 1812  Dot4Print - ok
10:27:57.0045 1812  [ B7D595F2F464F7B628AD53F06547792C ] dot4usb         C:\WINDOWS\system32\DRIVERS\dot4usb.sys
10:27:57.0045 1812  dot4usb - ok
10:27:57.0076 1812  [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS             C:\WINDOWS\system32\dps.dll
10:27:57.0076 1812  DPS - ok
10:27:57.0092 1812  [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
10:27:57.0092 1812  drmkaud - ok
10:27:57.0123 1812  [ F87F4AAAF6664906248D11D5E579A53B ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
10:27:57.0123 1812  DsmSvc - ok
10:27:57.0186 1812  [ 6D1B8A9A2C0BD4851D8AF1AB43E67AD9 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
10:27:57.0201 1812  DXGKrnl - ok
10:27:57.0233 1812  [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
10:27:57.0233 1812  Eaphost - ok
10:27:57.0358 1812  [ 5F697C5802709FF9A8CEA22D088E7806 ] EaseUS Agent    C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
10:27:57.0358 1812  EaseUS Agent - ok
10:27:57.0436 1812  [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
10:27:57.0467 1812  ebdrv - ok
10:27:57.0483 1812  [ F702AB6181513303AB0FC8D59E52708B ] EFS             C:\WINDOWS\System32\lsass.exe
10:27:57.0498 1812  EFS - ok
10:27:57.0561 1812  [ 4B84E647C934EDFF7F28C4B91A5C0864 ] ehRecvr         C:\WINDOWS\ehome\ehRecvr.exe
10:27:57.0561 1812  ehRecvr - ok
10:27:57.0576 1812  [ 72781EC7A97E44B9651550D7A83D1B96 ] ehSched         C:\WINDOWS\ehome\ehsched.exe
10:27:57.0576 1812  ehSched - ok
10:27:57.0608 1812  [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
10:27:57.0608 1812  EhStorClass - ok
10:27:57.0623 1812  [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
10:27:57.0623 1812  EhStorTcgDrv - ok
10:27:57.0654 1812  [ 6106653B08F4F72EEAA7F099E7C408A4 ] epmntdrv        C:\WINDOWS\system32\epmntdrv.sys
10:27:57.0654 1812  epmntdrv - ok
10:27:57.0670 1812  [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
10:27:57.0670 1812  ErrDev - ok
10:27:57.0701 1812  [ A0D10DF690BED80FA9726FBDA8FF4831 ] EUBAKUP         C:\WINDOWS\system32\drivers\eubakup.sys
10:27:57.0701 1812  EUBAKUP - ok
10:27:57.0717 1812  [ BBEB9CF16B9FF7D7B4D31CCD922D8DB3 ] EUBKMON         C:\WINDOWS\system32\drivers\EUBKMON.sys
10:27:57.0717 1812  EUBKMON - ok
10:27:57.0748 1812  [ 9407CB35AB614D8FD06E965E012FE1D4 ] EUDSKACS        C:\WINDOWS\system32\drivers\eudskacs.sys
10:27:57.0748 1812  EUDSKACS - ok
10:27:57.0764 1812  [ D6E1E51338F8C80AFF3B688AA1BBA879 ] EUFDDISK        C:\WINDOWS\system32\drivers\EuFdDisk.sys
10:27:57.0764 1812  EUFDDISK - ok
10:27:57.0779 1812  [ 991C04A31777ED77CB92A4F96F14C2E2 ] EuGdiDrv        C:\WINDOWS\system32\EuGdiDrv.sys
10:27:57.0779 1812  EuGdiDrv - ok
10:27:57.0826 1812  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem     C:\WINDOWS\system32\es.dll
10:27:57.0842 1812  EventSystem - ok
10:27:57.0904 1812  [ E7ECD510AED32C19477976310173FAC3 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
10:27:57.0920 1812  EvtEng - ok
10:27:57.0951 1812  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
10:27:57.0951 1812  exfat - ok
10:27:57.0998 1812  [ 86B0FBC17425B0A00D431B3C8F4D2F9D ] Ext2Fsd         C:\WINDOWS\system32\drivers\Ext2Fsd.sys
10:27:58.0014 1812  Ext2Fsd - ok
10:27:58.0029 1812  [ 60996602A7111FD2D086E803F33E4282 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
10:27:58.0029 1812  fastfat - ok
10:27:58.0076 1812  [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax             C:\WINDOWS\system32\fxssvc.exe
10:27:58.0076 1812  Fax - ok
10:27:58.0108 1812  [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
10:27:58.0108 1812  fdc - ok
10:27:58.0123 1812  [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
10:27:58.0123 1812  fdPHost - ok
10:27:58.0154 1812  [ 872506AAB591E8908DF4461475AF92DF ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
10:27:58.0154 1812  FDResPub - ok
10:27:58.0186 1812  [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
10:27:58.0186 1812  fhsvc - ok
10:27:58.0201 1812  [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
10:27:58.0201 1812  FileInfo - ok
10:27:58.0233 1812  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
10:27:58.0233 1812  Filetrace - ok
10:27:58.0279 1812  [ 7E76EED28B8B8696B7F7ED5F757AA304 ] FileZilla Server C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
10:27:58.0279 1812  FileZilla Server - ok
10:27:58.0373 1812  [ 73081CF28F0AE20A52CA4F67CEE6E6B0 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:27:58.0373 1812  FLEXnet Licensing Service - ok
10:27:58.0404 1812  [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
10:27:58.0404 1812  flpydisk - ok
10:27:58.0420 1812  [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
10:27:58.0420 1812  FltMgr - ok
10:27:58.0483 1812  [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache       C:\WINDOWS\system32\FntCache.dll
10:27:58.0498 1812  FontCache - ok
10:27:58.0576 1812  [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:27:58.0576 1812  FontCache3.0.0.0 - ok
10:27:58.0608 1812  [ F80BDC0D9E7B9595E74B434446AD3781 ] FPLService      C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe
10:27:58.0608 1812  FPLService - ok
10:27:58.0639 1812  [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
10:27:58.0639 1812  FsDepends - ok
10:27:58.0670 1812  [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:27:58.0670 1812  Fs_Rec - ok
10:27:58.0733 1812  [ 895BA1CFF25E867CE5A52073E905C93B ] fussvc          C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe
10:27:58.0733 1812  fussvc - ok
10:27:58.0779 1812  [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
10:27:58.0779 1812  fvevol - ok
10:27:58.0795 1812  [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
10:27:58.0795 1812  FxPPM - ok
10:27:58.0842 1812  [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
10:27:58.0842 1812  gagp30kx - ok
10:27:58.0873 1812  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
10:27:58.0889 1812  GamesAppService - ok
10:27:58.0905 1812  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
10:27:58.0905 1812  GEARAspiWDM - ok
10:27:58.0936 1812  [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
10:27:59.0030 1812  gencounter - ok
10:27:59.0061 1812  [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
10:27:59.0061 1812  GPIOClx0101 - ok
10:27:59.0108 1812  [ 5358678C6370F2ADC5291849F6503262 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
10:27:59.0123 1812  gpsvc - ok
10:27:59.0155 1812  [ 3B56627C838CFB7314570A7FCBC83C04 ] Guard Agent     C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe
10:27:59.0201 1812  Guard Agent - ok
10:27:59.0280 1812  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:59.0280 1812  gupdate - ok
10:27:59.0280 1812  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:59.0280 1812  gupdatem - ok
10:27:59.0295 1812  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:27:59.0295 1812  gusvc - ok
10:27:59.0326 1812  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
10:27:59.0326 1812  HDAudBus - ok
10:27:59.0358 1812  [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
10:27:59.0358 1812  HidBatt - ok
10:27:59.0389 1812  [ 085F150D002B7F0153D3C06DDF33A143 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
10:27:59.0389 1812  HidBth - ok
10:27:59.0420 1812  [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
10:27:59.0420 1812  hidi2c - ok
10:27:59.0451 1812  [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
10:27:59.0451 1812  HidIr - ok
10:27:59.0483 1812  [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv         C:\WINDOWS\system32\hidserv.dll
10:27:59.0483 1812  hidserv - ok
10:27:59.0530 1812  [ 9E11EE0F2E117B2D5A835B2B91752827 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
10:27:59.0530 1812  HidUsb - ok
10:27:59.0545 1812  [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
10:27:59.0545 1812  hkmsvc - ok
10:27:59.0576 1812  hMailServer - ok
10:27:59.0592 1812  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
10:27:59.0608 1812  HomeGroupListener - ok
10:27:59.0623 1812  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
10:27:59.0623 1812  HomeGroupProvider - ok
10:27:59.0686 1812  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
10:27:59.0686 1812  HP Support Assistant Service - ok
10:27:59.0717 1812  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
10:27:59.0717 1812  HPClientSvc - ok
10:27:59.0748 1812  [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt        C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
10:27:59.0748 1812  hpdskflt - ok
10:27:59.0795 1812  [ 8E6EE43CB60DD1198FDA213C33B24D9D ] HPLinkUpZeroC   C:\Program Files (x86)\Hewlett-Packard\HP LinkUp Sender\LinkUpZeroC.exe
10:27:59.0795 1812  HPLinkUpZeroC - ok
10:27:59.0873 1812  [ 930370725FA0FE272346583A7A7D6BDB ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
10:27:59.0873 1812  hpqcxs08 - ok
10:27:59.0873 1812  [ EE281DD6843F3F697C1AD7933EEB1E9B ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
10:27:59.0873 1812  hpqddsvc - ok
10:27:59.0936 1812  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
10:27:59.0951 1812  hpqwmiex - ok
10:27:59.0967 1812  [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
10:27:59.0983 1812  HpSAMD - ok
10:28:00.0014 1812  [ C995EA1C6915D897E06D41AF95B9312C ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
10:28:00.0030 1812  HPSLPSVC - ok
10:28:00.0030 1812  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv           C:\WINDOWS\system32\Hpservice.exe
10:28:00.0030 1812  hpsrv - ok
10:28:00.0076 1812  [ 2BEC76BDCD1BC080210325E7B5094834 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
10:28:00.0076 1812  HPWMISVC - ok
10:28:00.0123 1812  [ F4A91D985EB9D1D2717D538F3424603C ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
10:28:00.0139 1812  HTTP - ok
10:28:00.0170 1812  [ BF72B8F1764386A013851253497F3295 ] hvservice       C:\WINDOWS\system32\drivers\hvservice.sys
10:28:00.0170 1812  hvservice - ok
10:28:00.0186 1812  [ 2A98301068801700906C06649860FE94 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
10:28:00.0186 1812  hwpolicy - ok
10:28:00.0201 1812  [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
10:28:00.0201 1812  hyperkbd - ok
10:28:00.0217 1812  [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
10:28:00.0217 1812  HyperVideo - ok
10:28:00.0248 1812  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
10:28:00.0248 1812  i8042prt - ok
10:28:00.0295 1812  [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
10:28:00.0295 1812  iaStor - ok
10:28:00.0373 1812  [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:28:00.0373 1812  IAStorDataMgrSvc - ok
10:28:00.0405 1812  [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
10:28:00.0405 1812  iaStorV - ok
10:28:00.0436 1812  [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex      C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys
10:28:00.0436 1812  iBtFltCoex - ok
10:28:00.0514 1812  [ 5AD5A7781BE907D6E2D75CA1DADAA97B ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
10:28:00.0530 1812  IconMan_R - ok
10:28:00.0592 1812  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
10:28:00.0592 1812  IDriverT - ok
10:28:00.0701 1812  [ A1CF07D24EDCDC6870535471654D957C ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
10:28:00.0795 1812  igfx - ok
10:28:00.0826 1812  [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp           C:\WINDOWS\system32\drivers\iirsp.sys
10:28:00.0826 1812  iirsp - ok
10:28:00.0858 1812  [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
10:28:00.0873 1812  IKEEXT - ok
10:28:00.0889 1812  [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
10:28:00.0889 1812  intaud_WaveExtensible - ok
10:28:00.0905 1812  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
10:28:00.0920 1812  IntcDAud - ok
10:28:00.0951 1812  [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
10:28:00.0951 1812  intelide - ok
10:28:00.0983 1812  [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
10:28:00.0983 1812  intelppm - ok
10:28:01.0014 1812  [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:28:01.0030 1812  IpFilterDriver - ok
10:28:01.0076 1812  [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
10:28:01.0076 1812  iphlpsvc - ok
10:28:01.0108 1812  [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
10:28:01.0108 1812  IPMIDRV - ok
10:28:01.0139 1812  [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
10:28:01.0139 1812  IPNAT - ok
10:28:01.0186 1812  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
10:28:01.0186 1812  iPod Service - ok
10:28:01.0233 1812  [ 30228DC3268ADAA214B03A3948CA85BC ] IpOverUsbSvc    C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
10:28:01.0233 1812  IpOverUsbSvc - ok
10:28:01.0280 1812  [ 139523A53FFB4F10524FB9462F5337B8 ] iReboot         C:\Program Files (x86)\NeoSmart Technologies\iReboot\iRebootd.exe
10:28:01.0280 1812  iReboot - ok
10:28:01.0295 1812  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
10:28:01.0295 1812  IRENUM - ok
10:28:01.0327 1812  [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
10:28:01.0327 1812  isapnp - ok
10:28:01.0342 1812  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
10:28:01.0358 1812  iScsiPrt - ok
10:28:01.0373 1812  [ 716F66336F10885D935B08174DC54242 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
10:28:01.0373 1812  iwdbus - ok
10:28:01.0420 1812  [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service     C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
10:28:01.0420 1812  jhi_service - ok
10:28:01.0436 1812  [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
10:28:01.0436 1812  kbdclass - ok
10:28:01.0467 1812  [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
10:28:01.0467 1812  kbdhid - ok
10:28:01.0498 1812  [ FB6C185092E18011EF49989425C2AA87 ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
10:28:01.0498 1812  kdnic - ok
10:28:01.0514 1812  [ F702AB6181513303AB0FC8D59E52708B ] KeyIso          C:\WINDOWS\system32\lsass.exe
10:28:01.0514 1812  KeyIso - ok
10:28:01.0530 1812  [ DFA480F6DED551464F3A5B959F437800 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
10:28:01.0545 1812  KSecDD - ok
10:28:01.0561 1812  [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
10:28:01.0561 1812  KSecPkg - ok
10:28:01.0592 1812  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
10:28:01.0592 1812  ksthunk - ok
10:28:01.0623 1812  [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
10:28:01.0639 1812  KtmRm - ok
10:28:01.0655 1812  [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
10:28:01.0670 1812  LanmanServer - ok
10:28:01.0670 1812  [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
10:28:01.0686 1812  LanmanWorkstation - ok
10:28:01.0702 1812  [ CEEFD29FC551F289810B0B9381B321DC ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
10:28:01.0702 1812  lltdio - ok
10:28:01.0733 1812  [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
10:28:01.0733 1812  lltdsvc - ok
10:28:01.0748 1812  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
10:28:01.0764 1812  lmhosts - ok
10:28:01.0795 1812  [ 519D66259DF1672AABCE9D2E0ACC5552 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:28:01.0795 1812  LMS - ok
10:28:01.0827 1812  [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
10:28:01.0827 1812  LSI_SAS - ok
10:28:01.0858 1812  [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
10:28:01.0858 1812  LSI_SAS2 - ok
10:28:01.0873 1812  [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI        C:\WINDOWS\system32\drivers\lsi_scsi.sys
10:28:01.0873 1812  LSI_SCSI - ok
10:28:01.0889 1812  [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
10:28:01.0889 1812  LSI_SSS - ok
10:28:01.0920 1812  [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM             C:\WINDOWS\System32\lsm.dll
10:28:01.0920 1812  LSM - ok
10:28:01.0952 1812  [ 2BDC5D711FA61307CE6190D47C956368 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
10:28:01.0967 1812  luafv - ok
10:28:01.0983 1812  [ 31D72B6B06A4EA66A9A4B150B69567FF ] lunparser       C:\WINDOWS\system32\drivers\lunparser.sys
10:28:01.0983 1812  lunparser - ok
10:28:01.0998 1812  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
10:28:01.0998 1812  MBAMProtector - ok
10:28:02.0045 1812  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:28:02.0045 1812  MBAMScheduler - ok
10:28:02.0077 1812  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:28:02.0077 1812  MBAMService - ok
10:28:02.0123 1812  [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus          C:\WINDOWS\system32\DRIVERS\mcdbus.sys
10:28:02.0170 1812  mcdbus - ok
10:28:02.0217 1812  [ 4448CCEA974F0B15A00EA33FCEDFC062 ] Mcx2Svc         C:\WINDOWS\system32\Mcx2Svc.dll
10:28:02.0217 1812  Mcx2Svc - ok
10:28:02.0248 1812  [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
10:28:02.0248 1812  megasas - ok
10:28:02.0264 1812  [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR          C:\WINDOWS\system32\drivers\MegaSR.sys
10:28:02.0264 1812  MegaSR - ok
10:28:02.0295 1812  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
10:28:02.0295 1812  MEIx64 - ok
10:28:02.0327 1812  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
10:28:02.0327 1812  MMCSS - ok
10:28:02.0358 1812  [ 780098AD5DA8A4822E2563984C85EF7B ] Modem           C:\WINDOWS\system32\drivers\modem.sys
10:28:02.0358 1812  Modem - ok
10:28:02.0389 1812  [ EA8EAD3F5B762F889CC7F3966625B48B ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
10:28:02.0389 1812  monitor - ok
10:28:02.0405 1812  [ 618446B98C79776654340CE27C73485E ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
10:28:02.0405 1812  mouclass - ok
10:28:02.0436 1812  [ C0ADEBED913295803B579ED288936CBB ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
10:28:02.0436 1812  mouhid - ok
10:28:02.0452 1812  [ 89D263DBF08119CE16273991C120D6DD ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
10:28:02.0452 1812  mountmgr - ok
10:28:02.0498 1812  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:28:02.0498 1812  MozillaMaintenance - ok
10:28:02.0530 1812  [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
10:28:02.0530 1812  mpsdrv - ok
10:28:02.0561 1812  [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
10:28:02.0577 1812  MpsSvc - ok
10:28:02.0592 1812  [ 866AF645A3B1F4358C4201CE089839EA ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
10:28:02.0608 1812  MQAC - ok
10:28:02.0623 1812  [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
10:28:02.0623 1812  MRxDAV - ok
10:28:02.0655 1812  [ 93179D48066918323628CB016D8C94DC ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:28:02.0670 1812  mrxsmb - ok
10:28:02.0686 1812  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
10:28:02.0686 1812  mrxsmb10 - ok
10:28:02.0717 1812  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
10:28:02.0717 1812  mrxsmb20 - ok
10:28:02.0748 1812  [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
10:28:02.0748 1812  MsBridge - ok
10:28:02.0764 1812  [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
10:28:02.0780 1812  MSDTC - ok
10:28:02.0795 1812  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
10:28:02.0795 1812  Msfs - ok
10:28:02.0842 1812  [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
10:28:02.0842 1812  msgpiowin32 - ok
10:28:02.0858 1812  [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
10:28:02.0858 1812  mshidkmdf - ok
10:28:02.0889 1812  [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
10:28:02.0889 1812  mshidumdf - ok
10:28:02.0905 1812  [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
10:28:02.0905 1812  msisadrv - ok
10:28:02.0936 1812  [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
10:28:02.0936 1812  MSiSCSI - ok
10:28:02.0936 1812  msiserver - ok
10:28:02.0952 1812  [ 509809566E49F4411055864EA8D437CD ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:28:02.0952 1812  MSKSSRV - ok
10:28:02.0967 1812  [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
10:28:02.0967 1812  MsLldp - ok
10:28:02.0998 1812  [ 80FF037D6184FFACB2740A50C7949D20 ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
10:28:02.0998 1812  MSMQ - ok
10:28:03.0030 1812  [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:28:03.0030 1812  MSPCLOCK - ok
10:28:03.0045 1812  [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
10:28:03.0045 1812  MSPQM - ok
10:28:03.0077 1812  [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
10:28:03.0092 1812  MsRPC - ok
10:28:03.0108 1812  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
10:28:03.0108 1812  mssmbios - ok
10:28:03.0123 1812  [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
10:28:03.0123 1812  MSTEE - ok
10:28:03.0139 1812  [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
10:28:03.0139 1812  MTConfig - ok
10:28:03.0155 1812  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
10:28:03.0155 1812  Mup - ok
10:28:03.0170 1812  [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
10:28:03.0186 1812  mvumis - ok
10:28:03.0233 1812  MySQL - ok
10:28:03.0280 1812  [ DF3D9BD8DE05798CE1D7C52C150FAC71 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
10:28:03.0280 1812  MyWiFiDHCPDNS - ok
10:28:03.0311 1812  [ 4B18840511D720BA118D3017E8165875 ] napagent        C:\WINDOWS\system32\qagentRT.dll
10:28:03.0311 1812  napagent - ok
10:28:03.0327 1812  [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
10:28:03.0342 1812  NativeWifiP - ok
10:28:03.0358 1812  [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
10:28:03.0358 1812  NcaSvc - ok
10:28:03.0373 1812  [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
10:28:03.0373 1812  NcdAutoSetup - ok
10:28:03.0420 1812  [ A10E176F3B2BF83EDE7B5C4658C93B66 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
10:28:03.0436 1812  NDIS - ok
10:28:03.0467 1812  [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
10:28:03.0467 1812  NdisCap - ok
10:28:03.0483 1812  [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
10:28:03.0483 1812  NdisImPlatform - ok
10:28:03.0514 1812  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:28:03.0514 1812  NdisTapi - ok
10:28:03.0530 1812  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:28:03.0530 1812  Ndisuio - ok
10:28:03.0530 1812  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:28:03.0545 1812  NdisWan - ok
10:28:03.0545 1812  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:28:03.0545 1812  NDISWANLEGACY - ok
10:28:03.0577 1812  [ 3730942D7DB2F8BB5F84542B7FF6F650 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
10:28:03.0577 1812  NDProxy - ok
10:28:03.0608 1812  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
10:28:03.0608 1812  Ndu - ok
10:28:03.0623 1812  [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll
10:28:03.0623 1812  Net Driver HPZ12 - ok
10:28:03.0655 1812  [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
10:28:03.0655 1812  NetBIOS - ok
10:28:03.0670 1812  [ 7CEC25C682D319D484630B3952C31A11 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
10:28:03.0686 1812  NetBT - ok
10:28:03.0686 1812  [ F702AB6181513303AB0FC8D59E52708B ] Netlogon        C:\WINDOWS\system32\lsass.exe
10:28:03.0686 1812  Netlogon - ok
10:28:03.0717 1812  [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman          C:\WINDOWS\System32\netman.dll
10:28:03.0733 1812  Netman - ok
10:28:03.0811 1812  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:28:03.0842 1812  NetMsmqActivator - ok
10:28:03.0842 1812  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:28:03.0842 1812  NetPipeActivator - ok
10:28:03.0874 1812  [ 79FA9393C67EBBF92A56923592CF7A7C ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
10:28:03.0889 1812  netprofm - ok
10:28:03.0936 1812  [ 9F929E74A8FB21B2B44B41C115F10B39 ] netr28ux        C:\WINDOWS\system32\DRIVERS\netr28ux.sys
10:28:03.0952 1812  netr28ux - ok
10:28:03.0967 1812  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:28:03.0967 1812  NetTcpActivator - ok
10:28:03.0967 1812  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:28:03.0967 1812  NetTcpPortSharing - ok
10:28:04.0170 1812  [ 3184D1564F9970F4EC81AF0347AD42B7 ] NETwNs64        C:\WINDOWS\system32\DRIVERS\NETwsw00.sys
10:28:04.0358 1812  NETwNs64 - ok
10:28:04.0389 1812  [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960         C:\WINDOWS\system32\drivers\nfrd960.sys
10:28:04.0389 1812  nfrd960 - ok
10:28:04.0405 1812  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
10:28:04.0420 1812  NlaSvc - ok
10:28:04.0452 1812  [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
10:28:04.0452 1812  Npfs - ok
10:28:04.0467 1812  [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
10:28:04.0467 1812  npsvctrig - ok
10:28:04.0499 1812  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi             C:\WINDOWS\system32\nsisvc.dll
10:28:04.0499 1812  nsi - ok
10:28:04.0530 1812  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
10:28:04.0530 1812  nsiproxy - ok
10:28:04.0577 1812  [ 76929F4A69E425911A63B407E26C2589 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
10:28:04.0608 1812  Ntfs - ok
10:28:04.0624 1812  [ 4163ADE07DB51843AE31F65B94F5398D ] Null            C:\WINDOWS\system32\drivers\Null.sys
10:28:04.0639 1812  Null - ok
10:28:04.0655 1812  [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
10:28:04.0655 1812  nvraid - ok
10:28:04.0670 1812  [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
10:28:04.0670 1812  nvstor - ok
10:28:04.0686 1812  [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
10:28:04.0686 1812  nv_agp - ok
10:28:04.0749 1812  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:28:04.0749 1812  odserv - ok
10:28:04.0780 1812  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:28:04.0780 1812  ose - ok
10:28:04.0811 1812  [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
10:28:04.0811 1812  p2pimsvc - ok
10:28:04.0827 1812  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
10:28:04.0842 1812  p2psvc - ok
10:28:04.0874 1812  [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
10:28:04.0874 1812  Parport - ok
10:28:04.0889 1812  [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
10:28:04.0889 1812  partmgr - ok
10:28:04.0905 1812  [ 669F3484C9BD577ADBD5EBE09C3FF57E ] passthruparser  C:\WINDOWS\system32\drivers\passthruparser.sys
10:28:04.0905 1812  passthruparser - ok
10:28:04.0936 1812  [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
10:28:04.0952 1812  PcaSvc - ok
10:28:04.0983 1812  [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys
10:28:04.0983 1812  pccsmcfd - ok
10:28:05.0014 1812  [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci             C:\WINDOWS\system32\drivers\pci.sys
10:28:05.0014 1812  pci - ok
10:28:05.0030 1812  [ F9908D274D458220F91E89B54D78D837 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
10:28:05.0030 1812  pciide - ok
10:28:05.0045 1812  [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
10:28:05.0045 1812  pcmcia - ok
10:28:05.0077 1812  [ CEBBAD5391C2644560C55628A40BFD27 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
10:28:05.0077 1812  pcw - ok
10:28:05.0108 1812  [ 0698DEDEAD6A00AD0D468C687D830FBF ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
10:28:05.0108 1812  pdc - ok
10:28:05.0155 1812  [ 61FE70659CD43E07F94DA4DC31DEC493 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
10:28:05.0170 1812  PEAUTH - ok
10:28:05.0217 1812  [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
10:28:05.0249 1812  PeerDistSvc - ok
10:28:05.0311 1812  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
10:28:05.0358 1812  PerfHost - ok
10:28:05.0405 1812  [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla             C:\WINDOWS\system32\pla.dll
10:28:05.0420 1812  pla - ok
10:28:05.0436 1812  [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
10:28:05.0436 1812  PlugPlay - ok
10:28:05.0467 1812  [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll
10:28:05.0467 1812  Pml Driver HPZ12 - ok
10:28:05.0483 1812  [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
10:28:05.0483 1812  PNRPAutoReg - ok
10:28:05.0514 1812  [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
10:28:05.0514 1812  PNRPsvc - ok
10:28:05.0545 1812  [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
10:28:05.0545 1812  PolicyAgent - ok
10:28:05.0561 1812  [ F1E067F56373F11EA4B785CAE823740A ] Power           C:\WINDOWS\system32\umpo.dll
10:28:05.0577 1812  Power - ok
10:28:05.0592 1812  [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:28:05.0592 1812  PptpMiniport - ok
10:28:05.0702 1812  [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
10:28:05.0717 1812  PrintNotify - ok
10:28:05.0749 1812  [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor       C:\WINDOWS\System32\drivers\processr.sys
10:28:05.0749 1812  Processor - ok
10:28:05.0780 1812  [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
10:28:05.0780 1812  ProfSvc - ok
10:28:05.0811 1812  [ EB8034147D4820CD31BFCB11A2A652DF ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
10:28:05.0811 1812  Psched - ok
10:28:05.0842 1812  [ 3DF18A193C758BE8E610B01331C237FB ] pwdrvio         C:\WINDOWS\system32\pwdrvio.sys
10:28:05.0842 1812  pwdrvio - ok
10:28:05.0874 1812  [ 1EBD98FB3B567C552C9C85AB73729AEC ] pwdspio         C:\WINDOWS\system32\pwdspio.sys
10:28:05.0874 1812  pwdspio - ok
10:28:05.0889 1812  [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE           C:\WINDOWS\system32\qwave.dll
10:28:05.0905 1812  QWAVE - ok
10:28:05.0920 1812  [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
10:28:05.0920 1812  QWAVEdrv - ok
10:28:05.0952 1812  [ 873C60F8178100557740A832FCE10B5F ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:28:05.0952 1812  RasAcd - ok
10:28:05.0952 1812  [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
10:28:05.0967 1812  RasAgileVpn - ok
10:28:05.0983 1812  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
10:28:05.0999 1812  RasAuto - ok
10:28:06.0014 1812  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:28:06.0014 1812  Rasl2tp - ok
10:28:06.0030 1812  [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan          C:\WINDOWS\System32\rasmans.dll
10:28:06.0045 1812  RasMan - ok
10:28:06.0061 1812  [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:28:06.0061 1812  RasPppoe - ok
10:28:06.0077 1812  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
10:28:06.0077 1812  RasSstp - ok
10:28:06.0108 1812  [ CA03D642ACE58E1BA54E4B383F91CD69 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:28:06.0124 1812  rdbss - ok
10:28:06.0139 1812  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
10:28:06.0139 1812  rdpbus - ok
10:28:06.0155 1812  [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
10:28:06.0155 1812  RDPDR - ok
10:28:06.0186 1812  [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
10:28:06.0186 1812  RdpVideoMiniport - ok
10:28:06.0217 1812  [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
10:28:06.0217 1812  RDPWD - ok
10:28:06.0217 1812  [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
10:28:06.0217 1812  rdyboost - ok
10:28:06.0296 1812  [ 46D01172EDDACDD1EB75648D5E17D5E2 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
10:28:06.0296 1812  RegSrvc - ok
10:28:06.0311 1812  [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
10:28:06.0327 1812  RemoteAccess - ok
10:28:06.0358 1812  [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
10:28:06.0358 1812  RemoteRegistry - ok
10:28:06.0389 1812  [ CCBFCABDFE2BC22F0645CEAADDB36004 ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
10:28:06.0389 1812  RFCOMM - ok
10:28:06.0483 1812  [ EBBD14CE72371722BC2AA0236AE9B3BA ] rgsender        C:\Program Files (x86)\Hewlett-Packard\Remote Graphics Sender\rgsendersvc.exe
10:28:06.0483 1812  rgsender - ok
10:28:06.0499 1812  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
10:28:06.0499 1812  RpcEptMapper - ok
10:28:06.0530 1812  [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator      C:\WINDOWS\system32\locator.exe
10:28:06.0530 1812  RpcLocator - ok
10:28:06.0561 1812  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs           C:\WINDOWS\system32\rpcss.dll
10:28:06.0561 1812  RpcSs - ok
10:28:06.0592 1812  [ B868B9C46B11067A809987415E8A08A0 ] RSPCIESTOR      C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
10:28:06.0608 1812  RSPCIESTOR - ok
10:28:06.0608 1812  [ E04E770DD198B9399640717145E79EBF ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
10:28:06.0608 1812  rspndr - ok
10:28:06.0655 1812  [ 15923AA360F7675D3D43C9669316A0BA ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
10:28:06.0655 1812  RTL8168 - ok
10:28:06.0686 1812  [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
10:28:06.0686 1812  s3cap - ok
10:28:06.0702 1812  [ F702AB6181513303AB0FC8D59E52708B ] SamSs           C:\WINDOWS\system32\lsass.exe
10:28:06.0702 1812  SamSs - ok
10:28:06.0749 1812  [ 78AFA2B244DDF896BF1287B543842452 ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys
10:28:06.0749 1812  SbieDrv - ok
10:28:06.0764 1812  [ 654A24D71B9E6201A6A29602D3E23490 ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe
10:28:06.0764 1812  SbieSvc - ok
10:28:06.0796 1812  [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
10:28:06.0796 1812  sbp2port - ok
10:28:06.0827 1812  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
10:28:06.0827 1812  SCardSvr - ok
10:28:06.0858 1812  [ 5D7733A12756B267FCA021672B26BC9E ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
10:28:06.0858 1812  scfilter - ok
10:28:06.0905 1812  [ ED40ED9A65F3E79A8C43DD50C5FDADBF ] Schedule        C:\WINDOWS\system32\schedsvc.dll
10:28:06.0921 1812  Schedule - ok
10:28:06.0936 1812  [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
10:28:06.0936 1812  SCPolicySvc - ok
10:28:06.0983 1812  [ 98636FB2973B8876A7F0BECD076CF109 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
10:28:06.0983 1812  sdbus - ok
10:28:06.0999 1812  [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
10:28:06.0999 1812  SDRSVC - ok
10:28:07.0046 1812  [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
10:28:07.0046 1812  sdstor - ok
10:28:07.0061 1812  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
10:28:07.0061 1812  secdrv - ok
10:28:07.0077 1812  [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon        C:\WINDOWS\system32\seclogon.dll
10:28:07.0077 1812  seclogon - ok
10:28:07.0108 1812  [ 9C51620998F0763039DFA6BF68E475ED ] SENS            C:\WINDOWS\System32\sens.dll
10:28:07.0124 1812  SENS - ok
10:28:07.0139 1812  [ DDA4CAF29D8C0A297F886BFE561E6659 ] SensorsSimulatorDriver C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:28:07.0139 1812  SensorsSimulatorDriver - ok
10:28:07.0155 1812  [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
10:28:07.0171 1812  SensrSvc - ok
10:28:07.0186 1812  [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
10:28:07.0186 1812  SerCx - ok
10:28:07.0217 1812  [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
10:28:07.0217 1812  Serenum - ok
10:28:07.0233 1812  [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
10:28:07.0233 1812  Serial - ok
10:28:07.0249 1812  [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
10:28:07.0249 1812  sermouse - ok
10:28:07.0296 1812  [ 78F7BB9F4924BE164294C59B8C3FC096 ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
10:28:07.0296 1812  ServiceLayer - ok
10:28:07.0327 1812  [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
10:28:07.0342 1812  SessionEnv - ok
10:28:07.0358 1812  [ 7EE65419B29302C795714FF8073969A1 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
10:28:07.0358 1812  sfloppy - ok
10:28:07.0405 1812  [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
10:28:07.0405 1812  SharedAccess - ok
10:28:07.0467 1812  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:28:07.0483 1812  ShellHWDetection - ok
10:28:07.0499 1812  [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
10:28:07.0499 1812  SiSRaid2 - ok
10:28:07.0530 1812  [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
10:28:07.0530 1812  SiSRaid4 - ok
10:28:07.0671 1812  [ AE40D1BC6FB02A5625516AD74CA9A309 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:28:07.0686 1812  Skype C2C Service - ok
10:28:07.0733 1812  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
10:28:07.0733 1812  SkypeUpdate - ok
10:28:07.0764 1812  [ 19555D03CB179BED8B8AAA239A36BDA4 ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
10:28:07.0764 1812  SmbDrvI - ok
10:28:07.0796 1812  [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
10:28:07.0796 1812  SNMPTRAP - ok
10:28:07.0827 1812  [ F9369327409492097B0BB7CE86BD29DE ] Soluto          C:\WINDOWS\system32\Drivers\Soluto.sys
10:28:07.0827 1812  Soluto - ok
10:28:07.0858 1812  [ D4AD5384CB0C3B63C8F771C65F56D298 ] SolutoLauncherService C:\Program Files\Soluto\SolutoLauncherService.exe
10:28:07.0858 1812  SolutoLauncherService - ok
10:28:07.0889 1812  [ 11D1FF150C64F2C3D789DD9411A0D0EC ] SolutoService   C:\Program Files\Soluto\SolutoService.exe
10:28:07.0889 1812  SolutoService - ok
10:28:07.0936 1812  [ FD3AF5575B99871BADB94E7699DBCE08 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
10:28:07.0936 1812  spaceport - ok
10:28:07.0967 1812  [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
10:28:07.0967 1812  SpbCx - ok
10:28:08.0014 1812  [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
10:28:08.0014 1812  Spooler - ok
10:28:08.0108 1812  [ EC84D961501054F87A6878EC5D53388F ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
10:28:08.0186 1812  sppsvc - ok
10:28:08.0264 1812  [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
10:28:08.0264 1812  SQLWriter - ok
10:28:08.0296 1812  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
10:28:08.0296 1812  srv - ok
10:28:08.0342 1812  [ 56218A571ECF8D55E0CDFF8DF2546CF1 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
10:28:08.0342 1812  srv2 - ok
10:28:08.0358 1812  [ 14FC338B80CFF7E04215133B568D15C4 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
10:28:08.0358 1812  srvnet - ok
10:28:08.0389 1812  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
10:28:08.0389 1812  SSDPSRV - ok
10:28:08.0421 1812  [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
10:28:08.0421 1812  SstpSvc - ok
10:28:08.0483 1812  [ 97F839E8AEC48EE271509BF4BC764C24 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
10:28:08.0483 1812  STacSV - ok
10:28:08.0514 1812  [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
10:28:08.0514 1812  stexstor - ok
10:28:08.0546 1812  [ 7E89F65EB250463EE8665CFE19566FC3 ] STHDA           C:\WINDOWS\system32\DRIVERS\stwrt64.sys
10:28:08.0561 1812  STHDA - ok
10:28:08.0577 1812  [ F38F79114380246B6D40CD53FB2CA28D ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
10:28:08.0577 1812  StillCam - ok
10:28:08.0624 1812  [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc          C:\WINDOWS\System32\wiaservc.dll
10:28:08.0639 1812  stisvc - ok
10:28:08.0655 1812  [ B240874B2CA0CD02E8CD11E140B14C57 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
10:28:08.0655 1812  storahci - ok
10:28:08.0686 1812  [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
10:28:08.0686 1812  storflt - ok
10:28:08.0718 1812  [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
10:28:08.0718 1812  StorSvc - ok
10:28:08.0749 1812  [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
10:28:08.0749 1812  storvsc - ok
10:28:08.0764 1812  [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp         C:\WINDOWS\System32\drivers\storvsp.sys
10:28:08.0764 1812  storvsp - ok
10:28:08.0811 1812  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc           C:\WINDOWS\system32\svsvc.dll
10:28:08.0811 1812  svsvc - ok
10:28:08.0843 1812  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
10:28:08.0843 1812  swenum - ok
10:28:08.0874 1812  [ 502F9488540051F3E6C39889ECFA76BB ] swprv           C:\WINDOWS\System32\swprv.dll
10:28:08.0874 1812  swprv - ok
10:28:08.0905 1812  [ 3F45C3FE208CA5E68832B65C597A35A6 ] SynTP           C:\WINDOWS\System32\drivers\SynTP.sys
10:28:08.0921 1812  SynTP - ok
10:28:08.0983 1812  [ A06CB9269D29EE3D0F3F5630ABB660B8 ] SysMain         C:\WINDOWS\system32\sysmain.dll
10:28:08.0999 1812  SysMain - ok
10:28:09.0030 1812  [ 6FB88606C4A71E1BFAF97D63A676C673 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
10:28:09.0030 1812  SystemEventsBroker - ok
10:28:09.0061 1812  [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
10:28:09.0061 1812  TabletInputService - ok
10:28:09.0077 1812  [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901         C:\WINDOWS\system32\DRIVERS\tap0901.sys
10:28:09.0077 1812  tap0901 - ok
10:28:09.0108 1812  [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
10:28:09.0124 1812  TapiSrv - ok
10:28:09.0186 1812  [ 0D05E0147C1329C53AAF97882DEDD96A ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
10:28:09.0202 1812  Tcpip - ok
10:28:09.0233 1812  [ 0D05E0147C1329C53AAF97882DEDD96A ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:28:09.0249 1812  TCPIP6 - ok
10:28:09.0264 1812  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
10:28:09.0264 1812  tcpipreg - ok
10:28:09.0280 1812  [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
10:28:09.0296 1812  tdx - ok
10:28:09.0358 1812  [ BB676D2C7AD5E7131D12417E4691F9B9 ] Te.Service      C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe
10:28:09.0358 1812  Te.Service - ok
10:28:09.0374 1812  [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
10:28:09.0389 1812  terminpt - ok
10:28:09.0405 1812  [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService     C:\WINDOWS\System32\termsrv.dll
10:28:09.0421 1812  TermService - ok
10:28:09.0436 1812  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes          C:\WINDOWS\system32\themeservice.dll
10:28:09.0436 1812  Themes - ok
10:28:09.0483 1812  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
10:28:09.0483 1812  THREADORDER - ok
10:28:09.0514 1812  [ 4515B9E4140F04FB3907692DF89FCA87 ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
10:28:09.0530 1812  TimeBroker - ok
10:28:09.0546 1812  [ F812254D68C0D5D14CDE5EA1928DB518 ] TlntSvr         C:\WINDOWS\System32\tlntsvr.exe
10:28:09.0546 1812  TlntSvr - ok
10:28:09.0577 1812  [ 6F0BFF80EE2A5BC841286A51F893CBAD ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
10:28:09.0577 1812  TPM - ok
10:28:09.0608 1812  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks          C:\WINDOWS\System32\trkwks.dll
10:28:09.0624 1812  TrkWks - ok
10:28:09.0639 1812  [ 370A6907DDF79532A39319492B1FA38A ] truecrypt       C:\WINDOWS\system32\drivers\truecrypt.sys
10:28:09.0655 1812  truecrypt - ok
10:28:09.0702 1812  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
10:28:09.0702 1812  TrustedInstaller - ok
10:28:09.0733 1812  [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
10:28:09.0733 1812  TsUsbFlt - ok
10:28:09.0749 1812  [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
10:28:09.0764 1812  TsUsbGD - ok
10:28:09.0780 1812  [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
10:28:09.0780 1812  tunnel - ok
10:28:09.0796 1812  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
10:28:09.0796 1812  uagp35 - ok
10:28:09.0827 1812  [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
10:28:09.0827 1812  UASPStor - ok
10:28:09.0858 1812  [ 4834158B8D06A153FADAB6B85320FBBE ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
10:28:09.0858 1812  UCX01000 - ok
10:28:09.0889 1812  [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
10:28:09.0889 1812  udfs - ok
10:28:09.0905 1812  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
10:28:09.0921 1812  UI0Detect - ok
10:28:09.0936 1812  [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
10:28:09.0936 1812  uliagpkx - ok
10:28:09.0952 1812  [ 02CEB3FE6152668A7BA420B93B664860 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
10:28:09.0952 1812  umbus - ok
10:28:09.0983 1812  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
10:28:09.0983 1812  UmPass - ok
10:28:09.0999 1812  [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
10:28:09.0999 1812  UmRdpService - ok
10:28:10.0108 1812  [ 1B71370AEC1115F80D9A4A209317C968 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:28:10.0108 1812  UNS - ok
10:28:10.0139 1812  [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost        C:\WINDOWS\System32\upnphost.dll
10:28:10.0155 1812  upnphost - ok
10:28:10.0186 1812  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
10:28:10.0186 1812  USBAAPL64 - ok
10:28:10.0202 1812  [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
10:28:10.0202 1812  usbccgp - ok
10:28:10.0249 1812  [ B395B62B62F28106218FA6FB17F4C797 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
10:28:10.0249 1812  usbcir - ok
10:28:10.0280 1812  [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
10:28:10.0280 1812  usbehci - ok
10:28:10.0327 1812  [ ADBF89B8E0BB372FEFE2E4B84E1E20AE ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
10:28:10.0327 1812  usbhub - ok
10:28:10.0374 1812  [ EA040D4C6C94F315A85F3D0EAA884B37 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
10:28:10.0374 1812  USBHUB3 - ok
10:28:10.0389 1812  [ 325F6179009B5A7F6118951A5BA422AB ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
10:28:10.0389 1812  usbohci - ok
10:28:10.0421 1812  [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
10:28:10.0421 1812  usbprint - ok
10:28:10.0436 1812  [ A9858597B6DB695F78A37F6755A6FF98 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
10:28:10.0436 1812  usbscan - ok
10:28:10.0468 1812  [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
10:28:10.0468 1812  USBSTOR - ok
10:28:10.0499 1812  [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
10:28:10.0499 1812  usbuhci - ok
10:28:10.0514 1812  [ 09799E701B4327097E9F63D3FE221083 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
10:28:10.0514 1812  usbvideo - ok
10:28:10.0530 1812  [ 1ADCF0A490C2845637B334626669CD6F ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
10:28:10.0530 1812  USBXHCI - ok
10:28:10.0561 1812  [ 73F41BD2DD78125DA7342693C8E10B9E ] valWBFPolicyService C:\WINDOWS\system32\valWBFPolicyService.exe
10:28:10.0561 1812  valWBFPolicyService - ok
10:28:10.0577 1812  [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc        C:\WINDOWS\system32\lsass.exe
10:28:10.0577 1812  VaultSvc - ok
10:28:10.0593 1812  [ 68EF855725F65A5C3C24F78D33388F30 ] VBoxDrv         C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
10:28:10.0608 1812  VBoxDrv - ok
10:28:10.0624 1812  [ 7FFC48B516856FD40B9F55687C8D70A2 ] VBoxNetAdp      C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
10:28:10.0624 1812  VBoxNetAdp - ok
10:28:10.0655 1812  [ 7A92E82A1DCC528F4E7D3F655BDEA6AA ] VBoxNetFlt      C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys
10:28:10.0655 1812  VBoxNetFlt - ok
10:28:10.0686 1812  [ F3CF9F56C2A8AEB50EB679DC76902BE0 ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
10:28:10.0686 1812  VBoxUSBMon - ok
10:28:10.0718 1812  [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
10:28:10.0718 1812  vdrvroot - ok
10:28:10.0764 1812  [ 1B4488988E5E7512E6C5CD1255E9E973 ] vds             C:\WINDOWS\System32\vds.exe
10:28:10.0780 1812  vds - ok
10:28:10.0780 1812  [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
10:28:10.0780 1812  VerifierExt - ok
10:28:10.0811 1812  [ 500BE6B2E49883720D0AE8BB859ED7A3 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
10:28:10.0811 1812  vhdmp - ok
10:28:10.0843 1812  [ B8208289D29E884DB0DCB94E8EADAC2C ] vhdparser       C:\WINDOWS\system32\drivers\vhdparser.sys
10:28:10.0843 1812  vhdparser - ok
10:28:10.0858 1812  [ F5B4A14B00E89250C50982AC762DDD1D ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
10:28:10.0874 1812  viaide - ok
10:28:10.0889 1812  [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid             C:\WINDOWS\System32\drivers\Vid.sys
10:28:10.0889 1812  Vid - ok
10:28:10.0921 1812  [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
10:28:10.0921 1812  vmbus - ok
10:28:10.0936 1812  [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
10:28:10.0936 1812  VMBusHID - ok
10:28:10.0952 1812  [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr          C:\WINDOWS\System32\drivers\vmbusr.sys
10:28:10.0952 1812  vmbusr - ok
10:28:10.0983 1812  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
10:28:10.0983 1812  vmicheartbeat - ok
10:28:10.0999 1812  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
10:28:10.0999 1812  vmickvpexchange - ok
10:28:10.0999 1812  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
10:28:10.0999 1812  vmicrdv - ok
10:28:11.0015 1812  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
10:28:11.0015 1812  vmicshutdown - ok
10:28:11.0015 1812  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
10:28:11.0030 1812  vmictimesync - ok
10:28:11.0030 1812  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
10:28:11.0030 1812  vmicvss - ok
10:28:11.0061 1812  [ FAB01A7E30C5C136DC44470DF6EA58D0 ] vmm             C:\WINDOWS\system32\Drivers\vmm.sys
10:28:11.0077 1812  vmm - ok
10:28:11.0280 1812  [ AB68CE22186B7AE0CD493A6A63E5FDF0 ] vmms            C:\WINDOWS\system32\vmms.exe
10:28:11.0452 1812  vmms - ok
10:28:11.0483 1812  [ 6741C798D19C8E930F14B44D846B2C1F ] VMSMP           C:\WINDOWS\system32\DRIVERS\vmswitch.sys
10:28:11.0483 1812  VMSMP - ok
10:28:11.0499 1812  [ 6741C798D19C8E930F14B44D846B2C1F ] VMSP            C:\WINDOWS\system32\DRIVERS\vmswitch.sys
10:28:11.0499 1812  VMSP - ok
10:28:11.0499 1812  [ 6741C798D19C8E930F14B44D846B2C1F ] VMSVSP          C:\WINDOWS\system32\DRIVERS\vmswitch.sys
10:28:11.0515 1812  VMSVSP - ok
10:28:11.0530 1812  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
10:28:11.0546 1812  volmgr - ok
10:28:11.0561 1812  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
10:28:11.0561 1812  volmgrx - ok
10:28:11.0608 1812  [ 78A5BBA3819FFFC62FFEC3E2220D102D ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
10:28:11.0624 1812  volsnap - ok
10:28:11.0655 1812  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
10:28:11.0655 1812  vpci - ok
10:28:11.0671 1812  [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp         C:\WINDOWS\System32\drivers\vpcivsp.sys
10:28:11.0671 1812  vpcivsp - ok
10:28:11.0702 1812  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
10:28:11.0702 1812  vsmraid - ok
10:28:11.0780 1812  [ F972436B5ED08069A1E7D623B77C226A ] VSPerfDrv110    C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys
10:28:11.0780 1812  VSPerfDrv110 - ok
10:28:11.0843 1812  [ D0C69E44BC1E1D4AD290FD84104623D8 ] VSS             C:\WINDOWS\system32\vssvc.exe
10:28:11.0858 1812  VSS - ok
10:28:11.0890 1812  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
10:28:11.0890 1812  VSTXRAID - ok
10:28:11.0905 1812  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
10:28:11.0905 1812  vwifibus - ok
10:28:11.0921 1812  [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
10:28:11.0921 1812  vwififlt - ok
10:28:11.0936 1812  [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
10:28:11.0936 1812  vwifimp - ok
10:28:11.0968 1812  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time         C:\WINDOWS\system32\w32time.dll
10:28:11.0968 1812  W32Time - ok
10:28:12.0030 1812  [ 901CC968412F8155B08D7ABE0171166A ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
10:28:12.0030 1812  W3SVC - ok
10:28:12.0046 1812  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
10:28:12.0046 1812  WacomPen - ok
10:28:12.0077 1812  [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:28:12.0077 1812  Wanarp - ok
10:28:12.0077 1812  [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:28:12.0077 1812  Wanarpv6 - ok
10:28:12.0093 1812  [ 901CC968412F8155B08D7ABE0171166A ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
10:28:12.0093 1812  WAS - ok
10:28:12.0140 1812  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\WINDOWS\system32\wbengine.exe
10:28:12.0155 1812  wbengine - ok
10:28:12.0186 1812  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
10:28:12.0186 1812  WbioSrvc - ok
10:28:12.0202 1812  [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
10:28:12.0202 1812  Wcmsvc - ok
10:28:12.0233 1812  [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
10:28:12.0249 1812  wcncsvc - ok
10:28:12.0265 1812  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
10:28:12.0265 1812  WcsPlugInService - ok
10:28:12.0280 1812  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\WINDOWS\system32\drivers\wd.sys
10:28:12.0280 1812  Wd - ok
10:28:12.0311 1812  [ 6F4B5DDDC3B86091E94BC47347A78AF7 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
10:28:12.0311 1812  WdBoot - ok
10:28:12.0343 1812  [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
10:28:12.0343 1812  Wdf01000 - ok
10:28:12.0374 1812  [ 99D404A9A0AFC4734E014EBEBAC13F8F ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
10:28:12.0374 1812  WdFilter - ok
10:28:12.0405 1812  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
10:28:12.0405 1812  WdiServiceHost - ok
10:28:12.0405 1812  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
10:28:12.0405 1812  WdiSystemHost - ok
10:28:12.0421 1812  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient       C:\WINDOWS\System32\webclnt.dll
10:28:12.0436 1812  WebClient - ok
10:28:12.0452 1812  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
10:28:12.0452 1812  Wecsvc - ok
10:28:12.0468 1812  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
10:28:12.0483 1812  wercplsupport - ok
10:28:12.0515 1812  [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
10:28:12.0515 1812  WerSvc - ok
10:28:12.0546 1812  [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
10:28:12.0546 1812  WFPLWFS - ok
10:28:12.0577 1812  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
10:28:12.0577 1812  WiaRpc - ok
10:28:12.0593 1812  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
10:28:12.0593 1812  WIMMount - ok
10:28:12.0624 1812  WinDefend - ok
10:28:12.0671 1812  [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
10:28:12.0671 1812  WinHttpAutoProxySvc - ok
10:28:12.0718 1812  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
10:28:12.0718 1812  Winmgmt - ok
10:28:12.0796 1812  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
10:28:12.0827 1812  WinRM - ok
10:28:12.0843 1812  [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb          C:\WINDOWS\System32\drivers\WinUSB.sys
10:28:12.0843 1812  WinUsb - ok
10:28:12.0905 1812  [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
10:28:12.0921 1812  WlanSvc - ok
10:28:12.0968 1812  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
10:28:12.0983 1812  wlidsvc - ok
10:28:13.0015 1812  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
10:28:13.0015 1812  WmiAcpi - ok
10:28:13.0030 1812  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
10:28:13.0030 1812  wmiApSrv - ok
10:28:13.0061 1812  WMPNetworkSvc - ok
10:28:13.0077 1812  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
10:28:13.0077 1812  wpcfltr - ok
10:28:13.0108 1812  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
10:28:13.0108 1812  WPCSvc - ok
10:28:13.0140 1812  [ 3013658A4D327854BEEC4A08D9655194 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
10:28:13.0140 1812  WPDBusEnum - ok
10:28:13.0171 1812  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
10:28:13.0171 1812  WpdUpFltr - ok
10:28:13.0202 1812  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
10:28:13.0202 1812  ws2ifsl - ok
10:28:13.0218 1812  [ 012CFE7F0F95266F554EE3B91EE2128A ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
10:28:13.0218 1812  wscsvc - ok
10:28:13.0249 1812  [ 74EFDA0526862C3D8D01A776182798EA ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
10:28:13.0249 1812  WSDPrintDevice - ok
10:28:13.0249 1812  WSearch - ok
10:28:13.0327 1812  [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService       C:\WINDOWS\System32\WSService.dll
10:28:13.0343 1812  WSService - ok
10:28:13.0421 1812  [ BE302BABE45EC05995F8DC66E37BBB3D ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
10:28:13.0452 1812  wuauserv - ok
10:28:13.0483 1812  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
10:28:13.0483 1812  WudfPf - ok
10:28:13.0499 1812  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
10:28:13.0499 1812  WUDFRd - ok
10:28:13.0499 1812  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP    C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:28:13.0499 1812  WUDFSensorLP - ok
10:28:13.0515 1812  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
10:28:13.0530 1812  wudfsvc - ok
10:28:13.0530 1812  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdComp     C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:28:13.0530 1812  WUDFWpdComp - ok
10:28:13.0546 1812  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:28:13.0546 1812  WUDFWpdFs - ok
10:28:13.0546 1812  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:28:13.0546 1812  WUDFWpdMtp - ok
10:28:13.0577 1812  [ FBB9B00D7A5756B0AA8E10BF7619E604 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
10:28:13.0593 1812  WwanSvc - ok
10:28:13.0702 1812  [ 17E44886E695DBC78AC33854BD5EA6D2 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
10:28:13.0718 1812  ZeroConfigService - ok
10:28:13.0749 1812  ================ Scan global ===============================
10:28:13.0796 1812  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\WINDOWS\system32\basesrv.dll
10:28:13.0812 1812  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\WINDOWS\system32\winsrv.dll
10:28:13.0827 1812  [ BD7C6949984D19AAA609896B675E7357 ] C:\WINDOWS\system32\sxssrv.dll
10:28:13.0858 1812  [ 8F226143046435C75C033B0C52E90FFE ] C:\WINDOWS\system32\services.exe
10:28:13.0858 1812  [Global] - ok
10:28:13.0858 1812  ================ Scan MBR ==================================
10:28:13.0874 1812  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:28:14.0749 1812  \Device\Harddisk0\DR0 - ok
10:28:14.0749 1812  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
10:28:22.0656 1812  \Device\Harddisk1\DR1 - ok
10:28:22.0656 1812  [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk2\DR2
10:28:22.0796 1812  \Device\Harddisk2\DR2 - ok
10:28:22.0796 1812  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk3\DR3
10:28:23.0265 1812  \Device\Harddisk3\DR3 - ok
10:28:23.0265 1812  ================ Scan VBR ==================================
10:28:23.0312 1812  [ 1BDE8F3E80BA611DE2B25B7DEA58ED90 ] \Device\Harddisk0\DR0\Partition1
10:28:23.0312 1812  \Device\Harddisk0\DR0\Partition1 - ok
10:28:23.0328 1812  [ 1FD3C49A60152C52C316A18FFF69010C ] \Device\Harddisk0\DR0\Partition2
10:28:23.0328 1812  \Device\Harddisk0\DR0\Partition2 - ok
10:28:23.0359 1812  [ BE368BAA2D73D61DF5268266D0D54C71 ] \Device\Harddisk0\DR0\Partition3
10:28:23.0359 1812  \Device\Harddisk0\DR0\Partition3 - ok
10:28:23.0375 1812  [ 38E96DEC436E0CEDF49ED5268A54AA68 ] \Device\Harddisk0\DR0\Partition4
10:28:23.0375 1812  \Device\Harddisk0\DR0\Partition4 - ok
10:28:23.0375 1812  [ B680FD31194E0EBEA8D06F93C15B002A ] \Device\Harddisk1\DR1\Partition1
10:28:23.0390 1812  \Device\Harddisk1\DR1\Partition1 - ok
10:28:23.0390 1812  [ 1765D505484D0485089E49378FDCA01B ] \Device\Harddisk2\DR2\Partition1
10:28:23.0390 1812  \Device\Harddisk2\DR2\Partition1 - ok
10:28:23.0390 1812  [ 4E8258EA333186A2A9811B544A4B4E59 ] \Device\Harddisk3\DR3\Partition1
10:28:23.0390 1812  \Device\Harddisk3\DR3\Partition1 - ok
10:28:23.0390 1812  ============================================================
10:28:23.0390 1812  Scan finished
10:28:23.0390 1812  ============================================================
10:28:23.0406 1888  Detected object count: 0
10:28:23.0406 1888  Actual detected object count: 0



#4 Etng03

Etng03
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:17 AM

Posted 08 August 2013 - 02:44 PM

Sorry! I didn't see your edit to the instructions post to run RKill, here is the log:

 

Rkill 2.6.0 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/08/2013 03:34:53 PM in x64 mode. (Safe Mode)
Windows Version: Windows 8 Pro with Media Center

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
 C:\Users\Ethan\Desktop\rkill\rkill-08-08-2013-03-34-55.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  * HKLM\batfile\shell\edit\command "@" was changed.
    It was reset to "%1" %*!

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * COM+ Event System (EventSystem) is not Running.
   Startup Type set to: Automatic

 * Security Center (wscsvc) is not Running.
   Startup Type set to: Automatic (Delayed Start)

 * HdAudAddService [Missing Service]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 08/08/2013 03:36:02 PM
Execution time: 0 hours(s), 1 minute(s), and 8 seconds(s)

 

 

Do you want me to re-run Malwarebytes/TDSSKiller?

 

PS: I looked in event viewer and I saw that same error (mentioned in the first post) all the way from 10 in the morning to 3 in the afternoon (and that is, for almost every second).


Edited by Etng03, 08 August 2013 - 02:59 PM.


#5 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:17 PM

Posted 08 August 2013 - 03:38 PM

It was my mistake by editing my post with the Rkill instructions. Don't worry you did everything good.

 

1. Start the computer into Startup options. (http://www.eightforums.com/tutorials/4935-startup-options-menu-boot-windows-8-a.html)

2. Go to System Recovery Options  (http://www.eightforums.com/tutorials/2269-system-recovery-options-boot-windows-8-a.html)

3. Choose Automatic Repair

 

11874d1353866139t-system-recovery-option


Edited by GodfatherKing, 08 August 2013 - 03:40 PM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#6 Etng03

Etng03
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:17 AM

Posted 08 August 2013 - 03:52 PM

This already doesn't feel good.

The image of the message is found here: http://sdrv.ms/11PE3p8

Do you want me to return to safe mode? Thank you!

PS: If you need the file noted in the image then please notify me.

#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:17 PM

Posted 08 August 2013 - 04:01 PM

Let's try System Restore. Go back to the Advanced Options and choose System Restore. Choose a point before the infections.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 Etng03

Etng03
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:17 AM

Posted 08 August 2013 - 04:09 PM

Another error:

Image here: https://skydrive.live.com/redir?resid=52FC3A13F8EA9851!3780&authkey=!AL7RaopiY0WSuzo&v=3

Thanks for your support!

#9 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:17 PM

Posted 09 August 2013 - 02:56 AM

:step1: Go again to Advanced Options, choose command pormpt. In the command prompt enter: chkdsk /R

 

:step2: Try again booting normally or attempting System Restore.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#10 Etng03

Etng03
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:17 AM

Posted 09 August 2013 - 07:45 AM

I am sad to say that I can't launch the command line from the advanced startup menu. But I have booted from the windows 8 install CD and I don't know if you have to change the command you told me to type in. Is the command different or not? Note that I am booted into the Install CD Command prompt. Thanks!

#11 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:17 PM

Posted 09 August 2013 - 08:05 AM

The command should be the same. 


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#12 Etng03

Etng03
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:17 AM

Posted 09 August 2013 - 12:57 PM

Doesn't work :(

Image of the command line after running the chkdsk is here: https://skydrive.live.com/redir?resid=52FC3A13F8EA9851!3786&authkey=!AD-Si2wlV88zRm8&v=3

The fan is quiet, and there is no hard drive activity as seen here: https://skydrive.live.com/redir?resid=52FC3A13F8EA9851!3790&authkey=!AD0lGzQfHYR6UGQ&v=3

Thanks!

#13 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:17 PM

Posted 09 August 2013 - 02:10 PM

CHDSK indicates bad sectors. Backup so fast as possible all important files.   Try from safe mode and backup to external device.


Edited by GodfatherKing, 09 August 2013 - 02:10 PM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#14 Etng03

Etng03
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:17 AM

Posted 10 August 2013 - 07:44 AM

All right, I backed it up. Is there anything else that I have to do?

#15 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:17 PM

Posted 10 August 2013 - 12:19 PM

Let's check to hard disk with a program.

 

Start the computer into Safe mode with networking then...

 

==

 

Please run CrystalDiskInfo to check the harddisk.

 

1. Download CrystalDiskInfo Portable.

 

    ==> http://sourceforge.jp/projects/crystaldiskinfo/downloads/43436/CrystalDiskInfo2_7_5b.zip/

 

2. Unpack the program on your desktop.

 

3. Run it and post a screenshot from the results.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users